$ rpki-client -vvf rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/76D38708D64611EE98C44371C4F9AE02.roa File: 76D38708D64611EE98C44371C4F9AE02.roa (raw, json) Hash identifier: Xq0nGutO0M64fHSn3g9yihNmPFVwnCAIx0ieaqWih5A= Subject key identifier: C5:17:D0:91:21:64:FA:3A:C7:9D:90:99:17:26:A8:CF:98:0E:A5:3F Certificate issuer: /CN=A91278D5/serialNumber=E010AF2E114A4A9FD5085BE44660521390FB1331 Certificate serial: 09D9 Authority key identifier: E0:10:AF:2E:11:4A:4A:9F:D5:08:5B:E4:46:60:52:13:90:FB:13:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/76D38708D64611EE98C44371C4F9AE02.roa Signing time: Wed 28 Feb 2024 14:35:33 +0000 ROA not before: Wed 28 Feb 2024 14:35:33 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 135341 IP address blocks: 103.120.44.0/24 maxlen: 24 103.120.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.crl rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2521 (0x9d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91278D5/serialNumber=E010AF2E114A4A9FD5085BE44660521390FB1331 Validity Not Before: Feb 28 14:35:33 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65df44b5-5887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:35:25:cd:af:fd:0a:2a:26:ec:2d:73:32:8d: 4f:5a:99:e0:2f:da:29:10:a8:6c:44:ce:0a:d5:a8: 5e:6a:35:08:a3:27:09:1f:4a:93:49:8e:77:81:6b: 66:23:3a:42:82:45:22:cf:3d:26:98:42:8e:0d:49: 42:12:0a:2a:d1:4a:dd:7a:2d:f5:27:7f:69:87:51: 06:de:fc:c1:38:c0:a9:47:6f:af:8e:bf:4d:0a:2e: a4:68:5f:ec:fc:21:08:0b:59:30:16:43:44:a3:19: f8:64:3f:81:11:38:29:0c:a2:3a:c2:e5:44:33:b8: 30:ac:d4:85:62:4d:cf:52:ae:2f:37:ba:b0:f9:33: 32:44:b5:4e:7b:5d:66:68:f5:f1:95:e7:79:ac:fc: f4:33:87:f6:8e:c9:72:ee:3c:99:a9:4e:e6:37:88: 54:fb:a4:db:c5:c3:05:a8:e5:bc:64:5b:20:b3:7d: 3a:e0:c7:38:5a:dd:3d:92:6a:b2:2c:29:3d:18:1c: 6a:56:f5:bc:29:65:89:99:b1:c4:7b:bf:1c:5d:43: 6b:20:f8:45:60:e9:44:36:48:58:47:13:af:1c:a0: 01:c6:14:84:bf:cf:3e:e9:94:9c:f1:e7:5f:a7:0c: 4a:cd:49:94:e5:58:61:8f:94:0a:64:55:a9:9e:6c: d3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:17:D0:91:21:64:FA:3A:C7:9D:90:99:17:26:A8:CF:98:0E:A5:3F X509v3 Authority Key Identifier: keyid:E0:10:AF:2E:11:4A:4A:9F:D5:08:5B:E4:46:60:52:13:90:FB:13:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/76D38708D64611EE98C44371C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.44.0/23 Signature Algorithm: sha256WithRSAEncryption 60:23:7e:de:44:70:0f:83:4e:43:da:62:9d:77:6d:a4:7a:1c: