$ rpki-client -vvf rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/FB1BF574E7E411EC84283679C4F9AE02.roa File: FB1BF574E7E411EC84283679C4F9AE02.roa (raw, json) Hash identifier: Y0xU0sF/YnU5X2Wjw8sN3PDglph7zaRxBU1JVkINP7k= Subject key identifier: 48:58:D4:36:4A:1A:88:FA:15:D0:85:BB:FB:7E:90:CA:57:A9:2B:24 Certificate issuer: /CN=A911C6E1/serialNumber=E34B28542056CE9E0650FEFC0AB124216CB5F9C1 Certificate serial: 01BE Authority key identifier: E3:4B:28:54:20:56:CE:9E:06:50:FE:FC:0A:B1:24:21:6C:B5:F9:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/FB1BF574E7E411EC84283679C4F9AE02.roa Signing time: Thu 09 Nov 2023 03:54:07 +0000 ROA not before: Thu 09 Nov 2023 03:54:07 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 135664 IP address blocks: 43.230.60.0/22 maxlen: 24 103.78.128.0/22 maxlen: 22 103.78.128.0/24 maxlen: 24 103.78.129.0/24 maxlen: 24 103.78.130.0/24 maxlen: 24 103.78.131.0/24 maxlen: 24 2407:c180::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.crl rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C6E1/serialNumber=E34B28542056CE9E0650FEFC0AB124216CB5F9C1 Validity Not Before: Nov 9 03:54:07 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654c57df-ca19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:dc:f5:e2:3e:23:44:df:fc:3b:6b:4a:5c:9c: b5:eb:c5:dd:2a:fb:8e:95:a1:b4:14:79:3a:14:58: 48:fe:65:d3:87:8c:c2:dd:03:46:65:ff:84:a4:57: e8:a4:32:67:72:8b:1c:83:ec:89:30:d0:f0:e5:24: 6c:bd:b0:cb:e1:41:c7:95:61:23:af:0d:41:06:d2: e1:99:4c:7d:12:68:16:ec:f8:8f:9f:41:c3:ab:8f: 11:d2:83:01:97:53:51:fc:a8:8c:dd:1c:34:95:90: e0:15:7c:2b:b8:ce:e2:40:34:47:7d:2b:32:ac:af: 1e:f0:7a:0f:a3:2c:0c:6a:21:a1:76:71:04:d0:46: 75:e1:61:69:02:94:5b:2c:b4:ca:48:f9:80:f1:25: cd:72:a8:99:2f:29:c0:76:85:2a:3a:67:fb:91:f6: 35:97:70:b6:82:ab:f2:35:67:ea:c9:1c:28:bc:6b: 4b:fc:e2:5d:61:a8:3a:e9:98:28:6f:4b:ef:9a:a0: d1:c0:72:c2:f1:d1:e5:7c:d7:fa:4e:1b:08:39:a6: a3:aa:d5:cc:b7:1d:ac:17:c4:be:85:a7:2e:d9:02: 6e:e3:b3:4a:af:c8:cc:3c:73:d7:28:ab:75:7d:ca: 7d:5b:f3:94:92:ce:76:17:ef:83:40:d8:d4:04:91: 19:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:58:D4:36:4A:1A:88:FA:15:D0:85:BB:FB:7E:90:CA:57:A9:2B:24 X509v3 Authority Key Identifier: keyid:E3:4B:28:54:20:56:CE:9E:06:50:FE:FC:0A:B1:24:21:6C:B5:F9:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/FB1BF574E7E411EC84283679C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.60.0/22 103.78.128.0/22 IPv6: 2407:c180::/32 Signature Algorithm: