$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/FB2EC05CA3B111EE92169F16C4F9AE02.roa File: FB2EC05CA3B111EE92169F16C4F9AE02.roa (raw, json) Hash identifier: cAygPF0dsBX1wYUCyZIW25KS6kuT3P0mPGPIqFTVNDM= Subject key identifier: 5E:3E:BC:47:3B:A7:12:6A:C3:5E:7C:98:5C:C1:AA:AD:D2:1F:A9:DF Certificate issuer: /CN=A917EB0C/serialNumber=506D780ED1797480F15251347FC28443D72E9507 Certificate serial: 0B0B Authority key identifier: 50:6D:78:0E:D1:79:74:80:F1:52:51:34:7F:C2:84:43:D7:2E:95:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UG14DtF5dIDxUlE0f8KEQ9culQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/FB2EC05CA3B111EE92169F16C4F9AE02.roa Signing time: Thu 28 Mar 2024 20:28:50 +0000 ROA not before: Thu 28 Mar 2024 20:28:50 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 139901 IP address blocks: 103.85.236.0/22 maxlen: 22 103.85.236.0/23 maxlen: 23 103.85.236.0/24 maxlen: 24 103.85.237.0/24 maxlen: 24 103.85.238.0/23 maxlen: 23 103.85.238.0/24 maxlen: 24 103.85.239.0/24 maxlen: 24 2400:b340::/32 maxlen: 40 2400:b340::/48 maxlen: 48 2400:b340:236::/48 maxlen: 48 2400:b340:237::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/UG14DtF5dIDxUlE0f8KEQ9culQc.crl rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/UG14DtF5dIDxUlE0f8KEQ9culQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UG14DtF5dIDxUlE0f8KEQ9culQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 20:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2827 (0xb0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB0C/serialNumber=506D780ED1797480F15251347FC28443D72E9507 Validity Not Before: Mar 28 20:28:50 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6605d302-3545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7b:11:4e:5f:82:ec:81:fd:52:a1:c7:6b:3b: 0b:f7:a2:b3:02:20:af:67:46:09:12:4c:1b:cf:ef: 51:13:c3:e5:ef:52:bf:35:06:e1:83:a2:e0:73:fe: 8a:aa:41:4d:f0:0b:8e:1d:7b:6e:ff:0e:87:21:d4: 71:f8:7c:22:56:8c:cb:a3:b3:0f:fe:6c:0b:73:90: 0f:f5:1d:50:2a:54:53:0c:b2:3d:b1:14:10:9b:21: 56:49:b0:3b:87:4e:86:a1:dd:d4:d4:99:7c:45:f2: a1:21:d6:fe:c1:c0:51:8e:50:89:96:b8:af:c9:2d: 11:1a:32:38:0c:df:06:5a:b7:5f:68:94:6d:6b:59: e1:10:ae:ae:ef:96:9f:27:07:c8:42:ea:d1:5e:c5: ad:f6:f7:21:f2:b0:64:92:f1:2f:e5:eb:87:1b:05: 4a:c5:15:5a:08:e6:f1:c2:e1:6f:9d:9f:2c:38:f2: 94:c6:3c:7f:f1:1d:89:e1:ef:90:cb:a1:7e:1d:ce: 93:19:50:39:d7:15:4f:3b:41:b8:7a:ef:f3:c1:74: de:ae:c7:4b:00:c4:00:f7:f7:f0:6c:07:cf:07:b7: cf:e6:e0:ba:4d:6c:5b:83:f0:f8:c9:16:82:2e:d6: 15:49:d4:89:6b:40:14:76:43:a9:68:7d:60:02:a7: 82:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:3E:BC:47:3B:A7:12:6A:C3:5E:7C:98:5C:C1:AA:AD:D2:1F:A9:DF X509v3 Authority Key Identifier: