$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/ABCDCC4EE16711EEA88FAE64C4F9AE02.roa File: ABCDCC4EE16711EEA88FAE64C4F9AE02.roa (raw, json) Hash identifier: cfDZaMRsqSF8bF5LgzLOQVQXnmCYnDo2fjqK5sD7UUg= Subject key identifier: C4:38:CC:11:D2:F2:D0:FA:9B:43:23:FA:0F:24:F1:F0:78:E9:A5:A4 Certificate issuer: /CN=A91ADDD5/serialNumber=FB112CAD56319BFAACA1AB28CE7BD7F4CB268CE9 Certificate serial: 0498 Authority key identifier: FB:11:2C:AD:56:31:9B:FA:AC:A1:AB:28:CE:7B:D7:F4:CB:26:8C:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/ABCDCC4EE16711EEA88FAE64C4F9AE02.roa Signing time: Wed 13 Mar 2024 18:29:48 +0000 ROA not before: Wed 13 Mar 2024 18:29:48 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 58955 IP address blocks: 103.78.31.0/24 maxlen: 24 103.169.66.0/23 maxlen: 23 103.169.67.0/24 maxlen: 24 2407:9c40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.crl rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:29:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1176 (0x498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADDD5/serialNumber=FB112CAD56319BFAACA1AB28CE7BD7F4CB268CE9 Validity Not Before: Mar 13 18:29:48 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65f1f09b-4ba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0b:78:cd:c8:09:00:f6:6e:73:25:7a:2b:da: 0d:65:5e:50:2a:5f:cd:0c:06:28:7f:cc:18:0e:79: 2f:9e:09:c5:6b:8f:8e:2f:6c:3b:f7:06:37:d5:82: 74:69:12:05:23:bc:a4:29:ee:c6:50:1a:f3:44:28: 8c:76:8b:ee:14:32:ad:4e:eb:27:d7:96:1e:f0:a8: df:b9:4e:d3:4e:57:33:6d:ea:36:6c:75:24:86:1c: 62:e6:ca:1f:18:d2:3c:54:e5:cc:50:6c:c6:3c:41: ca:2a:45:a3:da:f9:07:18:13:63:15:39:80:ee:78: d4:f9:6a:3f:de:b0:78:a4:18:8b:6a:41:dd:80:b7: 40:18:8e:82:06:f9:47:70:4b:12:66:86:c4:5e:ce: 52:9a:5b:9d:38:bb:e2:27:3a:6f:b3:6c:94:c2:f0: 5f:4f:11:84:c6:6f:bf:bf:15:ad:68:85:a0:f1:4d: 8a:72:13:f7:5e:24:fa:61:ac:b6:cc:f4:e2:1b:4e: db:1d:51:4d:59:6d:27:ea:52:1c:dc:6c:b8:97:89: 45:7b:be:bc:4f:3c:a8:69:73:77:74:45:6f:1b:f0: 22:dd:21:d2:ff:5a:22:f0:3d:a7:af:b7:5b:c5:32: 03:47:ad:23:12:3c:21:17:17:a2:aa:ae:9c:73:bd: ae:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:38:CC:11:D2:F2:D0:FA:9B:43:23:FA:0F:24:F1:F0:78:E9:A5:A4 X509v3 Authority Key Identifier: keyid:FB:11:2C:AD:56:31:9B:FA:AC:A1:AB:28:CE:7B:D7:F4:CB:26:8C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/ABCDCC4EE16711EEA88FAE64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.31.0/24 103.169.66.0/23 IPv6: 2407:9c40::/32 Signature Algorithm: