$ rpki-client -vvf rpki.apnic.net/member_repository/A912D0B6/D4F1C526835C11E99F17C514C4F9AE02/FDEB52CE90A611EEAC16B10EC4F9AE02.roa File: FDEB52CE90A611EEAC16B10EC4F9AE02.roa (raw, json) Hash identifier: qu3E1QCXXfXKU2u3PRgKPK9ZMw3s8zAryWTSiP2py4I= Subject key identifier: AC:1A:EB:98:7E:CD:E9:9F:68:41:08:F6:EA:17:20:3C:4F:4D:29:91 Certificate issuer: /CN=A912D0B6/serialNumber=E399F53CFA52ABD5A8C7C1D392959C395F39E27E Certificate serial: 0DD9 Authority key identifier: E3:99:F5:3C:FA:52:AB:D5:A8:C7:C1:D3:92:95:9C:39:5F:39:E2:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45n1PPpSq9Wox8HTkpWcOV854n4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D0B6/D4F1C526835C11E99F17C514C4F9AE02/FDEB52CE90A611EEAC16B10EC4F9AE02.roa Signing time: Sat 02 Dec 2023 00:08:59 +0000 ROA not before: Sat 02 Dec 2023 00:08:59 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 203963 IP address blocks: 103.243.161.0/24 maxlen: 24 103.243.162.0/24 maxlen: 24 103.243.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D0B6/D4F1C526835C11E99F17C514C4F9AE02/45n1PPpSq9Wox8HTkpWcOV854n4.crl rsync://rpki.apnic.net/member_repository/A912D0B6/D4F1C526835C11E99F17C514C4F9AE02/45n1PPpSq9Wox8HTkpWcOV854n4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45n1PPpSq9Wox8HTkpWcOV854n4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3545 (0xdd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D0B6/serialNumber=E399F53CFA52ABD5A8C7C1D392959C395F39E27E Validity Not Before: Dec 2 00:08:59 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656a759b-5651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d5:bb:84:f8:1b:91:cf:9a:5b:90:91:76:d1: dd:d9:cf:aa:16:16:d6:e8:cb:38:00:d6:71:e8:69: 92:c5:1d:98:38:6d:f6:73:53:e3:83:b9:9c:f4:40: d2:11:d3:a2:60:b1:04:f9:81:72:2f:d0:0e:c9:dc: 99:52:b9:c2:31:2f:20:41:c5:aa:0f:90:6b:19:a9: 48:82:c5:d8:89:d3:ac:f7:5e:81:f6:cd:34:63:af: 67:66:76:10:78:91:a8:91:56:41:cf:52:d7:6d:cc: 23:8b:3f:56:e9:ff:ae:63:16:d9:36:79:b3:51:09: b9:5a:1c:ef:87:00:e1:3e:52:f1:e3:81:5d:a2:e5: 94:6f:ae:8a:e8:7e:cb:eb:c2:70:f1:c2:85:72:07: 1d:9e:23:c5:25:5f:90:a8:14:cd:ae:93:12:c8:82: 58:84:b1:de:e6:2a:8e:74:76:fe:0b:d1:e1:c8:6b: 25:b0:24:27:9d:23:74:09:3b:2f:7f:b5:07:2e:7f: d4:2e:66:cf:b5:c5:a4:09:8b:c0:eb:c7:f3:3e:44: ef:3f:57:72:02:9d:2d:c4:fd:77:e0:88:2d:84:d0: 14:dc:b2:2e:5f:76:00:af:b4:e5:78:08:1d:19:95: 5f:73:de:14:92:9e:13:59:02:f9:5a:da:bb:97:cc: 76:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:1A:EB:98:7E:CD:E9:9F:68:41:08:F6:EA:17:20:3C:4F:4D:29:91 X509v3 Authority Key Identifier: keyid:E3:99:F5:3C:FA:52:AB:D5:A8:C7:C1:D3:92:95:9C:39:5F:39:E2:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D0B6/D4F1C526835C11E99F17C514C4F9AE02/45n1PPpSq9Wox8HTkpWcOV854n4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45n1PPpSq9Wox8HTkpWcOV854n4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D0B6/D4F1C526835C11E99F17C514C4F9AE02/FDEB52CE90A611EEAC16B10EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.161.0-103.243.163.255 