$ rpki-client -vvf rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/BFB35A9831E011EA91E99C3CC4F9AE02.roa File: BFB35A9831E011EA91E99C3CC4F9AE02.roa (raw, json) Hash identifier: 0CVlwWdHMnQ7Gb1e3i5Vmz+DwnzV08tbLlKmynwufrQ= Subject key identifier: D2:43:98:30:C8:3E:99:E2:4C:D2:C3:08:51:14:60:C4:76:88:F6:33 Certificate issuer: /CN=A911FCC1/serialNumber=822ABCE04417BE157B2833BA3B0230DE2384C240 Certificate serial: 0A68 Authority key identifier: 82:2A:BC:E0:44:17:BE:15:7B:28:33:BA:3B:02:30:DE:23:84:C2:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/BFB35A9831E011EA91E99C3CC4F9AE02.roa Signing time: Fri 02 Feb 2024 20:18:10 +0000 ROA not before: Fri 02 Feb 2024 20:18:10 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138566 IP address blocks: 103.133.32.0/22 maxlen: 24 2404:46c0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.crl rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 20:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2664 (0xa68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FCC1/serialNumber=822ABCE04417BE157B2833BA3B0230DE2384C240 Validity Not Before: Feb 2 20:18:10 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bd4e02-7d7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a8:55:69:a6:5a:ed:c7:27:10:c4:44:24:b4: f3:c7:b9:3d:e9:6b:f7:a8:75:4d:8a:7c:21:62:df: ff:b7:60:2d:cc:d2:1e:c8:cc:69:cf:8a:60:f1:50: 91:a3:72:39:88:b0:5e:7a:bf:8c:89:aa:ac:79:c7: f4:c0:51:ad:b8:a8:89:41:28:c6:dc:7b:f2:52:29: 6d:91:e8:2d:19:06:2b:68:0c:55:f2:e1:b2:61:ca: 7d:e4:5c:79:5a:e6:ad:0f:d3:fa:0b:92:6c:61:8d: 14:51:a3:85:96:ef:fb:b3:98:d5:de:c5:9f:ee:da: f2:89:0c:b4:5f:19:3b:21:b4:4b:67:ad:f8:0f:58: a4:72:75:36:40:31:5d:6f:be:4a:91:b3:31:e9:96: ac:04:70:8d:ca:04:45:09:9c:38:5e:a6:83:70:03: f7:74:c8:11:c9:69:a7:7a:5b:f9:50:7e:67:8f:c9: 42:15:96:54:fd:35:24:dc:85:89:f0:ea:c7:e6:b7: 57:49:03:56:30:c2:f4:59:e0:3a:14:75:fe:86:0d: 4f:32:f0:7a:24:7b:38:9e:02:d2:e8:df:b2:b3:6b: 79:36:60:35:b3:ec:6c:6b:ed:7d:49:99:77:78:15: 4e:cb:bc:15:8e:cf:38:4f:7d:84:af:aa:d1:70:2b: 5e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:43:98:30:C8:3E:99:E2:4C:D2:C3:08:51:14:60:C4:76:88:F6:33 X509v3 Authority Key Identifier: keyid:82:2A:BC:E0:44:17:BE:15:7B:28:33:BA:3B:02:30:DE:23:84:C2:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/BFB35A9831E011EA91E99C3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.32.0/22 IPv6: 2404:46c0::/32 Signature Algorithm: sha256WithRSAEncryption 