$ rpki-client -vvf rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/FB1BF574E7E411EC84283679C4F9AE02.roa File: FB1BF574E7E411EC84283679C4F9AE02.roa (raw, json) Hash identifier: ZM5rRUd00+nBfPasOFVmxXpUPYX0MShZkN1FXso/iDI= Subject key identifier: C2:0D:52:16:DC:64:A2:34:66:65:45:2C:71:E2:C8:89:F4:6D:5F:6D Certificate issuer: /CN=A911C6E1/serialNumber=E34B28542056CE9E0650FEFC0AB124216CB5F9C1 Certificate serial: 027F Authority key identifier: E3:4B:28:54:20:56:CE:9E:06:50:FE:FC:0A:B1:24:21:6C:B5:F9:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/FB1BF574E7E411EC84283679C4F9AE02.roa Signing time: Wed 13 Nov 2024 01:04:32 +0000 ROA not before: Wed 13 Nov 2024 01:04:32 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 135664 IP address blocks: 43.230.60.0/22 maxlen: 24 103.78.128.0/22 maxlen: 22 103.78.128.0/24 maxlen: 24 103.78.129.0/24 maxlen: 24 103.78.130.0/24 maxlen: 24 103.78.131.0/24 maxlen: 24 2407:c180::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.crl rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 639 (0x27f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C6E1/serialNumber=E34B28542056CE9E0650FEFC0AB124216CB5F9C1 Validity Not Before: Nov 13 01:04:32 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6733fb1f-01f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:85:3e:75:12:b1:30:30:b0:a7:57:0d:d9:74: 54:f2:fb:b6:d3:1b:a0:e7:61:5f:9f:00:97:24:96: 23:fc:ca:71:9e:c5:ef:cc:7a:55:22:af:f5:5d:42: a9:60:41:80:f0:6e:6b:52:d7:9b:d0:3a:90:59:0b: 56:b2:2e:0b:6c:ea:79:50:ae:8e:f0:f5:00:9f:dc: 76:d5:a1:39:fb:ce:ef:70:11:8b:ac:53:ab:7d:93: ee:33:6a:81:09:ae:bf:42:5a:7c:3d:60:b2:c6:50: d9:58:ec:28:71:9a:e5:75:78:a9:63:06:90:f8:ef: c1:8b:88:2f:85:ac:84:02:7e:41:0f:bd:70:91:a4: 0a:be:57:76:8d:77:88:d8:a4:d3:48:aa:2d:47:7d: 9f:a5:c1:5e:06:d0:af:04:48:3e:ac:94:96:a1:cd: 2e:5d:27:bd:7d:a1:f8:0b:c2:ec:1d:d3:73:19:44: df:6a:bc:d8:e4:5b:e7:62:9b:d9:95:3e:38:65:b0: 04:b1:5a:5e:3f:be:ca:7e:55:b1:b4:60:55:97:30: e4:c2:a3:99:70:a9:73:08:d0:b9:de:d0:88:b0:d4: f2:3b:fd:15:28:e4:02:b5:67:8b:d8:8c:21:89:95: c2:92:79:f9:2e:90:71:2d:b1:1a:0c:7c:e7:20:77: 3d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:0D:52:16:DC:64:A2:34:66:65:45:2C:71:E2:C8:89:F4:6D:5F:6D X509v3 Authority Key Identifier: keyid:E3:4B:28:54:20:56:CE:9E:06:50:FE:FC:0A:B1:24:21:6C:B5:F9:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/FB1BF574E7E411EC84283679C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.60.0/22 103.78.128.0/22 