$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/0A866A522EAB11EBAB198239C4F9AE02.roa File: 0A866A522EAB11EBAB198239C4F9AE02.roa (raw, json) Hash identifier: 6hDu1kE4GO085qpFOCQZLCpWlIpJI/9a6k7iwPrXpik= Subject key identifier: 02:2C:09:00:17:A3:EF:DC:D6:74:E2:B6:E6:CD:DC:6A:29:1F:F2:3E Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Certificate serial: 0627 Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/0A866A522EAB11EBAB198239C4F9AE02.roa Signing time: Tue 14 Nov 2023 23:31:02 +0000 ROA not before: Tue 14 Nov 2023 23:31:02 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 135313 IP address blocks: 103.215.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 23:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Validity Not Before: Nov 14 23:31:02 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65540335-f8c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:40:57:d1:e2:8a:bc:d6:1e:22:56:8b:f5:72: 2e:65:89:4a:dd:da:c0:1d:15:52:4a:9a:00:80:22: 4e:8d:54:4c:dd:83:7d:16:d4:e2:41:e6:47:6e:2e: b1:70:db:d7:7d:1f:04:17:c7:00:21:5e:b8:6d:e7: 6e:e4:3e:00:05:bb:be:35:42:9b:67:f4:64:82:60: 73:fc:8f:a3:3b:c0:8d:91:68:af:46:a7:8b:03:14: 92:24:ec:85:b8:ac:90:da:e2:d4:7c:f5:30:6f:42: 8a:36:06:ed:1e:96:1e:cf:ed:36:f1:7b:6f:73:03: dd:54:0b:88:c4:b0:cb:10:ca:58:71:02:a2:e8:b4: be:e1:ed:1f:b1:df:5d:35:5f:97:28:31:c7:5b:d3: ef:cf:78:89:4e:7c:86:1e:18:9a:50:5e:d4:1d:fb: ac:c5:c0:2c:f2:69:4c:8a:88:08:ee:38:5b:fe:6a: 8c:c4:6e:a3:b6:b1:57:fe:82:64:6b:de:80:ff:60: 3e:76:27:3c:66:ad:62:72:8c:4c:fe:46:76:af:8d: 39:2a:6c:fb:36:e5:50:c5:29:a7:56:ab:24:39:e1: 8f:9e:ca:bd:c8:9b:8e:e9:c6:6b:23:8e:aa:dd:27: 28:82:d3:41:2b:fe:d3:c2:b9:c8:f2:c0:28:71:a0: a7:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:2C:09:00:17:A3:EF:DC:D6:74:E2:B6:E6:CD:DC:6A:29:1F:F2:3E X509v3 Authority Key Identifier: keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/0A866A522EAB11EBAB198239C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.22.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:92:36:d5:48:7b:44:27:d4:54:3e:f6:a9:ab:e0:2a:88:97: 0e:33:d5:b8:1f:50:5d:8f:8d:95:7c:ca:67:fc:15:8d:95:74: 92:f4:3e:b1:50:d5:ab:38:1a:87:90:d6:54:40:bb:d7:7a:94: 79:85:97:5d:39:f4:04:b2:0c:31:d7:ab:d5:4c:55:48:0f:d8: 1a:ed:6e:e7:6d:b8:37:47:92:a0:e1:cb:ff:02:30:3d:4b:9e: fd:4c:68:84:bb:26:57:18:f8:2e:c8:2a:06:77:b9:0a:b3:0b: 81:ab:4c:cc:16:eb:0b:85:47:d1:8a:2d:fb:0c:c0:15:e2:97: f1:b9:3e:2a:e1:16:2c:44:59:f3:3d:ec:34:f4:25:af:6a:e0: 2a:27:ee:c0:5e:6f:09:54:97:39:77:00:b1:7f:c3:9a:31:84: c2:bb:2c:13:1a:30:b2:16:84:66:9b:3b:59:9e:c4:e3:b8:3e: a3:3c:85:e8:4c:5a:d1:fc:24:98:b7:ab:1b:0b:e0:35:8e:88: 4b:14:1f:20:88:fb:09:ab:7c:b4:35:23:4f:ee:87:a6:e6:e7: 6a:e7:a7:e1:5e:a2:48:42:76:b0:2b:67:ce:f5:13:d0:94:0a: 7c:2e:01:41:7c:fa:93:06:5f:f1:c2:55:18:ae:e0:0f:8e:10: 97:f6:c3:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz Q0U5MzQyMDYwHhcNMjMxMTE0MjMzMTAyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU0MDMzNS1mOGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0BX0eKKvNYeIlaL9XIuZYlK3drAHRVSSpoAgCJOjVRM3YN9FtTiQeZHbi6x cNvXfR8EF8cAIV64bedu5D4ABbu+NUKbZ/RkgmBz/I+jO8CNkWivRqeLAxSSJOyF uKyQ2uLUfPUwb0KKNgbtHpYez+028XtvcwPdVAuIxLDLEMpYcQKi6LS+4e0fsd9d NV+XKDHHW9Pvz3iJTnyGHhiaUF7UHfusxcAs8mlMiogI7jhb/mqMxG6jtrFX/oJk a96A/2A+dic8Zq1icoxM/kZ2r405Kmz7NuVQxSmnVqskOeGPnsq9yJuO6cZrI46q 3ScogtNBK/7TwrnI8sAocaCnyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAIsCQAX o+/c1nTitubN3GopH/I+MB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTFCNzEvOUZENUY4MEUyRUE5MTFFQjkxNjhGQjM3QzRGOUFFMDIvMEE4NjZBNTIy RUFCMTFFQkFCMTk4MjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1xYwDQYJKoZIhvcNAQELBQADggEBAAuSNtVIe0Qn1FQ+ 9qmr4CqIlw4z1bgfUF2PjZV8ymf8FY2VdJL0PrFQ1as4GoeQ1lRAu9d6lHmFl105 9ASyDDHXq9VMVUgP2BrtbudtuDdHkqDhy/8CMD1Lnv1MaIS7JlcY+C7IKgZ3uQqz C4GrTMwW6wuFR9GKLfsMwBXil/G5PirhFixEWfM97DT0Ja9q4Con7sBebwlUlzl3 ALF/w5oxhMK7LBMaMLIWhGabO1mexOO4PqM8hehMWtH8JJi3qxsL4DWOiEsUHyCI +wmrfLQ1I0/uh6bm52rnp+FeokhCdrArZ871E9CUCnwuAUF8+pMGX/HCVRiu4A+O EJf2wzk= -----END CERTIFICATE-----Generated at Mon May 27 00:32:50 2024 by rpki-client on console-fra.rpki-client.org