$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/78BE822078F911EEBCAFB814C4F9AE02.roa File: 78BE822078F911EEBCAFB814C4F9AE02.roa (raw, json) Hash identifier: ZUUO7Ruo7QW+0c5Gso1Zm33YZ7ZtE+TGaUKBO9CsHnc= Subject key identifier: 8F:21:EC:67:F0:D5:1D:50:52:81:82:FA:E6:F2:4A:0D:53:A3:C9:EC Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 0401 Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/78BE822078F911EEBCAFB814C4F9AE02.roa Signing time: Wed 14 Feb 2024 07:18:04 +0000 ROA not before: Wed 14 Feb 2024 07:18:04 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 38001 IP address blocks: 103.6.168.0/24 maxlen: 24 103.6.169.0/24 maxlen: 24 103.102.46.0/24 maxlen: 24 103.125.217.0/24 maxlen: 24 2401:df40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1025 (0x401) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Validity Not Before: Feb 14 07:18:04 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65cc692c-0837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:72:5c:5c:ac:0d:8e:da:43:ca:06:dc:62:54: 31:e6:0b:ed:ad:b5:8f:36:aa:89:fb:5d:65:e6:65: cb:d5:a7:dc:91:08:6b:7e:6e:f6:58:ed:53:23:14: da:14:ab:09:a1:de:04:01:e6:f4:95:33:cf:d1:97: 6b:85:8c:e7:ce:99:6b:90:91:70:23:38:4e:12:4c: 53:4a:f2:c0:f9:68:6a:a5:f3:81:7c:13:8c:14:cf: 2d:4b:f9:4c:6d:68:68:aa:20:6d:9d:2a:39:b4:6b: 2e:13:00:5a:fc:e2:d7:98:2f:bd:ba:20:1c:34:07: ab:af:7f:ee:63:db:b3:67:37:39:81:70:2d:a1:fe: f5:db:35:f9:66:f1:9c:0a:2b:42:49:19:e7:81:25: 87:f1:4b:ab:8f:b9:23:a9:fe:e6:8f:a1:66:45:77: aa:13:09:fa:e4:b3:f1:19:08:30:0f:61:40:d2:49: 5e:14:4e:ea:dd:51:2f:d3:7f:08:d9:5b:d6:68:66: cc:02:7d:e9:0f:81:6c:41:43:b2:78:be:3a:72:b1: 56:c6:00:b4:6f:b2:d9:07:a7:86:89:93:ef:68:af: 58:18:73:94:b6:29:55:71:33:31:e0:6f:b4:9c:50: aa:35:4f:e7:0a:bd:db:dd:05:8a:dc:be:5e:aa:0d: ac:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:21:EC:67:F0:D5:1D:50:52:81:82:FA:E6:F2:4A:0D:53:A3:C9:EC X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/78BE822078F911EEBCAFB814C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.168.0/23 103.102.46.0/24 103.125.217.0/24 IPv6: 2401:df40:2::/48 Signature Algorithm: sha256WithRSAEncryption 1a:a5:85:10:10:ea:56:b0:75:ed:5c:6d:30:da:f7:e1:f7:80: 4e:0f:b7:56:76:4a:00:b0:2a:c3:8f:ff:85:eb:ce:1b:b5:71: 3c:be:a1:40:44:2c:70:ee:dd:ce:d3:cf:3f:55:5b:a5:fc:3c: 2b:2e:27:2b:f9:3f:a2:68:63:35:f3:92:e4:4f:8b:4d:d0:8c: 15:44:90:15:d3:61:9d:18:d7:ef:04:80:5d:b8:ea:b1:88:b1: ee:c4:f3:ca:83:d3:70:d4:9d:13:a1:17:11:de:9c:6a:af:62: 7a:75:35:a5:b4:d4:d4:19:96:40:78:29:d5:e1:f0:d3:13:d4: 71:df:6e:a4:7e:51:91:1d:bc:eb:ee:5d:f8:13:8d:14:45:2e: b4:cb:44:41:3d:e2:cc:30:f0:2a:c5:00:0a:58:29:a2:03:d0: 24:e8:34:d7:9d:18:55:df:ce:44:08:66:e1:91:32:45:1d:cf: 1c:7d:b2:2c:a7:eb:a8:79:19:b3:6e:5e:b6:8c:96:9c:24:02: e2:4f:c7:d3:00:7a:17:92:da:71:3d:bf:85:d4:d6:98:31:9f: 92:6f:52:5c:45:b1:d0:99:bb:d8:ee:90:66:2c:47:34:b7:a5: 06:aa:f6:d7:67:a2:47:61:37:16:07:71:11:78:4f:f9:f0:2c: 7f:b0:45:d1 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICBAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjQwMjE0MDcxODA0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNjNjkyYy0wODM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXJcXKwNjtpDygbcYlQx5gvtrbWPNqqJ+11l5mXL1afckQhrfm72WO1TIxTa FKsJod4EAeb0lTPP0ZdrhYznzplrkJFwIzhOEkxTSvLA+WhqpfOBfBOMFM8tS/lM bWhoqiBtnSo5tGsuEwBa/OLXmC+9uiAcNAerr3/uY9uzZzc5gXAtof712zX5ZvGc CitCSRnngSWH8Uurj7kjqf7mj6FmRXeqEwn65LPxGQgwD2FA0kleFE7q3VEv038I 2VvWaGbMAn3pD4FsQUOyeL46crFWxgC0b7LZB6eGiZPvaK9YGHOUtilVcTMx4G+0 nFCqNU/nCr3b3QWK3L5eqg2sXwIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFI8h7Gfw 1R1QUoGC+ubySg1To8nsMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU0QjcvRUIzMTJGMDIxRUFBMTFFQ0I3NTZCRjMwQzRGOUFFMDIvNzhCRTgyMjA3 OEY5MTFFRUJDQUZCODE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAFnBqgDBABnZi4DBABnfdkwDwQCAAIwCQMHACQB30AAAjAN BgkqhkiG9w0BAQsFAAOCAQEAGqWFEBDqVrB17VxtMNr34feATg+3VnZKALAqw4// hevOG7VxPL6hQEQscO7dztPPP1Vbpfw8Ky4nK/k/omhjNfOS5E+LTdCMFUSQFdNh nRjX7wSAXbjqsYix7sTzyoPTcNSdE6EXEd6caq9ienU1pbTU1BmWQHgp1eHw0xPU cd9upH5RkR286+5d+BONFEUutMtEQT3izDDwKsUAClgpogPQJOg0150YVd/ORAhm 4ZEyRR3PHH2yLKfrqHkZs25etoyWnCQC4k/H0wB6F5LacT2/hdTWmDGfkm9SXEWx 0Jm72O6QZixHNLelBqr212eiR2E3FgdxEXhP+fAsf7BF0Q== -----END CERTIFICATE-----Generated at Sat May 11 03:57:09 2024 by rpki-client on console-fra.rpki-client.org