$ rpki-client -vvf rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/F603D584E99611EDB0837738C4F9AE02.roa File: F603D584E99611EDB0837738C4F9AE02.roa (raw, json) Hash identifier: 6nB/KmefxorxIHqA+6HljMV6NnIVdD7TanP2q7xzNf0= Subject key identifier: 4D:FA:86:9F:F1:2F:6E:27:FF:B0:9E:70:3C:CF:C1:24:1E:E8:CF:1B Certificate issuer: /CN=A91D78FD/serialNumber=8C5593CA9680A5EA387833FD3440234B9E8020D0 Certificate serial: 0588 Authority key identifier: 8C:55:93:CA:96:80:A5:EA:38:78:33:FD:34:40:23:4B:9E:80:20:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFWTypaApeo4eDP9NEAjS56AINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/F603D584E99611EDB0837738C4F9AE02.roa Signing time: Tue 11 Jun 2024 01:35:40 +0000 ROA not before: Tue 11 Jun 2024 01:35:40 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151206 IP address blocks: 103.150.210.0/23 maxlen: 23 103.150.210.0/24 maxlen: 24 103.150.211.0/24 maxlen: 24 2406:7c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.crl rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFWTypaApeo4eDP9NEAjS56AINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1416 (0x588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D78FD/serialNumber=8C5593CA9680A5EA387833FD3440234B9E8020D0 Validity Not Before: Jun 11 01:35:40 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6667a9ec-2eb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:21:15:a3:d4:75:89:9a:97:1a:01:d1:29:fd: 49:b3:66:ca:41:8d:fe:f6:ad:a0:0a:c6:77:4c:42: d4:dd:fd:a8:4c:b2:c5:c9:c5:83:be:4c:c5:dc:e7: 16:10:b3:fb:9b:8b:8a:33:95:f2:e9:34:24:59:35: a3:ca:7c:3e:63:47:a0:64:3a:31:4a:8e:64:17:29: e3:ab:bc:d0:89:f3:da:ab:2b:0b:0c:ac:b2:eb:d7: 76:1d:34:d8:ae:44:ed:10:16:81:6b:f0:02:d7:3a: 42:3d:02:c8:7f:ae:c9:45:18:4c:08:09:71:c7:5b: c1:be:35:e7:bb:39:42:af:cf:9d:75:07:31:d9:a1: 39:68:58:bd:17:d6:d6:d9:3c:e3:21:00:2e:04:68: b6:15:d8:e7:02:25:c6:8f:fd:a6:33:c9:10:87:b7: c9:e5:3c:a1:d1:05:d9:2c:c9:da:f4:bb:0b:5a:b3: e8:aa:f9:2a:2e:74:f4:d6:01:ae:9d:92:db:0c:92: 6b:b8:e6:66:3e:d1:53:0a:10:31:9d:75:49:c1:9f: 0e:84:4d:73:d4:9e:ab:81:87:2d:11:a3:8f:4b:72: 0b:72:de:d3:d9:c6:15:2b:60:35:55:70:b9:3a:9e: 9c:05:6c:07:73:53:ff:21:d6:96:df:38:05:3c:45: c0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:FA:86:9F:F1:2F:6E:27:FF:B0:9E:70:3C:CF:C1:24:1E:E8:CF:1B X509v3 Authority Key Identifier: keyid:8C:55:93:CA:96:80:A5:EA:38:78:33:FD:34:40:23:4B:9E:80:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFWTypaApeo4eDP9NEAjS56AINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/F603D584E99611EDB0837738C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.210.0/23 