$ rpki-client -vvf rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/800EC4AE756F11EAAA2E0F6CC4F9AE02.roa File: 800EC4AE756F11EAAA2E0F6CC4F9AE02.roa (raw, json) Hash identifier: iFLleCrx5lJW9+fJUCH6MH2zTLB5N+94fs57s6ev9K4= Subject key identifier: C5:DA:85:64:93:EB:75:20:92:F2:89:4B:49:80:F5:C4:CC:91:98:E0 Certificate issuer: /CN=A91B00B6/serialNumber=44EAB8CF1C9BD6DA2DB5E342B41C747EE3A4505F Certificate serial: 093B Authority key identifier: 44:EA:B8:CF:1C:9B:D6:DA:2D:B5:E3:42:B4:1C:74:7E:E3:A4:50:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/800EC4AE756F11EAAA2E0F6CC4F9AE02.roa Signing time: Fri 26 Apr 2024 21:10:34 +0000 ROA not before: Fri 26 Apr 2024 21:10:34 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 140541 IP address blocks: 103.150.26.0/23 maxlen: 23 103.150.26.0/24 maxlen: 24 103.150.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.crl rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 21:14:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2363 (0x93b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B00B6/serialNumber=44EAB8CF1C9BD6DA2DB5E342B41C747EE3A4505F Validity Not Before: Apr 26 21:10:34 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662c184a-13fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:47:b4:ad:78:66:c8:01:ae:2d:61:2c:3e:97: 01:50:64:47:f0:4b:52:19:f3:31:46:c6:67:92:ee: fe:07:17:fb:60:24:5f:81:b2:80:ed:cf:48:2f:26: 6a:47:69:11:35:83:3f:b4:de:60:70:1e:f5:ae:81: 01:fc:d3:f8:fd:81:15:62:24:dd:61:aa:97:8e:90: 3e:45:33:d1:b3:23:19:60:e6:e2:1d:aa:c9:ac:4a: 09:ed:96:26:29:fa:10:34:6a:7a:e7:50:27:f7:4a: c6:ac:e6:1b:b5:71:bc:6f:fa:41:63:94:0e:63:1c: 88:c8:91:d8:2d:b5:93:02:cf:de:ba:7e:35:ec:e5: 35:e9:54:38:66:85:8a:e8:00:89:8d:72:7d:c6:a6: 2f:e7:9c:d8:8b:37:e9:db:e6:f4:47:4d:15:18:c6: 1a:7f:18:43:41:6b:ef:ec:e2:d6:bb:40:45:fa:46: 4f:cd:d9:18:24:24:8f:78:b6:1c:64:d4:9a:fb:41: 48:98:e6:9a:37:f0:fe:7b:76:60:c3:46:1f:b0:69: c9:43:f4:10:eb:20:dd:4a:2d:a3:ec:c3:a8:21:d5: a7:a0:35:d0:08:f1:c1:12:7d:51:a8:49:e0:56:86: d0:02:0a:62:22:f4:c0:e0:41:b8:49:1b:e6:d6:c0: 15:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:DA:85:64:93:EB:75:20:92:F2:89:4B:49:80:F5:C4:CC:91:98:E0 X509v3 Authority Key Identifier: keyid:44:EA:B8:CF:1C:9B:D6:DA:2D:B5:E3:42:B4:1C:74:7E:E3:A4:50:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/800EC4AE756F11EAAA2E0F6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.26.