$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9FE80B2898F711EE87DF6E1FC4F9AE02.roa File: 9FE80B2898F711EE87DF6E1FC4F9AE02.roa (raw, json) Hash identifier: 3GMLAnJmDhhd0m1larMtwrwk1UPsDhh/qmpaA5+afTs= Subject key identifier: 26:E2:DA:39:85:5B:18:45:86:84:C9:A2:E7:F1:81:A2:54:43:7B:52 Certificate issuer: /CN=A91FA5A2/serialNumber=F5B117054AF509C2C33369DA961F446DDCAB8342 Certificate serial: 6E Authority key identifier: F5:B1:17:05:4A:F5:09:C2:C3:33:69:DA:96:1F:44:6D:DC:AB:83:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9FE80B2898F711EE87DF6E1FC4F9AE02.roa Signing time: Mon 03 Jun 2024 08:42:26 +0000 ROA not before: Mon 03 Jun 2024 08:42:26 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 140577 IP address blocks: 103.150.140.0/23 maxlen: 23 103.150.140.0/24 maxlen: 24 103.150.141.0/24 maxlen: 24 202.8.40.0/22 maxlen: 24 202.94.84.0/23 maxlen: 24 2001:df3:7c80::/48 maxlen: 48 2401:59a0::/32 maxlen: 32 2401:59a0::/48 maxlen: 48 2401:59a0:1::/48 maxlen: 48 2401:59a0:2::/48 maxlen: 48 2401:59a0:3::/48 maxlen: 48 2401:59a0:4::/48 maxlen: 48 2401:59a0:5::/48 maxlen: 48 2401:59a0:6::/48 maxlen: 48 2401:59a0:7::/48 maxlen: 48 2401:59a0:8::/46 maxlen: 46 2401:59a0:c::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:04:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA5A2/serialNumber=F5B117054AF509C2C33369DA961F446DDCAB8342 Validity Not Before: Jun 3 08:42:26 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665d81f1-bd48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f6:fd:13:22:ef:9a:70:53:14:41:e7:9d:b0: 92:a2:ca:1e:5c:e2:f1:88:fe:93:d2:ea:16:5a:f6: c3:16:81:68:df:86:64:1d:1a:73:b8:ac:fe:af:e3: 70:63:0a:ca:77:b6:13:d9:48:fc:b8:7e:c1:e2:d4: d4:c1:1a:ae:6c:7b:8a:a0:3e:12:92:0e:05:69:fa: df:4a:62:c5:18:a4:86:1a:24:b4:90:72:57:fa:4a: c2:b4:0e:1d:06:76:8a:ec:ef:cd:86:7c:19:78:9b: 1e:af:e8:0a:b5:7e:16:56:39:fd:26:11:fb:e1:18: 87:03:15:6e:f3:46:e7:b3:7f:d8:93:12:4d:96:ec: 0b:ad:21:c3:3a:15:75:8d:f1:c5:d0:f8:f4:86:c3: f9:8e:7a:04:23:66:e4:ef:9e:ac:69:65:30:66:0a: 63:05:82:44:8b:e4:26:2c:f6:9b:7f:d5:7e:80:fb: 60:41:2a:5d:9d:f5:e1:46:d6:36:2a:df:64:ef:1f: 19:ab:75:9d:fa:9e:1d:a0:4a:f0:8c:45:b2:1b:9c: 89:7b:80:aa:a6:88:24:d9:a6:f2:c9:80:34:b5:da: e3:6d:e9:8c:7c:60:c1:4b:a1:90:11:97:0b:86:9f: b4:e1:23:e3:13:f9:2d:99:48:7c:51:55:98:90:54: c3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:E2:DA:39:85:5B:18:45:86:84:C9:A2:E7:F1:81:A2:54:43:7B:52 X509v3 Authority Key Identifier: keyid:F5:B1:17:05:4A:F5:09:C2:C3:33:69:DA:96:1F:44:6D:DC:AB:83:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9FE80B2898F711EE87DF6E1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.140.0/23 