$ rpki-client -vvf rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/021C59CCD1D011EAA2763743C4F9AE02.roa File: 021C59CCD1D011EAA2763743C4F9AE02.roa (raw, json) Hash identifier: yKLG4+4C6c5AczdoqwT5jvtakffjN4p5Kvq/AkjJqa8= Subject key identifier: A8:96:95:1C:3D:CC:92:9A:7D:44:5E:D2:19:18:03:0F:B1:99:61:F9 Certificate issuer: /CN=A91454A8/serialNumber=9BB2B4D1A8FE811DC4953D802D102F5D048D081D Certificate serial: 06B8 Authority key identifier: 9B:B2:B4:D1:A8:FE:81:1D:C4:95:3D:80:2D:10:2F:5D:04:8D:08:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m7K00aj-gR3ElT2ALRAvXQSNCB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/021C59CCD1D011EAA2763743C4F9AE02.roa Signing time: Sat 10 Jun 2023 23:05:01 +0000 ROA not before: Sat 10 Jun 2023 23:05:01 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 132335 IP address blocks: 103.150.187.0/24 maxlen: 24 2001:df3:8880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/m7K00aj-gR3ElT2ALRAvXQSNCB0.crl rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/m7K00aj-gR3ElT2ALRAvXQSNCB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m7K00aj-gR3ElT2ALRAvXQSNCB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1720 (0x6b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454A8/serialNumber=9BB2B4D1A8FE811DC4953D802D102F5D048D081D Validity Not Before: Jun 10 23:05:01 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6485019d-cdd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5b:1c:22:16:8a:7c:34:72:ec:da:ec:dc:ae: 9e:88:d7:73:e4:61:b9:3d:6c:13:c2:c8:2c:e1:01: aa:49:5d:d5:bc:96:a4:d8:59:64:e3:25:07:1d:6b: 2b:06:c3:e4:e8:a1:82:65:c6:d0:49:72:15:ca:a0: 70:1a:df:3f:49:8e:ba:78:fc:02:02:8e:37:1b:ad: 83:d7:59:36:34:03:85:c4:37:81:d0:cf:77:7d:48: 5b:1d:bf:fd:5f:ed:a4:02:27:d3:0e:37:05:73:f6: 88:b6:90:0c:94:52:55:a1:49:7b:f7:11:61:d3:a6: 87:ec:22:7c:e1:cb:05:ec:c3:44:d0:e6:27:a1:5e: 76:2d:c4:93:58:37:87:7d:ca:2d:3f:98:61:75:8d: 94:11:ee:a4:a3:56:cd:e1:cd:93:96:c7:8b:bb:ef: 94:7f:75:22:b7:db:bb:c4:ed:3e:77:bc:d5:66:18: 8c:9a:1f:a4:8b:98:1c:66:98:75:47:83:60:3f:3b: 97:56:e3:77:a3:49:ff:a7:7e:ae:50:4e:bf:d3:89: c0:83:bd:b2:73:4f:c8:0a:4b:95:3c:1d:96:6b:1d: fc:89:a3:0c:34:d7:d7:38:a4:62:81:4a:8b:cb:2c: 03:f5:9d:fb:be:c6:16:bb:b0:a3:34:bd:f0:6e:99: 59:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:96:95:1C:3D:CC:92:9A:7D:44:5E:D2:19:18:03:0F:B1:99:61:F9 X509v3 Authority Key Identifier: keyid:9B:B2:B4:D1:A8:FE:81:1D:C4:95:3D:80:2D:10:2F:5D:04:8D:08:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/m7K00aj-gR3ElT2ALRAvXQSNCB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m7K00aj-gR3ElT2ALRAvXQSNCB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/021C59CCD1D011EAA2763743C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.187.0/24 