$ rpki-client -vvf rpki.apnic.net/member_repository/A918054D/6E0823B0198C11EBAFCB9459C4F9AE02/78AFDDB84A8211EB8760D667C4F9AE02.roa File: 78AFDDB84A8211EB8760D667C4F9AE02.roa (raw, json) Hash identifier: xN2Zmmo32TF/vM0qywttRWMqyAyLYMDfWpGxhYW5bdU= Subject key identifier: 0A:58:63:02:FA:11:CB:81:88:69:BD:8C:C7:12:D8:B8:24:14:C2:A3 Certificate issuer: /CN=A918054D/serialNumber=CD827BF96458361F6098B22F758548D7EAEFA168 Certificate serial: 0644 Authority key identifier: CD:82:7B:F9:64:58:36:1F:60:98:B2:2F:75:85:48:D7:EA:EF:A1:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYJ7-WRYNh9gmLIvdYVI1-rvoWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918054D/6E0823B0198C11EBAFCB9459C4F9AE02/78AFDDB84A8211EB8760D667C4F9AE02.roa Signing time: Wed 20 Sep 2023 22:40:32 +0000 ROA not before: Wed 20 Sep 2023 22:40:32 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 16509 IP address blocks: 103.155.132.0/23 maxlen: 23 103.155.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918054D/6E0823B0198C11EBAFCB9459C4F9AE02/zYJ7-WRYNh9gmLIvdYVI1-rvoWg.crl rsync://rpki.apnic.net/member_repository/A918054D/6E0823B0198C11EBAFCB9459C4F9AE02/zYJ7-WRYNh9gmLIvdYVI1-rvoWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYJ7-WRYNh9gmLIvdYVI1-rvoWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1604 (0x644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918054D/serialNumber=CD827BF96458361F6098B22F758548D7EAEFA168 Validity Not Before: Sep 20 22:40:32 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=650b74df-8ce5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a9:bb:fe:19:01:00:c9:7e:41:ea:28:88:0b: 40:b1:d5:e6:ea:52:43:aa:1f:cc:e8:00:a0:f0:63: 52:33:de:b0:dc:91:3e:ba:b9:99:52:46:cb:d2:4b: b7:6c:1b:64:82:0f:6e:5a:c0:f3:68:d2:1e:65:e5: 16:eb:05:7b:2f:ec:28:7a:bb:98:ad:b5:58:bc:c6: 95:17:14:3a:b2:50:52:30:20:43:8d:d6:8b:8c:98: 94:70:26:92:a8:c0:98:22:6e:28:5a:da:d0:48:ab: 82:15:35:be:20:d9:f5:9a:85:29:f5:37:1c:fd:46: de:d0:48:23:79:67:99:6c:b4:ba:46:cd:e7:69:3d: 08:27:5f:fc:8c:ff:ae:f5:7f:a5:03:b5:79:1f:b3: 34:2a:30:00:5c:66:b4:24:fb:ad:dc:75:17:9f:e7: 0e:0e:64:be:ca:a4:2f:c3:8a:85:b0:fd:5a:31:a0: 20:a4:34:20:e9:a5:23:73:e8:75:3f:39:e5:3a:95: b3:a5:e5:07:3d:06:0c:22:b6:aa:13:66:0c:92:63: fb:2d:72:f9:4d:44:bb:40:4f:50:5e:4a:47:57:30: 97:da:85:d2:9d:6c:da:f7:9a:d6:62:2d:d3:7e:d9: 7d:85:4e:a0:0d:ba:4e:16:6a:dc:be:6a:7d:7a:72: bc:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:58:63:02:FA:11:CB:81:88:69:BD:8C:C7:12:D8:B8:24:14:C2:A3 X509v3 Authority Key Identifier: