$ rpki-client -vvf rpki.apnic.net/member_repository/A91C19F7/61D9F5B285FF11EABFC7150CC4F9AE02/C09BAC8E860011EABD37250EC4F9AE02.roa File: C09BAC8E860011EABD37250EC4F9AE02.roa (raw, json) Hash identifier: wKAZcGRGEy+RObbcO5ZWl7h8CxYYkH191pRlBIsrfoQ= Subject key identifier: C0:EC:8E:1F:FC:1E:7F:87:60:2F:14:7A:C0:F3:DE:7C:A9:41:2A:0C Certificate issuer: /CN=A91C19F7/serialNumber=4F2161B00FC2B36DE0A8244F0AF281427902860E Certificate serial: 082E Authority key identifier: 4F:21:61:B0:0F:C2:B3:6D:E0:A8:24:4F:0A:F2:81:42:79:02:86:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TyFhsA_Cs23gqCRPCvKBQnkChg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C19F7/61D9F5B285FF11EABFC7150CC4F9AE02/C09BAC8E860011EABD37250EC4F9AE02.roa Signing time: Tue 02 May 2023 22:39:32 +0000 ROA not before: Tue 02 May 2023 22:39:32 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 140570 IP address blocks: 103.150.118.0/23 maxlen: 24 2001:df3:7580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C19F7/61D9F5B285FF11EABFC7150CC4F9AE02/TyFhsA_Cs23gqCRPCvKBQnkChg4.crl rsync://rpki.apnic.net/member_repository/A91C19F7/61D9F5B285FF11EABFC7150CC4F9AE02/TyFhsA_Cs23gqCRPCvKBQnkChg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TyFhsA_Cs23gqCRPCvKBQnkChg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2094 (0x82e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C19F7/serialNumber=4F2161B00FC2B36DE0A8244F0AF281427902860E Validity Not Before: May 2 22:39:32 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64519123-e3b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ef:70:f8:e2:c1:7f:82:31:fa:66:85:72:3e: e3:68:9d:b7:f9:9c:41:11:82:bc:7a:a5:44:bf:8a: 33:12:40:1f:18:56:8f:0a:1c:04:06:ba:95:cd:6d: e0:b9:ec:c2:ed:85:0c:12:b8:8b:1b:4e:a8:23:dc: 1b:49:0a:38:3d:ed:e4:59:61:96:c2:61:fe:16:69: 37:d4:aa:7e:5d:a6:e9:00:92:35:ec:96:b1:c0:bc: 17:2e:f1:84:1f:6b:66:09:13:5b:fe:16:aa:9f:e5: 71:df:35:65:64:e5:56:a9:86:14:44:e9:86:84:91: 33:4d:97:87:fe:d5:f6:b0:a4:0a:a4:f2:5c:61:b2: 7e:4c:f0:56:10:3c:75:d8:ad:14:50:c8:43:ba:1a: 05:7b:0b:90:eb:63:a4:5a:01:a3:e4:2a:11:f5:2b: ab:29:71:fb:c6:b4:6a:c5:9e:de:f6:e2:7c:a8:13: 1b:35:d5:41:77:69:ec:01:3e:f0:85:68:74:9a:99: 6c:27:0c:b6:24:40:83:60:29:65:ce:65:05:ee:53: fd:0e:6e:46:1d:07:53:a0:56:c8:ea:ab:ac:af:36: 39:4c:0a:68:2e:42:96:ce:d0:ee:df:3b:7a:da:5e: 2a:db:c9:24:d2:e2:6f:98:78:b8:82:54:e4:fa:b2: 5e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:EC:8E:1F:FC:1E:7F:87:60:2F:14:7A:C0:F3:DE:7C:A9:41:2A:0C X509v3 Authority Key Identifier: keyid:4F:21:61:B0:0F:C2:B3:6D:E0:A8:24:4F:0A:F2:81:42:79:02:86:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C19F7/61D9F5B285FF11EABFC7150CC4F9AE02/TyFhsA_Cs23gqCRPCvKBQnkChg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TyFhsA_Cs23gqCRPCvKBQnkChg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C19F7/61D9F5B285FF11EABFC7150CC4F9AE02/C09BAC8E860011EABD37250EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.118.0/23 