$ rpki-client -vvf rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/FBD6D2BE158711E9881C4D1FC4F9AE02.roa File: FBD6D2BE158711E9881C4D1FC4F9AE02.roa (raw, json) Hash identifier: /8SNajGFBQS2U2jNwz98Lv+owsRVOQ+nqM0OpiGoj94= Subject key identifier: 03:8A:99:C4:49:11:08:ED:3B:F7:60:60:D3:BD:85:76:AD:47:CA:7E Certificate issuer: /CN=A9126356/serialNumber=72CD1D560904458308E91A3ACC9A3D70B67D8492 Certificate serial: 0FBD Authority key identifier: 72:CD:1D:56:09:04:45:83:08:E9:1A:3A:CC:9A:3D:70:B6:7D:84:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/FBD6D2BE158711E9881C4D1FC4F9AE02.roa Signing time: Wed 16 Aug 2023 17:55:06 +0000 ROA not before: Wed 16 Aug 2023 17:55:06 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 137994 IP address blocks: 103.97.87.0/24 maxlen: 24 103.119.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.crl rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 17:22:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4029 (0xfbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126356/serialNumber=72CD1D560904458308E91A3ACC9A3D70B67D8492 Validity Not Before: Aug 16 17:55:06 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64dd0d7a-fd7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fb:cb:75:48:14:ec:5c:c5:ed:dc:74:a1:a4: f0:7a:f6:c3:cb:46:a8:f9:92:5e:67:64:55:4f:14: 41:25:94:96:ac:f4:2d:18:19:ac:6b:1b:64:3c:89: cc:10:3c:03:e3:13:e9:f2:c3:0f:8d:da:2a:63:8d: d9:1d:db:5c:58:3d:16:6b:62:4a:6a:75:22:8c:5c: 3f:f8:bf:be:36:8f:ce:fe:90:83:9f:9d:d3:06:68: dc:fa:8d:ea:5f:cb:a8:14:6b:c1:82:98:9b:72:07: 7f:cd:5e:50:47:1e:e7:fd:c0:b3:36:b8:00:7f:53: 05:ee:e4:c4:72:78:12:fc:17:79:db:1d:d9:cb:d4: 9c:b5:f2:66:19:80:52:3b:62:62:1b:2b:b1:50:49: 08:cd:14:14:4d:f5:1a:62:18:6a:11:59:67:ba:3f: f1:8f:3d:7c:b7:40:a1:b3:81:7a:d4:6e:f3:fa:27: 75:90:3c:0b:15:14:d3:fd:a6:83:6d:41:a5:07:e9: 7d:63:e9:8b:f7:97:6c:fb:ce:cf:02:a8:62:cb:da: 56:75:ac:c0:8a:40:31:52:91:05:8d:2f:bd:19:09: e6:54:fa:e7:57:e5:3b:b3:55:86:1e:95:a1:b9:37: 03:96:84:a5:5a:26:84:e3:2b:2b:35:f0:c8:24:b1: 64:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:8A:99:C4:49:11:08:ED:3B:F7:60:60:D3:BD:85:76:AD:47:CA:7E X509v3 Authority Key Identifier: keyid:72:CD:1D:56:09:04:45:83:08:E9:1A:3A:CC:9A:3D:70:B6:7D:84:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/FBD6D2BE158711E9881C4D1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.87.0/24 103.119.126.0/24 Signature Algorithm: sha256WithRSAEncryption 