$ rpki-client -vvf rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/DB78B2684BCD11EE8F976B7EC4F9AE02.roa File: DB78B2684BCD11EE8F976B7EC4F9AE02.roa (raw, json) Hash identifier: KUS4Ox2gEpezMstwpX1CTC0qzfRNi3wV04onRKW1ycI= Subject key identifier: 1A:8C:F4:8A:A3:C7:EF:79:35:A8:44:E6:B2:3A:EB:2F:65:4C:98:A0 Certificate issuer: /CN=A91409DC/serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Certificate serial: 0795 Authority key identifier: 14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/DB78B2684BCD11EE8F976B7EC4F9AE02.roa Signing time: Sat 04 May 2024 19:58:24 +0000 ROA not before: Sat 04 May 2024 19:58:24 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138917 IP address blocks: 103.137.40.0/24 maxlen: 24 2001:df0:1880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 19:38:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1941 (0x795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91409DC/serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Validity Not Before: May 4 19:58:24 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6636935f-9bbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a3:38:18:42:ba:ce:f5:30:ed:7c:59:23:12: 6a:9f:7e:94:92:6b:0a:2e:4a:e9:cf:fc:70:3a:48: 9d:6f:17:a0:00:9b:32:64:1e:bc:70:c5:70:09:d8: 83:14:7a:33:3c:81:e7:2f:a2:df:df:91:e7:84:e6: 14:cc:5d:a0:6c:8a:11:8d:42:38:39:c1:a7:29:4d: d8:9a:20:c8:9a:5c:f3:2d:68:2e:d5:ad:13:e5:d6: 8e:29:ba:31:6d:2b:e8:52:32:3c:cd:8e:94:44:9a: 69:1a:2c:03:c5:c1:bc:09:fe:4b:a3:2d:51:ed:4d: 5c:51:ff:f0:ba:41:87:df:3a:e2:31:85:8d:e0:55: 28:bf:d4:02:6a:6a:c7:24:6b:aa:6e:1e:dc:bb:76: 92:de:c9:ec:74:d7:2a:0b:96:9b:c9:50:e4:70:3c: 02:56:c9:df:98:de:21:a0:9c:a5:9d:73:09:26:c0: 67:f8:ce:7b:b3:18:1b:18:9d:96:1c:06:93:d8:63: 79:39:2b:20:9e:b9:94:f5:7b:93:0c:c6:a2:fa:65: 17:42:c0:0f:89:d1:18:bd:de:5f:cd:39:86:b5:76: 2f:43:13:b9:aa:04:35:1b:85:16:5a:d0:30:86:b4: 7b:df:4c:98:99:0c:ee:52:e9:9c:65:15:6a:06:c3: 9e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:8C:F4:8A:A3:C7:EF:79:35:A8:44:E6:B2:3A:EB:2F:65:4C:98:A0 X509v3 Authority Key Identifier: keyid:14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/DB78B2684BCD11EE8F976B7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.40.0/24 IPv6: 2001:df0:1880::/48 Signature Algorithm: sha256WithRSAEncryption 34:d1:c3:aa:7a:3d:6a:50:3b:59:f9:6d:d4:0f:17:b7:52:74: f0:71:dc:65:0e:8e:61:ab:4d:32:3c:60:a0:cb:e9:89:fa:1c: 7e:e3:a9:11:f4:18:29:75:03:5f:8b:8f:a0:b0:6f:07:35:8f: 8a:a3:e5:27:e1:78:1a:3d:3c:21:65:0e:a1:ec:4d:91:7e:d0: f7:47:b9:28:c8:d6:8b:0e:18:51:e0:cc:da:73:a8:20:ff:af: 7d:3d:53:6c:4b:b5:d9:7c:46:88:a2:8c:a6:e2:6b:09:19:73: fe:55:6f:05:68:a5:6b:e6:cf:6f:73:8a:88:3e:4d:d3:58:98: d3:39:7c:5e:c4:ef:8c:ff:1a:c0:aa:66:99:d5:0a:57:2b:77: 9f:83:e1:d1:ff:93:3a:8b:70:a8:0d:c4:a3:5b:34:ae:4c:57: 04:fe:79:2d:f4:1b:43:db:fc:09:23:f3:71:43:36:7a:75:d2: cd:15:11:0b:43:8d:f3:60:a4:07:ac:93:1f:fa:ab:a1:9c:aa: c5:1f:dd:ee:3b:9f:99:6d:73:14:92:c7:0e:06:aa:e2:69:07: af:75:40:2c:c1:12:66:87:1a:64:4d:7e:8f:d0:0a:36:30:b6: 72:f3:e6:c2:39:7e:bb:7f:33:e8:e9:e9:73:9c:25:66:d3:8e: db:fd:3e:95 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA5REMxMTAvBgNVBAUTKDE0QTZDQUJDMzAyRUMxRTNEQ0U3NERFOThCRjU1OEEw NDJCRUFDNTYwHhcNMjQwNTA0MTk1ODI0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM2OTM1Zi05YmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1aM4GEK6zvUw7XxZIxJqn36UkmsKLkrpz/xwOkidbxegAJsyZB68cMVwCdiD FHozPIHnL6Lf35HnhOYUzF2gbIoRjUI4OcGnKU3YmiDImlzzLWgu1a0T5daOKbox bSvoUjI8zY6URJppGiwDxcG8Cf5Loy1R7U1cUf/wukGH3zriMYWN4FUov9QCamrH JGuqbh7cu3aS3snsdNcqC5abyVDkcDwCVsnfmN4hoJylnXMJJsBn+M57sxgbGJ2W HAaT2GN5OSsgnrmU9XuTDMai+mUXQsAPidEYvd5fzTmGtXYvQxO5qgQ1G4UWWtAw hrR730yYmQzuUumcZRVqBsOe9wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBqM9Iqj x+95NahE5rI66y9lTJigMB8GA1UdIwQYMBaAFBSmyrwwLsHj3OdN6Yv1WKBCvqxW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDlEQy9BNUJCRkFBNjA5 MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdlUGM1MDNwaV9WWW9FSy1y RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZLYkt2REF1d2VQYzUwM3BpX1ZZb0VLLXJGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA5REMvQTVCQkZBQTYwOTM1MTFFQUFCMTBDOTFGQzRGOUFFMDIvREI3OEIyNjg0 QkNEMTFFRThGOTc2QjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABniSgwDwQCAAIwCQMHACABDfAYgDANBgkqhkiG9w0BAQsF AAOCAQEANNHDqno9alA7Wflt1A8Xt1J08HHcZQ6OYatNMjxgoMvpifocfuOpEfQY KXUDX4uPoLBvBzWPiqPlJ+F4Gj08IWUOoexNkX7Q90e5KMjWiw4YUeDM2nOoIP+v fT1TbEu12XxGiKKMpuJrCRlz/lVvBWila+bPb3OKiD5N01iY0zl8XsTvjP8awKpm mdUKVyt3n4Ph0f+TOotwqA3Eo1s0rkxXBP55LfQbQ9v8CSPzcUM2enXSzRURC0ON 82CkB6yTH/qroZyqxR/d7jufmW1zFJLHDgaq4mkHr3VALMESZocaZE1+j9AKNjC2 cvPmwjl+u38z6Onpc5wlZtOO2/0+lQ== -----END CERTIFICATE-----Generated at Mon May 6 20:19:09 2024 by rpki-client on console-fra.rpki-client.org