$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/B78B5CB6D65F11EA8B30486EC4F9AE02.roa File: B78B5CB6D65F11EA8B30486EC4F9AE02.roa (raw, json) Hash identifier: pyE1yk75hZHnyTIGM5Wvuc1wIGq6cD55fIaC+TnGwmo= Subject key identifier: 9D:26:36:1E:DC:E4:9D:68:14:9A:70:58:92:ED:E9:DB:63:37:D2:FB Certificate issuer: /CN=A917F8F2/serialNumber=B791BD1C9E2081AA84F8078066C0C7F60A63790E Certificate serial: 072C Authority key identifier: B7:91:BD:1C:9E:20:81:AA:84:F8:07:80:66:C0:C7:F6:0A:63:79:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/B78B5CB6D65F11EA8B30486EC4F9AE02.roa Signing time: Fri 26 Jan 2024 21:59:43 +0000 ROA not before: Fri 26 Jan 2024 21:59:43 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 134737 IP address blocks: 103.149.8.0/24 maxlen: 24 103.149.9.0/24 maxlen: 24 2001:df4:6580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.crl rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1836 (0x72c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8F2/serialNumber=B791BD1C9E2081AA84F8078066C0C7F60A63790E Validity Not Before: Jan 26 21:59:43 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b42b4f-9b79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8c:9e:64:69:52:76:78:e8:03:e8:0c:8e:76: cb:a1:a5:d9:2a:86:60:44:c7:eb:cc:34:ef:a2:b5: 98:de:6f:7a:00:0c:fa:ac:71:d3:1b:2d:06:83:21: b0:f8:03:c2:cf:34:87:5e:be:3d:ef:84:2d:22:77: b2:3d:f9:78:e1:81:78:62:0a:47:01:66:f6:ba:0e: 4f:18:16:7e:b0:ef:3b:96:62:bd:d4:bf:33:70:c3: b4:93:c7:3f:04:f6:a1:20:2b:e6:91:54:c5:fc:0b: b2:32:a2:36:da:6f:8d:f9:51:9e:aa:ba:11:3b:88: 88:8f:d9:9c:13:9f:26:ec:f2:02:fd:6b:f7:0f:80: 2a:85:91:0e:7c:dc:8a:a2:14:49:64:06:7c:98:99: 4c:34:35:cb:9a:d5:82:44:37:4a:bb:f8:3e:4d:97: ec:33:27:ae:b4:0a:1b:42:1f:23:c6:c3:82:40:89: 9a:c0:71:9e:05:70:61:6e:e2:01:00:b9:d5:d5:7a: 37:2c:c2:a7:57:9a:07:25:13:12:5a:e6:6c:10:db: 00:f9:38:36:b0:54:af:aa:35:53:7b:f0:74:d2:fa: 12:b4:32:50:8b:7e:11:c7:31:88:c8:52:10:ea:6f: bb:13:25:04:d7:95:0e:b8:00:f2:a1:19:5f:c3:59: 35:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:26:36:1E:DC:E4:9D:68:14:9A:70:58:92:ED:E9:DB:63:37:D2:FB X509v3 Authority Key Identifier: keyid:B7:91:BD:1C:9E:20:81:AA:84:F8:07:80:66:C0:C7:F6:0A:63:79:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/B78B5CB6D65F11EA8B30486EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.8.0/23 IPv6: 2001:df4:6580::/48 Signature Algorithm: sha256WithRSAEncryption 