keyid:50:6D:78:0E:D1:79:74:80:F1:52:51:34:7F:C2:84:43:D7:2E:95:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/UG14DtF5dIDxUlE0f8KEQ9culQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UG14DtF5dIDxUlE0f8KEQ9culQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/FB2EC05CA3B111EE92169F16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.236.0/22 IPv6: 2400:b340::/32 Signature Algorithm: sha256WithRSAEncryption 9f:40:0e:dd:8b:f0:55:7d:ba:94:f5:a2:67:39:c8:03:ab:0d: 45:ae:7f:e6:6a:57:4e:80:94:70:8d:d2:51:2b:73:e0:56:55: ba:b7:11:7d:72:9f:8c:63:c1:37:f6:b9:7b:31:de:ee:9b:53: ee:24:b8:1c:22:58:4f:02:22:44:a1:a3:ed:58:a7:2c:80:a5: 47:30:b8:37:ce:89:05:22:d2:f7:4e:b1:88:eb:1d:fd:c3:2b: 55:43:21:4e:5a:95:b5:a4:4e:b6:5b:9f:cc:15:24:a5:cf:35: 9f:fb:67:e8:9b:fe:48:ce:e8:85:64:a8:ea:fe:c9:03:71:a0: 5b:69:5b:e4:08:a2:c6:fc:51:5a:fb:69:23:c7:45:a7:7a:01: ba:61:7c:77:b1:27:0c:59:6e:ec:66:fb:ea:1d:f7:51:47:91: 5f:f7:b3:55:78:9f:ed:ee:04:ca:c1:cb:68:5b:da:81:6b:63: 23:c0:f0:2f:a5:8b:2e:8b:24:61:91:36:44:24:0b:fa:aa:92: e4:fb:2e:48:b5:61:5f:e4:ac:a9:44:f7:fd:b9:95:a2:41:b6: 16:db:78:b2:f8:c6:d0:f9:25:5a:68:39:76:48:95:8c:ea:2d: e8:93:5c:fe:fd:0c:f0:3a:cf:47:a7:ab:d0:68:50:7b:54:60: d4:8d:56:af -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCMEMxMTAvBgNVBAUTKDUwNkQ3ODBFRDE3OTc0ODBGMTUyNTEzNDdGQzI4NDQz RDcyRTk1MDcwHhcNMjQwMzI4MjAyODUwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1ZDMwMi0zNTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4XsRTl+C7IH9UqHHazsL96KzAiCvZ0YJEkwbz+9RE8Pl71K/NQbhg6Lgc/6K qkFN8AuOHXtu/w6HIdRx+HwiVozLo7MP/mwLc5AP9R1QKlRTDLI9sRQQmyFWSbA7 h06God3U1Jl8RfKhIdb+wcBRjlCJlrivyS0RGjI4DN8GWrdfaJRta1nhEK6u75af JwfIQurRXsWt9vch8rBkkvEv5euHGwVKxRVaCObxwuFvnZ8sOPKUxjx/8R2J4e+Q y6F+Hc6TGVA51xVPO0G4eu/zwXTersdLAMQA9/fwbAfPB7fP5uC6TWxbg/D4yRaC LtYVSdSJa0AUdkOpaH1gAqeCRwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFF4+vEc7 pxJqw158mFzBqq3SH6nfMB8GA1UdIwQYMBaAFFBteA7ReXSA8VJRNH/ChEPXLpUH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUIwQy82MTM3NUI2QTIy MkExMUVBOUE4MjZENDVDNEY5QUUwMi9VRzE0RHRGNWRJRHhVbEUwZjhLRVE5Y3Vs UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VHMTREdEY1ZElEeFVsRTBmOEtFUTljdWxRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VCMEMvNjEzNzVCNkEyMjJBMTFFQTlBODI2RDQ1QzRGOUFFMDIvRkIyRUMwNUNB M0IxMTFFRTkyMTY5RjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnVewwDQQCAAIwBwMFACQAs0AwDQYJKoZIhvcNAQELBQAD ggEBAJ9ADt2L8FV9upT1omc5yAOrDUWuf+ZqV06AlHCN0lErc+BWVbq3EX1yn4xj wTf2uXsx3u6bU+4kuBwiWE8CIkSho+1YpyyApUcwuDfOiQUi0vdOsYjrHf3DK1VD IU5albWkTrZbn8wVJKXPNZ/7Z+ib/kjO6IVkqOr+yQNxoFtpW+QIosb8UVr7aSPH Rad6AbphfHexJwxZbuxm++od91FHkV/3s1V4n+3uBMrBy2hb2oFrYyPA8C+liy6L JGGRNkQkC/qqkuT7Lki1YV/krKlE9/25laJBthbbeLL4xtD5JVpoOXZIlYzqLeiT XP79DPA6z0enq9BoUHtUYNSNVq8= -----END CERTIFICATE-----Generated at Sun May 26 23:05:32 2024 by rpki-client on console-ams.rpki-client.org