202.8.40.0/22 202.94.84.0/23 IPv6: 2001:df3:7c80::/48 2401:59a0::/32 Signature Algorithm: sha256WithRSAEncryption 55:c8:2d:f2:c3:be:c7:2a:0c:00:01:7c:3a:39:b4:31:57:e7: ec:77:52:3a:12:4c:aa:62:29:8f:d8:75:ac:8b:3a:a1:78:35: 0f:43:84:89:28:13:2e:d4:a1:b1:6f:15:b8:a4:a9:91:23:2f: 44:37:d0:81:b0:b0:ed:db:11:0e:bf:ab:d9:d1:2f:2b:e3:76: 63:1d:9c:96:67:5f:46:29:bd:03:7c:ef:37:f0:aa:f9:62:21: f6:e0:aa:51:10:e3:a5:e4:03:86:d1:20:61:7d:d2:3b:3b:c7: 20:c7:24:56:1c:08:b9:13:68:c9:8b:f4:e9:9f:50:c7:de:32: 59:60:af:98:b6:43:04:fd:e6:b8:a4:49:52:2b:1f:a3:cb:22: 72:a8:e1:18:0e:1e:77:81:1d:9a:9c:7c:cc:31:bb:43:de:0d: 26:26:bf:01:09:f2:16:aa:b4:b8:82:de:b0:b2:f6:b5:8a:7a: 4e:9c:2c:2c:13:e3:4b:bc:de:3c:fe:b6:48:c5:dc:ab:4e:a9: 77:0b:b1:1e:27:64:45:d8:3b:90:2c:2e:ad:9a:3d:64:40:ab: bc:d3:a1:bb:42:a0:2d:18:0a:2e:38:41:fa:01:85:05:06:5b: 9a:14:64:4b:f0:59:d7:62:6a:0d:b0:97:31:14:75:57:37:fb: aa:6e:21:39 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QTVBMjExMC8GA1UEBRMoRjVCMTE3MDU0QUY1MDlDMkMzMzM2OURBOTYxRjQ0NkRE Q0FCODM0MjAeFw0yNDA2MDMwODQyMjZaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NWQ4MWYxLWJkNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDP9v0TIu+acFMUQeedsJKiyh5c4vGI/pPS6hZa9sMWgWjfhmQdGnO4rP6v43Bj Csp3thPZSPy4fsHi1NTBGq5se4qgPhKSDgVp+t9KYsUYpIYaJLSQclf6SsK0Dh0G dors782GfBl4mx6v6Aq1fhZWOf0mEfvhGIcDFW7zRuezf9iTEk2W7AutIcM6FXWN 8cXQ+PSGw/mOegQjZuTvnqxpZTBmCmMFgkSL5CYs9pt/1X6A+2BBKl2d9eFG1jYq 32TvHxmrdZ36nh2gSvCMRbIbnIl7gKqmiCTZpvLJgDS12uNt6Yx8YMFLoZARlwuG n7ThI+MT+S2ZSHxRVZiQVMP7AgMBAAGjggK5MIICtTAdBgNVHQ4EFgQUJuLaOYVb GEWGhMmi5/GBolRDe1IwHwYDVR0jBBgwFoAU9bEXBUr1CcLDM2nalh9Ebdyrg0Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBNUEyLzQ2NzBFQUFDOThG NjExRUVCQkYxRjQxN0M0RjlBRTAyLzliRVhCVXIxQ2NMRE0ybmFsaDlFYmR5cmcw SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOWJFWEJVcjFDY0xETTJuYWxoOUViZHlyZzBJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTVBMi80NjcwRUFBQzk4RjYxMUVFQkJGMUY0MTdDNEY5QUUwMi85RkU4MEIyODk4 RjcxMUVFODdERjZFMUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBDBggrBgEFBQcBBwEB/wQ0 MDIwGAQCAAEwEgMEAWeWjAMEAsoIKAMEAcpeVDAWBAIAAjAQAwcAIAEN83yAAwUA JAFZoDANBgkqhkiG9w0BAQsFAAOCAQEAVcgt8sO+xyoMAAF8Ojm0MVfn7HdSOhJM qmIpj9h1rIs6oXg1D0OEiSgTLtShsW8VuKSpkSMvRDfQgbCw7dsRDr+r2dEvK+N2 Yx2clmdfRim9A3zvN/Cq+WIh9uCqURDjpeQDhtEgYX3SOzvHIMckVhwIuRNoyYv0 6Z9Qx94yWWCvmLZDBP3muKRJUisfo8sicqjhGA4ed4Edmpx8zDG7Q94NJia/AQny Fqq0uILesLL2tYp6TpwsLBPjS7zePP62SMXcq06pdwuxHidkRdg7kCwurZo9ZECr vNOhu0KgLRgKLjhB+gGFBQZbmhRkS/BZ12JqDbCXMRR1Vzf7qm4hOQ== -----END CERTIFICATE-----Generated at Mon Nov 25 04:54:40 2024 by rpki-client on console-fra.rpki-client.org