$ rpki-client -vvf rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/FFB6E08AF6A111EEBC0EF62FC4F9AE02.roa File: FFB6E08AF6A111EEBC0EF62FC4F9AE02.roa (raw, json) Hash identifier: PYd5Z/psfbWsfxFhBn32PnsSRpisd6J1k8fer1PQSGk= Subject key identifier: 96:18:D0:39:21:B8:9A:31:96:EB:3A:34:6A:6A:BF:1A:62:5F:76:07 Certificate issuer: /CN=A915290D/serialNumber=6ABA86D304AAF64EB4A097B29BA5577860CC856F Certificate serial: 21 Authority key identifier: 6A:BA:86:D3:04:AA:F6:4E:B4:A0:97:B2:9B:A5:57:78:60:CC:85:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/arqG0wSq9k60oJeym6VXeGDMhW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/FFB6E08AF6A111EEBC0EF62FC4F9AE02.roa Signing time: Tue 09 Apr 2024 18:50:14 +0000 ROA not before: Tue 09 Apr 2024 18:50:14 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 135432 IP address blocks: 103.133.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/arqG0wSq9k60oJeym6VXeGDMhW8.crl rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/arqG0wSq9k60oJeym6VXeGDMhW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/arqG0wSq9k60oJeym6VXeGDMhW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Jun 2024 07:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915290D/serialNumber=6ABA86D304AAF64EB4A097B29BA5577860CC856F Validity Not Before: Apr 9 18:50:14 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=66158de5-8cea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:06:84:2c:f1:ea:2e:d6:56:4b:96:89:2a:d9: 22:45:4c:c0:c5:93:cf:4a:8e:e0:e9:e3:e6:a1:90: a0:e8:a8:55:25:da:d6:4d:cd:ff:24:bb:cc:d7:8f: ee:aa:c3:94:67:76:4b:46:5e:ab:4d:77:9e:ea:e4: f9:33:ec:d4:bc:ad:3f:f2:35:db:eb:14:71:9f:f9: 46:a7:e6:d1:3f:93:b5:d4:e3:d2:d4:f8:eb:85:2f: ed:d0:94:c9:1d:90:bb:95:68:da:21:c3:fa:43:a6: 78:62:b4:a4:a5:ab:bf:b3:bc:9a:95:3f:84:07:10: 62:e7:3b:05:7a:8f:9c:af:fc:90:c3:ba:ce:01:83: 5f:8b:e6:21:08:93:be:5d:ec:e3:ff:29:e0:d4:b1: f7:02:79:18:c1:f7:36:45:42:bf:d5:34:e5:f7:0b: 9c:2d:d3:8b:27:54:31:48:c8:0a:6d:b1:60:06:85: ab:76:32:41:59:cd:72:29:63:9b:4a:11:bc:f8:df: cc:cc:6f:32:a6:d3:4d:1c:b7:56:17:51:ed:b2:f1: 68:64:28:c2:ab:34:3d:eb:ef:b6:be:2b:9b:ac:7d: 20:ee:7d:81:79:6c:f5:12:22:1a:7a:f1:79:c4:ac: bf:c4:a3:0f:64:d4:47:32:77:2e:93:22:e7:1e:1e: 83:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:18:D0:39:21:B8:9A:31:96:EB:3A:34:6A:6A:BF:1A:62:5F:76:07 X509v3 Authority Key Identifier: keyid:6A:BA:86:D3:04:AA:F6:4E:B4:A0:97:B2:9B:A5:57:78:60:CC:85:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/arqG0wSq9k60oJeym6VXeGDMhW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/arqG0wSq9k60oJeym6VXeGDMhW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915290D/A6849AC8D02911EE9E6CBA40C4F9AE02/FFB6E08AF6A111EEBC0EF62FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.128.0/24 