$ rpki-client -vvf rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/FBB9FE90E7E411EC84283679C4F9AE02.roa File: FBB9FE90E7E411EC84283679C4F9AE02.roa (raw, json) Hash identifier: E3gDAkKJ2VLLNW3fqfi+UMppLgBJC54lp9rLDOblL1M= Subject key identifier: 1E:59:32:0B:FA:8F:73:59:01:72:B3:F6:3C:B8:F6:D6:32:20:91:0E Certificate issuer: /CN=A911C6E1/serialNumber=E34B28542056CE9E0650FEFC0AB124216CB5F9C1 Certificate serial: 01C0 Authority key identifier: E3:4B:28:54:20:56:CE:9E:06:50:FE:FC:0A:B1:24:21:6C:B5:F9:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/FBB9FE90E7E411EC84283679C4F9AE02.roa Signing time: Thu 09 Nov 2023 03:54:09 +0000 ROA not before: Thu 09 Nov 2023 03:54:09 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 9902 IP address blocks: 43.230.60.0/22 maxlen: 22 43.230.60.0/24 maxlen: 24 43.230.61.0/24 maxlen: 24 43.230.62.0/24 maxlen: 24 43.230.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.crl rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 04:31:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C6E1/serialNumber=E34B28542056CE9E0650FEFC0AB124216CB5F9C1 Validity Not Before: Nov 9 03:54:09 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654c57e1-fc9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:34:53:0b:b6:15:13:bd:2d:db:47:76:d9:a4: cd:b2:4d:40:1b:50:ab:c3:5e:4e:94:f9:55:61:b6: ad:2b:ff:ef:61:12:86:57:00:31:d4:dc:fb:05:cd: bf:72:44:c6:0b:2f:bc:ab:57:cf:03:9c:1d:24:7f: 1c:7f:c6:e0:c0:ed:89:1d:73:fe:3f:9a:55:a5:6b: 95:64:1f:7e:71:79:81:13:d9:92:73:2f:87:f8:22: 26:e3:ed:61:f9:81:13:b9:b5:2c:a1:2d:b6:e1:d4: 8b:d7:3a:81:d2:ca:61:c0:c6:cc:51:b0:2e:bd:4d: 57:3e:0a:7c:11:d8:2c:53:c9:af:ff:60:1b:aa:79: 19:06:45:13:37:33:d2:15:c1:bf:a3:91:47:85:dd: c5:8b:f3:da:1b:90:53:e9:19:ee:dc:06:d8:f5:dc: 54:10:6d:d8:6b:5f:d7:b1:b2:f9:b2:32:a5:8a:64: 5c:86:bd:64:70:62:8a:0d:b9:97:e5:68:b8:8f:19: af:96:c2:6b:47:ca:ea:18:c3:dc:e1:2a:48:1f:c0: 0f:bb:96:be:2d:a3:c4:97:7c:f6:0b:11:c4:d1:8c: c9:3d:89:4f:26:ac:ff:64:20:7c:52:c7:e3:3d:5a: 3c:c5:32:b2:0a:00:80:75:1a:e5:ee:df:3a:e8:35: 9a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:59:32:0B:FA:8F:73:59:01:72:B3:F6:3C:B8:F6:D6:32:20:91:0E X509v3 Authority Key Identifier: keyid:E3:4B:28:54:20:56:CE:9E:06:50:FE:FC:0A:B1:24:21:6C:B5:F9:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/FBB9FE90E7E411EC84283679C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.60.0/22 Signature Algorithm: sha256WithRSAEncryption 