$ rpki-client -vvf rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/55CD1A722ACC11EE9FF1653AC4F9AE02.roa File: 55CD1A722ACC11EE9FF1653AC4F9AE02.roa (raw, json) Hash identifier: M66SkyK4TPOq2V8lBvnKKFj3UvFS815tccQ5yDnDLTo= Subject key identifier: 7F:74:2A:C6:AC:9B:E6:E8:A3:B2:4A:22:4C:FF:1F:E2:34:25:A9:E6 Certificate issuer: /CN=A91B72D9/serialNumber=41E5DC2155069FF317E5EE38C75B7889C22197E3 Certificate serial: 034B Authority key identifier: 41:E5:DC:21:55:06:9F:F3:17:E5:EE:38:C7:5B:78:89:C2:21:97:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeXcIVUGn_MX5e44x1t4icIhl-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/55CD1A722ACC11EE9FF1653AC4F9AE02.roa Signing time: Fri 01 Mar 2024 02:45:09 +0000 ROA not before: Fri 01 Mar 2024 02:45:09 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 149414 IP address blocks: 103.178.220.0/24 maxlen: 24 2001:df0:3e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/QeXcIVUGn_MX5e44x1t4icIhl-M.crl rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/QeXcIVUGn_MX5e44x1t4icIhl-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeXcIVUGn_MX5e44x1t4icIhl-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 03:06:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 843 (0x34b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B72D9/serialNumber=41E5DC2155069FF317E5EE38C75B7889C22197E3 Validity Not Before: Mar 1 02:45:09 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65e14135-bfc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:41:4f:61:f5:c2:eb:95:9e:f0:5f:ba:8a:13: 79:51:d3:77:d2:6f:b9:c8:ab:48:36:ef:40:08:2d: 61:d1:9c:2c:3c:c4:df:c8:10:08:bd:17:79:31:ed: 3f:34:a9:30:1d:53:68:1d:7b:ee:75:c0:a4:bb:e1: 82:cc:15:62:7b:4b:3f:18:fb:75:91:ee:f5:fb:e7: 1e:41:74:ea:5f:13:b5:a9:1e:1d:1c:f5:fe:cb:82: 5c:22:76:f2:05:70:0f:06:07:e1:d4:a7:f3:14:ee: 66:62:a3:fd:74:ef:df:36:5b:58:83:35:51:f4:2a: 90:ca:9d:72:0a:c5:e2:0a:e2:83:af:d3:84:f8:81: 92:07:27:6e:bf:dd:d4:b5:56:2b:59:5f:e5:d0:b6: 7d:b2:43:6c:df:c4:51:c3:95:e7:50:de:60:18:73: f7:9f:c7:57:0c:fa:e3:22:d0:35:9b:9c:75:44:d8: 42:27:c6:a9:e8:a1:b2:4e:89:97:2a:5b:14:d8:d5: a3:74:34:d9:32:5b:61:0c:20:20:de:32:e1:af:33: 46:e2:8a:79:8e:fe:76:16:33:4e:e6:a5:9d:24:0d: 0d:42:82:a1:28:fe:fd:d3:88:8b:39:2b:8a:2e:23: 74:d0:18:15:44:5d:5e:2a:aa:b2:ae:b4:22:7b:91: 9c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:74:2A:C6:AC:9B:E6:E8:A3:B2:4A:22:4C:FF:1F:E2:34:25:A9:E6 X509v3 Authority Key Identifier: keyid:41:E5:DC:21:55:06:9F:F3:17:E5:EE:38:C7:5B:78:89:C2:21:97:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/QeXcIVUGn_MX5e44x1t4icIhl-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeXcIVUGn_MX5e44x1t4icIhl-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/55CD1A722ACC11EE9FF1653AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.220.0/24 