$ rpki-client -vvf rpki.apnic.net/member_repository/A917412F/D411414C6D5611E590D87472C4F9AE02/FB87E4C4B10D11E5894F4D1CC4F9AE02.roa File: FB87E4C4B10D11E5894F4D1CC4F9AE02.roa (raw, json) Hash identifier: b9YjiVHAZb2iIvJndKP7AxgXIfitI4Fx393W+23xl9I= Subject key identifier: 15:DF:D9:A4:71:5C:96:C4:FB:EF:86:F6:FA:D3:4A:D4:DA:F0:37:B3 Certificate issuer: /CN=A917412F/serialNumber=045B5C0867DE581D2B74842FEF8045C1A77BE8BD Certificate serial: 231A Authority key identifier: 04:5B:5C:08:67:DE:58:1D:2B:74:84:2F:EF:80:45:C1:A7:7B:E8:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BFtcCGfeWB0rdIQv74BFwad76L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917412F/D411414C6D5611E590D87472C4F9AE02/FB87E4C4B10D11E5894F4D1CC4F9AE02.roa Signing time: Sat 20 Apr 2024 16:33:07 +0000 ROA not before: Sat 20 Apr 2024 16:33:07 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 133064 IP address blocks: 103.26.36.0/22 maxlen: 22 103.26.38.0/24 maxlen: 24 2001:df3:a000::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917412F/D411414C6D5611E590D87472C4F9AE02/BFtcCGfeWB0rdIQv74BFwad76L0.crl rsync://rpki.apnic.net/member_repository/A917412F/D411414C6D5611E590D87472C4F9AE02/BFtcCGfeWB0rdIQv74BFwad76L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BFtcCGfeWB0rdIQv74BFwad76L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8986 (0x231a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917412F/serialNumber=045B5C0867DE581D2B74842FEF8045C1A77BE8BD Validity Not Before: Apr 20 16:33:07 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6623ee43-0eed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8e:41:ce:36:52:82:1e:bb:fc:5a:92:43:2e: 24:04:c8:18:b5:0d:41:7b:6b:fb:47:e2:bc:20:38: 84:46:3b:bd:77:0c:5b:ae:8e:43:db:ff:2d:0d:8c: 17:d1:6c:6f:9e:5a:47:97:f6:eb:7a:b1:73:3f:c6: cc:43:8b:bb:0d:29:f0:e7:17:65:a9:ec:18:d8:36: 33:55:cb:b5:d4:7d:8a:da:7a:7c:92:88:3e:fb:c6: f0:b1:49:71:0c:fc:79:2c:68:90:a0:f1:a1:6a:18: 57:43:7e:af:3b:1e:78:f3:4b:84:81:6e:a8:9b:e6: 6c:1c:00:ff:34:dc:68:7b:e9:1f:cd:23:07:b9:5f: 49:32:da:44:3b:78:90:31:3e:52:f1:7c:8d:bd:8d: 31:a9:67:92:86:3c:fa:4c:fa:4d:d5:0e:4e:a1:62: a7:62:66:41:8b:09:d4:ca:4c:8c:22:48:8b:f6:83: de:cb:99:30:bd:86:1b:b4:95:fb:82:52:f3:cd:04: 19:b1:2b:e0:38:2a:42:d6:7a:73:e6:eb:eb:79:dc: 58:67:1b:06:24:ec:24:6b:14:4e:29:95:a4:06:ad: 14:27:73:e0:cd:ac:5e:6f:75:bb:ce:14:c7:2b:56: d3:e7:1b:d8:3e:4a:6d:b2:f6:50:d0:97:88:16:95: be:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:DF:D9:A4:71:5C:96:C4:FB:EF:86:F6:FA:D3:4A:D4:DA:F0:37:B3 X509v3 Authority Key Identifier: keyid:04:5B:5C:08:67:DE:58:1D:2B:74:84:2F:EF:80:45:C1:A7:7B:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917412F/D411414C6D5611E590D87472C4F9AE02/BFtcCGfeWB0rdIQv74BFwad76L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BFtcCGfeWB0rdIQv74BFwad76L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917412F/D411414C6D5611E590D87472C4F9AE02/FB87E4C4B10D11E5894F4D1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.36.0/22 