$ rpki-client -vvf rpki.apnic.net/member_repository/A9177157/54E47DEE1D3E11E9A45DB76DC4F9AE02/78CEA40E63CE11EBB442586CC4F9AE02.roa File: 78CEA40E63CE11EBB442586CC4F9AE02.roa (raw, json) Hash identifier: NewJlP4FcPImSES9Zii/D+Z8AFnZFa5F2PVIi0h4zOo= Subject key identifier: BF:79:0A:10:75:B4:DD:3E:DD:F6:66:97:27:D3:93:B5:FB:6E:78:23 Certificate issuer: /CN=A9177157/serialNumber=079CFCC512EA61966FA319A2988C92FD86BDF88B Certificate serial: 100D Authority key identifier: 07:9C:FC:C5:12:EA:61:96:6F:A3:19:A2:98:8C:92:FD:86:BD:F8:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B5z8xRLqYZZvoxmimIyS_Ya9-Is.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177157/54E47DEE1D3E11E9A45DB76DC4F9AE02/78CEA40E63CE11EBB442586CC4F9AE02.roa Signing time: Tue 02 Apr 2024 18:26:11 +0000 ROA not before: Tue 02 Apr 2024 18:26:11 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132615 IP address blocks: 103.88.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177157/54E47DEE1D3E11E9A45DB76DC4F9AE02/B5z8xRLqYZZvoxmimIyS_Ya9-Is.crl rsync://rpki.apnic.net/member_repository/A9177157/54E47DEE1D3E11E9A45DB76DC4F9AE02/B5z8xRLqYZZvoxmimIyS_Ya9-Is.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B5z8xRLqYZZvoxmimIyS_Ya9-Is.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4109 (0x100d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177157/serialNumber=079CFCC512EA61966FA319A2988C92FD86BDF88B Validity Not Before: Apr 2 18:26:11 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660c4dc3-7097 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:5f:1b:ae:05:5a:12:ee:42:d7:15:57:02:16: 58:22:ab:59:a8:eb:a1:cf:87:b0:a1:eb:1a:74:78: 91:9f:e4:38:2f:8f:55:c2:3b:5b:32:af:7d:ec:ed: 44:69:74:ab:9b:13:3c:0e:c2:44:bf:cf:bf:27:ef: 7a:aa:7e:f0:bd:3a:c1:3d:df:5d:ba:67:75:77:eb: 82:d9:86:f8:0a:34:e6:00:2f:4d:8a:0b:56:f1:ab: da:5a:d8:a9:92:ea:93:ef:96:24:b6:65:50:45:fa: 8a:1d:6d:dc:6a:99:4b:18:60:a5:9e:03:56:86:dd: 32:5d:55:81:10:d2:61:b4:08:d3:d3:fb:3c:57:76: d9:18:95:ab:1e:6e:dc:cb:8d:d6:9b:e7:65:ce:48: 22:10:8e:08:68:f5:48:01:5a:82:9a:3a:25:f8:bf: 3e:9b:6d:72:44:1c:82:ae:f6:86:fa:7b:c0:a0:e6: 71:a2:cc:f1:04:17:27:b0:5e:ca:a7:6c:a9:19:68: 3f:00:f5:f1:de:44:bf:1d:00:ac:98:94:23:90:bf: 51:02:f1:56:d9:7e:e5:a7:01:65:ab:cd:3f:e8:ab: 9f:2f:27:15:3d:fd:ed:3a:79:a7:79:7f:b3:b7:fc: 23:cd:77:0d:78:f2:31:36:1e:0f:09:6c:b5:c6:c0: f5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:79:0A:10:75:B4:DD:3E:DD:F6:66:97:27:D3:93:B5:FB:6E:78:23 X509v3 Authority Key Identifier: keyid:07:9C:FC:C5:12:EA:61:96:6F:A3:19:A2:98:8C:92:FD:86:BD:F8:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177157/54E47DEE1D3E11E9A45DB76DC4F9AE02/B5z8xRLqYZZvoxmimIyS_Ya9-Is.