$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/2ABC9DCAE70111EE8CBD5443C4F9AE02.roa File: 2ABC9DCAE70111EE8CBD5443C4F9AE02.roa (raw, json) Hash identifier: cCIvso01WQ3DuqA+TVS+HW7aQip9CyB/L+BtQt59yW0= Subject key identifier: E7:28:52:6E:FD:28:8B:08:93:5C:70:9D:3E:E6:AD:3F:EB:BF:6E:F5 Certificate issuer: /CN=A91A6943/serialNumber=0AB99F52C9AD9BE0B9C04470CFB1B6C2360FD0F5 Certificate serial: 08EE Authority key identifier: 0A:B9:9F:52:C9:AD:9B:E0:B9:C0:44:70:CF:B1:B6:C2:36:0F:D0:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrmfUsmtm-C5wERwz7G2wjYP0PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/2ABC9DCAE70111EE8CBD5443C4F9AE02.roa Signing time: Thu 28 Mar 2024 21:11:01 +0000 ROA not before: Thu 28 Mar 2024 21:11:01 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 136030 IP address blocks: 103.235.76.0/24 maxlen: 24 103.235.78.0/24 maxlen: 24 103.235.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/CrmfUsmtm-C5wERwz7G2wjYP0PU.crl rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/CrmfUsmtm-C5wERwz7G2wjYP0PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrmfUsmtm-C5wERwz7G2wjYP0PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2286 (0x8ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6943/serialNumber=0AB99F52C9AD9BE0B9C04470CFB1B6C2360FD0F5 Validity Not Before: Mar 28 21:11:01 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6605dce5-5dd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:ea:58:8a:88:17:62:7c:b1:cf:75:9f:da:23: a7:d4:64:88:e3:e0:61:62:0f:0e:d1:2f:b7:5d:d9: 28:2e:cd:d9:be:15:8f:39:01:b5:3f:b9:49:f5:95: 59:d7:2a:05:64:6a:b6:e7:ee:c2:75:ba:59:40:8f: 8a:c2:30:4e:eb:18:f2:d7:d4:39:84:54:5c:75:44: 21:e7:7e:fd:f9:0d:6f:f5:9b:d6:50:56:5d:60:30: bf:cf:80:a1:65:55:80:97:38:7e:bc:dd:6c:cd:4f: 6f:7a:c6:28:7c:42:f8:38:0e:4b:6c:60:44:7c:18: 13:ef:c2:1b:d2:87:8f:ad:d9:ab:de:23:08:7a:94: 73:ed:2e:b1:4d:c3:2a:df:ad:a9:42:67:16:f4:9b: 7b:f3:00:17:07:d3:67:e5:9f:35:79:7b:54:cb:fc: ae:70:36:06:8f:0c:cf:6c:86:8e:b0:c5:39:26:68: fb:e6:3c:c5:35:c5:63:9f:21:4b:44:d9:59:6e:f7: d1:22:7c:ba:5f:77:be:88:f8:7f:a8:d8:3f:8a:13: 22:9d:6c:e6:ab:f9:ee:cc:f7:22:2d:e2:92:9b:c5: fe:14:b1:e9:e3:2c:c4:b4:e7:5f:e3:dc:52:6f:17: 9a:8a:22:10:98:7e:6c:73:b5:27:ab:e8:7e:59:50: 95:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:28:52:6E:FD:28:8B:08:93:5C:70:9D:3E:E6:AD:3F:EB:BF:6E:F5 X509v3 Authority Key Identifier: keyid:0A:B9:9F:52:C9:AD:9B:E0:B9:C0:44:70:CF:B1:B6:C2:36:0F:D0:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/CrmfUsmtm-C5wERwz7G2wjYP0PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrmfUsmtm-C5wERwz7G2wjYP0PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/2ABC9DCAE70111EE8CBD5443C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.235.76.0/24 