$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/5A7E13CA8C2B11EA90152018C4F9AE02.roa File: 5A7E13CA8C2B11EA90152018C4F9AE02.roa (raw, json) Hash identifier: XwHLgMRVpullwU1R9AA7YcD8EJye551MKEICmLnB8Hw= Subject key identifier: C1:B9:A5:3E:2B:50:41:41:06:6F:C7:95:B5:67:71:D0:38:1F:2C:09 Certificate issuer: /CN=A91F2BA6/serialNumber=9EEAA4509B9D6ACA91CDA4021F105E921037EB74 Certificate serial: 0849 Authority key identifier: 9E:EA:A4:50:9B:9D:6A:CA:91:CD:A4:02:1F:10:5E:92:10:37:EB:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/5A7E13CA8C2B11EA90152018C4F9AE02.roa Signing time: Sun 06 Aug 2023 20:58:00 +0000 ROA not before: Sun 06 Aug 2023 20:58:00 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 140606 IP address blocks: 103.150.234.0/24 maxlen: 24 103.150.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.crl rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 21:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2121 (0x849) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2BA6/serialNumber=9EEAA4509B9D6ACA91CDA4021F105E921037EB74 Validity Not Before: Aug 6 20:58:00 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64d00957-76bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:39:7e:9d:21:10:df:82:49:20:f1:f1:2f:7f: 49:05:70:bb:32:a6:9b:15:b2:25:21:3f:14:3b:88: aa:3f:64:9e:bf:3a:b0:06:8b:71:fc:69:92:e1:43: b5:4a:63:da:f0:4a:24:b8:34:a2:e9:71:34:8e:44: c0:aa:df:23:7c:9c:95:db:ee:bf:d9:3a:30:fb:d5: d0:a8:df:01:f2:09:d0:39:db:ca:f5:1e:0e:e7:2e: 74:de:64:27:bf:7e:78:43:d5:51:d0:75:42:b6:07: 72:19:d0:78:38:28:8b:fb:57:1c:7c:c8:7b:53:e4: 58:89:3d:d2:45:df:16:77:fe:d8:51:3c:f8:b8:c3: 20:07:50:27:67:0a:8c:46:a0:44:b8:68:24:2e:6d: 5c:a6:32:e9:56:4d:2e:4c:b0:f1:45:a1:94:29:ef: db:6b:53:44:7f:04:fb:e7:61:37:74:f4:87:7b:87: d1:0e:64:7f:74:23:0d:31:22:0e:63:25:b5:98:e3: c0:4c:1e:e8:01:c8:e0:70:27:e8:d6:d1:74:0d:11: 3d:e6:cf:b1:b6:f2:3b:59:98:af:38:c0:ee:a0:c3: 5f:b9:02:6d:4c:37:2e:82:c0:88:da:c7:fe:fb:b8: 4f:e1:54:b2:ca:df:43:75:06:ce:e0:ab:7b:2e:c4: 11:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:B9:A5:3E:2B:50:41:41:06:6F:C7:95:B5:67:71:D0:38:1F:2C:09 X509v3 Authority Key Identifier: keyid:9E:EA:A4:50:9B:9D:6A:CA:91:CD:A4:02:1F:10:5E:92:10:37:EB:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/5A7E13CA8C2B11EA90152018C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.234.0/23 Signature Algorithm: sha256WithRSAEncryption 