sha256WithRSAEncryption 8a:e7:0b:63:ac:80:58:60:9d:2f:61:22:ed:96:af:fb:70:d0: 0d:fa:d9:32:08:b0:e1:a1:3e:79:8b:d2:7a:89:a9:80:af:9c: 14:95:8a:70:6e:45:84:a4:c3:cf:71:b1:a9:3e:00:e9:ca:c1: 7e:25:9b:d6:b2:b1:9e:9f:ed:6c:bf:48:dc:97:51:0c:7d:c1: b5:6f:26:59:f5:88:ae:9d:18:6c:95:93:ea:7e:65:e8:09:25: ba:8a:b4:7b:e5:c6:39:e9:d9:c8:d5:9e:1c:01:cd:cb:e0:03: 32:e3:e5:e4:4b:91:bd:d3:90:3b:9a:97:84:36:fa:a9:86:3d: a4:f6:50:26:99:00:f3:68:af:7b:de:5b:1e:8c:8d:57:84:85: 70:a5:6b:fe:c6:a7:73:78:54:c6:85:1f:68:2a:bf:00:c9:fa: 3b:2c:0d:88:10:ab:e3:35:8d:11:67:d0:ec:59:fd:82:4b:5c: 0a:81:8b:f3:39:6d:f3:8f:82:ae:e2:29:27:ba:ac:0f:89:fd: 7b:26:f3:51:32:65:63:14:29:25:36:1c:bf:2e:40:c6:bc:37: ea:7f:af:46:ea:0a:73:08:f4:23:2b:f4:27:05:e3:b8:81:e2: f8:44:9d:e0:b8:56:fd:e2:59:d4:5c:d7:20:82:57:75:21:21: 55:74:2b:03 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2RTExMTAvBgNVBAUTKEUzNEIyODU0MjA1NkNFOUUwNjUwRkVGQzBBQjEyNDIx NkNCNUY5QzEwHhcNMjMxMTA5MDM1NDA3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRjNTdkZi1jYTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdz14j4jRN/8O2tKXJy168XdKvuOlaG0FHk6FFhI/mXTh4zC3QNGZf+EpFfo pDJncoscg+yJMNDw5SRsvbDL4UHHlWEjrw1BBtLhmUx9EmgW7PiPn0HDq48R0oMB l1NR/KiM3Rw0lZDgFXwruM7iQDRHfSsyrK8e8HoPoywMaiGhdnEE0EZ14WFpApRb LLTKSPmA8SXNcqiZLynAdoUqOmf7kfY1l3C2gqvyNWfqyRwovGtL/OJdYag66Zgo b0vvmqDRwHLC8dHlfNf6ThsIOaajqtXMtx2sF8S+hacu2QJu47NKr8jMPHPXKKt1 fcp9W/OUks52F++DQNjUBJEZuQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFEhY1DZK Goj6FdCFu/t+kMpXqSskMB8GA1UdIwQYMBaAFONLKFQgVs6eBlD+/AqxJCFstfnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzZFMS9BNTdEODZEOEU3 REUxMUVDOEQ4QzVDNURDNEY5QUUwMi80MHNvVkNCV3pwNEdVUDc4Q3JFa0lXeTEt Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwc29WQ0JXenA0R1VQNzhDckVrSVd5MS1jRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2RTEvQTU3RDg2RDhFN0RFMTFFQzhEOEM1QzVEQzRGOUFFMDIvRkIxQkY1NzRF N0U0MTFFQzg0MjgzNjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr5jwDBAJnToAwDQQCAAIwBwMFACQHwYAwDQYJKoZIhvcN AQELBQADggEBAIrnC2OsgFhgnS9hIu2Wr/tw0A362TIIsOGhPnmL0nqJqYCvnBSV inBuRYSkw89xsak+AOnKwX4lm9aysZ6f7Wy/SNyXUQx9wbVvJln1iK6dGGyVk+p+ ZegJJbqKtHvlxjnp2cjVnhwBzcvgAzLj5eRLkb3TkDual4Q2+qmGPaT2UCaZAPNo r3veWx6MjVeEhXCla/7Gp3N4VMaFH2gqvwDJ+jssDYgQq+M1jRFn0OxZ/YJLXAqB i/M5bfOPgq7iKSe6rA+J/Xsm81EyZWMUKSU2HL8uQMa8N+p/r0bqCnMI9CMr9CcF 47iB4vhEneC4Vv3iWdRc1yCCV3UhIVV0KwM= -----END CERTIFICATE-----Generated at Thu Jun 13 05:09:19 2024 by rpki-client on console-ams.rpki-client.org