$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/D78EA2DE44ED11EEA6685324C4F9AE02.roa File: D78EA2DE44ED11EEA6685324C4F9AE02.roa (raw, json) Hash identifier: 7GZREky1ayhly5hfTHnfURxdwW5Q45YQnIXUKESy260= Subject key identifier: BE:44:F0:EB:A9:99:45:F1:B6:DD:1F:0F:36:1A:F6:79:12:91:C2:DC Certificate issuer: /CN=A91E2E92/serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Certificate serial: 7E Authority key identifier: 97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/D78EA2DE44ED11EEA6685324C4F9AE02.roa Signing time: Sat 13 Jan 2024 16:36:45 +0000 ROA not before: Sat 13 Jan 2024 16:36:45 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 140443 IP address blocks: 103.215.228.0/23 maxlen: 24 2401:920:1001::/48 maxlen: 48 2401:920:1002::/48 maxlen: 48 2401:920:1003::/48 maxlen: 48 2401:920:1004::/48 maxlen: 48 2401:920:1005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2E92/serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Validity Not Before: Jan 13 16:36:45 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65a2bc1c-0568 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:bd:44:8f:75:05:bd:bc:81:61:5a:9a:e8:6c: 84:53:7b:48:38:7c:d7:f4:80:3a:2d:7b:5d:1f:e9: 2e:80:31:70:b3:23:88:12:0a:74:12:55:59:9f:f4: 13:52:63:0c:1d:0a:f8:de:43:c5:1c:a6:69:d3:70: e7:2a:94:71:ec:e8:fa:dc:0a:42:77:b5:48:53:cd: b9:e7:fd:a3:06:82:6c:9c:32:dc:a5:1f:41:4b:52: ba:59:ed:76:92:94:ab:f6:d3:ac:bf:bb:a9:7b:69: dd:8d:80:e2:fd:89:de:04:6c:ec:42:45:22:a4:76: e5:ca:dd:cc:08:65:f7:42:82:90:17:c0:d4:be:2f: 51:66:3b:79:a5:ea:30:8b:3c:ad:9b:d8:11:81:ff: db:a5:40:93:6d:00:f6:7a:57:a7:1d:b1:79:8b:5b: ed:84:26:59:a6:ab:2a:39:97:64:ec:e7:0b:c0:54: d5:1b:e3:d8:20:32:7e:05:f0:c5:b2:c4:2b:a9:b6: f6:a3:30:2a:8f:f4:1c:e9:72:67:fa:de:a6:91:13: 1c:93:e0:1c:19:da:a8:6e:75:02:ab:19:b4:b1:10: c1:ab:9c:84:95:bd:8b:ee:ad:05:7c:a2:38:78:53: 78:3e:5f:20:a0:6a:a4:73:ff:4d:37:c7:20:3b:ee: ad:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:44:F0:EB:A9:99:45:F1:B6:DD:1F:0F:36:1A:F6:79:12:91:C2:DC X509v3 Authority Key Identifier: keyid:97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/D78EA2DE44ED11EEA6685324C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.228.0/23 IPv6: 2401:920:1001::-2401:920:1005:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 20:86:ff:75:66:11:a8:10:27:ee:6c:5b:f0:93:6a:59:f2:43: 76:ee:a7:d2:1b:d6:b5:9d:77:a9:d9:1e:54:87:e6:17:7e:07: 