$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4D82EEA8F8F411EAB8853867C4F9AE02.roa File: 4D82EEA8F8F411EAB8853867C4F9AE02.roa (raw, json) Hash identifier: w+GDZ1oRp3z90SBA9maG2QqYGpUXgvXsGNFmFOQsjHQ= Subject key identifier: F9:C9:BE:53:F8:61:4A:19:FB:92:79:C5:CF:C4:FD:5C:0C:C5:7D:86 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CB2 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4D82EEA8F8F411EAB8853867C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:59 +0000 ROA not before: Sun 26 May 2024 21:32:59 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 35251 IP address blocks: 103.150.214.0/24 maxlen: 24 103.150.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3250 (0xcb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:59 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa8a-fe56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ae:7f:e8:7a:d6:53:a0:e2:4e:0e:f7:65:0d: 9c:a2:9f:2e:3b:0b:73:96:80:60:2a:71:cf:b7:da: 4e:c8:16:82:64:69:55:c7:3d:ce:ae:fa:8b:fb:00: ba:ed:f4:d2:e5:3f:04:b9:19:fb:99:4e:b3:09:35: d9:6f:b6:0b:2c:df:6f:19:e8:a2:9e:cf:a9:f8:6e: 21:f8:37:e5:d3:09:bc:3f:c7:d6:6f:b2:26:71:02: 66:f3:bb:e0:f1:5c:81:bb:15:38:d2:a5:88:f1:31: da:e2:34:0f:42:c0:78:a2:cf:3d:e1:3c:f9:fa:75: 52:2b:b7:08:22:7b:e9:5a:d4:13:ec:5a:06:d4:7c: 75:3f:e1:0e:a6:24:88:90:2a:b4:55:bd:6f:6a:d3: 4e:f1:dc:5d:bc:6c:d2:ae:85:f9:6b:9a:08:8d:5a: ad:1f:f4:72:32:a4:0c:b9:00:7c:f8:73:af:ce:a9: ef:b0:69:1e:d8:ab:3c:2d:e6:72:6f:42:a6:1c:b2: 3a:4a:f2:e1:30:c3:8f:cb:fe:b9:08:8b:c1:68:f0: 04:0f:4e:de:aa:5b:60:e5:1d:ce:ab:53:0d:61:d0: 33:2a:aa:78:79:1a:1d:a6:17:77:78:8c:bb:cb:b0: 28:8f:bc:df:6e:1b:3a:41:72:f7:12:e9:b2:26:41: d4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:C9:BE:53:F8:61:4A:19:FB:92:79:C5:CF:C4:FD:5C:0C:C5:7D:86 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4D82EEA8F8F411EAB8853867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.214.0/23 Signature Algorithm: sha256WithRSAEncryption 96:54:3c:8d:09:59:73:70:1f:56:0a:f6:ae:9a:f3:50:3b:f0: a9:04:5f:e4:e1:43:83:9a:28:72:65:45:69:6e:f4:e1:e2:be: 18:7d:bf:3e:34:08:8c:c5:cc:70:d4:d4:f6:af:85:65:8d:9c: 0a:9a:f5:62:c0:a6:ea:b4:b9:ad:bd:56:e6:24:46:ff:12:4b: 99:a1:09:76:74:01:c9:83:87:e3:28:b4:d4:4b:e1:56:a0:ea: c3:47:b9:b9:d7:cd:db:a7:49:e8:38:9b:fd:b3:8a:7a:f4:87: 99:e2:76:a9:e9:80:22:c0:be:19:b3:da:28:61:a2:7d:67:09: e9:7e:9b:fe:b3:71:24:da:ab:aa:68:66:29:ac:f4:3d:bb:89: aa:16:75:af:4b:c5:67:f8:bd:75:71:cb:f5:40:6a:f4:b0:04: f8:74:25:0a:59:12:32:13:75:72:33:66:98:af:bd:e6:c9:88: cb:ea:22:bc:6e:c7:b2:95:ae:b3:59:4a:8a:2e:3e:df:eb:f9: 57:1f:82:19:df:de:c2:85:12:66:37:24:9a:9c:ea:07:50:55: 83:bb:37:13:07:55:bf:09:2e:2a:db:30:98:8a:ee:c2:08:0e: 2d:e0:95:68:91:75:3f:54:a1:12:cd:53:d7:5b:de:51:b7:9f: de:e6:0b:be -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjU5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE4YS1mZTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs65/6HrWU6DiTg73ZQ2cop8uOwtzloBgKnHPt9pOyBaCZGlVxz3OrvqL+wC6 7fTS5T8EuRn7mU6zCTXZb7YLLN9vGeiins+p+G4h+Dfl0wm8P8fWb7ImcQJm87vg 8VyBuxU40qWI8THa4jQPQsB4os894Tz5+nVSK7cIInvpWtQT7FoG1Hx1P+EOpiSI kCq0Vb1vatNO8dxdvGzSroX5a5oIjVqtH/RyMqQMuQB8+HOvzqnvsGke2Ks8LeZy b0KmHLI6SvLhMMOPy/65CIvBaPAED07eqltg5R3Oq1MNYdAzKqp4eRodphd3eIy7 y7Aoj7zfbhs6QXL3EumyJkHUkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPnJvlP4 YUoZ+5J5xc/E/VwMxX2GMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNEQ4MkVFQThG OEY0MTFFQUI4ODUzODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnltYwDQYJKoZIhvcNAQELBQADggEBAJZUPI0JWXNwH1YK 9q6a81A78KkEX+ThQ4OaKHJlRWlu9OHivhh9vz40CIzFzHDU1PavhWWNnAqa9WLA puq0ua29VuYkRv8SS5mhCXZ0AcmDh+MotNRL4Vag6sNHubnXzdunSeg4m/2zinr0 h5nidqnpgCLAvhmz2ihhon1nCel+m/6zcSTaq6poZims9D27iaoWda9LxWf4vXVx y/VAavSwBPh0JQpZEjITdXIzZpivvebJiMvqIrxux7KVrrNZSoouPt/r+Vcfghnf 3sKFEmY3JJqc6gdQVYO7NxMHVb8JLirbMJiK7sIIDi3glWiRdT9UoRLNU9db3lG3 n97mC74= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org