13:8f:74:c0:44:5e:06:89:ff:88:c5:10:2a:0a:fc:9c:01:ed: 45:70:45:6a:d8:f2:9d:6f:c9:9a:f6:4d:6f:7d:47:b7:5f:46: c6:38:48:60:c7:85:c7:63:d6:49:73:2d:54:15:86:8b:34:6b: ea:69:8f:c4:e8:9d:fb:28:7a:cc:0b:06:96:f2:f3:3f:31:f9: bb:66:33:93:8d:28:ea:21:c8:ae:95:29:e0:1a:60:62:37:be: e4:9c:f3:58:5f:aa:ae:3a:76:15:b3:c2:17:86:bb:28:95:9e: 2e:76:c9:2d:4c:e5:d2:97:13:32:a2:f5:f3:e8:24:47:ea:83: e5:01:0e:e7:ef:53:29:b8:eb:75:c9:d5:00:24:85:42:a9:98: 4a:a2:b7:fd:28:05:29:1f:8b:18:ea:45:e9:0a:fb:b0:c4:9f: b6:2b:d1:ea:9e:39:59:8a:a4:cf:39:c4:0c:71:41:72:df:ea: 80:1d:f1:dd:df:69:b7:42:15:ab:6a:05:b5:75:f0:de:78:93: b6:c0:bc:98:1b:1c:82:92:57:42:c9:c3:d0:e1:d5:89:a2:dc: 8f:24:4a:a7:16:ad:4d:ed:c5:ce:a5:90:f2:52:37:77:9a:a4: 4f:4b:14:02:5d:a6:1b:fe:8c:ca:50:cd:ad:31:35:83:ce:7c: be:5e:c8:55 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICD70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYzNTYxMTAvBgNVBAUTKDcyQ0QxRDU2MDkwNDQ1ODMwOEU5MUEzQUNDOUEzRDcw QjY3RDg0OTIwHhcNMjMwODE2MTc1NTA2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRkMGQ3YS1mZDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfvLdUgU7FzF7dx0oaTwevbDy0ao+ZJeZ2RVTxRBJZSWrPQtGBmsaxtkPInM EDwD4xPp8sMPjdoqY43ZHdtcWD0Wa2JKanUijFw/+L++No/O/pCDn53TBmjc+o3q X8uoFGvBgpibcgd/zV5QRx7n/cCzNrgAf1MF7uTEcngS/Bd52x3Zy9SctfJmGYBS O2JiGyuxUEkIzRQUTfUaYhhqEVlnuj/xjz18t0Chs4F61G7z+id1kDwLFRTT/aaD bUGlB+l9Y+mL95ds+87PAqhiy9pWdazAikAxUpEFjS+9GQnmVPrnV+U7s1WGHpWh uTcDloSlWiaE4ysrNfDIJLFktQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAOKmcRJ EQjtO/dgYNO9hXatR8p+MB8GA1UdIwQYMBaAFHLNHVYJBEWDCOkaOsyaPXC2fYSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjM1Ni8zM0E1M0Q3NjE1 ODcxMUU5QjhBODQwMUVDNEY5QUUwMi9jczBkVmdrRVJZTUk2Um82ekpvOWNMWjlo SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NzMGRWZ2tFUllNSTZSbzZ6Sm85Y0xaOWhKSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYzNTYvMzNBNTNENzYxNTg3MTFFOUI4QTg0MDFFQzRGOUFFMDIvRkJENkQyQkUx NTg3MTFFOTg4MUM0RDFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnYVcDBABnd34wDQYJKoZIhvcNAQELBQADggEBABOPdMBE XgaJ/4jFECoK/JwB7UVwRWrY8p1vyZr2TW99R7dfRsY4SGDHhcdj1klzLVQVhos0 a+ppj8TonfsoeswLBpby8z8x+btmM5ONKOohyK6VKeAaYGI3vuSc81hfqq46dhWz wheGuyiVni52yS1M5dKXEzKi9fPoJEfqg+UBDufvUym463XJ1QAkhUKpmEqit/0o BSkfixjqRekK+7DEn7Yr0eqeOVmKpM85xAxxQXLf6oAd8d3fabdCFatqBbV18N54 k7bAvJgbHIKSV0LJw9Dh1Ymi3I8kSqcWrU3txc6lkPJSN3eapE9LFAJdphv+jMpQ za0xNYPOfL5eyFU= -----END CERTIFICATE-----Generated at Thu Jun 6 18:47:44 2024 by rpki-client on console-fra.rpki-client.org