$ rpki-client -vvf rpki.apnic.net/member_repository/A911E369/0E2FB3C888D811ED9B85E548C4F9AE02/7AEB97D2A45011ED8AB8A437C4F9AE02.roa File: 7AEB97D2A45011ED8AB8A437C4F9AE02.roa (raw, json) Hash identifier: SQlJaQGpXDcZFHRgAOau+fYoi/5pe0SWyRviImDftQQ= Subject key identifier: 88:86:65:CD:10:80:AD:55:84:27:FB:70:BC:7D:66:D5:52:BA:EF:3C Certificate issuer: /CN=A911E369/serialNumber=FE1391C0B226C8CEBFA4A2AD6696AE4B82BF7E27 Certificate serial: DD Authority key identifier: FE:13:91:C0:B2:26:C8:CE:BF:A4:A2:AD:66:96:AE:4B:82:BF:7E:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_hORwLImyM6_pKKtZpauS4K_fic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E369/0E2FB3C888D811ED9B85E548C4F9AE02/7AEB97D2A45011ED8AB8A437C4F9AE02.roa Signing time: Thu 15 Feb 2024 05:16:36 +0000 ROA not before: Thu 15 Feb 2024 05:16:36 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 150695 IP address blocks: 103.60.6.0/24 maxlen: 24 2001:df1:bbc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E369/0E2FB3C888D811ED9B85E548C4F9AE02/_hORwLImyM6_pKKtZpauS4K_fic.crl rsync://rpki.apnic.net/member_repository/A911E369/0E2FB3C888D811ED9B85E548C4F9AE02/_hORwLImyM6_pKKtZpauS4K_fic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_hORwLImyM6_pKKtZpauS4K_fic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E369/serialNumber=FE1391C0B226C8CEBFA4A2AD6696AE4B82BF7E27 Validity Not Before: Feb 15 05:16:36 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65cd9e34-0c2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:56:f7:aa:a3:1b:f8:e8:1f:54:bf:2b:bf:8f: a7:16:4b:46:bd:af:26:40:57:a5:98:cc:4a:24:42: 6b:7b:99:7d:75:cd:ae:00:b7:ac:24:ec:9b:4f:1b: 43:53:6c:5e:7b:46:5c:93:d8:f3:39:7b:86:92:c8: 3d:9c:f2:10:ad:b3:6e:ff:54:40:37:91:5f:fb:f1: 74:5e:ce:58:bb:d7:0e:29:d9:22:e4:91:74:9d:c4: a8:43:83:62:b2:b0:42:1a:a9:38:33:ea:8f:42:48: 90:28:2c:4f:6e:d6:c6:b9:0f:82:6f:4d:9d:b2:2d: 1b:c6:24:5f:a2:cd:c0:2b:16:6b:2b:04:51:c7:ff: c9:a5:16:7a:3d:50:30:f2:0c:84:e0:42:88:7f:0a: a6:bf:98:63:63:8b:2c:a3:bd:f0:b4:e2:96:a8:7b: 4d:23:67:91:05:32:a5:98:9b:8c:b5:a2:dc:b2:08: a1:fd:27:7e:06:ad:15:31:a9:b5:57:d4:43:31:32: ce:13:8f:99:63:ce:4e:2a:f8:e6:2d:3c:1a:3b:ac: 56:05:c9:1e:99:bb:ea:f4:cb:d3:df:2f:3d:0b:dd: f4:01:95:8a:8d:e6:13:cf:ce:ca:c6:82:b9:cf:98: 58:f0:99:4f:3f:33:3f:88:17:3b:23:c2:26:70:e0: b7:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:86:65:CD:10:80:AD:55:84:27:FB:70:BC:7D:66:D5:52:BA:EF:3C X509v3 Authority Key Identifier: keyid:FE:13:91:C0:B2:26:C8:CE:BF:A4:A2:AD:66:96:AE:4B:82:BF:7E:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E369/0E2FB3C888D811ED9B85E548C4F9AE02/_hORwLImyM6_pKKtZpauS4K_fic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_hORwLImyM6_pKKtZpauS4K_fic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E369/0E2FB3C888D811ED9B85E548C4F9AE02/7AEB97D2A45011ED8AB8A437C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.60.6.0/24 