$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/695C5050C27D11EEB0AE466DC4F9AE02.roa File: 695C5050C27D11EEB0AE466DC4F9AE02.roa (raw, json) Hash identifier: FU4aJFxj8CoUjnkiDQB/hpo0mTt04SzDs8mb97d7XQI= Subject key identifier: 2D:ED:CF:3B:57:9C:38:B2:79:EC:02:96:39:88:FE:99:B5:BF:23:38 Certificate issuer: /CN=A91CB09E/serialNumber=1760FF71E16BCFEEE7B8D6710D63606799AEF767 Certificate serial: 04EE Authority key identifier: 17:60:FF:71:E1:6B:CF:EE:E7:B8:D6:71:0D:63:60:67:99:AE:F7:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F2D_ceFrz-7nuNZxDWNgZ5mu92c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/695C5050C27D11EEB0AE466DC4F9AE02.roa Signing time: Wed 15 May 2024 01:36:09 +0000 ROA not before: Wed 15 May 2024 01:36:09 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 26383 IP address blocks: 103.136.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/F2D_ceFrz-7nuNZxDWNgZ5mu92c.crl rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/F2D_ceFrz-7nuNZxDWNgZ5mu92c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F2D_ceFrz-7nuNZxDWNgZ5mu92c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 14:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1262 (0x4ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB09E/serialNumber=1760FF71E16BCFEEE7B8D6710D63606799AEF767 Validity Not Before: May 15 01:36:09 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66441189-1c5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c1:4b:a8:33:c8:b8:af:92:5e:c4:9d:dc:dc: a4:a2:54:b5:47:02:09:e5:17:eb:15:75:a6:f2:5b: 70:cd:49:c6:6d:40:d7:96:9e:08:38:c6:ba:92:9c: 12:a8:11:c7:a6:e1:08:e6:70:f3:af:44:a9:10:65: a1:ac:07:57:21:a6:0e:cc:d4:72:1a:9f:94:f2:0b: a4:b0:48:ee:5f:d5:ca:4e:a3:f2:81:2b:27:3c:62: 3e:59:c4:40:26:f2:25:27:24:c6:ff:dc:10:80:19: bf:34:46:43:67:a1:f9:00:58:92:8c:79:87:b5:93: c9:c5:9a:60:21:fd:76:05:6d:2d:b6:b1:b4:a5:49: 3e:8d:ca:e6:4b:be:c5:45:97:cf:4d:d4:ee:81:7f: 87:84:35:5f:54:c5:8e:c3:7c:e4:ce:6f:20:55:27: 06:61:62:63:8b:b4:89:ce:91:bb:c7:7b:1b:6d:a5: c6:07:fe:be:cd:d9:d6:ed:bb:b6:46:da:8d:70:57: f4:53:3e:cd:49:bc:d2:45:e4:d1:4b:e8:12:38:52: 5e:48:61:70:06:07:79:b8:05:fe:9e:5c:0d:1b:06: 3e:0c:4e:36:b4:d4:18:d8:8a:92:f2:68:e2:42:2a: 5e:56:d0:4e:8d:67:c2:4e:94:1d:26:20:56:28:bd: 0a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:ED:CF:3B:57:9C:38:B2:79:EC:02:96:39:88:FE:99:B5:BF:23:38 X509v3 Authority Key Identifier: keyid:17:60:FF:71:E1:6B:CF:EE:E7:B8:D6:71:0D:63:60:67:99:AE:F7:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/F2D_ceFrz-7nuNZxDWNgZ5mu92c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F2D_ceFrz-7nuNZxDWNgZ5mu92c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/695C5050C27D11EEB0AE466DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.150.0/24 