$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4D82EEA8F8F411EAB8853867C4F9AE02.roa File: 4D82EEA8F8F411EAB8853867C4F9AE02.roa (raw, json) Hash identifier: gpMPPiDN6Cd5lSdoWdgXqzI/0KUYAJ7pk3jT97OSK5E= Subject key identifier: DE:6F:D8:FF:5F:CB:2E:7F:2C:5C:7B:1A:FA:E6:60:6A:86:4D:E6:7F Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A7E Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4D82EEA8F8F411EAB8853867C4F9AE02.roa Signing time: Sun 14 May 2023 22:15:30 +0000 ROA not before: Sun 14 May 2023 22:15:30 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 35251 IP address blocks: 103.150.214.0/24 maxlen: 24 103.150.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 06:50:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2686 (0xa7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:15:30 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d82-d73a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5a:7a:ad:61:61:50:37:6a:ff:a4:7e:90:bb: 1c:b9:ad:d9:54:2b:94:8f:64:46:74:70:81:e6:f8: e4:15:61:91:23:39:47:a3:af:41:91:52:db:cd:c2: f7:7f:67:de:0e:e5:2c:04:d9:60:aa:71:b1:c7:9f: d0:4f:0c:71:fc:1f:78:60:df:30:7c:fa:11:eb:45: 77:b5:b0:dc:94:ec:ef:0f:f5:19:a8:fe:85:0f:d7: eb:82:98:b7:e9:8e:03:3a:97:7f:f5:c6:c4:e3:b5: dc:e3:f6:01:23:0b:3b:69:1d:71:ef:78:03:39:62: 51:28:d3:41:19:7f:cc:80:8d:7c:32:32:42:dd:0c: 91:c9:41:e0:43:17:0a:11:1e:b2:7b:dc:dd:d9:b2: 48:12:f0:54:46:c8:1c:e6:8e:f0:f2:c6:57:8c:a0: 76:3e:82:70:77:3a:05:4b:30:83:d9:2e:0f:70:00: f6:3d:13:0a:d7:f3:8b:61:67:da:11:65:53:0c:08: 07:ca:ae:ac:4c:5f:00:b0:76:0d:00:ae:fc:7c:aa: c5:1a:b5:46:19:9d:25:00:86:a1:7f:e5:a8:b8:6e: 25:41:57:12:6b:63:31:b4:55:38:00:74:6f:18:42: 01:5b:7b:6d:b0:7b:b5:6a:d8:7d:7c:69:12:e6:d8: f1:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:6F:D8:FF:5F:CB:2E:7F:2C:5C:7B:1A:FA:E6:60:6A:86:4D:E6:7F X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4D82EEA8F8F411EAB8853867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.214.0/23 Signature Algorithm: sha256WithRSAEncryption 72:c3:2a:55:27:28:6d:63:5d:7c:5a:31:b0:4d:27:6c:b4:08: 8d:7c:b4:be:67:e4:f9:9c:ca:f8:21:a8:52:6b:38:54:5b:66: f6:67:80:47:ac:8b:d1:f1:4c:35:eb:1f:fe:7b:ab:26:90:63: 99:60:2e:07:44:ea:8b:60:26:e8:4d:48:21:a7:c0:f6:b4:26: d9:55:3f:a3:1a:6f:de:3e:26:3d:85:9b:a5:04:a1:f6:a5:2a: c3:8e:30:41:f4:ef:e6:4d:55:7a:46:e1:5c:0d:e6:2c:b1:32: eb:11:6e:5b:93:4d:31:6a:2d:69:4c:d2:5b:59:c5:d3:4c:a6: 82:8e:97:06:2a:23:89:55:b9:c6:32:e0:61:10:75:40:62:11: c9:b4:c2:86:e8:9d:73:3d:42:d7:8d:b0:67:94:87:5b:97:dc: 79:0a:33:0a:fd:f4:19:cd:04:d8:a7:2c:8e:be:a4:68:17:a2: 74:98:ca:2e:19:4e:62:9a:a0:a2:17:0a:f2:29:f7:9a:5b:d2: 95:78:6c:03:d2:11:40:71:8b:45:0f:d4:0c:d9:b1:ad:9f:b4: 2a:13:f1:1b:3f:1c:71:c5:52:e8:cf:47:5d:ce:7c:14:6e:6e: 02:b6:d3:b6:27:7f:d4:63:b3:8f:bf:fa:ed:16:0f:f9:eb:59: 5d:be:84:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNTMwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQ4Mi1kNzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVp6rWFhUDdq/6R+kLscua3ZVCuUj2RGdHCB5vjkFWGRIzlHo69BkVLbzcL3 f2feDuUsBNlgqnGxx5/QTwxx/B94YN8wfPoR60V3tbDclOzvD/UZqP6FD9frgpi3 6Y4DOpd/9cbE47Xc4/YBIws7aR1x73gDOWJRKNNBGX/MgI18MjJC3QyRyUHgQxcK ER6ye9zd2bJIEvBURsgc5o7w8sZXjKB2PoJwdzoFSzCD2S4PcAD2PRMK1/OLYWfa EWVTDAgHyq6sTF8AsHYNAK78fKrFGrVGGZ0lAIahf+WouG4lQVcSa2MxtFU4AHRv GEIBW3ttsHu1ath9fGkS5tjxQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFN5v2P9f yy5/LFx7GvrmYGqGTeZ/MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNEQ4MkVFQThG OEY0MTFFQUI4ODUzODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnltYwDQYJKoZIhvcNAQELBQADggEBAHLDKlUnKG1jXXxa MbBNJ2y0CI18tL5n5PmcyvghqFJrOFRbZvZngEesi9HxTDXrH/57qyaQY5lgLgdE 6otgJuhNSCGnwPa0JtlVP6Mab94+Jj2Fm6UEofalKsOOMEH07+ZNVXpG4VwN5iyx MusRbluTTTFqLWlM0ltZxdNMpoKOlwYqI4lVucYy4GEQdUBiEcm0wobonXM9QteN sGeUh1uX3HkKMwr99BnNBNinLI6+pGgXonSYyi4ZTmKaoKIXCvIp95pb0pV4bAPS EUBxi0UP1AzZsa2ftCoT8Rs/HHHFUujPR13OfBRubgK207Ynf9Rjs4+/+u0WD/nr WV2+hJ4= -----END CERTIFICATE-----Generated at Fri Apr 19 09:35:36 2024 by rpki-client on console-fra.rpki-client.org