$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/FA7CB46C8AB411EA89D83541C4F9AE02.roa File: FA7CB46C8AB411EA89D83541C4F9AE02.roa (raw, json) Hash identifier: yD0pXJuzsIcwlQVDxXtH8gNE+deycvgoI/IITsyuLRU= Subject key identifier: EE:BD:43:29:D3:59:19:5D:96:BA:7F:5B:FA:0E:AA:B0:22:8E:F4:7B Certificate issuer: /CN=A91A2F6C/serialNumber=EDAF1E9A79D9FECB107883AFD3757FA8F70A32D7 Certificate serial: 08EE Authority key identifier: ED:AF:1E:9A:79:D9:FE:CB:10:78:83:AF:D3:75:7F:A8:F7:0A:32:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/FA7CB46C8AB411EA89D83541C4F9AE02.roa Signing time: Fri 28 Jun 2024 21:24:39 +0000 ROA not before: Fri 28 Jun 2024 21:24:39 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 140611 IP address blocks: 103.150.254.0/23 maxlen: 23 103.150.254.0/24 maxlen: 24 103.150.255.0/24 maxlen: 24 2001:df3:9980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.crl rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2286 (0x8ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F6C/serialNumber=EDAF1E9A79D9FECB107883AFD3757FA8F70A32D7 Validity Not Before: Jun 28 21:24:39 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=667f2a16-4473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3c:55:4f:2c:f5:83:11:77:4f:94:1c:3e:c9: 8a:67:f0:8b:e4:30:2a:64:8c:57:3f:f0:bb:c9:a8: 3b:47:96:d5:c6:d8:25:0a:45:70:f5:c6:7e:f4:62: cd:a7:f2:21:df:9f:69:c0:65:c3:e5:71:b4:ba:41: 50:a0:b5:41:f1:2e:83:b3:be:00:cc:74:dd:81:58: 79:17:fa:68:e3:59:ef:e3:2f:77:f0:6c:90:15:32: 03:db:24:49:40:c4:5d:0d:89:17:52:02:c7:c4:ee: cc:49:c3:fb:fa:d2:48:65:52:8a:14:3d:07:25:d3: 6c:7e:23:61:b8:10:c5:39:5b:b8:62:82:e0:71:7c: ed:a9:5c:7f:3a:b9:56:99:ed:fa:07:35:ff:29:a5: 39:b4:02:04:a6:5c:6b:fc:5b:d7:a6:f8:6c:6d:9f: ed:5a:e6:12:4f:16:c5:8a:70:26:67:52:75:f1:74: 5e:b5:66:1d:bf:8e:9d:18:c6:aa:e2:05:4a:40:d6: 05:b1:e9:7f:ab:c6:2b:3f:09:3b:f2:ac:81:c8:9d: 2a:37:fb:26:0d:87:d5:b8:21:46:87:3e:4b:43:a7: 70:3e:e6:90:20:6e:03:1b:56:79:75:f6:4f:1a:4e: 15:43:45:7c:13:3a:1c:23:a4:1e:be:77:64:73:d0: 8b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:BD:43:29:D3:59:19:5D:96:BA:7F:5B:FA:0E:AA:B0:22:8E:F4:7B X509v3 Authority Key Identifier: keyid:ED:AF:1E:9A:79:D9:FE:CB:10:78:83:AF:D3:75:7F:A8:F7:0A:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/FA7CB46C8AB411EA89D83541C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.254.0/23 IPv6: 2001:df3:9980::/48 Signature Algorithm: sha256WithRSAEncryption 