$ rpki-client -vvf rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/D9C66AFC845A11EA928C8E1EC4F9AE02.roa File: D9C66AFC845A11EA928C8E1EC4F9AE02.roa (raw, json) Hash identifier: 2Ib0mEmNtyH0pmvyTsRaRkZ6O4iEaD9wNty9zBe61NU= Subject key identifier: CA:69:1E:7F:CD:7D:7B:D6:AB:AF:74:17:18:5D:D6:46:80:A2:B1:EB Certificate issuer: /CN=A91841D2/serialNumber=7EE71AD847E9D56810CD49E27785C6385CCCF96B Certificate serial: 0863 Authority key identifier: 7E:E7:1A:D8:47:E9:D5:68:10:CD:49:E2:77:85:C6:38:5C:CC:F9:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuca2Efp1WgQzUnid4XGOFzM-Ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/D9C66AFC845A11EA928C8E1EC4F9AE02.roa Signing time: Thu 22 Jun 2023 21:52:22 +0000 ROA not before: Thu 22 Jun 2023 21:52:22 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 138538 IP address blocks: 103.150.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/fuca2Efp1WgQzUnid4XGOFzM-Ws.crl rsync://rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/fuca2Efp1WgQzUnid4XGOFzM-Ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuca2Efp1WgQzUnid4XGOFzM-Ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2147 (0x863) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91841D2/serialNumber=7EE71AD847E9D56810CD49E27785C6385CCCF96B Validity Not Before: Jun 22 21:52:22 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6494c296-dbad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:08:f3:99:ef:74:ad:19:a4:62:49:65:7d:d0: 4b:d0:f7:07:55:55:2d:38:f2:e2:9d:51:8d:84:c1: 8d:28:d3:f5:4f:49:3d:6c:c9:6e:55:27:ce:0d:6d: fd:f8:17:e2:5e:10:14:48:e0:50:6d:a7:df:cd:a2: 7c:2d:32:49:c4:90:d8:95:60:2f:4f:56:31:e2:3a: 5a:cb:e1:8d:ea:26:87:09:34:2d:76:8d:ad:98:ef: 03:1d:2f:db:9b:da:4e:0e:78:36:34:7d:09:45:ca: f7:55:c2:f2:b0:67:54:fd:74:59:7a:fb:0a:60:da: 97:6e:72:1b:2a:09:5a:03:57:2b:8f:7f:b0:f3:56: db:68:6b:1d:fd:c7:95:ee:36:dd:42:fd:96:3b:36: bb:2b:29:09:59:ea:e0:32:da:3c:0c:20:64:aa:45: 3b:ae:41:43:46:a2:1d:20:58:30:82:1c:eb:e6:a2: fe:84:0b:a1:1e:19:45:93:52:07:d0:15:b2:64:5b: d7:4a:74:54:69:ec:99:49:d6:c7:a9:d6:ca:70:96: d8:42:d0:a5:63:79:66:21:6d:11:ba:f7:12:95:a5: d1:24:28:f8:50:7c:75:30:5e:b3:95:03:f6:0b:fc: e9:0d:d3:47:fe:34:6f:44:09:46:27:e5:d3:d2:88: 3b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:69:1E:7F:CD:7D:7B:D6:AB:AF:74:17:18:5D:D6:46:80:A2:B1:EB X509v3 Authority Key Identifier: keyid:7E:E7:1A:D8:47:E9:D5:68:10:CD:49:E2:77:85:C6:38:5C:CC:F9:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/fuca2Efp1WgQzUnid4XGOFzM-Ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuca2Efp1WgQzUnid4XGOFzM-Ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/D9C66AFC845A11EA928C8E1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.181.0/24 