$ rpki-client -vvf rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/4A074A90E19511EC8AD57C6CC4F9AE02.roa File: 4A074A90E19511EC8AD57C6CC4F9AE02.roa (raw, json) Hash identifier: /hqFHRuC+fKtaDAVK2bVnRdsznCen8VzIrEMlxpjSMY= Subject key identifier: 0D:6D:4A:72:75:6C:E0:C0:C2:F4:F2:DD:68:00:AA:F8:F3:06:3A:26 Certificate issuer: /CN=A911B7EB/serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Certificate serial: 096B Authority key identifier: 8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/4A074A90E19511EC8AD57C6CC4F9AE02.roa Signing time: Fri 31 May 2024 22:08:19 +0000 ROA not before: Fri 31 May 2024 22:08:19 +0000 ROA not after: Tue 01 Oct 2024 00:00:00 +0000 asID: 140502 IP address blocks: 103.150.6.0/23 maxlen: 23 103.150.6.0/24 maxlen: 24 103.150.7.0/24 maxlen: 24 2001:df3:4c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:08:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2411 (0x96b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B7EB/serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Validity Not Before: May 31 22:08:19 2024 GMT Not After : Oct 1 00:00:00 2024 GMT Subject: CN=665a4a53-a4b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f6:05:63:89:9e:35:0a:5d:ea:e5:ba:ee:5b: a4:84:6b:3d:fe:79:b9:42:ba:e6:ba:dd:c6:04:d2: 7a:98:30:b0:7a:10:81:3b:17:65:76:f5:79:60:12: 28:d2:ff:79:f6:c3:4c:81:42:bf:f5:59:d5:ee:e5: ac:57:7f:c8:05:c1:c1:87:27:9d:22:c8:0f:2e:be: 17:3d:bf:2a:2b:4d:17:8e:a4:d8:01:38:20:a3:5b: 3f:df:2e:57:6b:4b:cb:01:17:8d:e2:cd:62:eb:a2: 40:d0:39:8c:03:ef:f9:cc:f5:51:53:9a:29:60:47: 7a:3c:f9:a3:9b:2e:18:a4:85:81:ae:e0:52:14:f2: e2:fb:11:91:d1:52:77:9a:28:77:8c:24:b5:a4:80: 88:be:d7:dc:f4:a6:72:8a:9e:5c:70:5e:70:16:9a: 45:b2:95:83:ad:11:40:2e:b5:5f:62:69:34:c3:7a: ff:b3:db:df:65:b4:e6:60:34:88:d1:d2:47:6e:0e: 33:1e:97:2f:b2:76:bc:71:73:88:ca:21:f1:58:9c: f1:f4:f3:60:43:9b:89:9d:e4:06:43:37:de:09:83: 89:10:11:48:9c:ac:c2:17:17:25:43:15:f9:6d:49: 09:c9:b3:05:33:d8:3c:ef:32:68:81:2a:7e:9e:ee: 13:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:6D:4A:72:75:6C:E0:C0:C2:F4:F2:DD:68:00:AA:F8:F3:06:3A:26 X509v3 Authority Key Identifier: keyid:8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/4A074A90E19511EC8AD57C6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.6.0/23 IPv6: 2001:df3:4c80::/48 Signature Algorithm: sha256WithRSAEncryption 2d:27:c3:bd:ee:ef:5e:45:e2:c2:30:b7:58:05:2a:0c:66:91: ec:e8:e5:89:9b:0f:35:a4:45:d6:27:8a:a9:8f:af:84:4f:16: 54:10:e5:9b:2f:9a:e2:9b:d9:eb:93:c0:d3:9f:91:ea:e6:cb: 98:91:44:b1:16:94:d4:a1:37:a6:d1:e8:5f:c0:44:ad:95:6f: ca:47:48:8d:03:56:4c:57:48:df:c6:76:15:ff:f5:f4:10:58: 71:80:7e:80:1c:69:f7:19:24:10:d1:85:d0:b4:2d:ef:a0:87: 86:72:53:f5:5b:92:66:70:f5:f2:cc:f7:9b:46:74:fb:a3:59: b2:46:10:3f:d0:25:43:3b:d9:66:f4:63:86:3e:6a:e1:b7:8f: 68:41:16:ff:80:c5:a8:5f:e9:09:52:3b:ef:80:98:38:d7:a7: ab:da:5a:b7:38:59:a0:6b:24:f8:c8:a5:2f:6c:b8:78:56:2b: 63:af:69:1d:33:91:12:a9:42:6c:db:df:0a:74:13:e4:13:a7: ed:2e:36:78:5a:6d:40:ff:82:92:f2:41:aa:2e:b7:58:e9:54: f7:fc:15:dd:d7:00:fd:3d:5f:86:84:82:82:8f:f8:6d:5b:ba: 60:4e:ca:1c:f0:54:48:26:2c:bf:9b:71:16:80:c8:8f:77:d5: 5b:5f:c8:76 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI3RUIxMTAvBgNVBAUTKDhDRjZGMjYyODNFMDk0M0UxN0Q0MTJCMTlDQTJBRjJD RDYwRDQ1ODcwHhcNMjQwNTMxMjIwODE5WhcNMjQxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVhNGE1My1hNGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvYFY4meNQpd6uW67lukhGs9/nm5Qrrmut3GBNJ6mDCwehCBOxdldvV5YBIo 0v959sNMgUK/9VnV7uWsV3/IBcHBhyedIsgPLr4XPb8qK00XjqTYATggo1s/3y5X a0vLAReN4s1i66JA0DmMA+/5zPVRU5opYEd6PPmjmy4YpIWBruBSFPLi+xGR0VJ3 mih3jCS1pICIvtfc9KZyip5ccF5wFppFspWDrRFALrVfYmk0w3r/s9vfZbTmYDSI 0dJHbg4zHpcvsna8cXOIyiHxWJzx9PNgQ5uJneQGQzfeCYOJEBFInKzCFxclQxX5 bUkJybMFM9g87zJogSp+nu4TKwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFA1tSnJ1 bODAwvTy3WgAqvjzBjomMB8GA1UdIwQYMBaAFIz28mKD4JQ+F9QSsZyiryzWDUWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjdFQi83OTFGNEU3Njcz RTMxMUVBQkE3QTg4NkVDNEY5QUUwMi9qUGJ5WW9QZ2xENFgxQkt4bktLdkxOWU5S WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pQYnlZb1BnbEQ0WDFCS3huS0t2TE5ZTlJZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI3RUIvNzkxRjRFNzY3M0UzMTFFQUJBN0E4ODZFQzRGOUFFMDIvNEEwNzRBOTBF MTk1MTFFQzhBRDU3QzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlgYwDwQCAAIwCQMHACABDfNMgDANBgkqhkiG9w0BAQsF AAOCAQEALSfDve7vXkXiwjC3WAUqDGaR7OjliZsPNaRF1ieKqY+vhE8WVBDlmy+a 4pvZ65PA05+R6ubLmJFEsRaU1KE3ptHoX8BErZVvykdIjQNWTFdI38Z2Ff/19BBY cYB+gBxp9xkkENGF0LQt76CHhnJT9VuSZnD18sz3m0Z0+6NZskYQP9AlQzvZZvRj hj5q4bePaEEW/4DFqF/pCVI774CYONenq9patzhZoGsk+MilL2y4eFYrY69pHTOR EqlCbNvfCnQT5BOn7S42eFptQP+CkvJBqi63WOlU9/wV3dcA/T1fhoSCgo/4bVu6 YE7KHPBUSCYsv5txFoDIj3fVW1/Idg== -----END CERTIFICATE-----Generated at Fri May 31 22:56:56 2024 by rpki-client on console-fra.rpki-client.org