$ rpki-client -vvf rpki.apnic.net/member_repository/A911DEBE/79433FCAA91711EA9481866FC4F9AE02/A4955B14A91B11EA924D2D7BC4F9AE02.roa File: A4955B14A91B11EA924D2D7BC4F9AE02.roa (raw, json) Hash identifier: k0bqnFEQ7zHA/CEuw/ns0UItLaD/wwB6kXZVqIRsW2o= Subject key identifier: 92:11:02:D3:C0:CA:64:37:32:9A:2C:01:20:A1:28:AB:96:A5:E8:8F Certificate issuer: /CN=A911DEBE/serialNumber=0C015C06D1CD237842B67057C1D54A20EF272D47 Certificate serial: 07FA Authority key identifier: 0C:01:5C:06:D1:CD:23:78:42:B6:70:57:C1:D5:4A:20:EF:27:2D:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAFcBtHNI3hCtnBXwdVKIO8nLUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DEBE/79433FCAA91711EA9481866FC4F9AE02/A4955B14A91B11EA924D2D7BC4F9AE02.roa Signing time: Sat 30 Dec 2023 21:18:54 +0000 ROA not before: Sat 30 Dec 2023 21:18:54 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 140598 IP address blocks: 103.150.213.0/24 maxlen: 24 103.159.82.0/24 maxlen: 24 2001:df3:9080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DEBE/79433FCAA91711EA9481866FC4F9AE02/DAFcBtHNI3hCtnBXwdVKIO8nLUc.crl rsync://rpki.apnic.net/member_repository/A911DEBE/79433FCAA91711EA9481866FC4F9AE02/DAFcBtHNI3hCtnBXwdVKIO8nLUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAFcBtHNI3hCtnBXwdVKIO8nLUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:28:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2042 (0x7fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DEBE/serialNumber=0C015C06D1CD237842B67057C1D54A20EF272D47 Validity Not Before: Dec 30 21:18:54 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6590893e-d570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:66:9d:3f:38:1c:ef:c7:4c:b6:6c:47:93:61: 42:fe:2d:0e:06:fa:41:f7:7a:38:34:13:3b:74:5a: 75:7a:6f:89:53:5c:bb:fb:64:62:57:57:80:89:81: f1:1d:83:05:b3:70:12:be:1c:5a:dc:25:46:ab:5b: e2:6b:3c:44:38:9e:3f:b5:81:9b:b1:3f:c1:3b:71: d4:be:12:fe:73:c9:43:dc:b0:40:cf:ab:a1:95:78: f3:67:10:17:65:c6:45:90:17:58:a3:0d:c7:02:78: 6d:57:4b:9f:9c:e0:24:d1:5f:c2:51:22:67:16:6e: 29:9b:10:cf:14:d4:de:2f:e0:b1:1b:87:1e:16:16: ee:20:3f:d6:c7:92:80:6b:b7:6d:69:25:8f:ad:d8: 0a:34:08:38:4e:87:05:35:cf:71:ea:e2:46:4c:7c: 70:bf:1e:de:cf:30:71:6d:57:b4:82:91:3c:4a:f0: 7e:ca:73:0f:18:ce:c5:73:cc:6b:77:3e:d5:4f:72: 51:39:62:d0:ef:92:df:a1:65:ce:27:dc:a0:8e:fb: 63:dc:54:24:8c:72:b7:48:ce:28:30:70:a0:6e:a7: cd:dd:8a:88:3c:60:ec:2e:75:e9:05:bb:c1:51:bf: ac:cd:91:38:2f:7c:e9:00:7d:70:d9:d9:86:6f:ce: d3:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:11:02:D3:C0:CA:64:37:32:9A:2C:01:20:A1:28:AB:96:A5:E8:8F X509v3 Authority Key Identifier: keyid:0C:01:5C:06:D1:CD:23:78:42:B6:70:57:C1:D5:4A:20:EF:27:2D:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DEBE/79433FCAA91711EA9481866FC4F9AE02/DAFcBtHNI3hCtnBXwdVKIO8nLUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAFcBtHNI3hCtnBXwdVKIO8nLUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DEBE/79433FCAA91711EA9481866FC4F9AE02/A4955B14A91B11EA924D2D7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.213.0/24 