$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/79EB047C816711EE9944837FC4F9AE02.roa File: 79EB047C816711EE9944837FC4F9AE02.roa (raw, json) Hash identifier: bx88REcvELkt1FUUdwwFEae28uQZ8xcpJnXb1DGF3A4= Subject key identifier: E1:22:B3:1C:B5:51:DE:AF:A0:17:A0:85:D0:08:41:F0:37:C5:E8:B0 Certificate issuer: /CN=A91A0277/serialNumber=61D909494AAC099E5DC67BD9DECCFEBE44B77779 Certificate serial: 05B4 Authority key identifier: 61:D9:09:49:4A:AC:09:9E:5D:C6:7B:D9:DE:CC:FE:BE:44:B7:77:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/79EB047C816711EE9944837FC4F9AE02.roa Signing time: Mon 25 Mar 2024 00:02:17 +0000 ROA not before: Mon 25 Mar 2024 00:02:17 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 136991 IP address blocks: 103.162.244.0/23 maxlen: 23 103.162.244.0/24 maxlen: 24 103.162.245.0/24 maxlen: 24 2407:1fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.crl rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:39:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1460 (0x5b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0277/serialNumber=61D909494AAC099E5DC67BD9DECCFEBE44B77779 Validity Not Before: Mar 25 00:02:17 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6600bf09-827c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:88:e7:e0:c9:4c:77:1b:df:4b:00:f5:34:f8: 45:0f:0c:ab:04:1b:4f:f7:95:ea:7a:7f:94:3f:aa: 5a:5c:42:0f:a2:c5:09:eb:3f:2f:92:9f:53:19:fa: 36:be:5a:ac:26:fc:21:1a:c3:39:26:1e:53:55:77: 35:5c:94:f2:c6:f9:0d:74:3c:e5:fc:4c:c1:cf:4d: 6d:1b:bd:77:a7:ef:a2:01:61:f1:8e:dd:c7:f0:fe: e9:8b:84:9b:14:d8:05:58:54:f6:b9:fc:b7:56:88: 96:cd:ee:8c:56:27:ef:b8:47:52:d6:4c:b0:0f:4d: 30:97:59:a3:e1:79:38:b2:22:e1:64:1b:07:c3:51: 7c:c9:8f:ce:1b:05:21:a3:e6:9d:01:f5:d1:c9:49: e1:a0:d7:02:e0:29:f5:ac:15:f7:08:30:84:f3:66: b8:52:42:e1:9c:6e:19:4f:6e:54:ba:69:c1:3a:1b: 81:05:c7:6f:ad:ae:c0:09:31:1d:f8:13:4a:34:1d: 61:1f:a4:78:dc:65:c1:0f:48:07:36:b6:15:41:18: 70:1d:a7:db:86:47:09:86:95:6a:e3:4e:b9:e8:c1: 45:15:15:57:3e:f6:c2:80:f4:7d:6e:be:72:8a:55: 6c:6d:02:ad:2d:2a:e9:d9:ad:72:97:8e:14:49:be: b3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:22:B3:1C:B5:51:DE:AF:A0:17:A0:85:D0:08:41:F0:37:C5:E8:B0 X509v3 Authority Key Identifier: keyid:61:D9:09:49:4A:AC:09:9E:5D:C6:7B:D9:DE:CC:FE:BE:44:B7:77:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/79EB047C816711EE9944837FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.244.0/23 IPv6: 2407:1fc0::/32 Signature Algorithm: