$ rpki-client -vvf rpki.apnic.net/member_repository/A917638D/0259B61E97B511EA99475A6DC4F9AE02/55635E7C97B611EA97FDCB6EC4F9AE02.roa File: 55635E7C97B611EA97FDCB6EC4F9AE02.roa (raw, json) Hash identifier: PUUYX8ppf+3MShGt8AoPK4+W3CKH5Xedh9Wmflb/psI= Subject key identifier: 8B:44:11:C7:29:C5:BC:D6:33:03:51:22:73:DE:D7:C9:DB:8A:14:B1 Certificate issuer: /CN=A917638D/serialNumber=F0E766FB319224823CA79D36720C51EDFCADCFE6 Certificate serial: 08A2 Authority key identifier: F0:E7:66:FB:31:92:24:82:3C:A7:9D:36:72:0C:51:ED:FC:AD:CF:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Odm-zGSJII8p502cgxR7fytz-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917638D/0259B61E97B511EA99475A6DC4F9AE02/55635E7C97B611EA97FDCB6EC4F9AE02.roa Signing time: Fri 31 May 2024 22:58:27 +0000 ROA not before: Fri 31 May 2024 22:58:27 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 140594 IP address blocks: 103.150.206.0/23 maxlen: 23 103.150.206.0/24 maxlen: 24 103.150.207.0/24 maxlen: 24 2001:df3:8a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917638D/0259B61E97B511EA99475A6DC4F9AE02/8Odm-zGSJII8p502cgxR7fytz-Y.crl rsync://rpki.apnic.net/member_repository/A917638D/0259B61E97B511EA99475A6DC4F9AE02/8Odm-zGSJII8p502cgxR7fytz-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Odm-zGSJII8p502cgxR7fytz-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2210 (0x8a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917638D/serialNumber=F0E766FB319224823CA79D36720C51EDFCADCFE6 Validity Not Before: May 31 22:58:27 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665a5613-d755 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8f:bc:96:97:d2:12:a2:40:55:80:32:af:e1: 90:32:15:19:b4:04:eb:0b:35:d4:5c:a1:b0:47:94: a8:09:0e:e2:98:34:ec:0c:c8:90:12:79:c4:33:8e: 96:7b:2f:b0:80:38:1f:3b:31:ec:9d:15:78:c8:c6: 81:73:3b:a8:d5:a0:f3:23:b3:4b:5d:41:4d:ee:ff: 30:c5:e0:9f:5f:6f:5f:4c:e6:f2:75:ee:7e:2d:f7: 28:b0:52:55:ba:b0:16:76:74:89:07:a3:c9:63:61: 1c:aa:fe:ff:11:17:75:b3:74:95:54:18:9b:0c:12: c2:3d:e3:aa:c3:46:83:9b:ac:ff:44:74:9a:42:99: d4:4c:28:64:cc:c6:9b:56:78:3b:7b:6b:6a:af:89: 32:6a:9f:9e:45:67:4c:e8:06:c2:b7:62:71:59:1d: 32:fd:5e:fb:b9:f4:c3:d7:aa:6f:e8:24:23:91:12: 65:db:61:03:fa:47:e9:94:a7:a4:9d:03:ea:13:2c: 6c:46:51:49:14:9e:f1:b8:d6:0c:7a:3d:8d:f0:7e: ae:c1:eb:01:c9:fa:62:67:0c:40:65:07:50:e8:de: a0:b8:e0:91:1b:bd:6a:d4:11:80:37:3a:21:29:f8: 80:48:ac:31:ea:a4:82:03:9f:57:6c:47:ff:2d:41: 63:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:44:11:C7:29:C5:BC:D6:33:03:51:22:73:DE:D7:C9:DB:8A:14:B1 X509v3 Authority Key Identifier: