$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/8A480EFE80EE11EBA01B8C79C4F9AE02.roa File: 8A480EFE80EE11EBA01B8C79C4F9AE02.roa (raw, json) Hash identifier: nGCSzyeCGWb2by2Ok6xODoRNUK8MF0tF735aj9iyb9Y= Subject key identifier: BB:D2:11:81:45:07:29:17:52:3A:68:CB:D6:1C:A2:18:C9:4B:88:8C Certificate issuer: /CN=A91C66B7/serialNumber=C343B3BB83A7E23FAD95AF8D232B52052A0FDE72 Certificate serial: 08E8 Authority key identifier: C3:43:B3:BB:83:A7:E2:3F:AD:95:AF:8D:23:2B:52:05:2A:0F:DE:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w0Ozu4On4j-tla-NIytSBSoP3nI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/8A480EFE80EE11EBA01B8C79C4F9AE02.roa Signing time: Fri 14 Jun 2024 22:18:30 +0000 ROA not before: Fri 14 Jun 2024 22:18:30 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 136969 IP address blocks: 103.150.208.0/23 maxlen: 23 103.150.208.0/24 maxlen: 24 103.150.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.crl rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w0Ozu4On4j-tla-NIytSBSoP3nI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2280 (0x8e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B7/serialNumber=C343B3BB83A7E23FAD95AF8D232B52052A0FDE72 Validity Not Before: Jun 14 22:18:30 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666cc1b6-9496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4b:2c:71:86:44:c7:94:55:4d:4d:4b:55:93: 24:c3:1d:d6:3e:91:8c:a6:3b:43:73:8b:89:6d:72: 63:51:e9:3c:ae:f4:73:6d:66:2d:3a:15:99:84:d2: a8:30:d7:40:f7:4e:fd:f5:93:db:3a:95:53:3b:db: c6:f5:5a:20:2f:d5:0c:f9:52:97:33:37:7e:cf:8c: 9f:18:a0:0c:1a:11:bc:0f:96:43:93:b1:c8:ea:ed: d6:a0:d3:18:25:fe:57:af:9f:60:f6:b6:9d:96:2b: 6f:e1:9e:9e:69:02:a0:24:f7:2b:f2:5a:21:df:c1: a1:0c:d4:7d:cc:b1:4c:81:56:65:38:0a:c1:9c:29: 0d:ff:99:ec:53:f7:b6:aa:2c:9e:10:f0:cb:cb:53: c9:c2:00:b6:b6:ef:cd:4f:7a:df:22:74:a0:9f:5d: 5b:42:52:c6:34:b5:c4:6b:14:0a:ae:a2:0a:ab:8f: 55:54:2f:89:c5:c6:9f:8e:5a:da:6c:5a:43:95:3d: 29:fd:8e:04:d4:3d:b4:97:61:fb:3c:44:92:05:06: 66:f7:6d:cb:b4:54:d8:5c:8a:84:7f:03:fc:56:32: 6a:e0:56:d4:65:3e:75:d3:72:a6:d3:9d:fe:dc:a6: 91:c2:39:6c:df:5e:71:f7:b7:fe:45:06:f1:a6:68: 0c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D2:11:81:45:07:29:17:52:3A:68:CB:D6:1C:A2:18:C9:4B:88:8C X509v3 Authority Key Identifier: keyid:C3:43:B3:BB:83:A7:E2:3F:AD:95:AF:8D:23:2B:52:05:2A:0F:DE:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w0Ozu4On4j-tla-NIytSBSoP3nI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/8A480EFE80EE11EBA01B8C79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.208.0/23 