Signature Algorithm: sha256WithRSAEncryption 95:e5:05:9e:eb:ca:7b:b3:0f:67:14:09:88:33:58:77:d3:1f: 9e:5d:70:a3:42:51:21:51:56:9d:74:bd:35:7d:50:00:5f:26: 80:88:9c:78:70:8e:ed:79:1f:50:02:d6:09:75:4c:54:5f:ea: de:20:64:f1:e7:c6:a2:84:7e:2b:48:0d:f0:1f:6d:a4:3c:24: 0a:8b:f2:e8:0e:2c:32:e8:05:36:11:b7:e0:ee:1b:40:5e:8e: ea:c9:5b:98:0e:95:dc:82:69:ec:8a:89:92:23:13:ae:2d:dc: f0:54:7c:6d:29:3e:10:1d:21:aa:93:17:7c:ea:dc:dc:e0:73: 6b:f0:af:56:08:bd:d6:ad:da:d0:64:5b:15:e8:75:31:bf:79: 6d:c8:54:1f:b8:c9:73:02:f5:7d:15:ab:94:93:67:a1:c1:37: d3:00:cf:c9:4d:21:58:8e:22:b8:36:6a:63:da:1e:8d:02:4a: b7:e8:8c:52:f9:8a:d7:6c:8f:9c:60:bc:11:0d:85:49:59:3b: 85:32:28:12:47:cf:25:13:99:99:de:13:71:e9:4c:44:89:67: bb:a7:bf:07:62:5a:12:e6:04:f2:58:31:1b:9f:7d:a6:f4:0d: 9a:29:80:16:23:16:7c:c9:62:29:da:99:60:7c:64:4e:d9:80: 7d:6c:a9:fb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IwOUUxMTAvBgNVBAUTKDE3NjBGRjcxRTE2QkNGRUVFN0I4RDY3MTBENjM2MDY3 OTlBRUY3NjcwHhcNMjQwNTE1MDEzNjA5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ0MTE4OS0xYzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMFLqDPIuK+SXsSd3NykolS1RwIJ5RfrFXWm8ltwzUnGbUDXlp4IOMa6kpwS qBHHpuEI5nDzr0SpEGWhrAdXIaYOzNRyGp+U8guksEjuX9XKTqPygSsnPGI+WcRA JvIlJyTG/9wQgBm/NEZDZ6H5AFiSjHmHtZPJxZpgIf12BW0ttrG0pUk+jcrmS77F RZfPTdTugX+HhDVfVMWOw3zkzm8gVScGYWJji7SJzpG7x3sbbaXGB/6+zdnW7bu2 RtqNcFf0Uz7NSbzSReTRS+gSOFJeSGFwBgd5uAX+nlwNGwY+DE42tNQY2IqS8mji QipeVtBOjWfCTpQdJiBWKL0KzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC3tzztX nDiyeewCljmI/pm1vyM4MB8GA1UdIwQYMBaAFBdg/3Hha8/u57jWcQ1jYGeZrvdn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjA5RS80NzExOUQwMEQw MEIxMUVCQjU4OTBFN0JDNEY5QUUwMi9GMkRfY2VGcnotN251Tlp4RFdOZ1o1bXU5 MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0YyRF9jZUZyei03bnVOWnhEV05nWjVtdTkyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0IwOUUvNDcxMTlEMDBEMDBCMTFFQkI1ODkwRTdCQzRGOUFFMDIvNjk1QzUwNTBD MjdEMTFFRUIwQUU0NjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniJYwDQYJKoZIhvcNAQELBQADggEBAJXlBZ7rynuzD2cU CYgzWHfTH55dcKNCUSFRVp10vTV9UABfJoCInHhwju15H1AC1gl1TFRf6t4gZPHn xqKEfitIDfAfbaQ8JAqL8ugOLDLoBTYRt+DuG0BejurJW5gOldyCaeyKiZIjE64t 3PBUfG0pPhAdIaqTF3zq3Nzgc2vwr1YIvdat2tBkWxXodTG/eW3IVB+4yXMC9X0V q5STZ6HBN9MAz8lNIViOIrg2amPaHo0CSrfojFL5itdsj5xgvBENhUlZO4UyKBJH zyUTmZneE3HpTESJZ7unvwdiWhLmBPJYMRuffab0DZopgBYjFnzJYinamWB8ZE7Z gH1sqfs= -----END CERTIFICATE-----Generated at Mon Nov 25 15:54:06 2024 by rpki-client on console-ams.rpki-client.org