IPv6: 2001:df0:3e40::/48 Signature Algorithm: sha256WithRSAEncryption 69:77:0b:2c:e7:6a:3a:84:89:95:65:16:b2:f9:b1:03:62:f9: d8:14:92:fb:67:a0:14:62:50:c3:a7:da:18:ac:95:74:ea:ef: 54:cb:7e:bb:07:ed:3d:27:3e:00:5d:92:bd:41:5b:e6:03:40: ad:aa:57:ec:51:46:15:b2:fd:c2:57:b9:e6:4c:92:9f:ba:9d: 48:69:1b:52:fe:7f:20:9e:43:9e:18:3c:72:1f:6e:0b:45:85: b5:6f:e3:70:85:19:f4:b6:7a:81:22:89:c1:74:b5:34:e5:0b: 8d:b8:56:c9:7c:4f:f8:cd:eb:18:46:de:03:37:31:22:8a:6c: 38:ef:55:fb:6e:5e:51:c5:d4:8e:c1:a7:57:1a:01:b8:64:b6: 9b:9d:c3:d7:a2:c2:39:45:1d:6a:64:50:f4:77:10:71:f3:1b: 49:aa:5a:68:7f:a8:9d:87:7c:00:d1:48:18:6f:d1:f3:68:eb: a3:48:0c:df:d0:16:7b:8d:eb:75:49:8c:d1:4d:47:00:b9:ab: ee:64:d8:c4:63:57:56:14:81:24:0a:51:f3:f6:92:4a:85:e5: 28:fa:fe:8a:d0:3d:82:a1:fa:1d:07:a9:ae:65:3a:d6:e3:fa: 60:8a:ac:b2:f1:5c:c4:c4:af:71:35:15:3f:91:b1:5e:bc:c2: 18:7d:45:d0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjcyRDkxMTAvBgNVBAUTKDQxRTVEQzIxNTUwNjlGRjMxN0U1RUUzOEM3NUI3ODg5 QzIyMTk3RTMwHhcNMjQwMzAxMDI0NTA5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUxNDEzNS1iZmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkFPYfXC65We8F+6ihN5UdN30m+5yKtINu9ACC1h0ZwsPMTfyBAIvRd5Me0/ NKkwHVNoHXvudcCku+GCzBVie0s/GPt1ke71++ceQXTqXxO1qR4dHPX+y4JcInby BXAPBgfh1KfzFO5mYqP9dO/fNltYgzVR9CqQyp1yCsXiCuKDr9OE+IGSByduv93U tVYrWV/l0LZ9skNs38RRw5XnUN5gGHP3n8dXDPrjItA1m5x1RNhCJ8ap6KGyTomX KlsU2NWjdDTZMlthDCAg3jLhrzNG4op5jv52FjNO5qWdJA0NQoKhKP7904iLOSuK LiN00BgVRF1eKqqyrrQie5GcqwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFH90Ksas m+boo7JKIkz/H+I0JanmMB8GA1UdIwQYMBaAFEHl3CFVBp/zF+XuOMdbeInCIZfj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzJEOS9BQTIzRkE5NjY5 NzExMUVDQjYyNTkzMENDNEY5QUUwMi9RZVhjSVZVR25fTVg1ZTQ0eDF0NGljSWhs LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FlWGNJVlVHbl9NWDVlNDR4MXQ0aWNJaGwtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjcyRDkvQUEyM0ZBOTY2OTcxMTFFQ0I2MjU5MzBDQzRGOUFFMDIvNTVDRDFBNzIy QUNDMTFFRTlGRjE2NTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnstwwDwQCAAIwCQMHACABDfA+QDANBgkqhkiG9w0BAQsF AAOCAQEAaXcLLOdqOoSJlWUWsvmxA2L52BSS+2egFGJQw6faGKyVdOrvVMt+uwft PSc+AF2SvUFb5gNArapX7FFGFbL9wle55kySn7qdSGkbUv5/IJ5Dnhg8ch9uC0WF tW/jcIUZ9LZ6gSKJwXS1NOULjbhWyXxP+M3rGEbeAzcxIopsOO9V+25eUcXUjsGn VxoBuGS2m53D16LCOUUdamRQ9HcQcfMbSapaaH+onYd8ANFIGG/R82jro0gM39AW e43rdUmM0U1HALmr7mTYxGNXVhSBJApR8/aSSoXlKPr+itA9gqH6HQeprmU61uP6 YIqssvFcxMSvcTUVP5GxXrzCGH1F0A== -----END CERTIFICATE-----Generated at Fri Jun 7 04:06:22 2024 by rpki-client on console-fra.rpki-client.org