$ rpki-client -vvf rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7ABD27E4889811EEB99AD46DC4F9AE02.roa File: 7ABD27E4889811EEB99AD46DC4F9AE02.roa (raw, json) Hash identifier: 5fkVp+IdKN1uTcIv4zREz2o3t33bYQj59xiklZh4RiY= Subject key identifier: DF:84:68:BD:12:14:FA:55:A9:CE:22:3D:F2:44:83:05:F4:6E:0B:EA Certificate issuer: /CN=A918A3E6/serialNumber=ED8CBC54CD86F2C1F92DEC6BC909DBC6FA634C81 Certificate serial: 06C1 Authority key identifier: ED:8C:BC:54:CD:86:F2:C1:F9:2D:EC:6B:C9:09:DB:C6:FA:63:4C:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Yy8VM2G8sH5LexryQnbxvpjTIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7ABD27E4889811EEB99AD46DC4F9AE02.roa Signing time: Tue 21 Nov 2023 18:04:57 +0000 ROA not before: Tue 21 Nov 2023 18:04:57 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 141166 IP address blocks: 103.155.150.0/23 maxlen: 23 103.155.150.0/24 maxlen: 24 2001:df4:ce80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.crl rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Yy8VM2G8sH5LexryQnbxvpjTIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1729 (0x6c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A3E6/serialNumber=ED8CBC54CD86F2C1F92DEC6BC909DBC6FA634C81 Validity Not Before: Nov 21 18:04:57 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=655cf149-a7aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:63:10:30:76:b9:69:2f:69:19:7e:69:61:a9: 04:43:30:c9:b5:e3:e6:12:cc:52:2c:1a:23:3e:ca: c6:0a:79:4a:d1:e2:17:68:c7:e5:90:c2:d2:33:4f: 9b:b7:be:f2:61:05:1f:08:b1:e2:62:fb:48:74:2c: 0e:a9:9e:44:b6:1a:72:48:2e:62:b8:c1:71:62:3b: 6c:89:e9:e1:03:38:d7:d1:8e:7e:91:ac:83:54:af: 7b:df:22:f9:e9:15:b9:a4:86:2b:a3:55:e9:24:64: 71:82:b3:dc:a7:db:a2:b9:4e:ab:03:f2:c0:2e:58: c8:42:0a:a1:f0:6a:a8:b7:33:05:f4:3e:b1:c8:73: 98:a2:3a:fe:27:51:aa:4b:a2:cd:64:e8:b7:5c:a8: 3c:95:e1:14:fa:f2:78:ec:95:4b:e7:06:3e:77:fd: 65:fd:66:e5:75:f0:39:0e:eb:6d:64:19:16:07:16: ea:bb:77:c9:2a:7c:f0:5e:1a:42:41:43:3b:80:af: 34:4c:a9:ee:27:42:6c:5c:74:46:f5:4d:9f:2a:b7: c1:8c:77:ae:eb:f7:f0:94:4c:c9:ee:b2:3b:99:04: 87:58:c6:ca:04:bb:12:db:88:62:9b:81:18:10:95: 8b:15:6a:01:21:35:7d:54:fc:5d:74:2a:98:8c:d2: 20:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:84:68:BD:12:14:FA:55:A9:CE:22:3D:F2:44:83:05:F4:6E:0B:EA X509v3 Authority Key Identifier: keyid:ED:8C:BC:54:CD:86:F2:C1:F9:2D:EC:6B:C9:09:DB:C6:FA:63:4C:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Yy8VM2G8sH5LexryQnbxvpjTIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7ABD27E4889811EEB99AD46DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.150.0/23 