$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/ED99CAA81DC411EF9E620C48C4F9AE02.roa File: ED99CAA81DC411EF9E620C48C4F9AE02.roa (raw, json) Hash identifier: STg8SBnaSzWjKmwuI5mayylMKelnZKOmUJFv9qSfaQw= Subject key identifier: 0A:33:32:F1:F3:76:B1:23:8D:D0:0F:1C:86:02:91:9D:09:B6:58:67 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 093F Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/ED99CAA81DC411EF9E620C48C4F9AE02.roa Signing time: Fri 31 May 2024 22:08:51 +0000 ROA not before: Fri 31 May 2024 22:08:51 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 131471 IP address blocks: 103.150.154.0/24 maxlen: 24 103.150.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2367 (0x93f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: May 31 22:08:51 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665a4a73-f3b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:74:05:8a:37:9f:30:2d:39:26:71:eb:78:e6: 38:74:86:85:a4:91:00:bf:1b:47:9b:18:a6:78:4e: 70:55:cc:7a:ee:76:a3:8c:bd:a8:6c:c4:0f:b7:44: fb:86:13:db:75:8d:db:6e:a5:d9:83:95:69:28:5b: d8:2b:56:4e:df:b9:2d:e0:73:f7:f5:97:ec:0b:bf: f6:d0:f0:ca:d6:3e:fd:7f:11:7c:94:e1:c7:1d:67: 1e:cc:71:34:ce:96:7f:bb:64:c6:6b:0e:cc:47:d9: 50:64:85:bb:2a:7e:d9:9b:23:bd:c7:bb:b0:21:a9: f4:c5:d4:11:77:c9:0f:8c:46:71:96:b5:6d:2f:a4: 8e:76:87:bf:0d:14:ec:25:f5:02:7a:80:86:38:fe: e9:30:27:81:f3:4c:b0:f7:a9:c6:14:fb:30:9c:85: 21:b0:5d:cc:7e:45:af:41:3e:28:40:c1:db:b9:0b: 2d:90:a3:20:11:03:e1:16:83:4d:ed:69:93:ce:ac: 1a:44:dd:b3:91:7c:87:38:d9:1d:73:3f:6c:27:f2: b7:37:e4:c7:c6:2d:3f:a1:93:77:be:bd:57:b7:46: 6a:1e:c7:6c:00:99:74:d0:80:07:4e:f4:0d:2c:99: f3:10:e5:c3:e7:8e:70:8e:2e:5b:16:d9:1f:85:dc: bb:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:33:32:F1:F3:76:B1:23:8D:D0:0F:1C:86:02:91:9D:09:B6:58:67 X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/ED99CAA81DC411EF9E620C48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.154.0/23 Signature Algorithm: sha256WithRSAEncryption a8:cb:b5:a3:ee:be:93:93:ee:3e:4b:e6:fe:4a:c1:d2:ab:ea: b6:d7:3c:38:4c:a5:fd:b8:65:bc:73:b8:3d:5c:1a:64:07:aa: ac:2a:44:82:7f:29:d2:4b:11:a8:e3:51:ac:24:92:84:f9:b3: da:40:19:65:8e:ee:45:de:0b:0a:c4:6b:28:2f:db:10:d4:d7: 00:5b:db:26:cd:d0:5a:89:ed:8f:bd:ab:bc:52:a1:cf:2e:ce: 0b:73:1e:ee:41:c1:fd:8b:a4:7a:36:ff:33:db:84:97:5d:d3: 8f:01:05:5a:65:ba:a9:53:e4:42:7e:5b:df:7f:2a:26:5c:0e: f3:8a:d9:79:8b:e7:0e:16:78:23:70:02:9b:25:7a:1c:96:86: 6b:3e:dd:14:bc:f4:83:86:33:3c:f3:b4:0b:d9:b2:52:33:c9: 54:c5:78:fd:e5:eb:90:80:c9:28:d2:18:3f:3b:09:49:9b:88: 4c:eb:98:4f:99:87:f1:c9:13:8b:16:be:af:5c:2e:c7:b4:b4: 9d:e4:db:d9:a9:b4:1d:73:bb:f9:f0:b3:94:7d:25:f7:e1:56: 72:cf:b7:8f:89:3a:9d:a4:68:9d:49:91:e3:ac:7a:be:c0:b2: 61:93:67:1d:76:b4:f3:05:49:fd:24:a7:c9:14:80:57:2d:83: fe:42:74:2c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjQwNTMxMjIwODUxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVhNGE3My1mM2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nQFijefMC05JnHreOY4dIaFpJEAvxtHmximeE5wVcx67najjL2obMQPt0T7 hhPbdY3bbqXZg5VpKFvYK1ZO37kt4HP39ZfsC7/20PDK1j79fxF8lOHHHWcezHE0 zpZ/u2TGaw7MR9lQZIW7Kn7ZmyO9x7uwIan0xdQRd8kPjEZxlrVtL6SOdoe/DRTs JfUCeoCGOP7pMCeB80yw96nGFPswnIUhsF3MfkWvQT4oQMHbuQstkKMgEQPhFoNN 7WmTzqwaRN2zkXyHONkdcz9sJ/K3N+THxi0/oZN3vr1Xt0ZqHsdsAJl00IAHTvQN LJnzEOXD545wji5bFtkfhdy7IQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAozMvHz drEjjdAPHIYCkZ0JtlhnMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJGMzMvRTZFQzJEOTI4MDkxMTFFQUFCQ0RGRjZDQzRGOUFFMDIvRUQ5OUNBQTgx REM0MTFFRjlFNjIwQzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlpowDQYJKoZIhvcNAQELBQADggEBAKjLtaPuvpOT7j5L 5v5KwdKr6rbXPDhMpf24ZbxzuD1cGmQHqqwqRIJ/KdJLEajjUawkkoT5s9pAGWWO 7kXeCwrEaygv2xDU1wBb2ybN0FqJ7Y+9q7xSoc8uzgtzHu5Bwf2LpHo2/zPbhJdd 048BBVpluqlT5EJ+W99/KiZcDvOK2XmL5w4WeCNwApslehyWhms+3RS89IOGMzzz tAvZslIzyVTFeP3l65CAySjSGD87CUmbiEzrmE+Zh/HJE4sWvq9cLse0tJ3k29mp tB1zu/nws5R9JffhVnLPt4+JOp2kaJ1JkeOser7AsmGTZx12tPMFSf0kp8kUgFct g/5CdCw= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:36 2024 by rpki-client on console-ams.rpki-client.org