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B5z8xRLqYZZvoxmimIyS_Ya9-Is.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177157/54E47DEE1D3E11E9A45DB76DC4F9AE02/78CEA40E63CE11EBB442586CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.42.0/24 Signature Algorithm: sha256WithRSAEncryption 83:81:05:02:24:a2:57:bf:33:db:14:58:45:6d:1d:6e:99:56: c1:82:f2:ff:63:1c:c9:33:1b:14:56:ac:64:6f:77:c2:ab:81: 7d:70:9c:e6:00:be:a1:5d:d5:1d:1f:4f:2f:bb:ab:51:dc:d6: ab:6b:ac:71:1b:f4:bb:d7:a6:0d:4f:74:26:c1:b8:9c:1e:5d: 1b:02:24:86:44:e5:97:95:e0:b2:26:d4:b0:1e:40:0c:cc:82: 6d:49:c4:bf:72:92:c5:63:d5:0f:37:4e:43:00:99:ae:11:75: eb:d2:30:61:97:72:6a:28:cc:f7:7e:8a:70:d7:72:5a:7e:4c: 77:64:a1:0e:2a:2d:ba:12:a6:96:7c:32:b4:d6:0a:c1:e4:02: 58:75:f5:9b:5b:b3:a1:50:88:74:01:ae:e1:02:79:32:85:26: a5:15:37:61:c3:d5:20:77:77:32:3d:81:cf:a6:aa:af:db:dc: 7d:a1:e2:a6:4c:50:01:d7:ec:5e:25:c8:8f:42:6d:5e:53:c5: 74:a8:a5:2e:b8:be:e8:0b:5b:55:15:70:19:a9:39:5d:59:f3: 4c:73:b1:2f:02:e6:0b:b0:a4:de:84:e4:88:7d:a4:f6:fd:27: b9:72:b0:9c:e8:80:09:ba:4b:df:57:e7:d7:c8:f5:f2:ef:76: 03:23:8e:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcxNTcxMTAvBgNVBAUTKDA3OUNGQ0M1MTJFQTYxOTY2RkEzMTlBMjk4OEM5MkZE ODZCREY4OEIwHhcNMjQwNDAyMTgyNjExWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjNGRjMy03MDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8l8brgVaEu5C1xVXAhZYIqtZqOuhz4ewoesadHiRn+Q4L49VwjtbMq997O1E aXSrmxM8DsJEv8+/J+96qn7wvTrBPd9dumd1d+uC2Yb4CjTmAC9NigtW8avaWtip kuqT75YktmVQRfqKHW3caplLGGClngNWht0yXVWBENJhtAjT0/s8V3bZGJWrHm7c y43Wm+dlzkgiEI4IaPVIAVqCmjol+L8+m21yRByCrvaG+nvAoOZxoszxBBcnsF7K p2ypGWg/APXx3kS/HQCsmJQjkL9RAvFW2X7lpwFlq80/6KufLycVPf3tOnmneX+z t/wjzXcNePIxNh4PCWy1xsD1bwIDAQABo4IClTCCApEwHQYDVR0OBBYEFL95ChB1 tN0+3fZmlyfTk7X7bngjMB8GA1UdIwQYMBaAFAec/MUS6mGWb6MZopiMkv2GvfiL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzE1Ny81NEU0N0RFRTFE M0UxMUU5QTQ1REI3NkRDNEY5QUUwMi9CNXo4eFJMcVlaWnZveG1pbUl5U19ZYTkt SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I1ejh4UkxxWVpadm94bWltSXlTX1lhOS1Jcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzcxNTcvNTRFNDdERUUxRDNFMTFFOUE0NURCNzZEQzRGOUFFMDIvNzhDRUE0MEU2 M0NFMTFFQkI0NDI1ODZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnWCowDQYJKoZIhvcNAQELBQADggEBAIOBBQIkole/M9sU WEVtHW6ZVsGC8v9jHMkzGxRWrGRvd8KrgX1wnOYAvqFd1R0fTy+7q1Hc1qtrrHEb 9LvXpg1PdCbBuJweXRsCJIZE5ZeV4LIm1LAeQAzMgm1JxL9yksVj1Q83TkMAma4R devSMGGXcmoozPd+inDXclp+THdkoQ4qLboSppZ8MrTWCsHkAlh19Ztbs6FQiHQB ruECeTKFJqUVN2HD1SB3dzI9gc+mqq/b3H2h4qZMUAHX7F4lyI9CbV5TxXSopS64 vugLW1UVcBmpOV1Z80xzsS8C5guwpN6E5Ih9pPb9J7lysJzogAm6S99X59fI9fLv dgMjjtg= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org