IPv6: 2001:df4:ce80::/48 Signature Algorithm: sha256WithRSAEncryption 91:c3:c9:e7:b5:e5:e5:8f:c4:c1:b6:6b:0d:51:b8:56:9b:66: 49:db:72:92:01:96:de:ae:e7:c3:7d:10:19:ea:41:ab:af:72: 5f:4d:f2:14:dc:ce:68:e6:80:d3:b1:25:9f:47:46:77:3b:0d: be:08:76:34:a3:2c:e2:90:cf:25:73:2d:1f:c9:ff:4d:5c:59: e5:a7:18:f4:3e:25:30:29:4f:17:0c:ca:12:a4:f2:3e:ed:6d: e6:3f:6c:b0:16:ef:ab:5c:98:4f:79:57:e5:91:c8:9c:ca:be: 6b:cc:94:9f:31:61:de:9d:52:3f:84:e0:63:b3:7e:45:e7:fc: e2:d7:d6:8a:28:ce:19:c7:9c:1c:59:f1:ea:bb:70:80:b4:5f: d9:ba:6c:63:32:54:b2:a2:db:a4:e5:05:05:25:31:b4:59:ef: 20:94:8e:d6:de:c4:3d:00:a0:b2:b4:33:33:5e:24:de:09:14: 1f:50:22:b5:a6:2c:66:e4:7c:0d:7a:2a:c9:de:db:85:bd:e8: 35:23:36:94:fc:0e:cf:51:fa:52:aa:cd:70:ae:c2:86:f8:b4: 01:28:80:fa:c9:99:41:34:08:11:18:92:f0:c2:dc:f5:ea:a6: fc:18:d9:8e:06:d9:7c:b8:40:b0:fc:f2:25:1a:e8:1e:65:c2: 36:25:23:79 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEzRTYxMTAvBgNVBAUTKEVEOENCQzU0Q0Q4NkYyQzFGOTJERUM2QkM5MDlEQkM2 RkE2MzRDODEwHhcNMjMxMTIxMTgwNDU3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVjZjE0OS1hN2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWMQMHa5aS9pGX5pYakEQzDJtePmEsxSLBojPsrGCnlK0eIXaMflkMLSM0+b t77yYQUfCLHiYvtIdCwOqZ5EthpySC5iuMFxYjtsienhAzjX0Y5+kayDVK973yL5 6RW5pIYro1XpJGRxgrPcp9uiuU6rA/LALljIQgqh8GqotzMF9D6xyHOYojr+J1Gq S6LNZOi3XKg8leEU+vJ47JVL5wY+d/1l/WbldfA5DuttZBkWBxbqu3fJKnzwXhpC QUM7gK80TKnuJ0JsXHRG9U2fKrfBjHeu6/fwlEzJ7rI7mQSHWMbKBLsS24him4EY EJWLFWoBITV9VPxddCqYjNIgUQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFN+EaL0S FPpVqc4iPfJEgwX0bgvqMB8GA1UdIwQYMBaAFO2MvFTNhvLB+S3sa8kJ28b6Y0yB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTNFNi82NDBENjE4RUYy QzkxMUVBODZGMTI3MTdDNEY5QUUwMi83WXk4Vk0yRzhzSDVMZXhyeVFuYnh2cGpU SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdZeThWTTJHOHNINUxleHJ5UW5ieHZwalRJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEEzRTYvNjQwRDYxOEVGMkM5MTFFQTg2RjEyNzE3QzRGOUFFMDIvN0FCRDI3RTQ4 ODk4MTFFRUI5OUFENDZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnm5YwDwQCAAIwCQMHACABDfTOgDANBgkqhkiG9w0BAQsF AAOCAQEAkcPJ57Xl5Y/EwbZrDVG4VptmSdtykgGW3q7nw30QGepBq69yX03yFNzO aOaA07Eln0dGdzsNvgh2NKMs4pDPJXMtH8n/TVxZ5acY9D4lMClPFwzKEqTyPu1t 5j9ssBbvq1yYT3lX5ZHInMq+a8yUnzFh3p1SP4TgY7N+Ref84tfWiijOGcecHFnx 6rtwgLRf2bpsYzJUsqLbpOUFBSUxtFnvIJSO1t7EPQCgsrQzM14k3gkUH1AitaYs ZuR8DXoqyd7bhb3oNSM2lPwOz1H6UqrNcK7Chvi0ASiA+smZQTQIERiS8MLc9eqm /BjZjgbZfLhAsPzyJRroHmXCNiUjeQ== -----END CERTIFICATE-----Generated at Fri May 10 23:55:01 2024 by rpki-client on console-fra.rpki-client.org