$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FEDF0BA43E5111EF86CB780AC4F9AE02.roa File: FEDF0BA43E5111EF86CB780AC4F9AE02.roa (raw, json) Hash identifier: PWMfy2tZO4LynO8829Wa3U1BjwaomWWdkKuhbM2n6Oo= Subject key identifier: 6E:DE:72:24:7B:62:F7:A1:9F:A3:14:75:28:B1:88:F0:A3:45:F2:54 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 35FF Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FEDF0BA43E5111EF86CB780AC4F9AE02.roa Signing time: Fri 16 Aug 2024 14:40:36 +0000 ROA not before: Fri 16 Aug 2024 14:40:36 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 9454 IP address blocks: 43.247.104.0/22 maxlen: 22 103.229.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13823 (0x35ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Aug 16 14:40:36 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66bf64e4-fff5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:11:f3:bd:ca:0a:47:35:9d:38:53:84:bf:aa: e8:a7:05:59:45:e4:e9:ef:8d:36:60:7d:b7:48:26: fe:92:a5:a3:44:84:77:3a:5b:29:a5:fc:f2:15:1a: b2:ca:08:6d:a6:b2:a5:ac:35:83:65:08:a0:fa:39: 53:9e:43:64:8d:de:e4:00:40:c2:93:71:16:0f:aa: 4b:e7:b7:51:cf:09:f7:b3:43:ed:c6:fe:02:3d:99: 0c:c9:8e:96:22:5a:ca:ba:af:34:1c:58:51:11:eb: 22:16:a8:54:08:72:7b:7e:28:e1:e3:4a:33:68:0e: c7:57:60:64:74:ff:f1:4d:f7:95:11:f7:f3:4c:49: 7b:40:73:a0:60:68:43:b3:b3:f4:27:35:cb:96:30: f0:fb:fa:35:2f:9c:90:e9:d6:c9:39:67:ea:90:7d: 00:bb:be:97:6a:99:00:ad:88:c9:5b:81:82:02:11: 59:29:4a:d7:d7:0b:e7:bd:d0:49:39:18:63:fd:36: 6f:d3:fe:88:28:5b:69:13:79:31:2f:27:81:46:de: 4f:b8:d5:98:a8:32:11:16:cb:82:5b:8e:ac:2c:ee: 77:72:3f:94:06:0c:12:86:e2:3c:3d:bb:3a:ec:b3: 38:be:71:85:9b:5a:c2:95:77:32:bb:bc:eb:a1:2e: c4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:DE:72:24:7B:62:F7:A1:9F:A3:14:75:28:B1:88:F0:A3:45:F2:54 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FEDF0BA43E5111EF86CB780AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.247.104.0/22 103.229.156.0/22 Signature Algorithm: sha256WithRSAEncryption 18:38:a0:57:e9:e3:bd:cc:91:87:b1:4c:d1:fa:34:ff:87:99: ad:5b:c1:57:f0:1e:f9:b6:0b:5c:70:ff:8a:e3:c6:3e:4f:71: 00:39:45:cd:f5:f1:15:14:fc:8e:02:6c:37:5c:f0:98:3c:7c: 20:0c:17:38:cd:10:19:38:09:7e:88:ad:53:37:a0:20:c9:4b: 3a:b1:88:64:fd:40:6e:58:97:d5:7f:e8:fb:dc:06:68:ac:86: 88:16:cc:00:13:54:81:a1:86:d8:eb:ef:90:04:eb:1a:db:9c: e9:7f:c5:86:3c:20:d1:77:cf:c3:f3:42:55:5f:38:13:a6:8c: b8:34:36:b2:c3:5e:e1:b4:6b:ab:d2:6a:a2:05:f6:de:1b:62: bb:05:84:bb:99:1c:cf:b0:17:e3:1f:63:a2:95:77:f7:fa:fd: c5:ad:67:56:d6:e6:45:5c:e5:07:4e:d8:00:35:a3:81:29:74: 6f:db:0b:d1:9c:11:b3:ba:89:99:c4:e7:c1:ff:7d:2a:70:05: 98:ae:8a:68:4a:2b:df:c9:db:0a:aa:02:48:b0:d2:d6:22:15: 95:77:5c:e4:f9:0a:ba:ef:9f:53:d0:5a:11:3b:0b:dc:71:78: 37:9b:3f:48:c0:f8:5c:54:fc:00:a5:09:bf:4c:b6:71:f2:ab: f2:60:f7:a4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjQwODE2MTQ0MDM2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmNjRlNC1mZmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxHzvcoKRzWdOFOEv6ropwVZReTp7402YH23SCb+kqWjRIR3OlsppfzyFRqy yghtprKlrDWDZQig+jlTnkNkjd7kAEDCk3EWD6pL57dRzwn3s0Ptxv4CPZkMyY6W IlrKuq80HFhREesiFqhUCHJ7fijh40ozaA7HV2BkdP/xTfeVEffzTEl7QHOgYGhD s7P0JzXLljDw+/o1L5yQ6dbJOWfqkH0Au76XapkArYjJW4GCAhFZKUrX1wvnvdBJ ORhj/TZv0/6IKFtpE3kxLyeBRt5PuNWYqDIRFsuCW46sLO53cj+UBgwShuI8Pbs6 7LM4vnGFm1rClXcyu7zroS7EZwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFG7eciR7 Yvehn6MUdSixiPCjRfJUMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvRkVERjBCQTQz RTUxMTFFRjg2Q0I3ODBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr92gDBAJn5ZwwDQYJKoZIhvcNAQELBQADggEBABg4oFfp 473MkYexTNH6NP+Hma1bwVfwHvm2C1xw/4rjxj5PcQA5Rc318RUU/I4CbDdc8Jg8 fCAMFzjNEBk4CX6IrVM3oCDJSzqxiGT9QG5Yl9V/6PvcBmishogWzAATVIGhhtjr 75AE6xrbnOl/xYY8INF3z8PzQlVfOBOmjLg0NrLDXuG0a6vSaqIF9t4bYrsFhLuZ HM+wF+MfY6KVd/f6/cWtZ1bW5kVc5QdO2AA1o4EpdG/bC9GcEbO6iZnE58H/fSpw BZiuimhKK9/J2wqqAkiw0tYiFZV3XOT5Crrvn1PQWhE7C9xxeDebP0jA+FxU/ACl Cb9MtnHyq/Jg96Q= -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:14 2024 by rpki-client on console-ams.rpki-client.org