$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9FE80B2898F711EE87DF6E1FC4F9AE02.roa File: 9FE80B2898F711EE87DF6E1FC4F9AE02.roa (raw, json) Hash identifier: v4cQH88v9SBKVJ4k+DZ6E06a5eSVekHDtLQSR49YDI8= Subject key identifier: 7A:5E:30:3D:60:2A:79:1A:50:1D:96:82:4C:0C:C0:37:B8:07:0B:16 Certificate issuer: /CN=A91FA5A2/serialNumber=F5B117054AF509C2C33369DA961F446DDCAB8342 Certificate serial: 60 Authority key identifier: F5:B1:17:05:4A:F5:09:C2:C3:33:69:DA:96:1F:44:6D:DC:AB:83:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9FE80B2898F711EE87DF6E1FC4F9AE02.roa Signing time: Wed 15 May 2024 14:07:48 +0000 ROA not before: Wed 15 May 2024 14:07:48 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 140577 IP address blocks: 103.150.140.0/23 maxlen: 23 103.150.140.0/24 maxlen: 24 103.150.141.0/24 maxlen: 24 202.8.40.0/22 maxlen: 24 202.94.84.0/23 maxlen: 24 2001:df3:7c80::/48 maxlen: 48 2401:59a0::/32 maxlen: 32 2401:59a0::/48 maxlen: 48 2401:59a0:1::/48 maxlen: 48 2401:59a0:2::/48 maxlen: 48 2401:59a0:3::/48 maxlen: 48 2401:59a0:4::/48 maxlen: 48 2401:59a0:5::/48 maxlen: 48 2401:59a0:6::/48 maxlen: 48 2401:59a0:7::/48 maxlen: 48 2401:59a0:8::/46 maxlen: 46 2401:59a0:c::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA5A2/serialNumber=F5B117054AF509C2C33369DA961F446DDCAB8342 Validity Not Before: May 15 14:07:48 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6644c1b4-6d07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:00:ee:b6:36:c0:4d:f9:86:8d:82:99:e6:3f: ef:f9:34:36:9e:60:c4:f6:33:96:3c:0c:08:d6:4e: 6a:a5:c7:ee:4d:28:ed:3a:34:50:f7:cc:89:7b:1c: b5:50:b3:95:18:51:f0:e1:be:ae:09:bb:0a:e7:5e: d1:7a:a4:03:80:3c:27:5f:87:e1:a7:ec:cf:13:b6: 38:33:86:b9:14:cd:4a:23:93:3a:04:0f:6f:c5:c4: 2b:6e:a1:de:c8:91:09:1d:c6:ba:73:df:27:c6:ac: 5e:9f:91:86:e0:ea:03:2f:dd:a5:7a:9b:7e:e2:c4: 96:09:bc:c9:b7:18:e5:62:6a:62:d7:f1:2a:ca:03: e1:9b:40:ac:08:58:eb:db:03:bc:a2:27:02:06:82: 7a:8b:30:47:92:20:d9:30:8d:05:be:24:0a:dd:53: 80:72:54:44:cb:09:fd:cc:63:ca:6a:d1:8b:0f:01: 54:f7:21:0c:01:e0:d9:13:fe:cc:ce:d9:13:14:01: 2a:fd:3a:a1:cc:04:8b:03:dc:a0:73:6d:31:6e:b0: 17:72:ca:76:19:2e:c4:0a:a3:a1:8f:b1:39:87:b8: 6e:fd:a2:90:38:57:71:43:90:58:40:88:06:b2:15: 8b:ee:34:e0:b5:4a:02:59:ba:5f:03:0f:8f:71:79: 8e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:5E:30:3D:60:2A:79:1A:50:1D:96:82:4C:0C:C0:37:B8:07:0B:16 X509v3 Authority Key Identifier: keyid:F5:B1:17:05:4A:F5:09:C2:C3:33:69:DA:96:1F:44:6D:DC:AB:83:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9FE80B2898F711EE87DF6E1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.140.0/23 202.8.40.0/22 