$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/023564E6D5BE11ECA8BE4666C4F9AE02.roa File: 023564E6D5BE11ECA8BE4666C4F9AE02.roa (raw, json) Hash identifier: RqiSAS1pYvKkSlfgmdBozODQTeMX0fXdggDp0lhj8F4= Subject key identifier: 9B:72:A4:36:87:49:B8:D9:12:ED:41:50:90:65:83:38:68:B1:CA:5F Certificate issuer: /CN=A91C66B7/serialNumber=C343B3BB83A7E23FAD95AF8D232B52052A0FDE72 Certificate serial: 0843 Authority key identifier: C3:43:B3:BB:83:A7:E2:3F:AD:95:AF:8D:23:2B:52:05:2A:0F:DE:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w0Ozu4On4j-tla-NIytSBSoP3nI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/023564E6D5BE11ECA8BE4666C4F9AE02.roa Signing time: Wed 02 Aug 2023 20:58:23 +0000 ROA not before: Wed 02 Aug 2023 20:58:23 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 142300 IP address blocks: 103.150.208.0/24 maxlen: 24 103.150.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.crl rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w0Ozu4On4j-tla-NIytSBSoP3nI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 21:36:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2115 (0x843) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B7/serialNumber=C343B3BB83A7E23FAD95AF8D232B52052A0FDE72 Validity Not Before: Aug 2 20:58:23 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64cac36f-e92b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:28:d0:cc:81:85:70:0e:0a:dd:e4:35:38:db: 9c:37:b1:af:c8:99:d3:13:1b:96:6f:18:3c:41:98: 11:40:a2:43:76:a7:ca:0a:8b:d9:43:6e:af:c2:66: 58:be:bb:18:89:f5:19:4d:bd:20:93:87:74:1a:85: 5a:5b:a0:4c:87:82:30:16:6f:2d:92:3c:95:fa:7d: f4:9b:30:0b:bf:57:bf:ff:20:59:2c:42:68:f8:27: a5:31:05:2a:41:13:f9:59:d4:54:e3:13:f7:84:08: d6:e0:b4:9d:6a:44:db:c4:e6:91:8d:97:34:88:b2: 4a:4c:61:61:34:63:c1:d3:2e:26:ce:51:55:33:86: f0:70:aa:90:1e:71:c1:a3:1f:fc:a9:65:68:9f:2c: 1d:1c:2d:70:19:ee:ce:54:f7:d9:3c:2d:1e:d8:92: 89:36:52:71:14:8c:0c:72:97:ef:7d:81:42:60:fc: bb:21:58:51:5f:27:f4:0f:93:a7:43:74:89:c9:3a: f8:ff:64:02:08:cc:0b:17:fb:9d:8d:a1:64:66:77: 2b:69:2b:75:d6:9c:4d:a2:b2:5c:4b:bd:2e:a0:b8: af:eb:52:d1:18:51:71:62:6d:3d:9d:43:2e:8a:d8: b9:5e:56:1b:e8:cc:8e:76:6b:f5:aa:df:67:2e:3d: 9f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:72:A4:36:87:49:B8:D9:12:ED:41:50:90:65:83:38:68:B1:CA:5F X509v3 Authority Key Identifier: keyid:C3:43:B3:BB:83:A7:E2:3F:AD:95:AF:8D:23:2B:52:05:2A:0F:DE:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w0Ozu4On4j-tla-NIytSBSoP3nI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/023564E6D5BE11ECA8BE4666C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.208.0/23 