IPv6: 2001:df1:bbc0::/48 Signature Algorithm: sha256WithRSAEncryption 18:7e:71:e1:98:68:7b:56:84:71:19:ac:51:c5:e2:b1:08:77: 55:29:66:61:16:27:ca:38:a6:af:97:9f:1f:4d:eb:c8:36:d4: b8:8e:cd:91:d3:fa:9b:d7:27:4a:ab:ab:95:c3:68:eb:95:04: 90:85:50:db:28:2b:56:b6:bc:59:de:c2:e8:85:ef:52:32:02: 56:e7:02:1c:75:bf:e7:12:e1:ec:66:c8:04:81:41:e1:b3:b6: 4a:99:77:10:41:29:b3:7b:88:70:f2:51:00:aa:1d:13:97:3b: 18:cd:89:ac:bd:15:22:d8:c8:59:64:8b:57:b9:f5:ad:a9:f6: 92:3e:3d:2c:38:8e:42:2f:33:73:e5:c9:c5:f6:46:3c:de:a5: 96:b4:10:8c:9c:2b:b5:63:d0:f1:a0:b1:6d:7d:7c:33:2f:20: be:7c:fa:46:b4:fa:7c:18:51:81:d1:4c:de:9c:7f:2d:c0:b3: 67:1c:f5:08:b6:19:a5:f8:7c:1a:61:d5:4b:52:bf:b4:75:39: 9c:65:cb:5d:21:74:a8:4f:21:50:9c:77:25:4d:0e:7e:d9:82: 82:2e:23:ed:1c:da:ef:e5:11:84:e8:55:0f:04:74:fc:46:3f: 3c:eb:d0:61:44:12:0a:73:d9:ed:2d:17:90:d4:10:09:0b:79: d9:ad:fe:65 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUzNjkxMTAvBgNVBAUTKEZFMTM5MUMwQjIyNkM4Q0VCRkE0QTJBRDY2OTZBRTRC ODJCRjdFMjcwHhcNMjQwMjE1MDUxNjM2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNkOWUzNC0wYzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1b3qqMb+OgfVL8rv4+nFktGva8mQFelmMxKJEJre5l9dc2uALesJOybTxtD U2xee0Zck9jzOXuGksg9nPIQrbNu/1RAN5Ff+/F0Xs5Yu9cOKdki5JF0ncSoQ4Ni srBCGqk4M+qPQkiQKCxPbtbGuQ+Cb02dsi0bxiRfos3AKxZrKwRRx//JpRZ6PVAw 8gyE4EKIfwqmv5hjY4sso73wtOKWqHtNI2eRBTKlmJuMtaLcsgih/Sd+Bq0VMam1 V9RDMTLOE4+ZY85OKvjmLTwaO6xWBckembvq9MvT3y89C930AZWKjeYTz87KxoK5 z5hY8JlPPzM/iBc7I8ImcOC3QwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIiGZc0Q gK1VhCf7cLx9ZtVSuu88MB8GA1UdIwQYMBaAFP4TkcCyJsjOv6SirWaWrkuCv34n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTM2OS8wRTJGQjNDODg4 RDgxMUVEOUI4NUU1NDhDNEY5QUUwMi9faE9Sd0xJbXlNNl9wS0t0WnBhdVM0S19m aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19oT1J3TElteU02X3BLS3RacGF1UzRLX2ZpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUUzNjkvMEUyRkIzQzg4OEQ4MTFFRDlCODVFNTQ4QzRGOUFFMDIvN0FFQjk3RDJB NDUwMTFFRDhBQjhBNDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnPAYwDwQCAAIwCQMHACABDfG7wDANBgkqhkiG9w0BAQsF AAOCAQEAGH5x4Zhoe1aEcRmsUcXisQh3VSlmYRYnyjimr5efH03ryDbUuI7NkdP6 m9cnSqurlcNo65UEkIVQ2ygrVra8Wd7C6IXvUjICVucCHHW/5xLh7GbIBIFB4bO2 Spl3EEEps3uIcPJRAKodE5c7GM2JrL0VItjIWWSLV7n1ran2kj49LDiOQi8zc+XJ xfZGPN6llrQQjJwrtWPQ8aCxbX18My8gvnz6RrT6fBhRgdFM3px/LcCzZxz1CLYZ pfh8GmHVS1K/tHU5nGXLXSF0qE8hUJx3JU0OftmCgi4j7Rza7+URhOhVDwR0/EY/ POvQYUQSCnPZ7S0XkNQQCQt52a3+ZQ== -----END CERTIFICATE-----Generated at Fri May 17 06:18:04 2024 by rpki-client on console-fra.rpki-client.org