$ rpki-client -vvf rpki.apnic.net/member_repository/A91529FC/D69F74B877E811EBB7F99A40C4F9AE02/78ACE25C7FD811ECB5AA233AC4F9AE02.roa File: 78ACE25C7FD811ECB5AA233AC4F9AE02.roa (raw, json) Hash identifier: CcjCPlHMNYc+YygUiRWuCGNtO6rxhfDaQIYcI/x0Azk= Subject key identifier: A2:05:D7:D1:8D:10:7E:BC:2B:D3:42:BF:E2:4F:EF:D3:78:DD:4A:AD Certificate issuer: /CN=A91529FC/serialNumber=E458EA304009873C8884AF89AA931D48BA859CD0 Certificate serial: 05C0 Authority key identifier: E4:58:EA:30:40:09:87:3C:88:84:AF:89:AA:93:1D:48:BA:85:9C:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5FjqMEAJhzyIhK-JqpMdSLqFnNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91529FC/D69F74B877E811EBB7F99A40C4F9AE02/78ACE25C7FD811ECB5AA233AC4F9AE02.roa Signing time: Tue 09 Apr 2024 00:32:57 +0000 ROA not before: Tue 09 Apr 2024 00:32:57 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 141384 IP address blocks: 103.162.142.0/24 maxlen: 24 103.162.143.0/24 maxlen: 24 2001:df6:780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91529FC/D69F74B877E811EBB7F99A40C4F9AE02/5FjqMEAJhzyIhK-JqpMdSLqFnNA.crl rsync://rpki.apnic.net/member_repository/A91529FC/D69F74B877E811EBB7F99A40C4F9AE02/5FjqMEAJhzyIhK-JqpMdSLqFnNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5FjqMEAJhzyIhK-JqpMdSLqFnNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1472 (0x5c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91529FC/serialNumber=E458EA304009873C8884AF89AA931D48BA859CD0 Validity Not Before: Apr 9 00:32:57 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66148cb9-4b63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a4:42:78:19:04:3a:18:68:83:ec:f9:f1:af: 37:76:69:c5:32:d3:29:7a:61:5a:ef:f9:00:5a:f3: 82:c1:83:85:b8:73:43:35:de:4e:8c:75:e9:42:6c: 6e:0f:0a:f8:f4:31:dc:56:a7:34:fa:9a:ab:97:9c: 85:3d:8a:be:32:ba:ec:f0:dd:8d:7a:66:b4:53:6d: b1:3e:d1:71:da:b2:b8:57:f5:57:56:88:e8:4c:2a: 76:92:11:b9:53:bb:f7:97:5f:c3:3b:86:ec:0c:a0: bf:b9:58:3d:b1:6c:68:ec:8c:6b:d3:32:49:e3:8b: 95:c4:05:cc:fb:38:30:29:7e:17:a2:60:5b:f5:ff: 34:74:39:e5:03:2e:e1:26:15:93:ce:de:fb:0c:02: 34:7f:44:4e:4d:2e:ea:e6:92:2b:a7:e9:6a:5a:7a: 88:12:dd:9b:56:a4:c3:ce:03:e7:c3:8d:77:d8:e5: 51:d0:0f:8d:b3:93:ff:e3:f6:c2:b8:47:2a:01:3d: d7:85:9a:00:cb:b7:2f:40:c1:83:bd:17:7d:68:db: b1:6c:af:88:2a:0e:a8:55:ae:1d:f7:76:cd:f8:0e: 6b:01:3b:65:7a:6f:54:60:28:c9:19:c2:c4:f7:a5: 04:b9:c8:35:4d:cd:92:c3:52:39:2c:91:ae:df:3b: 00:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:05:D7:D1:8D:10:7E:BC:2B:D3:42:BF:E2:4F:EF:D3:78:DD:4A:AD X509v3 Authority Key Identifier: keyid:E4:58:EA:30:40:09:87:3C:88:84:AF:89:AA:93:1D:48:BA:85:9C:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91529FC/D69F74B877E811EBB7F99A40C4F9AE02/5FjqMEAJhzyIhK-JqpMdSLqFnNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5FjqMEAJhzyIhK-JqpMdSLqFnNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91529FC/D69F74B877E811EBB7F99A40C4F9AE02/78ACE25C7FD811ECB5AA233AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.142.0/23 IPv6: 2001:df6:780::/48 Signature Algorithm: sha256WithRSAEncryption b3:d4:13:f2:a1:8a:9b:4a:94:7c:ae:ff:c1:db:6c:38:21:f7: 0c:ae:43:59:e7:b3:23:f1:5f:a2:cd:7e:30:81:ce:99:ef:ff: b3:7b:8a:3c:97:f6:70:f4:fc:f7:e5:28:2c:4b:a6:5a:93:6a: ba:a2:c1:12:d5:58:6b:6d:21:09:6b:58:76:ac:6b:22:3a:41: 9f:cd:5e:a1:64:61:42:f7:44:8c:b7:6d:8e:d0:f7:e6:b5:f7: 59:26:bb:4e:72:42:06:5b:d4:6c:60:bf:b9:a5:ef:7a:44:70: b1:87:0e:a4:71:d3:77:d7:09:52:fc:66:e0:ca:15:9d:0d:88: 30:0f:50:86:5b:c0:3c:d8:5e:38:96:86:6c:14:5e:f8:a9:d0: d0:86:88:ee:f8:c3:67:8e:07:54:41:b4:49:71:b5:9d:e2:a0: ac:c0:b1:81:af:3e:32:11:29:a2:af:d3:26:25:07:08:36:ac: dd:8b:25:a6:2d:be:54:40:c2:0c:e3:77:1d:0f:88:60:ad:b5: 30:ed:04:e7:98:31:5a:35:31:b4:a8:5a:10:8f:8e:ae:4b:43: 3c:d8:c2:9d:6f:af:c9:c9:98:69:ce:17:dd:a2:af:70:d1:a0: 85:02:03:70:6a:fd:08:85:7d:2c:23:b1:44:db:3e:f4:cb:90: f7:3e:d7:d6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI5RkMxMTAvBgNVBAUTKEU0NThFQTMwNDAwOTg3M0M4ODg0QUY4OUFBOTMxRDQ4 QkE4NTlDRDAwHhcNMjQwNDA5MDAzMjU3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE0OGNiOS00YjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaRCeBkEOhhog+z58a83dmnFMtMpemFa7/kAWvOCwYOFuHNDNd5OjHXpQmxu Dwr49DHcVqc0+pqrl5yFPYq+Mrrs8N2Nema0U22xPtFx2rK4V/VXVojoTCp2khG5 U7v3l1/DO4bsDKC/uVg9sWxo7Ixr0zJJ44uVxAXM+zgwKX4XomBb9f80dDnlAy7h JhWTzt77DAI0f0ROTS7q5pIrp+lqWnqIEt2bVqTDzgPnw4132OVR0A+Ns5P/4/bC uEcqAT3XhZoAy7cvQMGDvRd9aNuxbK+IKg6oVa4d93bN+A5rATtlem9UYCjJGcLE 96UEucg1Tc2Sw1I5LJGu3zsAEwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKIF19GN EH68K9NCv+JP79N43UqtMB8GA1UdIwQYMBaAFORY6jBACYc8iISviaqTHUi6hZzQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjlGQy9ENjlGNzRCODc3 RTgxMUVCQjdGOTlBNDBDNEY5QUUwMi81RmpxTUVBSmh6eUloSy1KcXBNZFNMcUZu TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVGanFNRUFKaHp5SWhLLUpxcE1kU0xxRm5OQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTI5RkMvRDY5Rjc0Qjg3N0U4MTFFQkI3Rjk5QTQwQzRGOUFFMDIvNzhBQ0UyNUM3 RkQ4MTFFQ0I1QUEyMzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnoo4wDwQCAAIwCQMHACABDfYHgDANBgkqhkiG9w0BAQsF AAOCAQEAs9QT8qGKm0qUfK7/wdtsOCH3DK5DWeezI/Ffos1+MIHOme//s3uKPJf2 cPT89+UoLEumWpNquqLBEtVYa20hCWtYdqxrIjpBn81eoWRhQvdEjLdtjtD35rX3 WSa7TnJCBlvUbGC/uaXvekRwsYcOpHHTd9cJUvxm4MoVnQ2IMA9QhlvAPNheOJaG bBRe+KnQ0IaI7vjDZ44HVEG0SXG1neKgrMCxga8+MhEpoq/TJiUHCDas3Yslpi2+ VEDCDON3HQ+IYK21MO0E55gxWjUxtKhaEI+OrktDPNjCnW+vycmYac4X3aKvcNGg hQIDcGr9CIV9LCOxRNs+9MuQ9z7X1g== -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:40 2024 by rpki-client on console-ams.rpki-client.org