$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/FB493356FAD711EE9AAB7E47C4F9AE02.roa File: FB493356FAD711EE9AAB7E47C4F9AE02.roa (raw, json) Hash identifier: LmDxswarwI/Je1ZWDgWoaGbAAtuSZrSCH/o8EsihdvU= Subject key identifier: 42:8F:48:89:12:F7:D2:DC:46:74:AB:4B:CD:2B:1D:2A:BB:22:29:05 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 097D Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/FB493356FAD711EE9AAB7E47C4F9AE02.roa Signing time: Fri 17 May 2024 12:50:16 +0000 ROA not before: Fri 17 May 2024 12:50:16 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 133933 IP address blocks: 43.247.123.0/24 maxlen: 24 103.20.134.0/24 maxlen: 24 103.20.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 13:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2429 (0x97d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: May 17 12:50:16 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=66475287-982d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7e:68:e0:a4:de:a5:5b:73:cd:78:fc:25:9e: 71:49:5c:b3:17:49:9c:13:30:a5:ef:ca:ff:14:fe: 84:d9:aa:ad:94:4d:ac:1c:f6:f6:69:1e:f6:9e:1a: fc:62:17:85:97:80:06:29:56:38:7b:17:dc:ec:98: 42:41:05:a4:b9:be:10:5c:3d:4d:a8:57:b3:e2:36: 3b:bc:d5:51:69:e8:1d:45:7e:ab:64:8b:79:12:38: 6c:16:4f:7e:21:fd:5e:1b:e9:e9:3b:11:ce:ea:b0: 18:7c:65:58:63:74:5e:c1:d2:b8:af:5e:c8:ff:9b: f1:70:42:9a:28:55:94:a2:74:b0:84:9b:f8:80:fb: 6d:19:26:54:c7:5e:f0:c9:cc:19:21:a6:33:8b:75: 52:d0:2f:c2:df:df:51:85:55:95:44:fc:cf:5f:b5: 1d:b3:72:6d:ef:57:d2:d1:6d:87:11:aa:54:da:12: 13:08:88:5a:1b:2c:76:99:ff:de:21:47:9c:5e:60: fe:e2:6b:74:20:fd:7d:11:39:13:7e:1b:6b:cc:97: 03:63:e3:af:c3:91:a1:d4:96:76:79:32:61:3c:c6: 0b:82:b8:66:ce:c9:c4:3e:35:90:41:6c:38:0a:c4: e3:29:05:fb:a9:9b:22:cc:a1:1c:f6:41:bb:eb:ea: da:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:8F:48:89:12:F7:D2:DC:46:74:AB:4B:CD:2B:1D:2A:BB:22:29:05 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/FB493356FAD711EE9AAB7E47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.247.123.0/24 103.20.134.0/23 Signature Algorithm: sha256WithRSAEncryption be:df:d7:90:f1:97:9d:b6:be:f2:da:9f:d2:c5:83:06:d9:23: fa:ed:52:06:fb:ee:59:bc:5f:74:0f:21:ca:67:cf:59:28:9a: 5a:c0:fe:53:ef:08:af:4b:9c:4c:b3:9d:58:c3:bd:52:6f:0a: e9:b6:e9:89:bc:fc:2a:c1:e7:8b:80:23:d7:f5:15:dc:2b:8a: a3:f8:c6:32:6d:1a:fd:59:20:bc:f8:7d:23:ab:e5:91:44:81: dc:55:37:5b:58:c7:8d:b6:ef:1d:0f:79:37:a8:82:4a:7b:c5: 1c:45:e0:9f:06:28:58:11:db:b7:07:92:82:0d:da:73:b7:52: df:45:f1:dd:05:75:eb:11:fc:4f:47:47:78:50:dd:bb:30:9f: fe:16:47:5b:0a:f7:ba:40:1e:fd:ca:b9:78:01:db:7c:40:8b: 1a:ed:c7:db:05:57:cf:bc:39:fd:f2:60:e2:2d:25:e4:9f:06: 60:63:2f:3b:b4:f9:c7:61:40:29:b8:34:73:3d:7a:cc:58:60: 93:fb:4b:a5:5f:d7:81:7e:f3:77:e0:9a:27:4b:96:6d:55:5e: 7a:e1:04:29:77:3b:86:c0:81:a9:85:92:1b:85:ad:82:f9:61: 14:f7:a3:d9:d4:24:7c:0e:3f:ac:1e:25:2c:d1:8b:a3:99:17: 05:e2:36:02 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjQwNTE3MTI1MDE2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ3NTI4Ny05ODJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1X5o4KTepVtzzXj8JZ5xSVyzF0mcEzCl78r/FP6E2aqtlE2sHPb2aR72nhr8 YheFl4AGKVY4exfc7JhCQQWkub4QXD1NqFez4jY7vNVRaegdRX6rZIt5EjhsFk9+ If1eG+npOxHO6rAYfGVYY3RewdK4r17I/5vxcEKaKFWUonSwhJv4gPttGSZUx17w ycwZIaYzi3VS0C/C399RhVWVRPzPX7Uds3Jt71fS0W2HEapU2hITCIhaGyx2mf/e IUecXmD+4mt0IP19ETkTfhtrzJcDY+Ovw5Gh1JZ2eTJhPMYLgrhmzsnEPjWQQWw4 CsTjKQX7qZsizKEc9kG76+razwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEKPSIkS 99LcRnSrS80rHSq7IikFMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvRkI0OTMzNTZG QUQ3MTFFRTlBQUI3RTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr93sDBAFnFIYwDQYJKoZIhvcNAQELBQADggEBAL7f15Dx l522vvLan9LFgwbZI/rtUgb77lm8X3QPIcpnz1komlrA/lPvCK9LnEyznVjDvVJv Cum26Ym8/CrB54uAI9f1FdwriqP4xjJtGv1ZILz4fSOr5ZFEgdxVN1tYx4227x0P eTeogkp7xRxF4J8GKFgR27cHkoIN2nO3Ut9F8d0FdesR/E9HR3hQ3bswn/4WR1sK 97pAHv3KuXgB23xAixrtx9sFV8+8Of3yYOItJeSfBmBjLzu0+cdhQCm4NHM9esxY YJP7S6Vf14F+83fgmidLlm1VXnrhBCl3O4bAgamFkhuFrYL5YRT3o9nUJHwOP6we JSzRi6OZFwXiNgI= -----END CERTIFICATE-----Generated at Fri May 17 15:22:48 2024 by rpki-client on console-ams.rpki-client.org