26:8a:7e:55:fc:b5:85:cf:3a:d8:30:e5:1b:3b:c7:0b:4a:bc: d8:a4:35:8f:2b:de:78:d0:f9:57:22:dd:9f:04:92:98:3e:ed: fb:b9:e6:64:89:95:8d:46:48:ac:fd:02:c1:c0:c9:bf:34:24: 99:84:1a:06:84:87:d7:5b:37:7e:5f:18:50:6b:19:dd:99:46: 34:53:94:38:58:34:53:1d:1f:87:f8:b9:4b:57:3f:1f:ce:50: 82:a7:8c:3c:0f:92:64:01:c0:40:41:4a:4a:fd:03:65:d8:a8: 61:fc:e3:9e:54:06:64:b6:fa:ac:0c:2a:7e:55:da:75:21:a1: a4:5a:55:b4:b7:13:b8:5a:62:c0:f2:46:64:6d:a5:2c:1b:bf: 2d:5c:10:a0:43:2b:a8:db:71:8b:a2:8b:9b:a7:b2:46:2b:ba: 2f:9e:72:dd:e8:81:fc:20:7b:ff:34:97:1c:6f:7c:d5:6a:f3: ed:ad:e8:fd:8b:11:dc:2b:39:8a:48:ea:83:1d:d5:52:e7:78: 49:86:62:0d:81:92:31:64:64:5d:62:1a:dc:32:95:da:b5:c4: d3:d5:16:00 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkU5MjExMC8GA1UEBRMoOTdGM0VDMTAxNDU1OEUwODQ3MEEwM0E5NDc4Qzg0RjIz RTQ1MDAzQTAeFw0yNDAxMTMxNjM2NDVaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YTJiYzFjLTA1NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuvUSPdQW9vIFhWprobIRTe0g4fNf0gDote10f6S6AMXCzI4gSCnQSVVmf9BNS YwwdCvjeQ8UcpmnTcOcqlHHs6PrcCkJ3tUhTzbnn/aMGgmycMtylH0FLUrpZ7XaS lKv206y/u6l7ad2NgOL9id4EbOxCRSKkduXK3cwIZfdCgpAXwNS+L1FmO3ml6jCL PK2b2BGB/9ulQJNtAPZ6V6cdsXmLW+2EJlmmqyo5l2Ts5wvAVNUb49ggMn4F8MWy xCuptvajMCqP9Bzpcmf63qaRExyT4BwZ2qhudQKrGbSxEMGrnISVvYvurQV8ojh4 U3g+XyCgaqRz/003xyA77q1zAgMBAAGjggKxMIICrTAdBgNVHQ4EFgQUvkTw66mZ RfG23R8PNhr2eRKRwtwwHwYDVR0jBBgwFoAUl/PsEBRVjghHCgOpR4yE8j5FADow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRTkyLzE4ODVBNkQyMDZD RjExRUU5Qzk3MTI3QkM0RjlBRTAyL2xfUHNFQlJWamdoSENnT3BSNHlFOGo1RkFE by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbF9Qc0VCUlZqZ2hIQ2dPcFI0eUU4ajVGQURvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkU5Mi8xODg1QTZEMjA2Q0YxMUVFOUM5NzEyN0JDNEY5QUUwMi9ENzhFQTJERTQ0 RUQxMUVFQTY2ODUzMjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA7BggrBgEFBQcBBwEB/wQs MCowDAQCAAEwBgMEAWfX5DAaBAIAAjAUMBIDBwAkAQkgEAEDBwEkAQkgEAQwDQYJ KoZIhvcNAQELBQADggEBACCG/3VmEagQJ+5sW/CTalnyQ3bup9Ib1rWdd6nZHlSH 5hd+ByaKflX8tYXPOtgw5Rs7xwtKvNikNY8r3njQ+Vci3Z8Ekpg+7fu55mSJlY1G SKz9AsHAyb80JJmEGgaEh9dbN35fGFBrGd2ZRjRTlDhYNFMdH4f4uUtXPx/OUIKn jDwPkmQBwEBBSkr9A2XYqGH8455UBmS2+qwMKn5V2nUhoaRaVbS3E7haYsDyRmRt pSwbvy1cEKBDK6jbcYuii5unskYrui+ect3ogfwge/80lxxvfNVq8+2t6P2LEdwr OYpI6oMd1VLneEmGYg2BkjFkZF1iGtwyldq1xNPVFgA= -----END CERTIFICATE-----Generated at Sun May 5 08:21:13 2024 by rpki-client on console-ams.rpki-client.org