$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/8A480EFE80EE11EBA01B8C79C4F9AE02.roa File: 8A480EFE80EE11EBA01B8C79C4F9AE02.roa (raw, json) Hash identifier: jqfH6x35WvO0eEEDkkB9hWF61qmVkg+6vhLuGPEM4hs= Subject key identifier: BA:7B:63:02:70:2F:30:6C:D8:DC:E4:C3:25:AF:5F:8C:9C:63:8C:43 Certificate issuer: /CN=A91C66B7/serialNumber=C343B3BB83A7E23FAD95AF8D232B52052A0FDE72 Certificate serial: 0841 Authority key identifier: C3:43:B3:BB:83:A7:E2:3F:AD:95:AF:8D:23:2B:52:05:2A:0F:DE:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w0Ozu4On4j-tla-NIytSBSoP3nI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/8A480EFE80EE11EBA01B8C79C4F9AE02.roa Signing time: Wed 02 Aug 2023 20:58:21 +0000 ROA not before: Wed 02 Aug 2023 20:58:21 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 136969 IP address blocks: 103.150.208.0/23 maxlen: 23 103.150.208.0/24 maxlen: 24 103.150.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.crl rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w0Ozu4On4j-tla-NIytSBSoP3nI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2113 (0x841) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B7/serialNumber=C343B3BB83A7E23FAD95AF8D232B52052A0FDE72 Validity Not Before: Aug 2 20:58:21 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64cac36d-5df0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ee:02:f3:69:2f:c4:ee:ca:65:10:a4:2e:cb: 34:42:ec:fe:aa:68:05:8c:82:01:aa:a3:5a:9b:9d: 26:b8:20:a6:83:cf:d2:65:79:26:8f:0f:00:27:f8: 09:d4:93:46:cd:67:f9:47:dc:62:ee:4f:42:b8:75: 15:e8:13:47:8a:86:93:54:06:c7:83:0a:05:d5:16: 8f:75:07:27:43:7f:69:f9:46:88:fa:d8:c2:b2:2f: 4c:c8:19:bc:f1:85:48:ca:8d:6d:e7:46:14:be:73: b6:e6:51:1b:84:ef:09:2c:65:2b:16:29:f6:19:18: 6c:8b:66:9d:13:5a:e8:1b:6f:06:e4:71:33:b6:49: 05:a0:8a:d0:c2:04:53:a7:49:85:10:4a:a7:c2:2e: f6:d0:01:19:c7:71:58:d7:2c:56:7c:04:3e:a6:af: 16:0a:14:5b:12:08:9d:35:54:b7:07:ba:83:18:1a: 23:c4:fb:b5:67:b7:7f:99:c4:a7:70:b3:21:1d:81: 71:bd:0d:b2:4a:12:2a:e0:cf:b7:44:47:20:c2:38: 06:e9:3f:85:79:3e:8d:79:d3:b7:1c:c7:45:5d:b4: 45:99:d5:54:91:e4:8f:d4:39:45:83:4c:73:cf:6b: 00:4b:37:a3:e2:e4:55:74:e5:85:f3:f3:c3:d0:04: 5f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:7B:63:02:70:2F:30:6C:D8:DC:E4:C3:25:AF:5F:8C:9C:63:8C:43 X509v3 Authority Key Identifier: keyid:C3:43:B3:BB:83:A7:E2:3F:AD:95:AF:8D:23:2B:52:05:2A:0F:DE:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w0Ozu4On4j-tla-NIytSBSoP3nI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/8A480EFE80EE11EBA01B8C79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.208.