$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/86A2CEB60F3E11EEA4C55465C4F9AE02.roa File: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (raw, json) Hash identifier: 2hsGSCNVZ1Q8oyfK9bt/7mvezeBVzyWoegIp7VxX4yI= Subject key identifier: E5:43:01:21:AD:6C:EB:F6:EC:30:74:F2:FD:D8:5E:C8:E5:1F:11:64 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 02 Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/86A2CEB60F3E11EEA4C55465C4F9AE02.roa Signing time: Tue 20 Jun 2023 07:46:12 +0000 ROA not before: Tue 20 Jun 2023 07:46:12 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 141765 IP address blocks: 103.79.178.0/23 maxlen: 23 103.79.178.0/24 maxlen: 24 103.79.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Jun 20 07:46:12 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64915943-d93d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:18:a0:95:ee:d5:e1:a2:75:48:a0:35:0b:39: 67:2e:80:48:a6:86:0f:18:b0:df:8d:6b:91:8c:fc: 34:07:ae:ba:01:73:7f:ab:4a:81:90:fa:61:79:a7: f7:c5:5d:76:4e:59:fc:a5:50:b7:e3:a4:6c:57:3d: 13:f4:bd:86:04:36:65:22:16:be:43:8d:81:6f:41: 77:0a:2d:40:60:94:86:90:a8:f3:f4:58:ae:94:51: 9a:13:c4:8a:75:94:5b:75:28:11:55:d9:6f:5e:6e: b1:52:c2:b9:ca:54:a4:78:4d:54:26:2e:f7:3a:2d: 86:55:3e:94:81:4f:09:54:6c:03:42:e9:6c:19:dd: d5:d5:c4:2a:d4:5c:bf:cf:8a:58:21:5f:57:49:44: e5:a1:cb:ff:35:56:62:40:53:ea:3b:32:a1:38:0a: c9:43:dd:fd:82:18:0b:ce:6d:7b:af:f2:f2:bb:f0: 61:cc:8c:fa:f0:f1:9a:db:db:9f:0c:33:ef:5f:eb: d7:a0:f0:cd:20:1c:75:58:13:f9:c5:cd:fe:ef:92: 0b:3f:4c:9e:92:1c:23:69:32:62:d5:17:68:d9:95: 5d:31:b1:19:20:df:b9:43:ab:bf:ce:33:d3:66:ff: f7:ff:55:34:14:3c:31:02:33:60:d0:9a:ce:fb:4d: 4d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:43:01:21:AD:6C:EB:F6:EC:30:74:F2:FD:D8:5E:C8:E5:1F:11:64 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/86A2CEB60F3E11EEA4C55465C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.178.0/23 Signature Algorithm: sha256WithRSAEncryption 37:cd:49:8b:54:c1:a1:83:13:54:ab:c1:af:92:06:b2:ac:5b: e5:39:64:c1:fc:b0:3c:fa:a7:bd:53:65:d4:57:29:f5:77:0a: 57:ee:f6:f2:15:f4:93:7d:6d:16:4d:53:d7:d6:85:ed:18:48: d1:35:44:79:00:7f:19:d2:8b:4e:5a:9e:b0:91:d9:c0:20:68: 85:e8:7c:74:4e:40:59:84:3d:9a:a8:b9:eb:77:bc:9e:db:c6: e2:3f:84:82:f2:a8:46:18:df:00:1d:9c:4f:7e:c8:18:85:22: a2:2f:a3:2d:48:a8:c6:fc:ce:46:57:f1:b0:f3:91:fb:89:3f: df:38:56:b5:b6:0b:a8:11:20:11:10:ad:84:d5:13:74:69:ca: d8:69:ab:51:a5:16:93:a5:d0:4f:38:fa:b5:bf:f4:cd:e2:7e: 3c:2c:5a:c3:fe:52:2a:3f:44:bf:b8:57:79:db:a8:79:e2:2e: 21:a8:63:64:79:a2:32:19:8b:c7:5f:90:9a:a0:1e:01:93:57: 32:dd:27:b8:5d:43:8b:ee:dc:4b:fa:f5:e0:23:6d:76:c3:11: 99:fd:de:01:6d:93:7a:8d:c0:17:ae:d2:4c:20:5d:6b:b7:14: 73:f6:1e:79:d0:cc:f5:44:44:22:a1:a9:50:fc:05:83:67:18: e9:72:e7:79 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QjRFRDExMC8GA1UEBRMoOTA4RTc4OTAzNEYxODQxNUQ4NzU5QzI2QTM0NkVCODEw RUY1QTQxNTAeFw0yMzA2MjAwNzQ2MTJaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0OTE1OTQzLWQ5M2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKGKCV7tXhonVIoDULOWcugEimhg8YsN+Na5GM/DQHrroBc3+rSoGQ+mF5p/fF XXZOWfylULfjpGxXPRP0vYYENmUiFr5DjYFvQXcKLUBglIaQqPP0WK6UUZoTxIp1 lFt1KBFV2W9ebrFSwrnKVKR4TVQmLvc6LYZVPpSBTwlUbANC6WwZ3dXVxCrUXL/P ilghX1dJROWhy/81VmJAU+o7MqE4CslD3f2CGAvObXuv8vK78GHMjPrw8Zrb258M M+9f69eg8M0gHHVYE/nFzf7vkgs/TJ6SHCNpMmLVF2jZlV0xsRkg37lDq7/OM9Nm //f/VTQUPDECM2DQms77TU3lAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5UMBIa1s 6/bsMHTy/dheyOUfEWQwHwYDVR0jBBgwFoAUkI54kDTxhBXYdZwmo0brgQ71pBUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFCNEVEL0ZBNEIwQUM0MEYz NzExRUVBQjlEOTQ2OEM0RjlBRTAyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBC VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0k1NGtEVHhoQlhZZFp3bW8wYnJnUTcxcEJVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi84NkEyQ0VCNjBG M0UxMUVFQTRDNTU0NjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdPsjANBgkqhkiG9w0BAQsFAAOCAQEAN81Ji1TBoYMTVKvB r5IGsqxb5TlkwfywPPqnvVNl1Fcp9XcKV+728hX0k31tFk1T19aF7RhI0TVEeQB/ GdKLTlqesJHZwCBoheh8dE5AWYQ9mqi563e8ntvG4j+EgvKoRhjfAB2cT37IGIUi oi+jLUioxvzORlfxsPOR+4k/3zhWtbYLqBEgERCthNUTdGnK2GmrUaUWk6XQTzj6 tb/0zeJ+PCxaw/5SKj9Ev7hXeduoeeIuIahjZHmiMhmLx1+QmqAeAZNXMt0nuF1D i+7cS/r14CNtdsMRmf3eAW2Teo3AF67STCBda7cUc/YeedDM9UREIqGpUPwFg2cY 6XLneQ== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:28 2024 by rpki-client on console-fra.rpki-client.org