22:4a:4e:25:e4:79:4a:cb:f2:3c:1b:e7:26:da:53:13:30:0e: 1c:cc:77:e6:82:10:80:4c:7e:35:0f:7c:b1:5e:c7:d7:93:cd: 10:6f:d3:c7:4d:4a:e2:57:38:af:a5:9a:50:0d:a9:eb:8b:1b: b8:36:bb:b3:3a:90:e2:a2:44:5b:40:7f:9b:8e:ac:46:67:99: 45:dc:92:3c:b9:d8:e3:9f:de:3c:cb:b5:10:0a:72:60:c5:41: e2:01:bb:eb:86:e8:0a:48:ba:97:e3:6e:d9:e8:cd:52:42:ae: b9:3d:a5:be:00:07:a4:a1:3a:50:dc:8f:24:40:27:1e:63:87: 9f:60:b6:05:d3:a1:80:2f:6a:8a:ac:53:60:62:3f:14:68:0a: 2e:de:8c:5c:62:d8:33:17:57:ba:20:fc:79:bf:c7:60:4a:71: ce:fd:d8:8e:70:2c:69:e1:11:88:3b:db:dc:ad:9e:18:f7:dd: 5e:a9:19:de:e7:e2:0a:15:4f:36:d7:70:b7:b6:f5:f0:c4:5b: 0a:e3:91:3a:bb:37:98:74:8f:82:71:28:06:f9:71:bb:56:20: 8a:08:36:78:65:17:5e:b1:9f:26:ef:7a:a2:40:4d:6f:0e:c3: be:dc:48:10:5c:ce:12:23:bf:09:12:f3:c0:dd:f8:0c:eb:54: 69:e2:82:92 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGNkMxMTAvBgNVBAUTKEVEQUYxRTlBNzlEOUZFQ0IxMDc4ODNBRkQzNzU3RkE4 RjcwQTMyRDcwHhcNMjQwNjI4MjEyNDM5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdmMmExNi00NDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDxVTyz1gxF3T5QcPsmKZ/CL5DAqZIxXP/C7yag7R5bVxtglCkVw9cZ+9GLN p/Ih359pwGXD5XG0ukFQoLVB8S6Ds74AzHTdgVh5F/po41nv4y938GyQFTID2yRJ QMRdDYkXUgLHxO7MScP7+tJIZVKKFD0HJdNsfiNhuBDFOVu4YoLgcXztqVx/OrlW me36BzX/KaU5tAIEplxr/FvXpvhsbZ/tWuYSTxbFinAmZ1J18XRetWYdv46dGMaq 4gVKQNYFsel/q8YrPwk78qyByJ0qN/smDYfVuCFGhz5LQ6dwPuaQIG4DG1Z5dfZP Gk4VQ0V8EzocI6Qevndkc9CLMwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFO69QynT WRldlrp/W/oOqrAijvR7MB8GA1UdIwQYMBaAFO2vHpp52f7LEHiDr9N1f6j3CjLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY2Qy85RTMxRjNCMjhB QjMxMUVBOTNBNkJBM0VDNEY5QUUwMi83YThlbW5uWl9zc1FlSU92MDNWX3FQY0tN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhOGVtbm5aX3NzUWVJT3YwM1ZfcVBjS010Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJGNkMvOUUzMUYzQjI4QUIzMTFFQTkzQTZCQTNFQzRGOUFFMDIvRkE3Q0I0NkM4 QUI0MTFFQTg5RDgzNTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlv4wDwQCAAIwCQMHACABDfOZgDANBgkqhkiG9w0BAQsF AAOCAQEAIkpOJeR5SsvyPBvnJtpTEzAOHMx35oIQgEx+NQ98sV7H15PNEG/Tx01K 4lc4r6WaUA2p64sbuDa7szqQ4qJEW0B/m46sRmeZRdySPLnY45/ePMu1EApyYMVB 4gG764boCki6l+Nu2ejNUkKuuT2lvgAHpKE6UNyPJEAnHmOHn2C2BdOhgC9qiqxT YGI/FGgKLt6MXGLYMxdXuiD8eb/HYEpxzv3YjnAsaeERiDvb3K2eGPfdXqkZ3ufi ChVPNtdwt7b18MRbCuOROrs3mHSPgnEoBvlxu1Ygigg2eGUXXrGfJu96okBNbw7D vtxIEFzOEiO/CRLzwN34DOtUaeKCkg== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:36 2024 by rpki-client on console-ams.rpki-client.org