$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/FA7CB46C8AB411EA89D83541C4F9AE02.roa File: FA7CB46C8AB411EA89D83541C4F9AE02.roa (raw, json) Hash identifier: fTjfzD8aGptBml8Dqm82VR4BMw51v1JSBBc+gvmzBqU= Subject key identifier: EC:E5:FF:2E:53:20:23:25:B1:DF:B8:05:66:76:7F:41:C8:65:4E:13 Certificate issuer: /CN=A91A2F6C/serialNumber=EDAF1E9A79D9FECB107883AFD3757FA8F70A32D7 Certificate serial: 082A Authority key identifier: ED:AF:1E:9A:79:D9:FE:CB:10:78:83:AF:D3:75:7F:A8:F7:0A:32:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/FA7CB46C8AB411EA89D83541C4F9AE02.roa Signing time: Fri 16 Jun 2023 21:53:00 +0000 ROA not before: Fri 16 Jun 2023 21:53:00 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 140611 IP address blocks: 103.150.254.0/23 maxlen: 23 103.150.254.0/24 maxlen: 24 103.150.255.0/24 maxlen: 24 2001:df3:9980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.crl rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:10:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2090 (0x82a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F6C/serialNumber=EDAF1E9A79D9FECB107883AFD3757FA8F70A32D7 Validity Not Before: Jun 16 21:53:00 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=648cd9bc-b7cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ac:11:ac:fd:01:b0:e5:73:44:4c:48:53:86: 21:80:76:8b:e6:c5:d6:d9:ba:40:7f:ce:53:43:d9: 05:6a:8c:b1:ce:1e:84:5b:bf:4b:25:9d:bd:c1:b0: 6b:f6:05:8c:a0:84:da:c3:7f:c3:49:37:27:a7:3a: 44:aa:12:aa:4b:f0:0a:0a:4d:d8:ba:df:8a:aa:80: 9b:43:ba:c4:3b:03:7e:17:39:7a:95:b9:96:3e:29: 6c:17:79:1d:fd:76:3d:9f:29:d6:80:79:b5:26:d8: d7:e5:88:f5:19:1b:b2:69:3b:c2:f8:43:4e:c2:c0: e7:9f:90:0b:7c:c8:10:11:df:26:16:92:b5:f2:98: d4:04:16:76:0e:c4:37:65:47:41:60:fd:d2:17:20: 90:57:1f:02:27:85:38:00:d9:d3:11:49:24:c3:ba: c1:06:e0:de:de:8c:d4:38:31:d7:9b:8f:28:0f:24: 71:39:34:ee:1e:50:3e:6e:c6:8e:3d:dd:73:c8:cc: 5c:70:70:c7:28:c2:c9:70:ae:56:c7:80:af:fd:80: dc:9e:26:db:36:e6:f3:68:a7:86:a1:9a:b8:88:5c: b8:ed:e8:c4:ba:af:65:ce:14:01:15:ea:ef:5f:11: 87:cb:ff:70:2b:68:a0:15:74:13:9e:b8:75:43:b2: 42:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:E5:FF:2E:53:20:23:25:B1:DF:B8:05:66:76:7F:41:C8:65:4E:13 X509v3 Authority Key Identifier: keyid:ED:AF:1E:9A:79:D9:FE:CB:10:78:83:AF:D3:75:7F:A8:F7:0A:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/FA7CB46C8AB411EA89D83541C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.254.0/23 IPv6: 2001:df3:9980::/48 Signature Algorithm: sha256WithRSAEncryption 8e:7b:c8:02:75:1c:6f:ae:ab:59:32:c6:39:e0:83:27:6e:b2: f2:36:eb:5d:a1:6d:23:ee:ee:9a:3d:e3:28:7d:c8:29:9a:40: 04:f4:e4:bd:51:e5:40:37:7f:af:cf:ff:e4:36:c8:ce:56:b4: 2b:c7:f7:46:16:d8:16:75:e0:75:18:81:c2:3d:53:27:77:19: 1e:a7:a0:65:dd:c1:d2:34:31:43:32:2b:21:f8:7d:5a:82:d7: 09:52:7f:62:eb:04:22:c3:93:f1:f5:96:b3:c0:37:04:90:44: 23:3a:b8:08:6a:d6:a2:1f:3b:d8:2d:6c:78:49:da:1b:b9:f0: 75:5f:50:c5:4d:f6:58:70:c2:de:a2:9b:ad:07:9f:47:da:88: 92:71:3f:59:db:37:55:26:49:6b:f9:db:c7:7b:9e:39:40:c1: d0:92:57:f0:a5:2b:2c:19:e1:fe:6c:44:86:97:62:6d:a4:b9: b6:41:6a:ef:ae:b6:d3:97:3a:99:02:c3:c0:3d:3d:8c:84:d0: 07:8d:60:ac:c6:b1:4b:b2:07:9c:ce:01:db:d2:7e:b6:35:10: c3:8a:c4:6d:f4:dc:f7:34:62:23:44:6f:0d:a2:fd:13:0d:07: 59:d1:b1:36:1f:f2:08:e2:06:b9:2b:34:6e:00:ad:65:5c:e7: 7f:ab:e2:40 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGNkMxMTAvBgNVBAUTKEVEQUYxRTlBNzlEOUZFQ0IxMDc4ODNBRkQzNzU3RkE4 RjcwQTMyRDcwHhcNMjMwNjE2MjE1MzAwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDhjZDliYy1iN2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKwRrP0BsOVzRExIU4YhgHaL5sXW2bpAf85TQ9kFaoyxzh6EW79LJZ29wbBr 9gWMoITaw3/DSTcnpzpEqhKqS/AKCk3Yut+KqoCbQ7rEOwN+Fzl6lbmWPilsF3kd /XY9nynWgHm1JtjX5Yj1GRuyaTvC+ENOwsDnn5ALfMgQEd8mFpK18pjUBBZ2DsQ3 ZUdBYP3SFyCQVx8CJ4U4ANnTEUkkw7rBBuDe3ozUODHXm48oDyRxOTTuHlA+bsaO Pd1zyMxccHDHKMLJcK5Wx4Cv/YDcnibbNubzaKeGoZq4iFy47ejEuq9lzhQBFerv XxGHy/9wK2igFXQTnrh1Q7JC/QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOzl/y5T ICMlsd+4BWZ2f0HIZU4TMB8GA1UdIwQYMBaAFO2vHpp52f7LEHiDr9N1f6j3CjLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY2Qy85RTMxRjNCMjhB QjMxMUVBOTNBNkJBM0VDNEY5QUUwMi83YThlbW5uWl9zc1FlSU92MDNWX3FQY0tN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhOGVtbm5aX3NzUWVJT3YwM1ZfcVBjS010Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJGNkMvOUUzMUYzQjI4QUIzMTFFQTkzQTZCQTNFQzRGOUFFMDIvRkE3Q0I0NkM4 QUI0MTFFQTg5RDgzNTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlv4wDwQCAAIwCQMHACABDfOZgDANBgkqhkiG9w0BAQsF AAOCAQEAjnvIAnUcb66rWTLGOeCDJ26y8jbrXaFtI+7umj3jKH3IKZpABPTkvVHl QDd/r8//5DbIzla0K8f3RhbYFnXgdRiBwj1TJ3cZHqegZd3B0jQxQzIrIfh9WoLX CVJ/YusEIsOT8fWWs8A3BJBEIzq4CGrWoh872C1seEnaG7nwdV9QxU32WHDC3qKb rQefR9qIknE/Wds3VSZJa/nbx3ueOUDB0JJX8KUrLBnh/mxEhpdibaS5tkFq7662 05c6mQLDwD09jITQB41grMaxS7IHnM4B29J+tjUQw4rEbfTc9zRiI0RvDaL9Ew0H WdGxNh/yCOIGuSs0bgCtZVznf6viQA== -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:25 2024 by rpki-client on console-ams.rpki-client.org