$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FC9C9B9888B911EEBFE4EA82C4F9AE02.roa File: FC9C9B9888B911EEBFE4EA82C4F9AE02.roa (raw, json) Hash identifier: 74DCOybfYr5qgWPKxZWOpWpwBcsechCV61zi+cy0bP8= Subject key identifier: 2B:AA:86:85:66:46:EB:5B:58:CE:69:64:61:2A:C5:0D:77:7B:32:89 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7E7A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FC9C9B9888B911EEBFE4EA82C4F9AE02.roa Signing time: Tue 21 Nov 2023 22:04:48 +0000 ROA not before: Tue 21 Nov 2023 22:04:48 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138520 IP address blocks: 103.84.80.0/24 maxlen: 24 103.133.64.0/24 maxlen: 24 103.133.65.0/24 maxlen: 24 103.133.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32378 (0x7e7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Nov 21 22:04:48 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=655d2980-7337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e6:8a:e5:58:f2:99:eb:2e:15:1d:c4:49:e2: 16:c6:35:f0:6c:17:4b:f7:f9:49:cd:d5:27:34:34: 4a:28:47:6c:b9:51:7c:8d:5d:eb:f5:65:f8:e8:47: b5:ee:e6:d4:7d:93:2f:a8:24:f3:d2:a4:a5:5e:f5: bc:8f:e8:cf:84:a0:5d:7d:e1:d2:ff:46:08:ec:e1: da:91:28:67:43:e0:14:9c:36:ca:d2:24:55:ce:d6: 3c:59:55:29:80:8f:a1:d0:eb:2c:b8:50:d9:b5:e0: 4c:54:63:03:31:9c:9c:cf:5f:8e:90:58:ca:af:53: 72:26:80:0b:ff:18:95:5e:dd:2d:ab:22:da:9b:87: f4:b6:08:e6:2c:22:79:63:44:ff:38:d1:d5:61:4d: 69:69:08:58:22:61:5e:3a:fe:77:8c:05:06:22:1a: b0:0b:c3:ab:8a:d3:dd:b6:65:f0:29:c9:0c:2e:37: 06:94:f4:88:73:78:e0:b4:ec:c2:62:d1:ba:e9:e0: 99:b3:cd:d4:1b:4b:35:48:8c:8d:06:bc:0d:2b:28: b9:57:0a:bf:22:6a:2b:73:f3:df:e4:0e:79:2b:74: 4a:60:dc:76:d3:69:e0:3d:57:b3:5b:dd:2e:95:b8: e8:31:76:a0:b6:bc:1f:58:b7:81:c8:95:c5:32:c6: 52:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:AA:86:85:66:46:EB:5B:58:CE:69:64:61:2A:C5:0D:77:7B:32:89 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FC9C9B9888B911EEBFE4EA82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.80.0/24 103.133.64.0/23 103.133.67.0/24 Signature Algorithm: sha256WithRSAEncryption 51:30:f7:b8:38:a8:1f:27:51:dc:12:3d:3e:c6:b6:84:97:9b: e7:52:55:fb:81:8a:99:98:bf:1a:3f:13:d7:6a:88:ee:d8:80: f9:1c:73:7e:39:e3:5b:bd:db:e4:b5:37:f2:3e:78:8e:4f:3f: 2d:bd:9a:c3:1a:6b:f7:62:33:8a:1d:01:6d:76:da:0a:7b:ee: 87:76:4a:26:cb:ad:ce:51:2e:1e:90:c1:14:5a:53:b0:4f:b4: 4d:8f:7b:d1:f1:3d:46:7a:72:76:10:29:d7:ae:8f:26:67:e7: 3c:98:2c:64:f5:10:a3:09:db:f2:bc:19:18:23:dc:1c:a3:2f: c5:69:58:cc:0a:cc:9f:7a:b9:b7:65:5e:b2:4c:7d:af:62:0e: ac:95:0d:1d:15:8c:ac:b9:e2:cd:f3:72:ce:14:dc:f6:c3:d0: 9a:af:39:ab:57:a1:bb:aa:f4:c7:c6:0a:9b:67:aa:8f:39:63: 38:50:9a:dd:09:af:d1:ee:0a:04:54:f0:c0:16:ac:ad:a9:8a: 66:47:d5:d1:8b:df:e7:e1:a6:26:e2:91:69:0a:e5:36:b8:f8: ee:86:cb:05:cb:59:59:b1:f3:18:d0:07:9b:c1:20:34:3a:b3: c3:1e:93:61:89:64:ea:62:8a:a6:62:02:dc:22:52:6e:2a:ba: d3:9a:1b:71 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICfnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMTIxMjIwNDQ4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVkMjk4MC03MzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApeaK5VjymesuFR3ESeIWxjXwbBdL9/lJzdUnNDRKKEdsuVF8jV3r9WX46Ee1 7ubUfZMvqCTz0qSlXvW8j+jPhKBdfeHS/0YI7OHakShnQ+AUnDbK0iRVztY8WVUp gI+h0OssuFDZteBMVGMDMZycz1+OkFjKr1NyJoAL/xiVXt0tqyLam4f0tgjmLCJ5 Y0T/ONHVYU1paQhYImFeOv53jAUGIhqwC8OritPdtmXwKckMLjcGlPSIc3jgtOzC YtG66eCZs83UG0s1SIyNBrwNKyi5Vwq/Imorc/Pf5A55K3RKYNx202ngPVezW90u lbjoMXagtrwfWLeByJXFMsZSKQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFCuqhoVm RutbWM5pZGEqxQ13ezKJMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRkM5QzlCOTg4 OEI5MTFFRUJGRTRFQTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnVFADBAFnhUADBABnhUMwDQYJKoZIhvcNAQELBQADggEB AFEw97g4qB8nUdwSPT7GtoSXm+dSVfuBipmYvxo/E9dqiO7YgPkcc34541u92+S1 N/I+eI5PPy29msMaa/diM4odAW122gp77od2SibLrc5RLh6QwRRaU7BPtE2Pe9Hx PUZ6cnYQKdeujyZn5zyYLGT1EKMJ2/K8GRgj3ByjL8VpWMwKzJ96ubdlXrJMfa9i DqyVDR0VjKy54s3zcs4U3PbD0JqvOatXobuq9MfGCptnqo85YzhQmt0Jr9HuCgRU 8MAWrK2pimZH1dGL3+fhpibikWkK5Ta4+O6GywXLWVmx8xjQB5vBIDQ6s8Mek2GJ ZOpiiqZiAtwiUm4qutOaG3E= -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:44 2024 by rpki-client on console-fra.rpki-client.org