Signature Algorithm: sha256WithRSAEncryption 9f:15:15:f0:b3:a0:cb:d1:b0:24:83:79:ff:f9:2b:27:9c:6c: 44:7b:4f:af:c5:70:b9:c6:bc:02:9c:5e:99:4e:e5:a0:79:d1: d7:8b:1d:a1:6d:b2:a0:cc:be:54:d2:8b:c6:c7:27:e7:1f:84: 19:87:37:52:ef:24:d4:67:c6:5f:94:92:87:a8:dc:75:b9:9b: c1:a7:4a:82:57:ea:b9:b9:a7:01:47:15:a4:5c:b0:a5:fb:93: c8:41:08:6c:a0:fe:ee:d7:3f:71:e9:c9:c0:87:2c:4a:8b:1e: a3:28:95:4c:a1:69:63:20:4a:63:4f:35:a9:15:d4:68:df:88: e8:0f:1c:31:ba:9d:71:bf:d9:c9:e1:ab:4f:d0:60:f7:83:27: b9:33:f9:3b:a5:db:63:2c:06:88:72:92:8c:ea:e8:57:8c:7d: 38:56:b9:43:d7:92:2a:16:fa:f1:61:45:e9:b4:90:ce:39:2b: 88:86:30:5c:9f:17:52:e0:04:7d:c4:99:7f:38:12:3d:a6:7f: 72:db:40:7a:61:f1:0e:cb:8f:0e:ae:31:ff:6e:ef:07:17:db: 5d:4f:37:83:53:27:c6:42:6b:71:08:10:79:22:34:d1:b2:4a: 9a:99:24:42:14:bf:db:ce:c2:c9:e9:c5:7d:ea:42:e3:92:02: db:5b:95:04 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICDdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQwQjYxMTAvBgNVBAUTKEUzOTlGNTNDRkE1MkFCRDVBOEM3QzFEMzkyOTU5QzM5 NUYzOUUyN0UwHhcNMjMxMjAyMDAwODU5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZhNzU5Yi01NjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstW7hPgbkc+aW5CRdtHd2c+qFhbW6Ms4ANZx6GmSxR2YOG32c1Pjg7mc9EDS EdOiYLEE+YFyL9AOydyZUrnCMS8gQcWqD5BrGalIgsXYidOs916B9s00Y69nZnYQ eJGokVZBz1LXbcwjiz9W6f+uYxbZNnmzUQm5WhzvhwDhPlLx44FdouWUb66K6H7L 68Jw8cKFcgcdniPFJV+QqBTNrpMSyIJYhLHe5iqOdHb+C9HhyGslsCQnnSN0CTsv f7UHLn/ULmbPtcWkCYvA68fzPkTvP1dyAp0txP134IgthNAU3LIuX3YAr7TleAgd GZVfc94Ukp4TWQL5Wtq7l8x2XwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFKwa65h+ zemfaEEI9uoXIDxPTSmRMB8GA1UdIwQYMBaAFOOZ9Tz6UqvVqMfB05KVnDlfOeJ+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDBCNi9ENEYxQzUyNjgz NUMxMUU5OUYxN0M1MTRDNEY5QUUwMi80NW4xUFBwU3E5V294OEhUa3BXY09WODU0 bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1bjFQUHBTcTlXb3g4SFRrcFdjT1Y4NTRuNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQwQjYvRDRGMUM1MjY4MzVDMTFFOTlGMTdDNTE0QzRGOUFFMDIvRkRFQjUyQ0U5 MEE2MTFFRUFDMTZCMTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGfzoQMEAmfzoDANBgkqhkiG9w0BAQsFAAOCAQEAnxUV 8LOgy9GwJIN5//krJ5xsRHtPr8Vwuca8ApxemU7loHnR14sdoW2yoMy+VNKLxscn 5x+EGYc3Uu8k1GfGX5SSh6jcdbmbwadKglfqubmnAUcVpFywpfuTyEEIbKD+7tc/ cenJwIcsSoseoyiVTKFpYyBKY081qRXUaN+I6A8cMbqdcb/ZyeGrT9Bg94MnuTP5 O6XbYywGiHKSjOroV4x9OFa5Q9eSKhb68WFF6bSQzjkriIYwXJ8XUuAEfcSZfzgS PaZ/cttAemHxDsuPDq4x/27vBxfbXU83g1MnxkJrcQgQeSI00bJKmpkkQhS/287C yenFfepC45IC21uVBA== -----END CERTIFICATE-----Generated at Fri May 31 19:47:47 2024 by rpki-client on console-fra.rpki-client.org