IPv6: 2407:c180::/32 Signature Algorithm: sha256WithRSAEncryption bf:67:9d:00:2d:9a:d1:b4:d0:fd:7c:e3:41:dc:70:0e:cf:dc: a7:f3:a0:46:20:13:de:af:db:46:18:12:41:6e:2e:fd:72:2a: e1:b1:54:d9:f8:1b:25:dd:24:07:89:4f:16:05:33:e5:71:a7: a4:0d:c8:8d:70:a3:d0:1e:2e:e3:22:fe:a6:58:c8:c2:c3:67: c9:59:17:7b:9b:4c:6c:2a:10:d1:df:14:8c:44:9d:3b:ce:5d: fe:c0:c7:25:77:a8:b6:55:60:4b:48:3f:bf:af:bc:3b:9b:3b: 4f:b1:c7:07:dc:b8:fa:ee:11:25:0e:c1:31:e7:6c:fc:3e:61: 1b:f9:b6:83:02:d3:cf:c1:d0:3b:ff:15:1f:77:8f:48:4f:34: e0:ad:e4:10:f2:2a:16:be:70:1c:20:27:04:7f:21:4d:5f:77: 41:e1:51:7e:98:e3:87:0e:e7:67:7d:8e:a6:bd:18:09:41:52: ff:21:87:3d:18:de:f2:99:a1:b8:a6:74:58:68:63:7e:93:1f: 0e:64:98:e3:ad:d6:e5:e3:f9:9d:c5:2b:43:4d:fd:b0:db:cd: 29:9d:75:1e:72:17:ea:c6:37:64:50:f1:9b:cc:56:60:b9:7f: 8f:48:f6:d8:8d:b8:3e:00:13:a8:30:f9:50:f6:95:b8:35:94: 48:42:c7:16 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2RTExMTAvBgNVBAUTKEUzNEIyODU0MjA1NkNFOUUwNjUwRkVGQzBBQjEyNDIx NkNCNUY5QzEwHhcNMjQxMTEzMDEwNDMyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzZmIxZi0wMWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmIU+dRKxMDCwp1cN2XRU8vu20xug52FfnwCXJJYj/MpxnsXvzHpVIq/1XUKp YEGA8G5rUteb0DqQWQtWsi4LbOp5UK6O8PUAn9x21aE5+87vcBGLrFOrfZPuM2qB Ca6/Qlp8PWCyxlDZWOwocZrldXipYwaQ+O/Bi4gvhayEAn5BD71wkaQKvld2jXeI 2KTTSKotR32fpcFeBtCvBEg+rJSWoc0uXSe9faH4C8LsHdNzGUTfarzY5FvnYpvZ lT44ZbAEsVpeP77KflWxtGBVlzDkwqOZcKlzCNC53tCIsNTyO/0VKOQCtWeL2Iwh iZXCknn5LpBxLbEaDHznIHc9nwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFMINUhbc ZKI0ZmVFLHHiyIn0bV9tMB8GA1UdIwQYMBaAFONLKFQgVs6eBlD+/AqxJCFstfnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzZFMS9BNTdEODZEOEU3 REUxMUVDOEQ4QzVDNURDNEY5QUUwMi80MHNvVkNCV3pwNEdVUDc4Q3JFa0lXeTEt Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwc29WQ0JXenA0R1VQNzhDckVrSVd5MS1jRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2RTEvQTU3RDg2RDhFN0RFMTFFQzhEOEM1QzVEQzRGOUFFMDIvRkIxQkY1NzRF N0U0MTFFQzg0MjgzNjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr5jwDBAJnToAwDQQCAAIwBwMFACQHwYAwDQYJKoZIhvcN AQELBQADggEBAL9nnQAtmtG00P1840HccA7P3KfzoEYgE96v20YYEkFuLv1yKuGx VNn4GyXdJAeJTxYFM+Vxp6QNyI1wo9AeLuMi/qZYyMLDZ8lZF3ubTGwqENHfFIxE nTvOXf7AxyV3qLZVYEtIP7+vvDubO0+xxwfcuPruESUOwTHnbPw+YRv5toMC08/B 0Dv/FR93j0hPNOCt5BDyKha+cBwgJwR/IU1fd0HhUX6Y44cO52d9jqa9GAlBUv8h hz0Y3vKZobimdFhoY36THw5kmOOt1uXj+Z3FK0NN/bDbzSmddR5yF+rGN2RQ8ZvM VmC5f49I9tiNuD4AE6gw+VD2lbg1lEhCxxY= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org