103.159.82.0/24 IPv6: 2001:df3:9080::/48 Signature Algorithm: sha256WithRSAEncryption 3b:a0:c7:9e:1e:f2:3f:50:be:8c:71:7d:8e:61:e6:75:03:18: 8b:60:ee:d3:85:5a:4d:19:05:be:b0:8b:47:6a:af:72:66:4c: 00:d0:7e:84:54:58:f7:28:30:7a:92:0a:13:58:93:92:cc:33: 3d:57:90:fd:99:d3:c5:b8:0a:a3:17:d4:32:eb:3b:32:88:61: cc:8a:e5:6c:d9:ee:17:b7:0a:5e:15:09:db:9a:aa:98:5e:04: 79:51:5a:66:6a:b3:89:ad:e3:7d:70:2e:b4:50:e4:a9:d7:0a: 6f:bc:e6:17:4c:b0:19:a2:81:ab:a8:5a:6a:25:4c:a9:99:68: 60:57:4d:16:b4:5d:c7:34:67:c6:ba:f5:f8:dc:46:59:b5:e4: fe:2e:7a:a4:2b:36:ae:78:f1:6d:82:4b:cc:dd:9d:68:f3:37: 14:0f:4a:b7:0a:5c:64:01:79:3e:3b:4e:2b:e4:6d:c7:4b:83: 53:f4:5f:dd:f9:b2:82:fa:8a:c4:d9:c0:3b:cc:71:b1:30:f7: 9e:3c:78:a2:a4:4b:22:dd:88:ab:16:ba:d0:a0:d4:7c:13:6e: 71:95:ac:35:c7:ff:57:73:6c:e6:f9:df:b8:b2:e5:a9:c4:36: 87:d7:ee:45:71:1f:1d:65:dc:62:5d:d1:00:1e:de:cc:e7:d6: a1:86:e1:8e -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICB/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURFQkUxMTAvBgNVBAUTKDBDMDE1QzA2RDFDRDIzNzg0MkI2NzA1N0MxRDU0QTIw RUYyNzJENDcwHhcNMjMxMjMwMjExODU0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkwODkzZS1kNTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmadPzgc78dMtmxHk2FC/i0OBvpB93o4NBM7dFp1em+JU1y7+2RiV1eAiYHx HYMFs3ASvhxa3CVGq1viazxEOJ4/tYGbsT/BO3HUvhL+c8lD3LBAz6uhlXjzZxAX ZcZFkBdYow3HAnhtV0ufnOAk0V/CUSJnFm4pmxDPFNTeL+CxG4ceFhbuID/Wx5KA a7dtaSWPrdgKNAg4TocFNc9x6uJGTHxwvx7ezzBxbVe0gpE8SvB+ynMPGM7Fc8xr dz7VT3JROWLQ75LfoWXOJ9ygjvtj3FQkjHK3SM4oMHCgbqfN3YqIPGDsLnXpBbvB Ub+szZE4L3zpAH1w2dmGb87TDwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFJIRAtPA ymQ3MposASChKKuWpeiPMB8GA1UdIwQYMBaAFAwBXAbRzSN4QrZwV8HVSiDvJy1H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREVCRS83OTQzM0ZDQUE5 MTcxMUVBOTQ4MTg2NkZDNEY5QUUwMi9EQUZjQnRITkkzaEN0bkJYd2RWS0lPOG5M VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RBRmNCdEhOSTNoQ3RuQlh3ZFZLSU84bkxVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURFQkUvNzk0MzNGQ0FBOTE3MTFFQTk0ODE4NjZGQzRGOUFFMDIvQTQ5NTVCMTRB OTFCMTFFQTkyNEQyRDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnltUDBABnn1IwDwQCAAIwCQMHACABDfOQgDANBgkqhkiG 9w0BAQsFAAOCAQEAO6DHnh7yP1C+jHF9jmHmdQMYi2Du04VaTRkFvrCLR2qvcmZM ANB+hFRY9ygwepIKE1iTkswzPVeQ/ZnTxbgKoxfUMus7MohhzIrlbNnuF7cKXhUJ 25qqmF4EeVFaZmqzia3jfXAutFDkqdcKb7zmF0ywGaKBq6haaiVMqZloYFdNFrRd xzRnxrr1+NxGWbXk/i56pCs2rnjxbYJLzN2daPM3FA9KtwpcZAF5PjtOK+Rtx0uD U/Rf3fmygvqKxNnAO8xxsTD3njx4oqRLIt2Iqxa60KDUfBNucZWsNcf/V3Ns5vnf uLLlqcQ2h9fuRXEfHWXcYl3RAB7ezOfWoYbhjg== -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:09 2024 by rpki-client on console-ams.rpki-client.org