$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/5122B56A51F311E9AB54691EC4F9AE02.roa File: 5122B56A51F311E9AB54691EC4F9AE02.roa (raw, json) Hash identifier: dftwsSCca9aY9qauOgyqtvwerpP1A/WuCLeHieNK1lc= Subject key identifier: 11:E9:BF:7A:45:7A:CD:4B:96:25:CE:2B:D4:31:0A:24:23:5B:17:72 Certificate issuer: /CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Certificate serial: 10FC Authority key identifier: EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/5122B56A51F311E9AB54691EC4F9AE02.roa Signing time: Wed 24 May 2023 18:17:49 +0000 ROA not before: Wed 24 May 2023 18:17:49 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 133219 IP address blocks: 103.14.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 17:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4348 (0x10fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Validity Not Before: May 24 18:17:49 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646e54cc-6426 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:39:4d:f2:8b:68:e9:43:67:91:f8:b9:d9:e7: f2:69:46:ef:85:34:37:bf:07:e5:6e:6a:10:d6:13: 28:fa:ca:3b:17:82:42:53:06:dd:08:6b:f1:27:ac: cb:91:db:6a:98:93:6f:8e:0a:39:cc:b8:db:25:02: 60:ef:39:99:26:28:53:36:b5:0a:78:f5:b2:a0:68: 89:f7:4a:9d:44:f4:f0:20:47:9c:09:d9:9d:51:07: 6e:e9:d9:f5:ed:dc:0a:c4:93:c9:9a:62:f3:fe:d7: f3:73:81:af:8a:41:b5:72:11:2e:a0:7a:fb:db:6f: ce:e1:b5:c3:33:ba:af:b5:81:e1:38:4d:79:6d:fe: d4:46:b6:76:7a:f2:3b:f9:b1:cc:3f:36:b6:d0:92: 73:63:d7:7d:9c:70:a3:37:a9:68:18:76:2e:c6:4e: 4a:ab:dd:b3:7f:ad:19:c3:e2:26:50:7b:d4:36:42: 4b:a8:b9:83:55:ed:c2:58:48:76:b8:c6:35:8a:3d: 20:5d:b8:cb:20:c4:e1:f9:8e:05:56:62:0a:73:87: 2a:18:cb:04:ef:99:2d:8c:95:0c:c6:50:e6:17:a0: 55:e7:66:12:97:a0:b8:00:5e:3c:d6:83:24:6f:d9: 92:4d:f8:75:18:1e:82:be:cf:51:3d:65:d0:07:f6: cb:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:E9:BF:7A:45:7A:CD:4B:96:25:CE:2B:D4:31:0A:24:23:5B:17:72 X509v3 Authority Key Identifier: keyid:EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/5122B56A51F311E9AB54691EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.78.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:29:98:da:09:3e:cd:58:85:00:1f:61:d7:d5:78:26:d9:13: 68:53:cb:fd:a8:bf:5f:e3:c8:53:b1:5d:ac:75:78:a0:b2:c7: 11:2a:96:06:3d:b2:b6:51:5f:92:15:77:95:36:13:58:23:3a: c7:94:4c:3e:e7:78:db:13:5a:07:00:0a:44:af:e1:f7:2d:2a: 77:d8:c7:45:2b:30:97:d5:99:39:fc:0a:91:fc:97:84:c9:3d: 2f:7c:81:40:01:13:cc:e6:07:42:8f:0d:a3:09:a0:dd:f2:a3: 9c:1a:4a:ff:92:ed:50:92:ff:25:56:86:22:73:74:73:29:8e: 69:a5:48:40:72:f4:30:47:c4:72:37:6d:0d:84:b2:08:20:36: 70:4f:c9:58:42:00:63:a4:9a:59:b0:ee:c2:e5:4a:a8:5a:6b: 40:68:f4:a2:12:b8:f5:2a:72:fa:f9:f4:31:7f:6d:23:1d:04: 49:f8:7f:f7:6c:95:c7:8d:ed:bb:02:7e:35:ea:16:95:8d:cc: c4:fd:ba:e1:17:a6:2f:b7:3b:85:f3:c9:03:4c:6d:4f:43:2d: 7c:96:32:06:49:70:18:f6:54:84:1b:1c:9d:40:e7:ac:fd:22: 68:de:cf:c5:5e:1c:f3:c1:29:7f:97:24:6c:20:8f:95:94:6d: e9:41:e2:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNkExMTAvBgNVBAUTKEVGNjJGMTU1QzE5NzFENTA0OTQxRjU3MUVFREZBQzBB RkNDNTI4NTkwHhcNMjMwNTI0MTgxNzQ5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZlNTRjYy02NDI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4TlN8oto6UNnkfi52efyaUbvhTQ3vwflbmoQ1hMo+so7F4JCUwbdCGvxJ6zL kdtqmJNvjgo5zLjbJQJg7zmZJihTNrUKePWyoGiJ90qdRPTwIEecCdmdUQdu6dn1 7dwKxJPJmmLz/tfzc4GvikG1chEuoHr722/O4bXDM7qvtYHhOE15bf7URrZ2evI7 +bHMPza20JJzY9d9nHCjN6loGHYuxk5Kq92zf60Zw+ImUHvUNkJLqLmDVe3CWEh2 uMY1ij0gXbjLIMTh+Y4FVmIKc4cqGMsE75ktjJUMxlDmF6BV52YSl6C4AF481oMk b9mSTfh1GB6Cvs9RPWXQB/bLtwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBHpv3pF es1LliXOK9QxCiQjWxdyMB8GA1UdIwQYMBaAFO9i8VXBlx1QSUH1ce7frAr8xShZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU2QS8xRDY0MzI4RUQz ODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhWQkpRZlZ4N3Qtc0N2ekZL RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTHhWY0dYSFZCSlFmVng3dC1zQ3Z6RktGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZFNkEvMUQ2NDMyOEVEMzg3MTFFOEJENzA3NTVDQzRGOUFFMDIvNTEyMkI1NkE1 MUYzMTFFOUFCNTQ2OTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnDk4wDQYJKoZIhvcNAQELBQADggEBAE4pmNoJPs1YhQAf YdfVeCbZE2hTy/2ov1/jyFOxXax1eKCyxxEqlgY9srZRX5IVd5U2E1gjOseUTD7n eNsTWgcACkSv4fctKnfYx0UrMJfVmTn8CpH8l4TJPS98gUABE8zmB0KPDaMJoN3y o5waSv+S7VCS/yVWhiJzdHMpjmmlSEBy9DBHxHI3bQ2EsgggNnBPyVhCAGOkmlmw 7sLlSqhaa0Bo9KISuPUqcvr59DF/bSMdBEn4f/dslceN7bsCfjXqFpWNzMT9uuEX pi+3O4XzyQNMbU9DLXyWMgZJcBj2VIQbHJ1A56z9Imjez8VeHPPBKX+XJGwgj5WU belB4vU= -----END CERTIFICATE-----Generated at Thu Apr 18 20:34:41 2024 by rpki-client on console-ams.rpki-client.org