IPv6: 2001:df3:a000::/46 Signature Algorithm: sha256WithRSAEncryption 3a:f1:3b:95:9a:09:51:4f:be:b9:a8:c9:3d:43:a7:31:33:9a: 02:cb:6c:64:26:25:2f:1b:f2:12:a1:5f:5d:33:e8:bd:3f:e7: 3b:79:51:6f:87:fa:e2:94:eb:28:77:b8:ca:d6:d1:89:4f:ee: 8a:5d:68:d9:cb:ad:68:89:6f:3e:bb:74:d5:66:50:7b:e1:80: a2:a4:7f:e0:56:3d:37:a8:af:b6:e8:7b:aa:07:0e:37:a0:57: 20:20:90:6b:97:c4:99:b1:48:88:65:aa:c8:a2:55:0c:28:64: 7f:2c:99:2b:52:f1:5d:21:20:62:8d:13:56:79:32:7a:00:51: 5a:d2:6f:57:5c:3d:8d:4c:4b:12:46:e4:93:1e:e3:c9:e6:37: 0e:76:c0:41:7a:62:b9:41:30:c4:f9:f7:cc:b3:cc:e6:44:c2: 42:b9:9b:e9:6e:ea:12:4b:62:bb:04:48:16:3b:b7:aa:46:1b: 9b:b7:96:44:1d:bb:67:8f:81:b4:ac:15:2f:78:0b:54:3e:00: e8:31:8f:d1:32:6d:23:2a:ad:51:24:87:6d:09:ba:75:59:95: 72:b2:df:66:60:1c:30:80:5a:e3:bb:8d:5a:89:02:ed:b3:b0: 9b:31:68:55:20:a8:84:e8:d5:7b:85:c8:ee:eb:86:75:2b:d1: ea:89:a5:2b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICIxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxMkYxMTAvBgNVBAUTKDA0NUI1QzA4NjdERTU4MUQyQjc0ODQyRkVGODA0NUMx QTc3QkU4QkQwHhcNMjQwNDIwMTYzMzA3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjIzZWU0My0wZWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvI5BzjZSgh67/FqSQy4kBMgYtQ1Be2v7R+K8IDiERju9dwxbro5D2/8tDYwX 0WxvnlpHl/brerFzP8bMQ4u7DSnw5xdlqewY2DYzVcu11H2K2np8kog++8bwsUlx DPx5LGiQoPGhahhXQ36vOx5480uEgW6om+ZsHAD/NNxoe+kfzSMHuV9JMtpEO3iQ MT5S8XyNvY0xqWeShjz6TPpN1Q5OoWKnYmZBiwnUykyMIkiL9oPey5kwvYYbtJX7 glLzzQQZsSvgOCpC1npz5uvredxYZxsGJOwkaxROKZWkBq0UJ3Pgzaxeb3W7zhTH K1bT5xvYPkptsvZQ0JeIFpW+EQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBXf2aRx XJbE+++G9vrTStTa8DezMB8GA1UdIwQYMBaAFARbXAhn3lgdK3SEL++ARcGne+i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDEyRi9ENDExNDE0QzZE NTYxMUU1OTBEODc0NzJDNEY5QUUwMi9CRnRjQ0dmZVdCMHJkSVF2NzRCRndhZDc2 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JGdGNDR2ZlV0IwcmRJUXY3NEJGd2FkNzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQxMkYvRDQxMTQxNEM2RDU2MTFFNTkwRDg3NDcyQzRGOUFFMDIvRkI4N0U0QzRC MTBEMTFFNTg5NEY0RDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnGiQwDwQCAAIwCQMHAiABDfOgADANBgkqhkiG9w0BAQsF AAOCAQEAOvE7lZoJUU++uajJPUOnMTOaAstsZCYlLxvyEqFfXTPovT/nO3lRb4f6 4pTrKHe4ytbRiU/uil1o2cutaIlvPrt01WZQe+GAoqR/4FY9N6ivtuh7qgcON6BX ICCQa5fEmbFIiGWqyKJVDChkfyyZK1LxXSEgYo0TVnkyegBRWtJvV1w9jUxLEkbk kx7jyeY3DnbAQXpiuUEwxPn3zLPM5kTCQrmb6W7qEktiuwRIFju3qkYbm7eWRB27 Z4+BtKwVL3gLVD4A6DGP0TJtIyqtUSSHbQm6dVmVcrLfZmAcMIBa47uNWokC7bOw mzFoVSCohOjVe4XI7uuGdSvR6omlKw== -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:49 2024 by rpki-client on console-fra.rpki-client.org