Signature Algorithm: sha256WithRSAEncryption b9:fb:56:a0:ba:0f:53:7d:a9:b8:d3:0c:36:82:f6:9e:5e:bf: 4d:ff:d9:b3:ae:13:4a:f4:af:28:87:3e:92:54:94:95:b3:ec: fe:1d:de:64:f5:49:a0:b7:a5:ad:01:22:d4:42:b6:37:5b:ab: ed:2b:fb:ab:d9:f3:3b:0f:41:ee:b0:90:1c:a7:c7:43:a2:a1: 9a:6f:11:1d:9d:88:e5:b2:59:15:b2:45:6e:0e:46:b5:88:1c: a4:5d:79:76:ce:92:75:05:61:90:ed:de:e9:83:63:38:ab:bf: bd:f4:e4:28:9b:46:51:c2:2d:7b:6d:c6:d8:b0:d7:76:50:9f: 0a:d7:d5:55:f7:96:a2:1f:34:9a:f0:48:1b:57:8e:5b:12:36: af:c0:ec:5a:69:3c:20:9c:29:45:c3:27:5f:e4:e6:17:24:33: 6b:a7:dd:90:dd:23:fd:f5:7b:17:bb:f2:f7:e3:2b:74:a6:de: c7:95:81:91:72:90:3a:41:22:b3:27:96:6d:2d:f6:50:87:0e: 42:cb:6b:3c:4d:f2:70:d4:45:d6:2f:39:9d:64:2a:93:86:df: 31:9c:cc:26:57:86:8a:77:88:ea:c6:42:89:1b:a7:52:3e:85: db:4a:7e:ec:f5:84:9d:40:99:0b:82:a1:c4:1a:fb:f2:1d:ae: a8:d6:ca:c1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MjkwRDExMC8GA1UEBRMoNkFCQTg2RDMwNEFBRjY0RUI0QTA5N0IyOUJBNTU3Nzg2 MENDODU2RjAeFw0yNDA0MDkxODUwMTRaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MTU4ZGU1LThjZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVBoQs8eou1lZLlokq2SJFTMDFk89KjuDp4+ahkKDoqFUl2tZNzf8ku8zXj+6q w5RndktGXqtNd57q5Pkz7NS8rT/yNdvrFHGf+Uan5tE/k7XU49LU+OuFL+3QlMkd kLuVaNohw/pDpnhitKSlq7+zvJqVP4QHEGLnOwV6j5yv/JDDus4Bg1+L5iEIk75d 7OP/KeDUsfcCeRjB9zZFQr/VNOX3C5wt04snVDFIyAptsWAGhat2MkFZzXIpY5tK Ebz438zMbzKm000ct1YXUe2y8WhkKMKrND3r77a+K5usfSDufYF5bPUSIhp68XnE rL/Eow9k1Ecydy6TIuceHoN1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUlhjQOSG4 mjGW6zo0amq/GmJfdgcwHwYDVR0jBBgwFoAUarqG0wSq9k60oJeym6VXeGDMhW8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyOTBEL0E2ODQ5QUM4RDAy OTExRUU5RTZDQkE0MEM0RjlBRTAyL2FycUcwd1NxOWs2MG9KZXltNlZYZUdETWhX OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXJxRzB3U3E5azYwb0pleW02VlhlR0RNaFc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjkwRC9BNjg0OUFDOEQwMjkxMUVFOUU2Q0JBNDBDNEY5QUUwMi9GRkI2RTA4QUY2 QTExMUVFQkMwRUY2MkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeFgDANBgkqhkiG9w0BAQsFAAOCAQEAuftWoLoPU32puNMM NoL2nl6/Tf/Zs64TSvSvKIc+klSUlbPs/h3eZPVJoLelrQEi1EK2N1ur7Sv7q9nz Ow9B7rCQHKfHQ6Khmm8RHZ2I5bJZFbJFbg5GtYgcpF15ds6SdQVhkO3e6YNjOKu/ vfTkKJtGUcIte23G2LDXdlCfCtfVVfeWoh80mvBIG1eOWxI2r8DsWmk8IJwpRcMn X+TmFyQza6fdkN0j/fV7F7vy9+MrdKbex5WBkXKQOkEisyeWbS32UIcOQstrPE3y cNRF1i85nWQqk4bfMZzMJleGineI6sZCiRunUj6F20p+7PWEnUCZC4KhxBr78h2u qNbKwQ== -----END CERTIFICATE-----Generated at Tue Jun 11 11:38:45 2024 by rpki-client on console-fra.rpki-client.org