41:f2:03:5b:26:d7:6f:96:0c:29:ad:96:a6:22:6c:95:c5:fb: 59:27:bb:0f:7d:72:62:7c:59:80:5e:67:81:0f:79:6a:7b:a5: 1f:1a:9c:99:1d:88:08:1f:4d:ec:27:19:81:ab:69:6d:a3:af: e6:3e:b4:69:d8:d3:fc:c9:99:8b:f5:f1:1c:40:4a:d2:c5:1e: 77:72:9a:78:85:ba:6b:43:d2:23:cb:09:7b:d8:df:15:f6:78: 2d:1a:02:05:f5:d6:9d:8b:bd:b1:48:8c:d2:d8:6a:4f:79:21: e9:eb:5e:c8:90:46:8a:4c:3a:55:7d:b4:4b:6a:39:fd:b1:f9: ef:45:ba:3e:1d:40:18:5d:05:fc:36:a5:ce:ec:1a:70:56:1c: 46:1d:ed:85:21:a0:dd:aa:52:3f:a3:b4:d4:62:fa:a5:28:ce: 2a:96:77:bf:69:30:79:54:96:6f:00:e8:3c:dd:2d:1b:38:3c: 24:1a:21:3d:d5:03:4b:65:d1:c2:2d:28:25:5d:60:95:7f:a6: 15:91:c9:93:cb:b8:a8:6a:a0:fd:9d:8d:31:70:fc:ae:50:72: af:3a:59:81:7f:48:40:d3:c9:fe:1f:39:d9:d7:c0:8c:4e:04: cc:ff:dd:1e:f7:15:d3:59:40:ff:d8:d7:fa:36:6f:46:eb:d1: d0:11:bb:4e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZDQzExMTAvBgNVBAUTKDgyMkFCQ0UwNDQxN0JFMTU3QjI4MzNCQTNCMDIzMERF MjM4NEMyNDAwHhcNMjQwMjAyMjAxODEwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkNGUwMi03ZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqhVaaZa7ccnEMREJLTzx7k96Wv3qHVNinwhYt//t2AtzNIeyMxpz4pg8VCR o3I5iLBeer+Miaqsecf0wFGtuKiJQSjG3HvyUiltkegtGQYraAxV8uGyYcp95Fx5 WuatD9P6C5JsYY0UUaOFlu/7s5jV3sWf7tryiQy0Xxk7IbRLZ634D1ikcnU2QDFd b75KkbMx6ZasBHCNygRFCZw4XqaDcAP3dMgRyWmnelv5UH5nj8lCFZZU/TUk3IWJ 8OrH5rdXSQNWMML0WeA6FHX+hg1PMvB6JHs4ngLS6N+ys2t5NmA1s+xsa+19SZl3 eBVOy7wVjs84T32Er6rRcCtecwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNJDmDDI PpniTNLDCFEUYMR2iPYzMB8GA1UdIwQYMBaAFIIqvOBEF74VeygzujsCMN4jhMJA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkNDMS8xNDk4RkM5RTMx RTAxMUVBODM3QkRFM0JDNEY5QUUwMi9naXE4NEVRWHZoVjdLRE82T3dJdzNpT0V3 a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dpcTg0RVFYdmhWN0tETzZPd0l3M2lPRXdrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUZDQzEvMTQ5OEZDOUUzMUUwMTFFQTgzN0JERTNCQzRGOUFFMDIvQkZCMzVBOTgz MUUwMTFFQTkxRTk5QzNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhSAwDQQCAAIwBwMFACQERsAwDQYJKoZIhvcNAQELBQAD ggEBAEHyA1sm12+WDCmtlqYibJXF+1knuw99cmJ8WYBeZ4EPeWp7pR8anJkdiAgf TewnGYGraW2jr+Y+tGnY0/zJmYv18RxAStLFHndymniFumtD0iPLCXvY3xX2eC0a AgX11p2LvbFIjNLYak95IenrXsiQRopMOlV9tEtqOf2x+e9Fuj4dQBhdBfw2pc7s GnBWHEYd7YUhoN2qUj+jtNRi+qUoziqWd79pMHlUlm8A6DzdLRs4PCQaIT3VA0tl 0cItKCVdYJV/phWRyZPLuKhqoP2djTFw/K5Qcq86WYF/SEDTyf4fOdnXwIxOBMz/ 3R73FdNZQP/Y1/o2b0br0dARu04= -----END CERTIFICATE-----Generated at Wed May 22 23:16:37 2024 by rpki-client on console-ams.rpki-client.org