$ rpki-client -vvf rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/C6088BAA053211EF81CC9417C4F9AE02.roa File: C6088BAA053211EF81CC9417C4F9AE02.roa (raw, json) Hash identifier: n7qGjBF2Gll8V2aMrUrkTQOz1wie84hUZV6l3EvxhGQ= Subject key identifier: D8:A1:79:E5:8D:07:74:F0:E8:EC:BC:30:2F:44:CD:9B:F9:D0:CB:84 Certificate issuer: /CN=A91229A5/serialNumber=56F928C72A5728C17A9825109BBBB7210313BBCA Certificate serial: 78 Authority key identifier: 56:F9:28:C7:2A:57:28:C1:7A:98:25:10:9B:BB:B7:21:03:13:BB:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VvkoxypXKMF6mCUQm7u3IQMTu8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/C6088BAA053211EF81CC9417C4F9AE02.roa Signing time: Fri 07 Jun 2024 08:33:40 +0000 ROA not before: Fri 07 Jun 2024 08:33:40 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 61414 IP address blocks: 103.93.76.0/22 maxlen: 22 103.93.76.0/24 maxlen: 24 103.93.77.0/24 maxlen: 24 103.93.78.0/24 maxlen: 24 103.93.79.0/24 maxlen: 24 103.225.68.0/23 maxlen: 23 123.253.108.0/24 maxlen: 24 123.253.109.0/24 maxlen: 24 123.253.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/VvkoxypXKMF6mCUQm7u3IQMTu8o.crl rsync://rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/VvkoxypXKMF6mCUQm7u3IQMTu8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VvkoxypXKMF6mCUQm7u3IQMTu8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91229A5/serialNumber=56F928C72A5728C17A9825109BBBB7210313BBCA Validity Not Before: Jun 7 08:33:40 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6662c5e4-f669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:30:45:fa:71:24:8e:19:cb:5f:82:e2:70:0e: 9a:7f:63:c6:ed:24:e3:df:9e:a4:ee:96:1f:13:7d: 42:9e:ed:ec:6c:0e:2a:7f:43:b8:1b:54:ce:89:bd: 78:4c:14:3c:c3:6f:31:85:0b:20:7d:b1:70:9a:06: 3f:b7:3a:23:42:2d:9b:32:9c:1f:4a:54:a5:89:0c: 90:72:f2:41:40:bb:6f:8d:b9:07:74:b9:9e:7b:09: 68:8c:fc:e9:88:3f:54:11:22:57:f2:cf:c8:39:47: c5:12:64:46:84:d5:82:b5:77:7d:96:ea:51:72:b3: 23:8a:0f:4a:ac:50:94:45:d8:df:7b:65:19:a2:4e: 71:e9:10:f0:41:30:27:fe:29:6d:b3:47:5a:12:a9: d5:ad:4d:37:0c:45:21:53:84:26:48:ea:f9:7c:da: 30:45:23:4d:18:3d:3a:d5:36:d8:c4:2a:9d:c4:df: 27:10:bf:20:f7:10:c2:09:96:c8:04:00:86:41:7f: 6a:f5:95:7e:b2:05:f2:34:93:76:3a:e1:44:50:e6: 33:05:7d:1b:0e:52:5f:3d:cd:2f:2d:7f:02:4b:e4: e7:ab:22:b6:40:53:02:a6:8d:3c:5f:f0:13:d4:ba: 42:d8:ad:44:9c:be:41:f7:99:c2:86:7b:37:9d:d7: 67:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A1:79:E5:8D:07:74:F0:E8:EC:BC:30:2F:44:CD:9B:F9:D0:CB:84 X509v3 Authority Key Identifier: keyid:56:F9:28:C7:2A:57:28:C1:7A:98:25:10:9B:BB:B7:21:03:13:BB:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/VvkoxypXKMF6mCUQm7u3IQMTu8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VvkoxypXKMF6mCUQm7u3IQMTu8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/C6088BAA053211EF81CC9417C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.76.0/22 