$ rpki-client -vvf rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/FC11F400240611EFA8F45A54C4F9AE02.roa File: FC11F400240611EFA8F45A54C4F9AE02.roa (raw, json) Hash identifier: 0Kz75Ec+aiyaTgQW5w9kydRmf1vsulhgyrIgS2fmNao= Subject key identifier: 5A:55:A7:BD:8C:29:14:D3:0E:84:E7:87:D3:22:DF:68:C4:E0:94:3F Certificate issuer: /CN=A918BD1A/serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Certificate serial: 02F4 Authority key identifier: 20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/FC11F400240611EFA8F45A54C4F9AE02.roa Signing time: Thu 06 Jun 2024 13:17:16 +0000 ROA not before: Thu 06 Jun 2024 13:17:15 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 150735 IP address blocks: 103.122.122.0/24 maxlen: 24 103.182.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 756 (0x2f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BD1A/serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Validity Not Before: Jun 6 13:17:15 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6661b6db-015e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e0:91:5c:c1:4b:97:eb:59:d1:f6:79:8d:d9: e4:dc:62:66:d5:15:4d:07:de:40:c4:1b:c8:86:42: 8c:da:85:a4:7f:86:fc:c4:2d:71:f9:d0:7f:66:72: f1:d3:20:63:a8:b0:ef:e0:3e:5a:8c:a5:a2:d9:1d: af:8d:62:67:db:d3:f7:56:5a:59:db:c9:61:b3:d3: 89:ea:38:74:92:54:b6:16:30:fb:d5:69:c1:d2:f2: 2a:71:94:6e:86:69:7c:c0:08:e7:36:48:4c:b2:06: df:9e:f7:97:03:86:5b:55:74:29:45:b9:b8:33:92: e9:f4:ad:f5:f4:a7:21:8a:92:d1:b1:82:76:a6:b0: 5f:3d:da:82:2b:d2:03:70:7f:a5:ca:1e:87:77:c7: d3:13:e7:39:47:78:10:2e:76:e8:9a:fc:55:fa:30: bf:9c:5b:6e:23:47:d1:a7:a8:21:8e:cf:74:a8:69: 18:81:ae:4b:66:8e:b7:d4:25:12:ad:59:32:bc:6c: c6:cd:7c:6b:0b:a7:90:1b:16:4e:6d:48:bd:63:d7: 9f:0a:08:27:55:38:bc:14:b0:52:2d:e4:86:67:64: 63:69:16:02:31:a8:13:df:f8:c0:6d:dd:64:b8:98: bc:5a:4f:b3:2e:75:1c:5c:49:c0:e3:ed:a4:d5:97: b2:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:55:A7:BD:8C:29:14:D3:0E:84:E7:87:D3:22:DF:68:C4:E0:94:3F X509v3 Authority Key Identifier: keyid:20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/FC11F400240611EFA8F45A54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.122.0/24 103.182.219.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:a7:e0:e2:ab:20:40:68:8c:5c:ec:62:4e:9b:d6:ff:10:8d: 2a:ff:fa:06:5a:7f:41:8a:0f:59:7e:50:85:6c:3e:b6:47:ee: 1f:8e:fa:dd:95:48:94:0e:88:cf:2a:bd:b8:96:a0:6f:f6:e2: 50:85:dc:bf:c0:09:57:8a:72:ff:64:1f:d8:62:0c:b4:22:db: 75:ed:49:cf:7e:d1:49:6e:4b:fe:2d:8a:fc:cf:0a:e8:a6:4a: c2:75:3e:99:0c:c6:65:db:de:ed:5c:e8:2a:46:96:15:2b:8c: 91:f9:03:79:a5:12:6a:9c:b1:4a:d1:79:9d:18:c8:1e:45:00: bb:ad:b5:73:23:e3:83:ed:22:c9:f4:4b:75:94:d9:00:5f:34: b8:45:a3:20:ce:a7:0b:4f:74:01:7b:99:4e:65:50:b0:10:11: ab:78:10:be:f4:e7:56:f4:80:fd:2d:71:84:37:7b:12:8c:04: e6:df:16:68:74:0d:2f:86:d5:8c:94:09:c3:e1:68:19:cf:25: 80:71:e0:6e:32:57:63:8d:53:80:60:27:b3:9c:3a:7d:bb:41: a8:41:ed:42:a5:28:27:9b:27:be:0f:3e:5d:91:49:c0:50:48: 19:bc:38:1f:2d:ab:5a:f5:ba:f5:b2:89:4a:a5:39:c6:65:fd: 6f:20:b4:18 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEMUExMTAvBgNVBAUTKDIwNzQ2REE5NkM2QzkzNDhFOTRCQkI3NERDQ0I1OTAx QzZFQ0I3QjMwHhcNMjQwNjA2MTMxNzE1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjYxYjZkYi0wMTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+CRXMFLl+tZ0fZ5jdnk3GJm1RVNB95AxBvIhkKM2oWkf4b8xC1x+dB/ZnLx 0yBjqLDv4D5ajKWi2R2vjWJn29P3VlpZ28lhs9OJ6jh0klS2FjD71WnB0vIqcZRu hml8wAjnNkhMsgbfnveXA4ZbVXQpRbm4M5Lp9K319KchipLRsYJ2prBfPdqCK9ID cH+lyh6Hd8fTE+c5R3gQLnbomvxV+jC/nFtuI0fRp6ghjs90qGkYga5LZo631CUS rVkyvGzGzXxrC6eQGxZObUi9Y9efCggnVTi8FLBSLeSGZ2RjaRYCMagT3/jAbd1k uJi8Wk+zLnUcXEnA4+2k1ZeylQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFpVp72M KRTTDoTnh9Mi32jE4JQ/MB8GA1UdIwQYMBaAFCB0balsbJNI6Uu7dNzLWQHG7Lez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkQxQS80QzZFQUJFODk5 RDgxMUVDQjlFMzU3NkZDNEY5QUUwMi9JSFJ0cVd4c2swanBTN3QwM010WkFjYnN0 N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIUnRxV3hzazBqcFM3dDAzTXRaQWNic3Q3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJEMUEvNEM2RUFCRTg5OUQ4MTFFQ0I5RTM1NzZGQzRGOUFFMDIvRkMxMUY0MDAy NDA2MTFFRkE4RjQ1QTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnenoDBABnttswDQYJKoZIhvcNAQELBQADggEBAEyn4OKr IEBojFzsYk6b1v8QjSr/+gZaf0GKD1l+UIVsPrZH7h+O+t2VSJQOiM8qvbiWoG/2 4lCF3L/ACVeKcv9kH9hiDLQi23XtSc9+0UluS/4tivzPCuimSsJ1PpkMxmXb3u1c 6CpGlhUrjJH5A3mlEmqcsUrReZ0YyB5FALuttXMj44PtIsn0S3WU2QBfNLhFoyDO pwtPdAF7mU5lULAQEat4EL7051b0gP0tcYQ3exKMBObfFmh0DS+G1YyUCcPhaBnP JYBx4G4yV2ONU4BgJ7OcOn27QahB7UKlKCebJ74PPl2RScBQSBm8OB8tq1r1uvWy iUqlOcZl/W8gtBg= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:24 2024 by rpki-client on console-ams.rpki-client.org