103.235.78.0/23 Signature Algorithm: sha256WithRSAEncryption 46:69:18:30:88:6b:e2:10:97:73:ed:79:91:92:fc:06:fe:49: d0:91:cd:3c:1e:6a:17:17:0a:f0:af:af:ee:1e:ea:fd:64:16: 2c:c7:62:e8:c8:89:e7:cf:c4:46:2d:26:ad:4d:86:7f:80:19: 2d:d4:9e:3c:87:f4:62:aa:1a:91:3d:1b:be:9a:14:6b:13:85: f8:5e:98:47:5f:51:dd:87:8c:86:27:d0:4e:19:79:e1:0d:a2: ab:dd:8d:c3:c7:dd:8a:c4:44:e9:8f:07:51:b7:fa:c2:f1:37: f7:5e:3e:24:2f:2d:a7:f8:31:3e:39:a6:98:28:2f:05:e4:b8: a3:09:99:4e:0c:dd:58:2f:4c:89:fb:5e:9e:fb:88:44:4f:39: ec:d5:56:15:49:76:a8:43:cd:f7:da:7c:59:16:24:63:14:a7: f6:0e:08:98:a0:db:c2:ae:dd:b2:bf:c2:a0:8a:21:b9:a7:8a: 6e:7f:18:a3:da:ca:15:87:a8:26:b6:d1:22:cb:2c:bb:0f:1e: aa:7a:b5:28:b6:d3:cf:5d:05:b0:0b:ae:10:51:51:fc:f4:bb: 7d:9d:b5:a7:d8:a9:27:5f:27:30:77:5f:4d:cf:84:bb:8b:b9: 46:31:75:68:c6:25:67:23:cd:3c:6c:51:8e:db:25:63:c3:8b: 88:6a:62:c1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY5NDMxMTAvBgNVBAUTKDBBQjk5RjUyQzlBRDlCRTBCOUMwNDQ3MENGQjFCNkMy MzYwRkQwRjUwHhcNMjQwMzI4MjExMTAxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1ZGNlNS01ZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9OpYiogXYnyxz3Wf2iOn1GSI4+BhYg8O0S+3XdkoLs3ZvhWPOQG1P7lJ9ZVZ 1yoFZGq25+7CdbpZQI+KwjBO6xjy19Q5hFRcdUQh5379+Q1v9ZvWUFZdYDC/z4Ch ZVWAlzh+vN1szU9vesYofEL4OA5LbGBEfBgT78Ib0oePrdmr3iMIepRz7S6xTcMq 362pQmcW9Jt78wAXB9Nn5Z81eXtUy/yucDYGjwzPbIaOsMU5Jmj75jzFNcVjnyFL RNlZbvfRIny6X3e+iPh/qNg/ihMinWzmq/nuzPciLeKSm8X+FLHp4yzEtOdf49xS bxeaiiIQmH5sc7Unq+h+WVCVcQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOcoUm79 KIsIk1xwnT7mrT/rv271MB8GA1UdIwQYMBaAFAq5n1LJrZvgucBEcM+xtsI2D9D1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjk0My9CNzE4MTE2ODhE NTExMUVBQjhCMjYzODRDNEY5QUUwMi9Dcm1mVXNtdG0tQzV3RVJ3ejdHMndqWVAw UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NybWZVc210bS1DNXdFUnd6N0cyd2pZUDBQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTY5NDMvQjcxODExNjg4RDUxMTFFQUI4QjI2Mzg0QzRGOUFFMDIvMkFCQzlEQ0FF NzAxMTFFRThDQkQ1NDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn60wDBAFn604wDQYJKoZIhvcNAQELBQADggEBAEZpGDCI a+IQl3PteZGS/Ab+SdCRzTweahcXCvCvr+4e6v1kFizHYujIiefPxEYtJq1Nhn+A GS3UnjyH9GKqGpE9G76aFGsThfhemEdfUd2HjIYn0E4ZeeENoqvdjcPH3YrEROmP B1G3+sLxN/dePiQvLaf4MT45ppgoLwXkuKMJmU4M3VgvTIn7Xp77iERPOezVVhVJ dqhDzffafFkWJGMUp/YOCJig28Ku3bK/wqCKIbmnim5/GKPayhWHqCa20SLLLLsP Hqp6tSi2089dBbALrhBRUfz0u32dtafYqSdfJzB3X03PhLuLuUYxdWjGJWcjzTxs UY7bJWPDi4hqYsE= -----END CERTIFICATE-----Generated at Sat May 18 22:27:57 2024 by rpki-client on console-ams.rpki-client.org