34:a9:f2:c2:0c:1a:bc:15:4d:2f:06:78:f6:85:d5:ad:fd:62: ab:e2:65:0b:96:60:94:6b:eb:27:44:06:e9:bd:0d:ff:d8:4c: 14:d6:3f:f7:c7:d7:94:39:17:90:de:97:e3:6a:0f:8a:8f:18: f9:55:a3:9a:3d:8b:ce:a0:00:97:e7:54:9c:1b:6d:2e:88:f5: d8:65:f3:25:0a:66:2a:b0:4b:58:44:1f:cb:ee:c5:9a:5e:81: a5:52:a6:a8:99:f7:33:6a:b2:ad:d4:1e:e2:50:6e:78:c1:ed: 8e:55:59:ed:26:23:e3:ba:43:86:67:e2:d6:56:eb:8d:79:fb: 9d:7d:b1:9b:11:96:4b:d4:b9:1a:51:f3:b0:7c:86:c3:93:f3: b7:6a:8b:06:7a:44:cb:18:4d:f0:58:da:75:6f:34:23:95:2d: 39:57:22:5e:59:20:a4:7a:b2:db:1a:b7:8f:a1:c1:61:52:a9: 2e:e5:cc:ce:e3:2f:0c:78:65:d8:a1:b7:40:69:66:a7:82:e1: 2c:96:f5:ec:c4:12:6d:b0:98:14:8c:98:21:60:aa:83:41:5a: 73:95:a2:e0:42:3d:cc:90:e3:12:84:1e:2b:81:d3:73:7b:df: 59:9e:20:4b:f8:a1:d7:2d:34:7f:3d:37:f1:c9:65:4c:f8:e0: 75:4d:c8:47 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4RjIxMTAvBgNVBAUTKEI3OTFCRDFDOUUyMDgxQUE4NEY4MDc4MDY2QzBDN0Y2 MEE2Mzc5MEUwHhcNMjQwMTI2MjE1OTQzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI0MmI0Zi05Yjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnIyeZGlSdnjoA+gMjnbLoaXZKoZgRMfrzDTvorWY3m96AAz6rHHTGy0GgyGw +APCzzSHXr4974QtIneyPfl44YF4YgpHAWb2ug5PGBZ+sO87lmK91L8zcMO0k8c/ BPahICvmkVTF/AuyMqI22m+N+VGeqroRO4iIj9mcE58m7PIC/Wv3D4AqhZEOfNyK ohRJZAZ8mJlMNDXLmtWCRDdKu/g+TZfsMyeutAobQh8jxsOCQImawHGeBXBhbuIB ALnV1Xo3LMKnV5oHJRMSWuZsENsA+Tg2sFSvqjVTe/B00voStDJQi34RxzGIyFIQ 6m+7EyUE15UOuADyoRlfw1k1wQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJ0mNh7c 5J1oFJpwWJLt6dtjN9L7MB8GA1UdIwQYMBaAFLeRvRyeIIGqhPgHgGbAx/YKY3kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhGMi8wMjJENTcxQ0Q2 NUUxMUVBQjYwQ0EzNkJDNEY5QUUwMi90NUc5SEo0Z2dhcUUtQWVBWnNESDlncGpl UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q1RzlISjRnZ2FxRS1BZUFac0RIOWdwamVRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Y4RjIvMDIyRDU3MUNENjVFMTFFQUI2MENBMzZCQzRGOUFFMDIvQjc4QjVDQjZE NjVGMTFFQThCMzA0ODZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlQgwDwQCAAIwCQMHACABDfRlgDANBgkqhkiG9w0BAQsF AAOCAQEANKnywgwavBVNLwZ49oXVrf1iq+JlC5ZglGvrJ0QG6b0N/9hMFNY/98fX lDkXkN6X42oPio8Y+VWjmj2LzqAAl+dUnBttLoj12GXzJQpmKrBLWEQfy+7Fml6B pVKmqJn3M2qyrdQe4lBueMHtjlVZ7SYj47pDhmfi1lbrjXn7nX2xmxGWS9S5GlHz sHyGw5Pzt2qLBnpEyxhN8FjadW80I5UtOVciXlkgpHqy2xq3j6HBYVKpLuXMzuMv DHhl2KG3QGlmp4LhLJb17MQSbbCYFIyYIWCqg0Fac5Wi4EI9zJDjEoQeK4HTc3vf WZ4gS/ih1y00fz038cllTPjgdU3IRw== -----END CERTIFICATE-----Generated at Thu May 16 22:58:18 2024 by rpki-client on console-fra.rpki-client.org