IPv6: 2001:df3:7580::/48 Signature Algorithm: sha256WithRSAEncryption 21:f8:dd:f9:86:64:ff:f9:c3:04:ee:33:49:17:e7:31:d9:0a: ba:80:1b:0a:2b:56:1f:9d:0a:59:5c:1b:7c:8e:07:ab:32:24: e8:1b:74:80:2b:53:48:11:6e:b2:66:04:76:a5:7a:94:ba:6d: 98:dc:85:9d:02:fa:b1:cd:fb:45:62:5f:2f:af:47:e8:27:8d: b2:d5:5c:69:86:78:73:61:bf:31:7e:a2:6f:48:07:9a:8f:4c: 84:5c:98:c8:5f:32:b9:02:d1:39:7d:ef:2d:d3:23:d6:fc:de: 11:ad:85:32:4c:f5:aa:f4:f3:63:cb:31:5d:15:1f:f8:7d:35: 9b:28:24:5a:d8:05:e6:52:93:ef:4e:68:31:52:37:4b:7f:bc: 21:30:b1:d7:22:a4:8c:91:91:96:23:5d:cc:8a:64:15:17:e0: 21:1b:b7:2d:25:05:1e:8d:2a:64:c9:75:08:ce:d3:61:62:d3: 8f:bc:65:65:b6:ff:82:52:4e:61:46:d5:a3:72:ef:dc:f0:4b: 5e:20:a9:da:87:c0:71:dc:f7:c8:a1:ac:4d:4e:bd:bb:3c:09: 02:75:92:05:2e:6f:54:27:6f:7e:74:dc:29:0b:e8:09:7d:54: 3c:de:cb:31:22:e2:eb:2e:e0:23:4e:03:2c:41:71:7a:27:bd: 90:15:67:0b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE5RjcxMTAvBgNVBAUTKDRGMjE2MUIwMEZDMkIzNkRFMEE4MjQ0RjBBRjI4MTQy NzkwMjg2MEUwHhcNMjMwNTAyMjIzOTMyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDUxOTEyMy1lM2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsu9w+OLBf4Ix+maFcj7jaJ23+ZxBEYK8eqVEv4ozEkAfGFaPChwEBrqVzW3g uezC7YUMEriLG06oI9wbSQo4Pe3kWWGWwmH+Fmk31Kp+XabpAJI17JaxwLwXLvGE H2tmCRNb/haqn+Vx3zVlZOVWqYYUROmGhJEzTZeH/tX2sKQKpPJcYbJ+TPBWEDx1 2K0UUMhDuhoFewuQ62OkWgGj5CoR9SurKXH7xrRqxZ7e9uJ8qBMbNdVBd2nsAT7w hWh0mplsJwy2JECDYCllzmUF7lP9Dm5GHQdToFbI6qusrzY5TApoLkKWztDu3zt6 2l4q28kk0uJvmHi4glTk+rJe0wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMDsjh/8 Hn+HYC8UesDz3nypQSoMMB8GA1UdIwQYMBaAFE8hYbAPwrNt4KgkTwrygUJ5AoYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTlGNy82MUQ5RjVCMjg1 RkYxMUVBQkZDNzE1MENDNEY5QUUwMi9UeUZoc0FfQ3MyM2dxQ1JQQ3ZLQlFua0No ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R5RmhzQV9DczIzZ3FDUlBDdktCUW5rQ2hnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzE5RjcvNjFEOUY1QjI4NUZGMTFFQUJGQzcxNTBDQzRGOUFFMDIvQzA5QkFDOEU4 NjAwMTFFQUJEMzcyNTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlnYwDwQCAAIwCQMHACABDfN1gDANBgkqhkiG9w0BAQsF AAOCAQEAIfjd+YZk//nDBO4zSRfnMdkKuoAbCitWH50KWVwbfI4HqzIk6Bt0gCtT SBFusmYEdqV6lLptmNyFnQL6sc37RWJfL69H6CeNstVcaYZ4c2G/MX6ib0gHmo9M hFyYyF8yuQLROX3vLdMj1vzeEa2FMkz1qvTzY8sxXRUf+H01mygkWtgF5lKT705o MVI3S3+8ITCx1yKkjJGRliNdzIpkFRfgIRu3LSUFHo0qZMl1CM7TYWLTj7xlZbb/ glJOYUbVo3Lv3PBLXiCp2ofAcdz3yKGsTU69uzwJAnWSBS5vVCdvfnTcKQvoCX1U PN7LMSLi6y7gI04DLEFxeie9kBVnCw== -----END CERTIFICATE-----Generated at Wed Apr 24 22:30:04 2024 by rpki-client on console-fra.rpki-client.org