$ rpki-client -vvf rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/CB6BD978592811E9AD7CEF21C4F9AE02.roa File: CB6BD978592811E9AD7CEF21C4F9AE02.roa (raw, json) Hash identifier: d3iKBN/pQBRUxq2eDgsI/qAywHYud8F3niAf0eyxsaY= Subject key identifier: 4E:7C:E1:99:54:4A:69:BD:13:C4:A2:2E:85:56:CF:18:5E:5C:3A:5D Certificate issuer: /CN=A919F46B/serialNumber=14BFAB79426E3D22BEC3FC61EE432FEA08272946 Certificate serial: 0EE8 Authority key identifier: 14:BF:AB:79:42:6E:3D:22:BE:C3:FC:61:EE:43:2F:EA:08:27:29:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FL-reUJuPSK-w_xh7kMv6ggnKUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/CB6BD978592811E9AD7CEF21C4F9AE02.roa Signing time: Fri 26 Apr 2024 18:36:54 +0000 ROA not before: Fri 26 Apr 2024 18:36:54 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138601 IP address blocks: 103.134.88.0/22 maxlen: 24 103.244.247.0/24 maxlen: 24 2404:61c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/FL-reUJuPSK-w_xh7kMv6ggnKUY.crl rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/FL-reUJuPSK-w_xh7kMv6ggnKUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FL-reUJuPSK-w_xh7kMv6ggnKUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:42:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3816 (0xee8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F46B/serialNumber=14BFAB79426E3D22BEC3FC61EE432FEA08272946 Validity Not Before: Apr 26 18:36:54 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=662bf446-4ef0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b3:6e:c2:fb:9b:08:51:91:00:81:7b:8b:6a: b2:65:e9:79:6b:2a:e7:f2:04:cc:8a:64:bd:bc:4b: 4b:78:19:e5:46:47:5b:de:68:da:f2:36:03:2b:67: ca:c9:b5:69:c0:d7:36:83:06:f9:a9:3e:a8:69:40: 33:cb:db:b8:03:4b:cd:c8:17:a8:f0:b4:fe:31:36: 35:d6:32:ec:bb:a5:48:75:8b:36:c1:5f:cb:fa:e7: 1a:5c:93:3a:96:10:4d:ab:d1:6f:0b:20:7c:31:5f: 58:d9:78:3f:07:b6:83:ed:9b:aa:24:9b:75:41:c2: 65:f1:38:72:cc:ac:e6:fb:2f:a7:4a:ba:d5:36:e0: 95:bd:d0:0f:da:96:93:1c:d5:ce:4d:fc:24:38:b9: b0:85:27:b9:3a:a3:39:eb:19:03:79:91:e8:48:51: 47:03:25:f5:8f:ac:92:b9:80:5f:cb:35:55:b7:4d: 4e:7e:e3:ab:93:06:4c:c0:b8:ed:ed:7f:7e:73:2e: ee:9f:86:fe:5d:b3:d5:e1:39:23:15:16:82:ca:16: 00:db:55:4d:79:ab:5e:bc:c5:6d:3d:54:1b:3e:5b: 2c:00:2c:5c:66:b0:23:77:f6:e9:6d:27:e2:bb:72: 9d:10:0c:47:8f:ae:2e:cf:95:c9:05:cc:d1:47:3a: 80:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:7C:E1:99:54:4A:69:BD:13:C4:A2:2E:85:56:CF:18:5E:5C:3A:5D X509v3 Authority Key Identifier: keyid:14:BF:AB:79:42:6E:3D:22:BE:C3:FC:61:EE:43:2F:EA:08:27:29:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/FL-reUJuPSK-w_xh7kMv6ggnKUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FL-reUJuPSK-w_xh7kMv6ggnKUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/CB6BD978592811E9AD7CEF21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.88.0/22 