sha256WithRSAEncryption 54:6e:37:d5:16:ce:c1:63:21:85:f1:50:57:80:cb:95:95:66: 63:8b:7a:7d:f9:39:39:25:64:f9:97:00:9f:6b:99:1e:51:c2: d0:19:c3:83:09:ff:6f:71:00:4f:be:a6:47:e9:24:6e:2f:13: 89:01:8e:ce:32:b4:14:fd:a8:ed:aa:fb:4c:a5:4c:71:2b:c1: 15:64:70:c3:1d:4c:06:6d:6f:57:3c:be:a8:03:39:06:42:9f: 77:37:1d:1b:2c:0a:be:7e:47:5b:dd:d8:a9:82:1e:0b:06:3c: 68:05:26:65:e1:09:23:96:7c:ae:d6:a0:5b:93:39:30:15:93: 7d:59:d5:ca:fc:3a:72:2f:e8:8c:3a:36:69:06:89:75:3a:fb: b5:30:86:90:ce:18:0a:6e:76:42:38:d7:f3:47:1e:6f:c9:12: d1:2f:c1:cf:b5:6a:6c:56:46:8b:65:41:58:79:fe:c9:ef:5f: 79:3f:cd:86:12:8b:97:ec:46:c2:8f:7b:96:ec:17:1a:03:42: ee:3f:79:78:95:84:ab:41:98:df:39:7f:ca:77:ab:ed:b9:74: df:0e:d5:a6:2e:48:f2:b9:80:8f:3f:d3:4e:93:7e:1b:99:7e: 82:db:6e:18:a2:77:44:2a:37:e1:bd:27:cd:1a:0b:02:c3:a1: 1a:91:23:81 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURERDUxMTAvBgNVBAUTKEZCMTEyQ0FENTYzMTlCRkFBQ0ExQUIyOENFN0JEN0Y0 Q0IyNjhDRTkwHhcNMjQwMzEzMTgyOTQ4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYxZjA5Yi00YmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4gt4zcgJAPZucyV6K9oNZV5QKl/NDAYof8wYDnkvngnFa4+OL2w79wY31YJ0 aRIFI7ykKe7GUBrzRCiMdovuFDKtTusn15Ye8KjfuU7TTlczbeo2bHUkhhxi5sof GNI8VOXMUGzGPEHKKkWj2vkHGBNjFTmA7njU+Wo/3rB4pBiLakHdgLdAGI6CBvlH cEsSZobEXs5SmludOLviJzpvs2yUwvBfTxGExm+/vxWtaIWg8U2KchP3XiT6Yay2 zPTiG07bHVFNWW0n6lIc3Gy4l4lFe768TzyoaXN3dEVvG/Ai3SHS/1oi8D2nr7db xTIDR60jEjwhFxeiqq6cc72urQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFMQ4zBHS 8tD6m0Mj+g8k8fB46aWkMB8GA1UdIwQYMBaAFPsRLK1WMZv6rKGrKM571/TLJozp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRERENS84QjBEMEZGMkUz RjgxMUVCOUUwOERCMTRDNEY5QUUwMi8teEVzclZZeG1fcXNvYXNvem52WDlNc21q T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14RXNyVll4bV9xc29hc296bnZYOU1zbWpPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURERDUvOEIwRDBGRjJFM0Y4MTFFQjlFMDhEQjE0QzRGOUFFMDIvQUJDRENDNEVF MTY3MTFFRUE4OEZBRTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABnTh8DBAFnqUIwDQQCAAIwBwMFACQHnEAwDQYJKoZIhvcN AQELBQADggEBAFRuN9UWzsFjIYXxUFeAy5WVZmOLen35OTklZPmXAJ9rmR5RwtAZ w4MJ/29xAE++pkfpJG4vE4kBjs4ytBT9qO2q+0ylTHErwRVkcMMdTAZtb1c8vqgD OQZCn3c3HRssCr5+R1vd2KmCHgsGPGgFJmXhCSOWfK7WoFuTOTAVk31Z1cr8OnIv 6Iw6NmkGiXU6+7UwhpDOGApudkI41/NHHm/JEtEvwc+1amxWRotlQVh5/snvX3k/ zYYSi5fsRsKPe5bsFxoDQu4/eXiVhKtBmN85f8p3q+25dN8O1aYuSPK5gI8/006T fhuZfoLbbhiid0QqN+G9J80aCwLDoRqRI4E= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:30 2024 by rpki-client on console-ams.rpki-client.org