IPv6: 2406:7c0::/32 Signature Algorithm: sha256WithRSAEncryption 77:7a:5f:8b:70:49:0a:be:a7:e2:b2:7c:ef:40:09:7f:e8:60: e7:94:b7:4d:2a:76:a1:58:1c:29:ee:2d:38:ea:47:14:72:b0: e6:22:3a:43:44:8b:b0:b6:24:13:9f:02:20:de:0b:9f:25:ef: d9:ad:b1:a5:9b:88:26:6c:80:87:b6:aa:5a:6a:1f:42:07:16: d5:0d:04:a7:c6:fe:d8:a2:88:87:d2:75:b5:74:af:d8:12:b9: 68:94:6a:c2:dd:aa:e7:cc:ce:da:74:01:3a:db:a1:82:fc:4d: c1:57:db:b7:f2:42:b7:1d:31:a4:a9:56:0f:92:76:be:4c:24: 60:bf:4e:93:29:89:2e:67:5c:b5:a4:49:61:a1:8e:f9:ef:fd: 38:3a:0d:5c:a1:4f:b8:bc:72:07:b9:a7:fa:9d:c6:f9:77:e2: 7b:c2:f5:f7:b4:aa:c1:10:4c:9a:e6:4e:a5:ff:de:8c:e5:d4: f3:f1:59:67:ff:2f:4e:e0:d0:b7:13:06:1c:7e:d3:f5:cf:38: 45:13:81:fd:5c:89:bb:48:f2:b4:6b:fe:8f:ba:53:3a:f8:fc: 19:fc:b3:b8:2d:da:b4:40:15:1a:26:1c:7b:2e:21:24:db:55: 86:32:c9:53:30:a1:c6:9d:f2:4d:5d:98:0a:dd:e0:0c:5e:e6: 20:40:6f:e8 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc4RkQxMTAvBgNVBAUTKDhDNTU5M0NBOTY4MEE1RUEzODc4MzNGRDM0NDAyMzRC OUU4MDIwRDAwHhcNMjQwNjExMDEzNTQwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY3YTllYy0yZWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyEVo9R1iZqXGgHRKf1Js2bKQY3+9q2gCsZ3TELU3f2oTLLFycWDvkzF3OcW ELP7m4uKM5Xy6TQkWTWjynw+Y0egZDoxSo5kFynjq7zQifPaqysLDKyy69d2HTTY rkTtEBaBa/AC1zpCPQLIf67JRRhMCAlxx1vBvjXnuzlCr8+ddQcx2aE5aFi9F9bW 2TzjIQAuBGi2FdjnAiXGj/2mM8kQh7fJ5Tyh0QXZLMna9LsLWrPoqvkqLnT01gGu nZLbDJJruOZmPtFTChAxnXVJwZ8OhE1z1J6rgYctEaOPS3ILct7T2cYVK2A1VXC5 Op6cBWwHc1P/IdaW3zgFPEXA2QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFE36hp/x L24n/7CecDzPwSQe6M8bMB8GA1UdIwQYMBaAFIxVk8qWgKXqOHgz/TRAI0uegCDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzhGRC9DODBGNkY5MDlC NkQxMUVCODJGQTAzM0VDNEY5QUUwMi9qRldUeXBhQXBlbzRlRFA5TkVBalM1NkFJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pGV1R5cGFBcGVvNGVEUDlORUFqUzU2QUlOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDc4RkQvQzgwRjZGOTA5QjZEMTFFQjgyRkEwMzNFQzRGOUFFMDIvRjYwM0Q1ODRF OTk2MTFFREIwODM3NzM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnltIwDQQCAAIwBwMFACQGB8AwDQYJKoZIhvcNAQELBQAD ggEBAHd6X4twSQq+p+KyfO9ACX/oYOeUt00qdqFYHCnuLTjqRxRysOYiOkNEi7C2 JBOfAiDeC58l79mtsaWbiCZsgIe2qlpqH0IHFtUNBKfG/tiiiIfSdbV0r9gSuWiU asLdqufMztp0ATrboYL8TcFX27fyQrcdMaSpVg+Sdr5MJGC/TpMpiS5nXLWkSWGh jvnv/Tg6DVyhT7i8cge5p/qdxvl34nvC9fe0qsEQTJrmTqX/3ozl1PPxWWf/L07g 0LcTBhx+0/XPOEUTgf1cibtI8rRr/o+6Uzr4/Bn8s7gt2rRAFRomHHsuISTbVYYy yVMwocad8k1dmArd4Axe5iBAb+g= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:24 2024 by rpki-client on console-fra.rpki-client.org