$ rpki-client -vvf rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/3802A98EC8AC11E9877DCE2FC4F9AE02.roa File: 3802A98EC8AC11E9877DCE2FC4F9AE02.roa (raw, json) Hash identifier: jEmOSnx0C7+ZNDNn2Ph7IaxYFIlJl2cis+I60FPMGYQ= Subject key identifier: C0:E1:A2:CF:73:13:63:0A:D3:29:5C:C6:ED:E1:BB:89:F3:17:B0:24 Certificate issuer: /CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Certificate serial: 0C55 Authority key identifier: 3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/3802A98EC8AC11E9877DCE2FC4F9AE02.roa Signing time: Sat 04 Nov 2023 18:46:07 +0000 ROA not before: Sat 04 Nov 2023 18:46:07 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 135589 IP address blocks: 103.129.76.0/22 maxlen: 22 103.129.76.0/24 maxlen: 24 103.129.77.0/24 maxlen: 24 103.129.78.0/24 maxlen: 24 103.129.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:20:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3157 (0xc55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Validity Not Before: Nov 4 18:46:07 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6546916f-cd16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9e:e0:88:b3:f6:f6:79:5d:c9:9e:9d:c4:96: 38:e2:af:d2:41:29:94:ad:f1:36:c2:05:25:ad:af: ef:be:62:eb:97:45:cc:b8:cd:f8:32:a4:c3:3c:56: 1a:c8:c6:2b:da:f7:a5:f7:ee:47:4f:38:80:15:6a: 6a:42:80:2c:42:80:0a:be:09:40:db:57:da:79:d8: 09:b1:7c:f3:96:37:59:e5:12:20:2f:0e:16:dc:5f: 4d:d2:16:86:79:7c:d6:5f:87:fb:de:67:b5:44:0a: 24:4d:5e:62:09:9a:58:9c:d6:6d:87:e1:f2:6f:7b: 84:db:2a:76:f5:75:f6:9f:fd:5b:e7:29:85:1e:7b: c2:d9:02:5b:05:4e:c4:2a:50:ed:62:fb:74:cb:fe: df:f4:50:b0:f0:a2:fb:d1:95:df:ed:ce:da:1c:d8: 37:16:ac:8d:3d:2d:80:38:6f:fa:9d:18:9b:2d:de: 98:fe:95:94:1c:3e:50:6c:97:61:9f:0e:00:78:a0: 8d:a9:46:16:3f:61:56:4e:8f:f0:0d:28:bc:80:e0: 8b:21:38:6f:1f:3e:88:a5:90:68:38:28:a1:d6:98: b7:7a:13:28:f3:fb:51:d4:bd:17:09:5a:79:66:e3: 1c:3c:2f:8e:0e:e8:09:be:bb:dc:cc:e0:2d:1a:91: 7e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E1:A2:CF:73:13:63:0A:D3:29:5C:C6:ED:E1:BB:89:F3:17:B0:24 X509v3 Authority Key Identifier: keyid:3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/3802A98EC8AC11E9877DCE2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.76.0/22 Signature Algorithm: sha256WithRSAEncryption 97:f5:bf:0f:92:63:3a:1e:e1:48:29:40:05:61:41:75:f7:de: 76:e8:b4:28:f5:d2:f4:fb:f8:d2:e7:94:8a:e3:d0:4a:19:f9: 4e:c8:29:ed:dc:d6:f9:ab:95:b3:1c:86:44:92:bc:f0:c8:72: c4:92:cd:ca:69:98:93:19:e8:56:d0:b2:f2:20:48:68:07:93: 8f:31:55:79:d2:b6:af:84:fb:96:8c:3d:5a:e4:72:10:18:12: db:92:17:8b:eb:5a:d4:22:46:da:0a:05:dd:92:1a:7b:c0:25: ff:1c:df:63:15:88:2b:ba:63:a0:89:82:51:ee:6c:6f:b5:ec: f4:71:8e:6e:24:55:36:9e:be:78:2d:a3:ba:bc:85:80:3b:68: b9:cb:df:c9:c8:ca:93:aa:25:e5:dd:0f:0c:a0:d6:4a:7a:b7: bd:f3:69:71:e5:e9:b3:34:d7:1b:38:1d:99:d2:32:d5:24:8b: c8:3b:d0:0d:ef:06:29:3a:95:f7:b8:11:cb:27:75:42:ba:c6: 5a:a7:9d:36:1f:ba:41:05:34:4d:02:98:fe:6a:e9:0d:cc:f9: 39:96:ba:69:cb:fe:ac:08:b6:12:e0:d7:15:f0:e0:f6:59:7c: b1:1d:fe:80:3a:95:19:97:b0:19:28:09:cb:1f:7d:cb:f7:3c: 58:0e:42:76 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4RkQxMTAvBgNVBAUTKDNDMUZERDhCQTMwMURDRTNEQjNGMEJDQzI1Qzg2OTRD RTFCQ0RDN0QwHhcNMjMxMTA0MTg0NjA3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ2OTE2Zi1jZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp57giLP29nldyZ6dxJY44q/SQSmUrfE2wgUlra/vvmLrl0XMuM34MqTDPFYa yMYr2vel9+5HTziAFWpqQoAsQoAKvglA21faedgJsXzzljdZ5RIgLw4W3F9N0haG eXzWX4f73me1RAokTV5iCZpYnNZth+Hyb3uE2yp29XX2n/1b5ymFHnvC2QJbBU7E KlDtYvt0y/7f9FCw8KL70ZXf7c7aHNg3FqyNPS2AOG/6nRibLd6Y/pWUHD5QbJdh nw4AeKCNqUYWP2FWTo/wDSi8gOCLIThvHz6IpZBoOCih1pi3ehMo8/tR1L0XCVp5 ZuMcPC+ODugJvrvczOAtGpF+pQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMDhos9z E2MK0ylcxu3hu4nzF7AkMB8GA1UdIwQYMBaAFDwf3YujAdzj2z8LzCXIaUzhvNx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDhGRC85RjQyRUFEOEM4 QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNPUGJQd3ZNSmNocFRPRzgz SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCX2RpNk1CM09QYlB3dk1KY2hwVE9HODNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4RkQvOUY0MkVBRDhDOEFCMTFFOTgyOUQyODJGQzRGOUFFMDIvMzgwMkE5OEVD OEFDMTFFOTg3N0RDRTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJngUwwDQYJKoZIhvcNAQELBQADggEBAJf1vw+SYzoe4Ugp QAVhQXX33nbotCj10vT7+NLnlIrj0EoZ+U7IKe3c1vmrlbMchkSSvPDIcsSSzcpp mJMZ6FbQsvIgSGgHk48xVXnStq+E+5aMPVrkchAYEtuSF4vrWtQiRtoKBd2SGnvA Jf8c32MViCu6Y6CJglHubG+17PRxjm4kVTaevngto7q8hYA7aLnL38nIypOqJeXd Dwyg1kp6t73zaXHl6bM01xs4HZnSMtUki8g70A3vBik6lfe4EcsndUK6xlqnnTYf ukEFNE0CmP5q6Q3M+TmWumnL/qwIthLg1xXw4PZZfLEd/oA6lRmXsBkoCcsffcv3 PFgOQnY= -----END CERTIFICATE-----Generated at Fri May 31 22:13:08 2024 by rpki-client on console-fra.rpki-client.org