05:91:d9:a3:3c:b9:5a:44:01:fd:f9:69:f1:1a:9a:ee:2c:24: 7e:92:63:76:bf:31:f6:5f:25:8a:ea:bb:c9:33:74:83:ca:99: d8:16:e3:78:99:62:99:6c:71:3f:4a:95:5b:8f:ce:13:f3:6e: 23:fc:cb:0c:0c:05:a6:a5:31:c0:78:aa:54:f4:67:90:4a:65: 8a:c2:3c:10:5b:84:3b:2e:c3:35:d5:9a:0b:5d:72:60:fc:bd: 43:aa:f4:43:f0:d9:7d:4d:44:26:9b:5b:f7:ef:58:eb:55:e2: 52:b5:c2:8f:04:7b:e4:c6:e4:ce:7e:09:aa:e1:59:72:79:13: 52:36:14:45:80:e6:51:ee:f5:24:1c:3e:aa:2f:60:96:54:01: 3a:85:d3:0a:6f:52:be:d9:66:be:96:bb:33:11:76:b4:7c:9a: ef:8f:83:44:29:a1:5a:06:24:d6:45:62:33:a6:8a:fd:19:d7: 17:6a:40:4d:13:c8:35:64:89:0b:92:c9:d0:d5:b0:57:df:c2: d3:59:84:2e:94:5f:81:81:cd:86:56:98:18:0a:04:b9:cc:0d: a7:57:3a:b2:dd:40:70:e3:de:49:03:7d:25:4a:5f:c9:32:de: b5:ba:9d:e9:22:92:49:41:40:ac:d6:a2:e7:ea:f3:ea:db:c9: 81:1d:0d:65 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2RTExMTAvBgNVBAUTKEUzNEIyODU0MjA1NkNFOUUwNjUwRkVGQzBBQjEyNDIx NkNCNUY5QzEwHhcNMjMxMTA5MDM1NDA5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRjNTdlMS1mYzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDRTC7YVE70t20d22aTNsk1AG1Crw15OlPlVYbatK//vYRKGVwAx1Nz7Bc2/ ckTGCy+8q1fPA5wdJH8cf8bgwO2JHXP+P5pVpWuVZB9+cXmBE9mScy+H+CIm4+1h +YETubUsoS224dSL1zqB0sphwMbMUbAuvU1XPgp8EdgsU8mv/2AbqnkZBkUTNzPS FcG/o5FHhd3Fi/PaG5BT6Rnu3AbY9dxUEG3Ya1/XsbL5sjKlimRchr1kcGKKDbmX 5Wi4jxmvlsJrR8rqGMPc4SpIH8APu5a+LaPEl3z2CxHE0YzJPYlPJqz/ZCB8Usfj PVo8xTKyCgCAdRrl7t866DWaAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB5ZMgv6 j3NZAXKz9jy49tYyIJEOMB8GA1UdIwQYMBaAFONLKFQgVs6eBlD+/AqxJCFstfnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzZFMS9BNTdEODZEOEU3 REUxMUVDOEQ4QzVDNURDNEY5QUUwMi80MHNvVkNCV3pwNEdVUDc4Q3JFa0lXeTEt Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwc29WQ0JXenA0R1VQNzhDckVrSVd5MS1jRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2RTEvQTU3RDg2RDhFN0RFMTFFQzhEOEM1QzVEQzRGOUFFMDIvRkJCOUZFOTBF N0U0MTFFQzg0MjgzNjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr5jwwDQYJKoZIhvcNAQELBQADggEBAAWR2aM8uVpEAf35 afEamu4sJH6SY3a/MfZfJYrqu8kzdIPKmdgW43iZYplscT9KlVuPzhPzbiP8ywwM BaalMcB4qlT0Z5BKZYrCPBBbhDsuwzXVmgtdcmD8vUOq9EPw2X1NRCabW/fvWOtV 4lK1wo8Ee+TG5M5+CarhWXJ5E1I2FEWA5lHu9SQcPqovYJZUATqF0wpvUr7ZZr6W uzMRdrR8mu+Pg0QpoVoGJNZFYjOmiv0Z1xdqQE0TyDVkiQuSydDVsFffwtNZhC6U X4GBzYZWmBgKBLnMDadXOrLdQHDj3kkDfSVKX8ky3rW6nekikklBQKzWoufq8+rb yYEdDWU= -----END CERTIFICATE-----Generated at Wed May 29 06:12:04 2024 by rpki-client on console-ams.rpki-client.org