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:3f:ac:06:74:f8:85:4b:62:68:7e:c2:1d:02:cc:43:02:51: 3b:dd:b9:ff:c8:1f:e5:fb:85:01:9d:f4:f7:7f:0d:f4:b7:a3: a3:3d:17:a9:66:3b:4e:4f:07:bc:f9:65:81:c8:46:12:98:c9: 6b:c1:3e:9f:db:17:4c:3a:4d:1f:9c:b8:c3:d7:04:41:da:ec: 66:3c:69:88:25:a2:26:79:39:c5:fc:f8:26:91:ec:39:27:e7: 48:42:fc:10:2d:49:b2:96:79:9a:9a:0b:53:0c:40:32:bb:39: 3b:38:7a:4a:14:7f:b4:ab:e7:03:52:55:96:0f:1d:ef:76:ae: ee:f0:38:aa:db:0c:4c:49:b2:d4:83:7d:99:17:90:e6:53:9b: fe:d8:82:c9:32:21:6d:47:44:fb:47:34:41:58:6e:83:6f:6a: 2c:fa:b1:95:08:a6:01:dd:e0:67:dd:2d:66:ba:9a:e1:94:fa: 42:54:02:14:83:56:ae:67:d9:06:67:1e:5c:e4:9e:fa:f9:5a: 28:0a:3c:b6:01:3f:61:8e:83:34:24:5e:fb:e7:4b:e5:63:86: cd:de:65:d4:75:b0:14:c8:1d:a6:30:f1:0d:d4:2c:25:3b:5b: e0:8a:39:6f:5e:fb:f2:ec:7d:b8:78:23:3d:0e:d1:48:01:03: ab:aa:41:60 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY2QjcxMTAvBgNVBAUTKEMzNDNCM0JCODNBN0UyM0ZBRDk1QUY4RDIzMkI1MjA1 MkEwRkRFNzIwHhcNMjMwODAyMjA1ODIxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhYzM2ZC01ZGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+4C82kvxO7KZRCkLss0Quz+qmgFjIIBqqNam50muCCmg8/SZXkmjw8AJ/gJ 1JNGzWf5R9xi7k9CuHUV6BNHioaTVAbHgwoF1RaPdQcnQ39p+UaI+tjCsi9MyBm8 8YVIyo1t50YUvnO25lEbhO8JLGUrFin2GRhsi2adE1roG28G5HEztkkFoIrQwgRT p0mFEEqnwi720AEZx3FY1yxWfAQ+pq8WChRbEgidNVS3B7qDGBojxPu1Z7d/mcSn cLMhHYFxvQ2yShIq4M+3REcgwjgG6T+FeT6NedO3HMdFXbRFmdVUkeSP1DlFg0xz z2sASzej4uRVdOWF8/PD0ARfQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLp7YwJw LzBs2NzkwyWvX4ycY4xDMB8GA1UdIwQYMBaAFMNDs7uDp+I/rZWvjSMrUgUqD95y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjZCNy82NkNEQTRFODkx MTYxMUVBOTFDNDY1MENDNEY5QUUwMi93ME96dTRPbjRqLXRsYS1OSXl0U0JTb1Az bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3cwT3p1NE9uNGotdGxhLU5JeXRTQlNvUDNuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY2QjcvNjZDREE0RTg5MTE2MTFFQTkxQzQ2NTBDQzRGOUFFMDIvOEE0ODBFRkU4 MEVFMTFFQkEwMUI4Qzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnltAwDQYJKoZIhvcNAQELBQADggEBAFw/rAZ0+IVLYmh+ wh0CzEMCUTvduf/IH+X7hQGd9Pd/DfS3o6M9F6lmO05PB7z5ZYHIRhKYyWvBPp/b F0w6TR+cuMPXBEHa7GY8aYgloiZ5OcX8+CaR7Dkn50hC/BAtSbKWeZqaC1MMQDK7 OTs4ekoUf7Sr5wNSVZYPHe92ru7wOKrbDExJstSDfZkXkOZTm/7YgskyIW1HRPtH NEFYboNvaiz6sZUIpgHd4GfdLWa6muGU+kJUAhSDVq5n2QZnHlzknvr5WigKPLYB P2GOgzQkXvvnS+Vjhs3eZdR1sBTIHaYw8Q3ULCU7W+CKOW9e+/Lsfbh4Iz0O0UgB A6uqQWA= -----END CERTIFICATE-----Generated at Mon May 6 22:41:03 2024 by rpki-client on console-ams.rpki-client.org