$ rpki-client -vvf rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/CB6BD978592811E9AD7CEF21C4F9AE02.roa File: CB6BD978592811E9AD7CEF21C4F9AE02.roa (raw, json) Hash identifier: Jwv/izm+82IIyS68yc8lg7WjqOlpLGTRdhkGtdRC6BA= Subject key identifier: 04:C1:FB:71:F7:A7:F6:69:22:99:CD:B1:A0:98:EE:23:70:A0:E4:4B Certificate issuer: /CN=A919F46B/serialNumber=14BFAB79426E3D22BEC3FC61EE432FEA08272946 Certificate serial: 0F39 Authority key identifier: 14:BF:AB:79:42:6E:3D:22:BE:C3:FC:61:EE:43:2F:EA:08:27:29:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FL-reUJuPSK-w_xh7kMv6ggnKUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/CB6BD978592811E9AD7CEF21C4F9AE02.roa Signing time: Wed 18 Sep 2024 18:17:20 +0000 ROA not before: Wed 18 Sep 2024 18:17:20 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138601 IP address blocks: 103.134.88.0/22 maxlen: 24 103.244.247.0/24 maxlen: 24 123.176.58.0/24 maxlen: 24 2404:61c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/FL-reUJuPSK-w_xh7kMv6ggnKUY.crl rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/FL-reUJuPSK-w_xh7kMv6ggnKUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FL-reUJuPSK-w_xh7kMv6ggnKUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:33:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3897 (0xf39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F46B/serialNumber=14BFAB79426E3D22BEC3FC61EE432FEA08272946 Validity Not Before: Sep 18 18:17:20 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66eb1930-7955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b6:d1:8c:e3:e7:5c:ae:ad:9f:ae:f5:39:4c: f5:cc:82:84:08:c5:da:3d:8a:3b:d6:fe:cd:96:08: 8e:f3:5a:ef:69:4e:59:74:4d:1c:f7:81:2d:33:84: d7:41:51:2e:ed:6c:6e:d8:f2:e0:2e:51:64:d5:72: 6b:f7:86:96:e4:85:27:88:bf:ed:4e:2b:5e:c8:ed: b0:54:b3:3a:e6:db:57:38:2a:81:51:86:b7:1f:0f: f5:d1:75:32:0e:b6:13:1f:83:f2:ef:53:d9:5f:6a: ab:66:fc:6e:ae:a4:2d:dd:3a:ae:51:e9:aa:d0:d8: 9e:44:11:da:5c:38:5a:fd:ca:db:d6:ef:d4:d6:74: 1a:67:01:10:7f:ac:60:88:f2:cf:83:35:f0:6c:13: 26:06:76:c0:6b:f1:45:93:3c:e5:92:21:0c:e2:47: 22:94:f9:16:04:de:bb:bf:a6:b6:fc:95:7e:7b:1d: 50:16:73:98:15:60:5a:43:9a:d5:a3:59:7a:8e:55: f6:7f:c7:10:60:56:f6:84:db:b4:99:02:a1:35:70: 7f:83:77:47:9c:65:8f:c1:d2:6c:ef:eb:2b:87:2b: 33:c9:9d:40:e9:94:f7:f6:ea:24:19:aa:2b:91:d8: 7f:1e:87:23:c9:ca:86:57:86:fe:39:b4:ad:5f:4c: 4d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:C1:FB:71:F7:A7:F6:69:22:99:CD:B1:A0:98:EE:23:70:A0:E4:4B X509v3 Authority Key Identifier: keyid:14:BF:AB:79:42:6E:3D:22:BE:C3:FC:61:EE:43:2F:EA:08:27:29:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/FL-reUJuPSK-w_xh7kMv6ggnKUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FL-reUJuPSK-w_xh7kMv6ggnKUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/CB6BD978592811E9AD7CEF21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.88.0/22 