18:f1:69:6f:04:dd:2b:9b:23:60:37:98:d4:cd:77:24:47:37: e9:a9:02:be:03:8b:36:f7:e6:2a:f6:99:ac:05:e1:57:de:45: 50:dc:a3:41:8e:65:c8:a7:ad:cb:06:3e:67:50:f2:b7:76:90: ae:15:af:b4:49:33:b8:0e:20:6c:db:d5:93:a3:96:fd:a8:4d: e4:cd:89:17:1e:6f:af:cf:88:8e:19:ac:43:21:c3:22:4b:6d: 8b:6c:c1:77:25:d0:2e:2e:0f:87:23:b9:07:be:0a:c7:80:d2: a7:04:ba:04:fd:50:0d:88:f5:30:e6:ed:11:a4:bc:34:5d:82: cf:c1:87:9b:24:00:56:6a:73:08:a2:a3:71:42:56:9b:23:ff: 66:7f:0d:51:0a:76:20:cf:bc:5d:c1:d2:5c:3e:fa:c4:d1:e5: 56:bf:f7:85:3c:52:cd:c8:ee:8c:2c:4d:f9:d6:c4:5c:06:96: 6c:82:92:58:33:39:f7:ef:da:1d:9b:93:33:27:7c:e9:3e:93: e5:ee:12:23:0e:44:59:ef:16:2c:a4:2f:c1:6f:04:8f:41:68: 2f:ef:6b:fb:cc:1c:f7:bc:c6:21:0c:29:44:7f:05:35:9c:a1: ed:83:0c:5d:4c:26:ff:94:5f:54:94:9d:02:7b:ab:cb:58:a9: 9f:c9:ee:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCQTYxMTAvBgNVBAUTKDlFRUFBNDUwOUI5RDZBQ0E5MUNEQTQwMjFGMTA1RTky MTAzN0VCNzQwHhcNMjMwODA2MjA1ODAwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQwMDk1Ny03NmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Tl+nSEQ34JJIPHxL39JBXC7MqabFbIlIT8UO4iqP2SevzqwBotx/GmS4UO1 SmPa8EokuDSi6XE0jkTAqt8jfJyV2+6/2Tow+9XQqN8B8gnQOdvK9R4O5y503mQn v354Q9VR0HVCtgdyGdB4OCiL+1ccfMh7U+RYiT3SRd8Wd/7YUTz4uMMgB1AnZwqM RqBEuGgkLm1cpjLpVk0uTLDxRaGUKe/ba1NEfwT752E3dPSHe4fRDmR/dCMNMSIO YyW1mOPATB7oAcjgcCfo1tF0DRE95s+xtvI7WZivOMDuoMNfuQJtTDcugsCI2sf+ +7hP4VSyyt9DdQbO4Kt7LsQRzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMG5pT4r UEFBBm/HlbVncdA4HywJMB8GA1UdIwQYMBaAFJ7qpFCbnWrKkc2kAh8QXpIQN+t0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkJBNi84NERENzlFMDhC NzYxMUVBOTEwNTA3NDNDNEY5QUUwMi9udXFrVUp1ZGFzcVJ6YVFDSHhCZWtoQTM2 M1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL251cWtVSnVkYXNxUnphUUNIeEJla2hBMzYzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJCQTYvODRERDc5RTA4Qjc2MTFFQTkxMDUwNzQzQzRGOUFFMDIvNUE3RTEzQ0E4 QzJCMTFFQTkwMTUyMDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnluowDQYJKoZIhvcNAQELBQADggEBABjxaW8E3SubI2A3 mNTNdyRHN+mpAr4Dizb35ir2mawF4VfeRVDco0GOZcinrcsGPmdQ8rd2kK4Vr7RJ M7gOIGzb1ZOjlv2oTeTNiRceb6/PiI4ZrEMhwyJLbYtswXcl0C4uD4cjuQe+CseA 0qcEugT9UA2I9TDm7RGkvDRdgs/Bh5skAFZqcwiio3FCVpsj/2Z/DVEKdiDPvF3B 0lw++sTR5Va/94U8Us3I7owsTfnWxFwGlmyCklgzOffv2h2bkzMnfOk+k+XuEiMO RFnvFiykL8FvBI9BaC/va/vMHPe8xiEMKUR/BTWcoe2DDF1MJv+UX1SUnQJ7q8tY qZ/J7ls= -----END CERTIFICATE-----Generated at Mon May 6 23:05:52 2024 by rpki-client on console-fra.rpki-client.org