Signature Algorithm: sha256WithRSAEncryption e0:cc:29:0b:23:df:6f:6a:3f:24:40:72:1b:cd:ba:59:f6:49: 9f:c9:4c:52:91:e0:0f:8f:dd:bc:38:43:35:b7:8f:b8:be:32: d7:12:63:ba:57:35:8c:8b:25:e5:27:73:2d:19:80:6d:a7:79: 33:08:59:ac:7c:c6:04:ee:7c:c0:ce:75:9c:e9:3c:89:7b:e9: 65:57:c6:02:f3:69:55:f4:49:02:ec:d6:53:ca:6c:9f:ff:f5: 27:e7:e3:6a:ab:f2:25:60:34:76:9e:0b:89:6c:09:1b:53:0a: 7c:07:f5:a8:e7:13:25:89:8a:72:d2:6e:d1:77:6b:19:4e:f2: fa:b9:e8:72:b1:88:d0:1f:a4:b9:9e:e8:fc:35:fe:7d:74:ad: f2:51:d5:86:7a:cc:52:3c:ab:3c:8d:f6:bf:e8:b0:17:07:72: 66:0b:29:d1:08:87:db:a3:d1:0f:3e:3b:27:b5:8e:99:44:eb: 70:0b:78:0a:e8:d2:30:79:e6:e4:f2:8c:42:3a:8c:87:69:c0: d1:aa:7b:80:0b:59:7f:36:b5:f6:50:94:37:dd:08:57:a3:56: 04:7f:13:c2:57:43:53:5e:8a:63:0e:be:f0:3a:23:fb:b3:63: 99:e0:43:cc:7d:a1:43:b0:3e:1a:f4:2c:04:5d:81:cf:31:77: a9:06:b1:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY2QjcxMTAvBgNVBAUTKEMzNDNCM0JCODNBN0UyM0ZBRDk1QUY4RDIzMkI1MjA1 MkEwRkRFNzIwHhcNMjMwODAyMjA1ODIzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhYzM2Zi1lOTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoijQzIGFcA4K3eQ1ONucN7GvyJnTExuWbxg8QZgRQKJDdqfKCovZQ26vwmZY vrsYifUZTb0gk4d0GoVaW6BMh4IwFm8tkjyV+n30mzALv1e//yBZLEJo+CelMQUq QRP5WdRU4xP3hAjW4LSdakTbxOaRjZc0iLJKTGFhNGPB0y4mzlFVM4bwcKqQHnHB ox/8qWVonywdHC1wGe7OVPfZPC0e2JKJNlJxFIwMcpfvfYFCYPy7IVhRXyf0D5On Q3SJyTr4/2QCCMwLF/udjaFkZncraSt11pxNorJcS70uoLiv61LRGFFxYm09nUMu iti5XlYb6MyOdmv1qt9nLj2fvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJtypDaH SbjZEu1BUJBlgzhoscpfMB8GA1UdIwQYMBaAFMNDs7uDp+I/rZWvjSMrUgUqD95y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjZCNy82NkNEQTRFODkx MTYxMUVBOTFDNDY1MENDNEY5QUUwMi93ME96dTRPbjRqLXRsYS1OSXl0U0JTb1Az bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3cwT3p1NE9uNGotdGxhLU5JeXRTQlNvUDNuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY2QjcvNjZDREE0RTg5MTE2MTFFQTkxQzQ2NTBDQzRGOUFFMDIvMDIzNTY0RTZE NUJFMTFFQ0E4QkU0NjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnltAwDQYJKoZIhvcNAQELBQADggEBAODMKQsj329qPyRA chvNuln2SZ/JTFKR4A+P3bw4QzW3j7i+MtcSY7pXNYyLJeUncy0ZgG2neTMIWax8 xgTufMDOdZzpPIl76WVXxgLzaVX0SQLs1lPKbJ//9Sfn42qr8iVgNHaeC4lsCRtT CnwH9ajnEyWJinLSbtF3axlO8vq56HKxiNAfpLme6Pw1/n10rfJR1YZ6zFI8qzyN 9r/osBcHcmYLKdEIh9uj0Q8+Oye1jplE63ALeAro0jB55uTyjEI6jIdpwNGqe4AL WX82tfZQlDfdCFejVgR/E8JXQ1NeimMOvvA6I/uzY5ngQ8x9oUOwPhr0LARdgc8x d6kGsXs= -----END CERTIFICATE-----Generated at Mon May 6 23:05:49 2024 by rpki-client on console-fra.rpki-client.org