103.244.247.0/24 123.176.58.0/24 IPv6: 2404:61c0::/32 Signature Algorithm: sha256WithRSAEncryption b3:ea:31:8f:bc:18:f7:c3:98:cf:b5:b2:dd:6a:21:41:b5:dc: 6f:43:d6:47:6a:2b:04:45:1e:7e:db:60:16:eb:c8:e9:e9:b5: e0:b2:47:8f:08:d8:6c:6b:e2:34:75:1e:8b:f8:b1:08:82:dd: 70:c2:df:19:2e:98:88:00:0c:8b:46:d1:4a:b4:95:c6:06:ba: 05:67:64:cd:50:05:2e:98:00:ce:2e:ee:82:44:16:80:3d:99: 06:30:bf:e6:e5:ad:05:44:19:f3:00:b5:e7:87:22:53:ed:4f: 1c:1f:d1:4a:ab:6d:4e:b8:e8:55:d1:06:dd:d6:a6:f8:bd:29: e6:ed:c0:ec:78:31:50:18:a7:e2:d0:51:ef:5c:19:d5:12:da: 9d:fa:ae:74:3a:b6:88:e9:0f:a8:68:0a:4b:77:ca:f6:ca:83: c3:e4:31:a9:96:bb:ae:a9:08:a0:2b:31:0d:b3:8a:6b:e5:8e: 4a:04:75:25:18:60:0c:c5:08:88:31:f7:46:1c:9b:3c:db:15: 1e:98:10:04:a8:2c:80:f6:dc:db:2a:40:af:4a:dc:cb:7c:37: 79:91:4e:20:be:6d:9e:82:d7:aa:a1:1f:ab:f4:48:9a:b3:aa: ec:b3:00:66:69:36:8f:93:45:fd:2f:5a:bf:87:0c:99:6c:bb: ab:b2:b2:c6 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICDzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY0NkIxMTAvBgNVBAUTKDE0QkZBQjc5NDI2RTNEMjJCRUMzRkM2MUVFNDMyRkVB MDgyNzI5NDYwHhcNMjQwOTE4MTgxNzIwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NmViMTkzMC03OTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LbRjOPnXK6tn671OUz1zIKECMXaPYo71v7NlgiO81rvaU5ZdE0c94EtM4TX QVEu7Wxu2PLgLlFk1XJr94aW5IUniL/tTiteyO2wVLM65ttXOCqBUYa3Hw/10XUy DrYTH4Py71PZX2qrZvxurqQt3TquUemq0NieRBHaXDha/crb1u/U1nQaZwEQf6xg iPLPgzXwbBMmBnbAa/FFkzzlkiEM4kcilPkWBN67v6a2/JV+ex1QFnOYFWBaQ5rV o1l6jlX2f8cQYFb2hNu0mQKhNXB/g3dHnGWPwdJs7+srhyszyZ1A6ZT39uokGaor kdh/HocjycqGV4b+ObStX0xNvwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFATB+3H3 p/ZpIpnNsaCY7iNwoORLMB8GA1UdIwQYMBaAFBS/q3lCbj0ivsP8Ye5DL+oIJylG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjQ2Qi81NkVFQkFFODU5 MjgxMUU5OUZGRjdBMjFDNEY5QUUwMi9GTC1yZVVKdVBTSy13X3hoN2tNdjZnZ25L VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZMLXJlVUp1UFNLLXdfeGg3a012NmdnbktVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY0NkIvNTZFRUJBRTg1OTI4MTFFOTlGRkY3QTIxQzRGOUFFMDIvQ0I2QkQ5Nzg1 OTI4MTFFOUFEN0NFRjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnhlgDBABn9PcDBAB7sDowDQQCAAIwBwMFACQEYcAwDQYJ KoZIhvcNAQELBQADggEBALPqMY+8GPfDmM+1st1qIUG13G9D1kdqKwRFHn7bYBbr yOnpteCyR48I2Gxr4jR1Hov4sQiC3XDC3xkumIgADItG0Uq0lcYGugVnZM1QBS6Y AM4u7oJEFoA9mQYwv+blrQVEGfMAteeHIlPtTxwf0UqrbU646FXRBt3Wpvi9Kebt wOx4MVAYp+LQUe9cGdUS2p36rnQ6tojpD6hoCkt3yvbKg8PkMamWu66pCKArMQ2z imvljkoEdSUYYAzFCIgx90YcmzzbFR6YEASoLID23NsqQK9K3Mt8N3mRTiC+bZ6C 16qhH6v0SJqzquyzAGZpNo+TRf0vWr+HDJlsu6uyssY= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:14 2024 by rpki-client on console-ams.rpki-client.org