keyid:CD:82:7B:F9:64:58:36:1F:60:98:B2:2F:75:85:48:D7:EA:EF:A1:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918054D/6E0823B0198C11EBAFCB9459C4F9AE02/zYJ7-WRYNh9gmLIvdYVI1-rvoWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYJ7-WRYNh9gmLIvdYVI1-rvoWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918054D/6E0823B0198C11EBAFCB9459C4F9AE02/78AFDDB84A8211EB8760D667C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.132.0/23 Signature Algorithm: sha256WithRSAEncryption 98:48:3f:aa:38:c0:a4:2e:2b:38:a5:83:31:c9:77:c5:79:85: 13:0f:78:bf:fe:31:4f:71:e6:3b:bb:2f:92:d3:95:32:e0:c0: 14:8d:d5:36:0b:bb:2b:a5:76:9c:a4:75:25:fb:95:86:f1:ee: 33:45:9f:5e:fe:59:80:68:70:b6:7a:0d:12:e1:44:ae:55:84: 79:67:ae:15:15:9f:6e:bb:a4:73:72:45:3f:eb:60:2f:9a:52: e0:a4:09:62:c2:f9:97:00:4b:d5:43:6d:08:0d:a3:26:a8:1a: 38:c3:20:5d:d1:2f:d1:a3:fa:83:6d:9c:c8:c7:1d:6b:8e:73: 11:96:cd:94:29:d1:23:31:91:6a:8b:de:d6:45:b2:a1:b8:50: 7c:5b:0a:98:57:61:63:15:98:9b:86:09:0f:53:da:1a:78:b2: fc:00:9e:b1:02:54:f8:c8:db:08:4f:04:19:ba:84:f7:8b:98: ff:0e:c5:5d:83:bd:67:39:d0:e3:02:f2:84:2f:32:f6:c2:05: 23:7d:3e:31:8d:6f:b6:72:52:01:7a:63:d5:12:bf:47:3a:be: f6:d0:9e:74:95:f1:4a:98:1f:88:32:31:74:3b:2e:db:e4:95: 48:d8:a3:be:21:b0:52:2b:bd:a4:00:a6:70:1f:ec:da:6d:e9: e7:b1:5a:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1NEQxMTAvBgNVBAUTKENEODI3QkY5NjQ1ODM2MUY2MDk4QjIyRjc1ODU0OEQ3 RUFFRkExNjgwHhcNMjMwOTIwMjI0MDMyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBiNzRkZi04Y2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA46m7/hkBAMl+QeooiAtAsdXm6lJDqh/M6ACg8GNSM96w3JE+urmZUkbL0ku3 bBtkgg9uWsDzaNIeZeUW6wV7L+woeruYrbVYvMaVFxQ6slBSMCBDjdaLjJiUcCaS qMCYIm4oWtrQSKuCFTW+INn1moUp9Tcc/Ube0EgjeWeZbLS6Rs3naT0IJ1/8jP+u 9X+lA7V5H7M0KjAAXGa0JPut3HUXn+cODmS+yqQvw4qFsP1aMaAgpDQg6aUjc+h1 PznlOpWzpeUHPQYMIraqE2YMkmP7LXL5TUS7QE9QXkpHVzCX2oXSnWza95rWYi3T ftl9hU6gDbpOFmrcvmp9enK8ZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFApYYwL6 EcuBiGm9jMcS2LgkFMKjMB8GA1UdIwQYMBaAFM2Ce/lkWDYfYJiyL3WFSNfq76Fo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDU0RC82RTA4MjNCMDE5 OEMxMUVCQUZDQjk0NTlDNEY5QUUwMi96WUo3LVdSWU5oOWdtTEl2ZFlWSTEtcnZv V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pZSjctV1JZTmg5Z21MSXZkWVZJMS1ydm9XZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA1NEQvNkUwODIzQjAxOThDMTFFQkFGQ0I5NDU5QzRGOUFFMDIvNzhBRkREQjg0 QTgyMTFFQjg3NjBENjY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnm4QwDQYJKoZIhvcNAQELBQADggEBAJhIP6o4wKQuKzil gzHJd8V5hRMPeL/+MU9x5ju7L5LTlTLgwBSN1TYLuyuldpykdSX7lYbx7jNFn17+ WYBocLZ6DRLhRK5VhHlnrhUVn267pHNyRT/rYC+aUuCkCWLC+ZcAS9VDbQgNoyao GjjDIF3RL9Gj+oNtnMjHHWuOcxGWzZQp0SMxkWqL3tZFsqG4UHxbCphXYWMVmJuG CQ9T2hp4svwAnrECVPjI2whPBBm6hPeLmP8OxV2DvWc50OMC8oQvMvbCBSN9PjGN b7ZyUgF6Y9USv0c6vvbQnnSV8UqYH4gyMXQ7LtvklUjYo74hsFIrvaQApnAf7Npt 6eexWno= -----END CERTIFICATE-----Generated at Thu Apr 25 00:31:18 2024 by rpki-client on console-fra.rpki-client.org