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:2a:d6:51:06:c6:d0:85:ed:b0:15:35:6e:32:d9:97:fd:82: bf:6c:9e:4e:2a:3d:76:19:7e:f7:c6:d0:f3:b4:87:16:0d:dd: f0:6c:d5:33:1c:2f:de:9b:7d:ba:d7:d0:68:2d:95:a9:bf:ee: 74:87:df:e3:7f:4a:f1:86:c7:b4:99:f3:90:26:48:24:b5:03: ac:a4:11:80:3a:04:fb:9b:7e:e9:2f:c3:e6:73:e4:56:eb:2e: f9:a2:4f:9c:23:2d:26:9c:2e:92:74:45:c1:31:c2:29:1d:45: ef:6a:fe:d8:06:4e:52:8a:0b:aa:3b:8b:9a:3e:06:eb:bb:58: 13:07:73:cd:79:2c:14:f9:39:ea:6b:ea:7d:41:3a:96:bd:ab: cd:47:40:7e:8a:d0:ef:4f:dd:22:4d:75:d7:a4:8e:b5:b3:15: 5f:9a:50:4f:6a:7a:8e:92:f2:3d:6a:a4:95:2e:a2:6a:09:80: f9:bd:fc:51:21:82:6a:b3:ad:fe:ea:33:f0:38:a3:e1:c1:6c: 7a:4b:3a:e8:d9:5d:ff:15:d4:e1:e8:87:c3:52:0c:23:6c:c1: f1:78:3b:4c:5a:7b:94:d3:9d:2c:b8:4b:34:0c:ec:93:76:6f: 88:01:36:2b:a6:3f:b2:02:41:83:fe:3c:06:13:dd:ce:cd:89: 7e:3b:af:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAwQjYxMTAvBgNVBAUTKDQ0RUFCOENGMUM5QkQ2REEyREI1RTM0MkI0MUM3NDdF RTNBNDUwNUYwHhcNMjQwNDI2MjExMDM0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJjMTg0YS0xM2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ee0rXhmyAGuLWEsPpcBUGRH8EtSGfMxRsZnku7+Bxf7YCRfgbKA7c9ILyZq R2kRNYM/tN5gcB71roEB/NP4/YEVYiTdYaqXjpA+RTPRsyMZYObiHarJrEoJ7ZYm KfoQNGp651An90rGrOYbtXG8b/pBY5QOYxyIyJHYLbWTAs/eun417OU16VQ4ZoWK 6ACJjXJ9xqYv55zYizfp2+b0R00VGMYafxhDQWvv7OLWu0BF+kZPzdkYJCSPeLYc ZNSa+0FImOaaN/D+e3Zgw0YfsGnJQ/QQ6yDdSi2j7MOoIdWnoDXQCPHBEn1RqEng VobQAgpiIvTA4EG4SRvm1sAVswIDAQABo4IClTCCApEwHQYDVR0OBBYEFMXahWST 63UgkvKJS0mA9cTMkZjgMB8GA1UdIwQYMBaAFETquM8cm9baLbXjQrQcdH7jpFBf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDBCNi85RjlBRjdBODc1 NkUxMUVBOTkxNDIzNkJDNEY5QUUwMi9ST3E0enh5YjF0b3R0ZU5DdEJ4MGZ1T2tV RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JPcTR6eHliMXRvdHRlTkN0QngwZnVPa1VGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAwQjYvOUY5QUY3QTg3NTZFMTFFQTk5MTQyMzZCQzRGOUFFMDIvODAwRUM0QUU3 NTZGMTFFQUFBMkUwRjZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlhowDQYJKoZIhvcNAQELBQADggEBAA4q1lEGxtCF7bAV NW4y2Zf9gr9snk4qPXYZfvfG0PO0hxYN3fBs1TMcL96bfbrX0Ggtlam/7nSH3+N/ SvGGx7SZ85AmSCS1A6ykEYA6BPubfukvw+Zz5FbrLvmiT5wjLSacLpJ0RcExwikd Re9q/tgGTlKKC6o7i5o+Buu7WBMHc815LBT5Oepr6n1BOpa9q81HQH6K0O9P3SJN ddekjrWzFV+aUE9qeo6S8j1qpJUuomoJgPm9/FEhgmqzrf7qM/A4o+HBbHpLOujZ Xf8V1OHoh8NSDCNswfF4O0xae5TTnSy4SzQM7JN2b4gBNiumP7ICQYP+PAYT3c7N iX47ryg= -----END CERTIFICATE-----Generated at Fri May 24 23:25:43 2024 by rpki-client on console-fra.rpki-client.org