sha256WithRSAEncryption 53:69:a1:03:d6:f1:30:e6:21:35:3e:b5:96:dd:3e:8e:04:88: e3:59:29:20:d5:1b:68:9e:c4:6c:64:71:80:04:b4:24:fe:44: 2e:62:f8:b2:5f:0f:41:89:94:62:dd:3c:06:c3:ed:f9:a6:20: ba:37:ef:a6:ec:7c:60:ad:78:f0:28:dd:d9:69:7a:a5:40:b5: 8f:97:da:84:8d:95:c8:e0:38:4d:94:45:88:e0:77:69:7d:a4: e0:9f:36:3c:cd:76:66:b1:c4:b3:09:33:c8:c2:2e:06:79:98: fd:01:8c:6b:12:d0:8a:fc:db:5c:94:54:6d:f4:2f:63:4c:61: f5:2b:5c:8b:83:34:f8:04:95:1a:25:88:da:8e:98:0f:d1:5b: 5d:ee:08:73:e3:ad:8c:81:02:70:3a:be:b9:59:66:2a:e2:48: a2:d3:fe:b8:41:57:2b:6e:9b:5e:8b:47:f1:7e:c9:b2:bb:ff: 17:67:fa:bf:76:03:60:b4:4d:a0:d7:1a:32:6c:cf:1a:b3:63: f8:a7:9a:6a:63:ca:c7:a1:28:0c:62:cc:8f:dc:25:47:76:2c: cf:4f:27:8c:8a:f3:3f:9e:2a:ba:05:e2:74:54:a2:81:c9:3c: af:c7:4f:75:81:bc:e3:77:c3:f6:4e:83:89:0d:1e:95:a8:d7: 6c:14:c9:07 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAyNzcxMTAvBgNVBAUTKDYxRDkwOTQ5NEFBQzA5OUU1REM2N0JEOURFQ0NGRUJF NDRCNzc3NzkwHhcNMjQwMzI1MDAwMjE3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAwYmYwOS04MjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqYjn4MlMdxvfSwD1NPhFDwyrBBtP95Xqen+UP6paXEIPosUJ6z8vkp9TGfo2 vlqsJvwhGsM5Jh5TVXc1XJTyxvkNdDzl/EzBz01tG713p++iAWHxjt3H8P7pi4Sb FNgFWFT2ufy3VoiWze6MVifvuEdS1kywD00wl1mj4Xk4siLhZBsHw1F8yY/OGwUh o+adAfXRyUnhoNcC4Cn1rBX3CDCE82a4UkLhnG4ZT25UumnBOhuBBcdvra7ACTEd +BNKNB1hH6R43GXBD0gHNrYVQRhwHafbhkcJhpVq40656MFFFRVXPvbCgPR9br5y ilVsbQKtLSrp2a1yl44USb6zkwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOEisxy1 Ud6voBeghdAIQfA3xeiwMB8GA1UdIwQYMBaAFGHZCUlKrAmeXcZ72d7M/r5Et3d5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDI3Ny9ENDE5RDgxMDc1 Q0IxMUVCOTUyREQ2NkFDNEY5QUUwMi9ZZGtKU1Vxc0NaNWR4bnZaM3N6LXZrUzNk M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lka0pTVXFzQ1o1ZHhudlozc3otdmtTM2Qzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTAyNzcvRDQxOUQ4MTA3NUNCMTFFQjk1MkRENjZBQzRGOUFFMDIvNzlFQjA0N0M4 MTY3MTFFRTk5NDQ4MzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnovQwDQQCAAIwBwMFACQHH8AwDQYJKoZIhvcNAQELBQAD ggEBAFNpoQPW8TDmITU+tZbdPo4EiONZKSDVG2iexGxkcYAEtCT+RC5i+LJfD0GJ lGLdPAbD7fmmILo376bsfGCtePAo3dlpeqVAtY+X2oSNlcjgOE2URYjgd2l9pOCf NjzNdmaxxLMJM8jCLgZ5mP0BjGsS0Ir821yUVG30L2NMYfUrXIuDNPgElRoliNqO mA/RW13uCHPjrYyBAnA6vrlZZiriSKLT/rhBVytum16LR/F+ybK7/xdn+r92A2C0 TaDXGjJszxqzY/inmmpjysehKAxizI/cJUd2LM9PJ4yK8z+eKroF4nRUooHJPK/H T3WBvON3w/ZOg4kNHpWo12wUyQc= -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:45 2024 by rpki-client on console-fra.rpki-client.org