103.244.247.0/24 IPv6: 2404:61c0::/32 Signature Algorithm: sha256WithRSAEncryption ae:99:38:42:a2:13:e4:ba:8b:2b:b0:18:c3:43:14:e5:0a:06: 73:8b:07:2b:c2:a4:47:58:dc:d4:e9:41:eb:da:4c:20:09:61: 95:10:83:4d:45:13:d6:d2:08:0f:9b:0d:67:f8:82:cb:ab:8d: 40:2c:bc:51:60:02:4f:45:21:f1:35:95:42:f7:bb:2a:3b:92: 0f:ad:e1:5f:19:ba:ff:b3:42:b6:f1:fa:9f:2a:d8:43:c0:1b: 51:16:7b:6c:96:b6:c4:c9:ed:10:4a:a3:ed:a1:c4:ba:c2:6b: f9:6a:a1:54:1e:36:fd:05:7f:d3:bc:eb:2e:f3:00:41:c4:2d: 02:ac:b8:a9:30:fa:3d:34:8c:8f:f4:a2:bc:26:89:46:98:a1: 6b:89:23:82:ef:be:f9:02:12:25:47:2d:6e:7c:f4:10:6e:fc: 00:8a:64:4c:3e:6b:75:d6:1f:35:d0:0b:76:24:a3:85:04:0f: 12:e2:57:23:c4:47:8b:c2:15:6b:c4:dd:2f:81:59:fd:11:78: a6:ee:48:54:4d:d8:4d:3e:01:b3:ec:f4:b5:5b:dc:fb:d6:79: 7e:01:0f:f6:0d:37:14:aa:04:84:a4:21:38:d3:ad:a0:36:db: 0d:38:ca:98:1c:36:40:54:00:c4:78:22:b9:e1:6c:33:aa:03: c8:b5:86:8f -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY0NkIxMTAvBgNVBAUTKDE0QkZBQjc5NDI2RTNEMjJCRUMzRkM2MUVFNDMyRkVB MDgyNzI5NDYwHhcNMjQwNDI2MTgzNjU0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjJiZjQ0Ni00ZWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7NuwvubCFGRAIF7i2qyZel5ayrn8gTMimS9vEtLeBnlRkdb3mja8jYDK2fK ybVpwNc2gwb5qT6oaUAzy9u4A0vNyBeo8LT+MTY11jLsu6VIdYs2wV/L+ucaXJM6 lhBNq9FvCyB8MV9Y2Xg/B7aD7ZuqJJt1QcJl8ThyzKzm+y+nSrrVNuCVvdAP2paT HNXOTfwkOLmwhSe5OqM56xkDeZHoSFFHAyX1j6ySuYBfyzVVt01OfuOrkwZMwLjt 7X9+cy7un4b+XbPV4TkjFRaCyhYA21VNeatevMVtPVQbPlssACxcZrAjd/bpbSfi u3KdEAxHj64uz5XJBczRRzqAewIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFE584ZlU Smm9E8SiLoVWzxheXDpdMB8GA1UdIwQYMBaAFBS/q3lCbj0ivsP8Ye5DL+oIJylG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjQ2Qi81NkVFQkFFODU5 MjgxMUU5OUZGRjdBMjFDNEY5QUUwMi9GTC1yZVVKdVBTSy13X3hoN2tNdjZnZ25L VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZMLXJlVUp1UFNLLXdfeGg3a012NmdnbktVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY0NkIvNTZFRUJBRTg1OTI4MTFFOTlGRkY3QTIxQzRGOUFFMDIvQ0I2QkQ5Nzg1 OTI4MTFFOUFEN0NFRjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnhlgDBABn9PcwDQQCAAIwBwMFACQEYcAwDQYJKoZIhvcN AQELBQADggEBAK6ZOEKiE+S6iyuwGMNDFOUKBnOLByvCpEdY3NTpQevaTCAJYZUQ g01FE9bSCA+bDWf4gsurjUAsvFFgAk9FIfE1lUL3uyo7kg+t4V8Zuv+zQrbx+p8q 2EPAG1EWe2yWtsTJ7RBKo+2hxLrCa/lqoVQeNv0Ff9O86y7zAEHELQKsuKkw+j00 jI/0orwmiUaYoWuJI4LvvvkCEiVHLW589BBu/ACKZEw+a3XWHzXQC3Yko4UEDxLi VyPER4vCFWvE3S+BWf0ReKbuSFRN2E0+AbPs9LVb3PvWeX4BD/YNNxSqBISkITjT raA22w04ypgcNkBUAMR4IrnhbDOqA8i1ho8= -----END CERTIFICATE-----Generated at Fri May 31 19:47:52 2024 by rpki-client on console-fra.rpki-client.org