Signature Algorithm: sha256WithRSAEncryption b7:81:71:41:99:88:0d:c0:3c:8c:ff:0c:ad:d9:1b:96:97:f2: 7e:20:8e:55:eb:4d:1e:fc:4b:b2:92:a3:52:45:77:6a:1a:79: 62:06:5a:ae:36:66:e3:cb:c9:c5:4b:85:09:04:8f:62:67:26: a9:87:e0:62:56:b8:10:06:58:33:0e:26:47:ae:46:20:b3:ec: 75:ca:be:78:fc:d7:78:02:bf:5b:53:75:82:51:84:e4:1d:6e: 35:4d:31:f9:1a:99:f3:da:a0:13:78:e4:49:81:45:ea:72:84: 02:6a:f0:5a:91:77:1c:67:4a:00:76:ad:63:bb:32:1e:9a:5c: ba:d4:ff:e0:56:d3:b6:a6:bd:05:8b:26:ff:45:f9:c0:49:fb: 1c:ca:9b:9e:a7:56:c6:ed:1d:17:39:b6:77:e7:d9:0c:93:25: fd:8d:a6:47:f9:6c:23:4c:92:31:fc:7d:8f:8b:a9:68:e6:6c: 16:90:4f:4c:e4:a3:bd:14:38:5e:cb:3c:94:8d:8c:39:67:0b: 58:38:e5:72:b2:78:3f:5b:ba:70:0a:2a:72:3e:b8:0e:d5:9e: bb:b2:ea:16:2c:62:33:29:f5:93:d5:c0:58:c6:af:f2:c0:38: 2d:33:84:fb:c7:5e:c7:fc:24:1e:80:6b:86:00:a1:58:51:ab: 2e:12:8a:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQxRDIxMTAvBgNVBAUTKDdFRTcxQUQ4NDdFOUQ1NjgxMENENDlFMjc3ODVDNjM4 NUNDQ0Y5NkIwHhcNMjMwNjIyMjE1MjIyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk0YzI5Ni1kYmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Qjzme90rRmkYkllfdBL0PcHVVUtOPLinVGNhMGNKNP1T0k9bMluVSfODW39 +BfiXhAUSOBQbaffzaJ8LTJJxJDYlWAvT1Yx4jpay+GN6iaHCTQtdo2tmO8DHS/b m9pODng2NH0JRcr3VcLysGdU/XRZevsKYNqXbnIbKglaA1crj3+w81bbaGsd/ceV 7jbdQv2WOza7KykJWergMto8DCBkqkU7rkFDRqIdIFgwghzr5qL+hAuhHhlFk1IH 0BWyZFvXSnRUaeyZSdbHqdbKcJbYQtClY3lmIW0RuvcSlaXRJCj4UHx1MF6zlQP2 C/zpDdNH/jRvRAlGJ+XT0og7KQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMppHn/N fXvWq690Fxhd1kaAorHrMB8GA1UdIwQYMBaAFH7nGthH6dVoEM1J4neFxjhczPlr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDFEMi9GNzIyM0ZCNDg0 NTQxMUVBOEQ2RTM1MEVDNEY5QUUwMi9mdWNhMkVmcDFXZ1F6VW5pZDRYR09Gek0t V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z1Y2EyRWZwMVdnUXpVbmlkNFhHT0Z6TS1Xcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQxRDIvRjcyMjNGQjQ4NDU0MTFFQThENkUzNTBFQzRGOUFFMDIvRDlDNjZBRkM4 NDVBMTFFQTkyOEM4RTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlrUwDQYJKoZIhvcNAQELBQADggEBALeBcUGZiA3APIz/ DK3ZG5aX8n4gjlXrTR78S7KSo1JFd2oaeWIGWq42ZuPLycVLhQkEj2JnJqmH4GJW uBAGWDMOJkeuRiCz7HXKvnj813gCv1tTdYJRhOQdbjVNMfkamfPaoBN45EmBRepy hAJq8FqRdxxnSgB2rWO7Mh6aXLrU/+BW07amvQWLJv9F+cBJ+xzKm56nVsbtHRc5 tnfn2QyTJf2Npkf5bCNMkjH8fY+LqWjmbBaQT0zko70UOF7LPJSNjDlnC1g45XKy eD9bunAKKnI+uA7Vnruy6hYsYjMp9ZPVwFjGr/LAOC0zhPvHXsf8JB6Aa4YAoVhR qy4SitE= -----END CERTIFICATE-----Generated at Sat May 18 22:27:56 2024 by rpki-client on console-ams.rpki-client.org