keyid:F0:E7:66:FB:31:92:24:82:3C:A7:9D:36:72:0C:51:ED:FC:AD:CF:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917638D/0259B61E97B511EA99475A6DC4F9AE02/8Odm-zGSJII8p502cgxR7fytz-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Odm-zGSJII8p502cgxR7fytz-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917638D/0259B61E97B511EA99475A6DC4F9AE02/55635E7C97B611EA97FDCB6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.206.0/23 IPv6: 2001:df3:8a80::/48 Signature Algorithm: sha256WithRSAEncryption 69:17:80:aa:d3:10:b7:b3:b8:ba:d2:1f:b3:92:90:db:e8:87: a9:9d:68:9d:09:52:98:dc:f5:b4:a2:f3:40:ad:84:7d:e7:c2: 65:c9:09:ad:75:b7:f4:cb:5f:e8:d6:43:59:a6:5e:2a:66:1c: 90:9f:39:af:97:45:b0:37:40:8a:3c:e5:65:21:33:45:51:42: 59:49:38:fe:a8:d3:16:30:59:16:11:02:96:0d:5a:42:47:f9: 88:ba:14:a4:85:ba:d3:e4:07:b2:4f:04:a9:22:fd:1b:ca:0a: 4c:b7:a6:9d:ac:25:6e:c0:57:16:5e:96:c3:c6:04:8b:a6:c9: 77:ca:ca:93:06:58:53:96:b4:56:10:15:eb:6c:0a:53:3f:50: 33:b9:df:d0:90:ee:60:f0:09:4f:28:8e:47:87:04:82:7f:ce: 81:b0:65:87:32:06:a6:8f:4d:bf:99:7b:bd:17:58:09:bf:a7: d9:2d:0b:98:46:e9:62:5d:8e:b7:69:c6:15:3b:8a:72:48:49: 62:08:23:c0:ef:b5:e1:ed:d3:b1:78:f8:29:b4:f0:9f:a9:3b: 62:95:df:08:af:25:a0:c7:3a:49:01:3c:a5:44:bf:f2:10:a3: 94:ca:43:6c:38:26:9d:d2:e7:d8:4b:ae:70:11:28:53:e4:49: d5:ff:ed:90 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYzOEQxMTAvBgNVBAUTKEYwRTc2NkZCMzE5MjI0ODIzQ0E3OUQzNjcyMEM1MUVE RkNBRENGRTYwHhcNMjQwNTMxMjI1ODI3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVhNTYxMy1kNzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3o+8lpfSEqJAVYAyr+GQMhUZtATrCzXUXKGwR5SoCQ7imDTsDMiQEnnEM46W ey+wgDgfOzHsnRV4yMaBczuo1aDzI7NLXUFN7v8wxeCfX29fTObyde5+LfcosFJV urAWdnSJB6PJY2Ecqv7/ERd1s3SVVBibDBLCPeOqw0aDm6z/RHSaQpnUTChkzMab Vng7e2tqr4kyap+eRWdM6AbCt2JxWR0y/V77ufTD16pv6CQjkRJl22ED+kfplKek nQPqEyxsRlFJFJ7xuNYMej2N8H6uwesByfpiZwxAZQdQ6N6guOCRG71q1BGANzoh KfiASKwx6qSCA59XbEf/LUFjbwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFItEEccp xbzWMwNRInPe18nbihSxMB8GA1UdIwQYMBaAFPDnZvsxkiSCPKedNnIMUe38rc/m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjM4RC8wMjU5QjYxRTk3 QjUxMUVBOTk0NzVBNkRDNEY5QUUwMi84T2RtLXpHU0pJSThwNTAyY2d4UjdmeXR6 LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhPZG0tekdTSklJOHA1MDJjZ3hSN2Z5dHotWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzYzOEQvMDI1OUI2MUU5N0I1MTFFQTk5NDc1QTZEQzRGOUFFMDIvNTU2MzVFN0M5 N0I2MTFFQTk3RkRDQjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnls4wDwQCAAIwCQMHACABDfOKgDANBgkqhkiG9w0BAQsF AAOCAQEAaReAqtMQt7O4utIfs5KQ2+iHqZ1onQlSmNz1tKLzQK2EfefCZckJrXW3 9Mtf6NZDWaZeKmYckJ85r5dFsDdAijzlZSEzRVFCWUk4/qjTFjBZFhEClg1aQkf5 iLoUpIW60+QHsk8EqSL9G8oKTLemnawlbsBXFl6Ww8YEi6bJd8rKkwZYU5a0VhAV 62wKUz9QM7nf0JDuYPAJTyiOR4cEgn/OgbBlhzIGpo9Nv5l7vRdYCb+n2S0LmEbp Yl2Ot2nGFTuKckhJYggjwO+14e3TsXj4KbTwn6k7YpXfCK8loMc6SQE8pUS/8hCj lMpDbDgmndLn2EuucBEoU+RJ1f/tkA== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:29 2024 by rpki-client on console-fra.rpki-client.org