IPv6: 2001:df3:8880::/48 Signature Algorithm: sha256WithRSAEncryption b3:03:f3:74:a2:d1:36:58:c3:04:5e:0b:fc:30:16:e5:da:73: bd:38:dd:37:1f:13:53:51:fe:cb:6f:3a:ae:6a:26:04:9c:fc: fa:27:af:a7:d2:8d:1f:6a:c6:b8:1b:46:bb:e1:c4:9b:90:7b: 67:30:a8:00:c3:71:87:8d:82:2f:ac:46:a0:7f:36:6f:c3:26: 9b:ba:c9:ea:40:3b:6c:ef:ae:f8:c4:9a:be:30:ce:b3:eb:1f: 79:97:73:1d:2d:ba:d3:d9:e6:1e:64:06:c6:71:68:48:b9:a3: 40:88:f9:d1:80:c1:f8:d5:bb:a7:14:12:d7:9a:17:e5:43:67: 79:52:0e:c9:04:8f:c7:0a:10:ff:9a:9f:72:a2:ab:3b:54:a0: 10:d4:e9:f1:3a:4a:14:77:ca:bd:73:73:c5:be:a7:88:88:d4: 7a:38:97:cd:97:bb:4a:04:a1:8b:da:88:86:a3:41:e7:b8:99: bf:88:06:b3:45:f8:18:cc:23:10:52:8b:5f:d6:a6:48:97:31: 83:89:ba:f2:36:4e:f7:cf:7d:a4:90:1d:16:26:65:4e:69:a7: 44:9c:54:69:d9:a3:d5:18:b1:48:3c:47:eb:bb:c0:7e:95:ba: 5e:02:ef:6d:f0:f8:47:62:76:36:e4:42:a9:bd:f4:fb:69:94: 06:7a:6d:9e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0QTgxMTAvBgNVBAUTKDlCQjJCNEQxQThGRTgxMURDNDk1M0Q4MDJEMTAyRjVE MDQ4RDA4MUQwHhcNMjMwNjEwMjMwNTAxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDg1MDE5ZC1jZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVscIhaKfDRy7Nrs3K6eiNdz5GG5PWwTwsgs4QGqSV3VvJak2Flk4yUHHWsr BsPk6KGCZcbQSXIVyqBwGt8/SY66ePwCAo43G62D11k2NAOFxDeB0M93fUhbHb/9 X+2kAifTDjcFc/aItpAMlFJVoUl79xFh06aH7CJ84csF7MNE0OYnoV52LcSTWDeH fcotP5hhdY2UEe6ko1bN4c2TlseLu++Uf3Uit9u7xO0+d7zVZhiMmh+ki5gcZph1 R4NgPzuXVuN3o0n/p36uUE6/04nAg72yc0/ICkuVPB2Wax38iaMMNNfXOKRigUqL yywD9Z37vsYWu7CjNL3wbplZcwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKiWlRw9 zJKafURe0hkYAw+xmWH5MB8GA1UdIwQYMBaAFJuytNGo/oEdxJU9gC0QL10EjQgd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRBOC9FMjk1MjBCOEQx Q0QxMUVBQkE0QTM0NDBDNEY5QUUwMi9tN0swMGFqLWdSM0VsVDJBTFJBdlhRU05D QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL203SzAwYWotZ1IzRWxUMkFMUkF2WFFTTkNCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0QTgvRTI5NTIwQjhEMUNEMTFFQUJBNEEzNDQwQzRGOUFFMDIvMDIxQzU5Q0NE MUQwMTFFQUEyNzYzNzQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnlrswDwQCAAIwCQMHACABDfOIgDANBgkqhkiG9w0BAQsF AAOCAQEAswPzdKLRNljDBF4L/DAW5dpzvTjdNx8TU1H+y286rmomBJz8+ievp9KN H2rGuBtGu+HEm5B7ZzCoAMNxh42CL6xGoH82b8Mmm7rJ6kA7bO+u+MSavjDOs+sf eZdzHS2609nmHmQGxnFoSLmjQIj50YDB+NW7pxQS15oX5UNneVIOyQSPxwoQ/5qf cqKrO1SgENTp8TpKFHfKvXNzxb6niIjUejiXzZe7SgShi9qIhqNB57iZv4gGs0X4 GMwjEFKLX9amSJcxg4m68jZO9899pJAdFiZlTmmnRJxUadmj1RixSDxH67vAfpW6 XgLvbfD4R2J2NuRCqb30+2mUBnptng== -----END CERTIFICATE-----Generated at Wed May 22 22:41:48 2024 by rpki-client on console-fra.rpki-client.org