Signature Algorithm: sha256WithRSAEncryption 14:dc:ab:5b:97:24:ee:b4:52:50:7e:da:34:65:bb:fd:c8:f0: f4:33:75:a5:22:47:dc:a6:8f:a3:58:a5:8e:f3:2e:da:ce:30: 18:47:ef:d9:d1:f1:8b:d6:dc:a3:70:66:f1:a3:a9:3d:5d:ed: 30:b1:dd:50:24:db:c5:6a:24:0c:ee:69:8a:74:75:be:fc:b4: 80:5b:01:6b:9d:49:e8:2e:5e:a0:68:c2:2b:76:81:8d:97:64: 04:ec:bc:ae:d5:3b:c4:90:1a:3a:f9:04:c0:c0:32:34:0f:f7: 6c:69:ed:25:40:14:91:bd:46:eb:e1:fd:3d:b0:ff:22:13:a3: 9b:be:f5:d2:58:3a:f8:39:91:1d:61:c2:fb:02:2f:fa:07:6a: 95:15:bd:eb:33:29:fd:75:51:19:c3:24:c4:95:83:4b:87:08: 80:27:bf:3b:09:d8:b1:55:e3:0e:e4:40:36:bb:58:ca:2a:2a: 54:1e:e4:71:c8:f2:7d:4f:fb:42:08:80:a3:10:25:08:1e:10: dc:3f:0c:dc:1b:b6:7f:57:86:bb:83:4a:2c:19:20:c4:7f:5c: ab:32:2c:0d:43:0a:68:37:c8:74:1e:7e:bd:49:ff:13:43:cd: c7:da:9c:e2:a1:a5:29:33:d8:eb:be:75:b2:ed:d4:89:df:d0: da:52:e6:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY2QjcxMTAvBgNVBAUTKEMzNDNCM0JCODNBN0UyM0ZBRDk1QUY4RDIzMkI1MjA1 MkEwRkRFNzIwHhcNMjQwNjE0MjIxODMwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZjYzFiNi05NDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0sscYZEx5RVTU1LVZMkwx3WPpGMpjtDc4uJbXJjUek8rvRzbWYtOhWZhNKo MNdA90799ZPbOpVTO9vG9VogL9UM+VKXMzd+z4yfGKAMGhG8D5ZDk7HI6u3WoNMY Jf5Xr59g9radlitv4Z6eaQKgJPcr8loh38GhDNR9zLFMgVZlOArBnCkN/5nsU/e2 qiyeEPDLy1PJwgC2tu/NT3rfInSgn11bQlLGNLXEaxQKrqIKq49VVC+Jxcafjlra bFpDlT0p/Y4E1D20l2H7PESSBQZm923LtFTYXIqEfwP8VjJq4FbUZT5103Km053+ 3KaRwjls315x97f+RQbxpmgMyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLvSEYFF BykXUjpoy9YcohjJS4iMMB8GA1UdIwQYMBaAFMNDs7uDp+I/rZWvjSMrUgUqD95y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjZCNy82NkNEQTRFODkx MTYxMUVBOTFDNDY1MENDNEY5QUUwMi93ME96dTRPbjRqLXRsYS1OSXl0U0JTb1Az bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3cwT3p1NE9uNGotdGxhLU5JeXRTQlNvUDNuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY2QjcvNjZDREE0RTg5MTE2MTFFQTkxQzQ2NTBDQzRGOUFFMDIvOEE0ODBFRkU4 MEVFMTFFQkEwMUI4Qzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnltAwDQYJKoZIhvcNAQELBQADggEBABTcq1uXJO60UlB+ 2jRlu/3I8PQzdaUiR9ymj6NYpY7zLtrOMBhH79nR8YvW3KNwZvGjqT1d7TCx3VAk 28VqJAzuaYp0db78tIBbAWudSeguXqBowit2gY2XZATsvK7VO8SQGjr5BMDAMjQP 92xp7SVAFJG9Ruvh/T2w/yITo5u+9dJYOvg5kR1hwvsCL/oHapUVveszKf11URnD JMSVg0uHCIAnvzsJ2LFV4w7kQDa7WMoqKlQe5HHI8n1P+0IIgKMQJQgeENw/DNwb tn9XhruDSiwZIMR/XKsyLA1DCmg3yHQefr1J/xNDzcfanOKhpSkz2Ou+dbLt1Inf 0NpS5iA= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org