f3:67:97:cf:4f:fa:a6:c8:03:70:75:71:54:f4:c3:20:57:39: 2e:bf:28:f2:1f:66:ad:13:32:37:06:c7:b5:a7:4f:b6:c2:b3: 3d:cf:e6:44:14:41:86:45:43:ca:f1:2a:7e:91:f5:7e:8a:49: 94:88:a5:91:55:ba:d4:da:e7:56:e3:5c:34:d6:f2:c8:51:65: 7b:4e:2a:74:1b:be:ab:0e:69:14:eb:0e:44:eb:8a:d4:d9:85: 37:ad:f6:88:dc:bc:90:50:2c:ab:81:88:47:65:50:0d:ca:7e: 53:f0:97:e2:d9:e2:95:cd:fe:b0:1d:04:0f:4f:d1:8a:5c:f3: 10:5a:27:5f:2d:11:43:06:11:7e:c6:7f:f9:19:58:a8:e7:72: 20:4d:41:2d:a3:33:99:5e:b5:11:7c:99:c0:d3:48:95:f0:35: 02:58:91:22:8e:6d:74:79:58:e4:71:43:45:12:85:4f:64:15: 34:a7:81:2b:cd:5a:42:e9:12:c6:d2:c0:8d:f2:ac:8c:1b:ab: 60:e8:e3:9f:04:0a:ad:3e:67:f8:d8:d9:f2:0a:fa:4a:bf:b1: 3d:cd:a4:33:6f:ea:27:ff:43:03:f6:87:5c:7c:47:71:b7:d2: 0c:2a:f7:46 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc4RDUxMTAvBgNVBAUTKEUwMTBBRjJFMTE0QTRBOUZENTA4NUJFNDQ2NjA1MjEz OTBGQjEzMzEwHhcNMjQwMjI4MTQzNTMzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmNDRiNS01ODg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzUlza/9Ciom7C1zMo1PWpngL9opEKhsRM4K1aheajUIoycJH0qTSY53gWtm IzpCgkUizz0mmEKODUlCEgoq0Urdei31J39ph1EG3vzBOMCpR2+vjr9NCi6kaF/s /CEIC1kwFkNEoxn4ZD+BETgpDKI6wuVEM7gwrNSFYk3PUq4vN7qw+TMyRLVOe11m aPXxled5rPz0M4f2jsly7jyZqU7mN4hU+6TbxcMFqOW8ZFsgs3064Mc4Wt09kmqy LCk9GBxqVvW8KWWJmbHEe78cXUNrIPhFYOlENkhYRxOvHKABxhSEv88+6ZSc8edf pwxKzUmU5Vhhj5QKZFWpnmzTuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMUX0JEh ZPo6x52QmRcmqM+YDqU/MB8GA1UdIwQYMBaAFOAQry4RSkqf1Qhb5EZgUhOQ+xMx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzhENS82MDEzMjE2MDU2 QzgxMUVBQjY2NTdBNDBDNEY5QUUwMi80QkN2TGhGS1NwX1ZDRnZrUm1CU0U1RDdF ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRCQ3ZMaEZLU3BfVkNGdmtSbUJTRTVEN0V6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc4RDUvNjAxMzIxNjA1NkM4MTFFQUI2NjU3QTQwQzRGOUFFMDIvNzZEMzg3MDhE NjQ2MTFFRTk4QzQ0MzcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFneCwwDQYJKoZIhvcNAQELBQADggEBAGAjft5EcA+DTkPa Yp13baR6HPNnl89P+qbIA3B1cVT0wyBXOS6/KPIfZq0TMjcGx7WnT7bCsz3P5kQU QYZFQ8rxKn6R9X6KSZSIpZFVutTa51bjXDTW8shRZXtOKnQbvqsOaRTrDkTritTZ hTet9ojcvJBQLKuBiEdlUA3KflPwl+LZ4pXN/rAdBA9P0Ypc8xBaJ18tEUMGEX7G f/kZWKjnciBNQS2jM5letRF8mcDTSJXwNQJYkSKObXR5WORxQ0UShU9kFTSngSvN WkLpEsbSwI3yrIwbq2Do458ECq0+Z/jY2fIK+kq/sT3NpDNv6if/QwP2h1x8R3G3 0gwq90Y= -----END CERTIFICATE-----Generated at Fri May 10 23:04:03 2024 by rpki-client on console-ams.rpki-client.org