202.94.84.0/23 IPv6: 2001:df3:7c80::/48 2401:59a0::/32 Signature Algorithm: sha256WithRSAEncryption 88:11:40:af:f2:14:10:ac:30:32:9f:ce:79:c6:f5:85:4e:9d: 20:b5:ea:9d:e0:72:d2:de:60:6e:73:bd:f8:b3:18:e6:a3:0a: 02:36:57:74:b6:a7:50:20:ac:af:80:3a:67:d1:2c:ad:e9:80: b0:50:ac:7f:e6:0a:23:21:a7:bb:55:de:3f:3c:0b:64:8c:25: 48:a1:61:a9:8e:60:a0:50:25:b0:84:74:84:f5:64:41:f2:79: dd:d3:ca:5f:9b:4d:cb:cd:93:e3:27:c3:af:b7:a4:3a:0d:21: 04:3f:15:98:b7:6d:34:f7:fb:e4:45:4d:44:0a:bf:74:8c:20: 7e:82:63:e4:9a:79:71:9f:53:12:bf:29:c5:92:bc:80:e8:59: 0e:95:a8:04:34:43:47:d6:48:fa:a6:77:4b:69:89:bb:cd:3b: 96:92:f3:42:96:b2:ee:3c:e7:c1:e2:43:52:e3:34:84:e2:91: 55:a9:b5:4f:ac:f1:ff:b5:5e:cc:c8:1a:26:04:0e:dc:ad:1b: 32:99:20:0e:a5:7c:24:ff:08:d8:7d:e5:c8:f3:08:79:f8:41: df:25:e9:52:9e:3f:69:05:94:23:5d:30:65:6f:b4:38:1a:97: 44:97:6a:1c:c6:cb:ed:1e:3d:87:3e:e0:e6:24:90:b6:ef:4d: d2:ee:f8:15 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QTVBMjExMC8GA1UEBRMoRjVCMTE3MDU0QUY1MDlDMkMzMzM2OURBOTYxRjQ0NkRE Q0FCODM0MjAeFw0yNDA1MTUxNDA3NDhaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDRjMWI0LTZkMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDAO62NsBN+YaNgpnmP+/5NDaeYMT2M5Y8DAjWTmqlx+5NKO06NFD3zIl7HLVQ s5UYUfDhvq4JuwrnXtF6pAOAPCdfh+Gn7M8TtjgzhrkUzUojkzoED2/FxCtuod7I kQkdxrpz3yfGrF6fkYbg6gMv3aV6m37ixJYJvMm3GOViamLX8SrKA+GbQKwIWOvb A7yiJwIGgnqLMEeSINkwjQW+JArdU4ByVETLCf3MY8pq0YsPAVT3IQwB4NkT/szO 2RMUASr9OqHMBIsD3KBzbTFusBdyynYZLsQKo6GPsTmHuG79opA4V3FDkFhAiAay FYvuNOC1SgJZul8DD49xeY49AgMBAAGjggK5MIICtTAdBgNVHQ4EFgQUel4wPWAq eRpQHZaCTAzAN7gHCxYwHwYDVR0jBBgwFoAU9bEXBUr1CcLDM2nalh9Ebdyrg0Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBNUEyLzQ2NzBFQUFDOThG NjExRUVCQkYxRjQxN0M0RjlBRTAyLzliRVhCVXIxQ2NMRE0ybmFsaDlFYmR5cmcw SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOWJFWEJVcjFDY0xETTJuYWxoOUViZHlyZzBJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTVBMi80NjcwRUFBQzk4RjYxMUVFQkJGMUY0MTdDNEY5QUUwMi85RkU4MEIyODk4 RjcxMUVFODdERjZFMUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBDBggrBgEFBQcBBwEB/wQ0 MDIwGAQCAAEwEgMEAWeWjAMEAsoIKAMEAcpeVDAWBAIAAjAQAwcAIAEN83yAAwUA JAFZoDANBgkqhkiG9w0BAQsFAAOCAQEAiBFAr/IUEKwwMp/Oecb1hU6dILXqneBy 0t5gbnO9+LMY5qMKAjZXdLanUCCsr4A6Z9EsremAsFCsf+YKIyGnu1XePzwLZIwl SKFhqY5goFAlsIR0hPVkQfJ53dPKX5tNy82T4yfDr7ekOg0hBD8VmLdtNPf75EVN RAq/dIwgfoJj5Jp5cZ9TEr8pxZK8gOhZDpWoBDRDR9ZI+qZ3S2mJu807lpLzQpay 7jznweJDUuM0hOKRVam1T6zx/7VezMgaJgQO3K0bMpkgDqV8JP8I2H3lyPMIefhB 3yXpUp4/aQWUI10wZW+0OBqXRJdqHMbL7R49hz7g5iSQtu9N0u74FQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:36 2024 by rpki-client on console-ams.rpki-client.org