$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/5A3B7CECDDBC11EC8378E737C4F9AE02.roa File: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (raw, json) Hash identifier: +hSvjMhozV6jQZDqNkt9a1+7X0UawZcr6mRFLa7AaGc= Subject key identifier: 76:DD:A0:D1:03:60:A6:6B:B6:E4:11:C7:2F:5B:68:F3:C4:F5:A8:A4 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0962 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/5A3B7CECDDBC11EC8378E737C4F9AE02.roa Signing time: Fri 16 Aug 2024 20:48:23 +0000 ROA not before: Fri 16 Aug 2024 20:48:23 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139009 IP address blocks: 103.150.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2402 (0x962) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Aug 16 20:48:23 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66bfbb17-0907 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:01:6d:3f:ae:c3:63:47:b5:cb:c3:1e:8d:21: 82:50:24:69:1f:9a:0c:11:27:d7:a8:85:5e:10:aa: c6:fc:cf:46:f2:ac:58:fe:46:8b:7b:61:cd:24:8b: 5b:c9:d3:16:0f:f9:7e:dd:27:f0:3e:3c:c2:e1:81: 2e:10:d3:f3:18:4c:4b:eb:fd:e7:41:69:7c:ef:01: e7:f1:ab:ba:77:08:9d:49:2d:dc:26:ec:36:35:f5: f9:8c:55:6d:be:f3:46:23:69:5a:4f:00:af:0e:79: 5c:34:09:84:1c:20:03:7d:92:68:66:dc:52:66:ee: 68:f3:9c:91:16:e5:fe:79:39:1d:88:12:a3:08:4b: 35:86:0a:e8:6c:8f:24:4e:87:c9:4b:cf:98:33:9b: 30:91:ea:88:97:5a:8b:23:dd:4e:8e:2c:61:2a:8d: c0:8b:fa:a6:16:1f:38:67:fa:bc:37:8f:05:00:be: 88:5c:f5:6f:eb:a1:90:e2:9b:50:ad:f1:e4:ce:50: 25:66:ae:82:76:d3:36:b2:c2:f0:0d:78:40:46:c2: 4b:bf:f7:38:72:0c:b2:c1:19:15:05:05:49:0d:3b: 7e:0f:a6:d1:bd:9a:30:f4:ba:13:ba:0c:2c:50:4b: 54:38:b9:0f:c4:f4:ae:52:ba:40:5a:7d:ad:62:68: 01:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:DD:A0:D1:03:60:A6:6B:B6:E4:11:C7:2F:5B:68:F3:C4:F5:A8:A4 X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/5A3B7CECDDBC11EC8378E737C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.64.0/24 Signature Algorithm: sha256WithRSAEncryption 05:d5:68:1c:dc:8a:c8:df:ac:0a:06:3f:28:83:d8:c6:41:c9: a1:10:37:23:fe:5a:97:9f:49:14:98:81:1b:a2:f5:f7:ae:bd: 41:cd:e6:c1:0f:68:a1:87:30:e5:ae:10:fc:8f:04:06:02:ce: 6a:0b:5f:b7:de:78:d4:da:c8:55:46:66:d2:4d:ca:37:8e:84: 02:8d:66:23:cb:09:e2:cc:6a:a8:c0:ad:b4:38:26:17:64:b9: 2b:4d:d2:9f:83:a5:85:27:7e:56:71:26:10:c3:00:21:cb:fe: 9b:e2:fc:1e:f3:ad:72:b1:1d:76:82:13:a5:d1:82:c3:a7:49: 31:4a:69:4c:03:0e:29:2f:33:42:8e:3b:d4:93:a2:5a:9b:b5: 51:d2:17:72:87:11:eb:bf:98:ec:28:f7:40:ff:fb:48:b1:82: 4f:22:e3:4a:50:c4:9c:cc:37:29:49:eb:d7:27:02:fc:e6:3b: 80:9a:56:1e:15:49:17:14:c8:9d:e2:d1:69:3c:24:06:88:8c: d0:46:8d:1b:ec:af:20:ab:3f:f6:fe:c0:58:9d:e4:90:3a:57: 02:11:dc:3a:52:00:1d:0d:2b:00:1b:5d:c2:cc:23:b8:fe:b8: 4e:68:58:98:a3:43:49:3a:71:5b:29:76:0c:3b:5c:87:89:43: 79:09:15:b6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjQwODE2MjA0ODIzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmYmIxNy0wOTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQFtP67DY0e1y8MejSGCUCRpH5oMESfXqIVeEKrG/M9G8qxY/kaLe2HNJItb ydMWD/l+3SfwPjzC4YEuENPzGExL6/3nQWl87wHn8au6dwidSS3cJuw2NfX5jFVt vvNGI2laTwCvDnlcNAmEHCADfZJoZtxSZu5o85yRFuX+eTkdiBKjCEs1hgrobI8k TofJS8+YM5swkeqIl1qLI91OjixhKo3Ai/qmFh84Z/q8N48FAL6IXPVv66GQ4ptQ rfHkzlAlZq6CdtM2ssLwDXhARsJLv/c4cgyywRkVBQVJDTt+D6bRvZow9LoTugws UEtUOLkPxPSuUrpAWn2tYmgBeQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHbdoNED YKZrtuQRxy9baPPE9aikMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVCQ0QvNjFEMEM0ODY3QTNBMTFFQUJGOEI1ODI2QzRGOUFFMDIvNUEzQjdDRUNE REJDMTFFQzgzNzhFNzM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlkAwDQYJKoZIhvcNAQELBQADggEBAAXVaBzcisjfrAoG PyiD2MZByaEQNyP+WpefSRSYgRui9feuvUHN5sEPaKGHMOWuEPyPBAYCzmoLX7fe eNTayFVGZtJNyjeOhAKNZiPLCeLMaqjArbQ4JhdkuStN0p+DpYUnflZxJhDDACHL /pvi/B7zrXKxHXaCE6XRgsOnSTFKaUwDDikvM0KOO9STolqbtVHSF3KHEeu/mOwo 90D/+0ixgk8i40pQxJzMNylJ69cnAvzmO4CaVh4VSRcUyJ3i0Wk8JAaIjNBGjRvs ryCrP/b+wFid5JA6VwIR3DpSAB0NKwAbXcLMI7j+uE5oWJijQ0k6cVspdgw7XIeJ Q3kJFbY= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:56 2024 by rpki-client on console-ams.rpki-client.org