103.225.68.0/23 123.253.108.0-123.253.110.255 Signature Algorithm: sha256WithRSAEncryption a0:63:19:c8:ef:58:b0:22:70:a4:cc:54:c0:1f:56:6a:e2:47: 68:d3:8e:e1:d8:de:84:6c:c8:ab:d0:8b:f2:c2:a8:82:0a:f4: 5d:c7:f9:63:5e:ca:3c:bc:41:13:db:1d:df:a8:97:6d:98:02: 93:1f:bf:d3:cf:72:98:67:e9:34:e9:1e:d4:35:f9:80:68:c3: 97:e1:08:2f:4c:88:f7:62:bc:cd:7c:9b:87:80:74:9f:4e:22: 99:ec:37:84:1f:6b:ec:c1:04:ea:0f:db:99:9e:bd:77:13:72: 4f:26:e7:74:6a:8f:23:28:ae:e6:2d:c4:c3:fc:96:37:14:ad: 90:a0:6f:c8:81:90:b8:b3:1d:71:6c:ef:bc:80:a0:44:0d:7d: b8:6d:a1:9f:1b:75:a4:d4:da:bc:58:ff:55:c9:c1:cd:3b:6d: 40:88:c8:c8:f4:27:91:81:fa:2e:d4:79:8b:3f:5d:96:f0:f2: 8a:17:b8:a3:cf:a6:f3:9a:97:f8:66:1b:2e:38:27:b7:a8:18: 9d:0a:ee:e5:31:ec:07:d0:c0:39:cb:32:76:54:cf:94:3e:d7: 43:9b:4e:21:1e:2e:a7:44:9a:b4:1f:2b:86:6c:84:d8:75:da: 7f:bf:99:22:2a:4c:13:f9:82:4f:36:a5:1c:3c:5d:d0:b1:50: ae:cf:81:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MjlBNTExMC8GA1UEBRMoNTZGOTI4QzcyQTU3MjhDMTdBOTgyNTEwOUJCQkI3MjEw MzEzQkJDQTAeFw0yNDA2MDcwODMzNDBaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjJjNWU0LWY2NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1MEX6cSSOGctfguJwDpp/Y8btJOPfnqTulh8TfUKe7exsDip/Q7gbVM6JvXhM FDzDbzGFCyB9sXCaBj+3OiNCLZsynB9KVKWJDJBy8kFAu2+NuQd0uZ57CWiM/OmI P1QRIlfyz8g5R8USZEaE1YK1d32W6lFysyOKD0qsUJRF2N97ZRmiTnHpEPBBMCf+ KW2zR1oSqdWtTTcMRSFThCZI6vl82jBFI00YPTrVNtjEKp3E3ycQvyD3EMIJlsgE AIZBf2r1lX6yBfI0k3Y64URQ5jMFfRsOUl89zS8tfwJL5OerIrZAUwKmjTxf8BPU ukLYrUScvkH3mcKGezed12exAgMBAAGjggKpMIICpTAdBgNVHQ4EFgQU2KF55Y0H dPDo7LwwL0TNm/nQy4QwHwYDVR0jBBgwFoAUVvkoxypXKMF6mCUQm7u3IQMTu8ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIyOUE1L0UyOUU3MzYwN0Ex MzExRUVBQkExNTA2OUM0RjlBRTAyL1Z2a294eXBYS01GNm1DVVFtN3UzSVFNVHU4 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVnZrb3h5cFhLTUY2bUNVUW03dTNJUU1UdThvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjlBNS9FMjlFNzM2MDdBMTMxMUVFQUJBMTUwNjlDNEY5QUUwMi9DNjA4OEJBQTA1 MzIxMUVGODFDQzk0MTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAzBggrBgEFBQcBBwEB/wQk MCIwIAQCAAEwGgMEAmddTAMEAWfhRDAMAwQCe/1sAwQAe/1uMA0GCSqGSIb3DQEB CwUAA4IBAQCgYxnI71iwInCkzFTAH1Zq4kdo047h2N6EbMir0IvywqiCCvRdx/lj Xso8vEET2x3fqJdtmAKTH7/Tz3KYZ+k06R7UNfmAaMOX4QgvTIj3YrzNfJuHgHSf TiKZ7DeEH2vswQTqD9uZnr13E3JPJud0ao8jKK7mLcTD/JY3FK2QoG/IgZC4sx1x bO+8gKBEDX24baGfG3Wk1Nq8WP9VycHNO21AiMjI9CeRgfou1HmLP12W8PKKF7ij z6bzmpf4ZhsuOCe3qBidCu7lMewH0MA5yzJ2VM+UPtdDm04hHi6nRJq0HyuGbITY ddp/v5kiKkwT+YJPNqUcPF3QsVCuz4G1 -----END CERTIFICATE-----Generated at Fri Jun 7 09:40:13 2024 by rpki-client on console-ams.rpki-client.org