$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/D78A16ECCAC311EC910B8C20C4F9AE02.roa File: D78A16ECCAC311EC910B8C20C4F9AE02.roa (raw, json) Hash identifier: 1VpdFmVoHs8SfyjIVyPMTxTz+cTxtSOLtD8z1+sQe1w= Subject key identifier: 96:E2:59:B1:42:FE:D0:38:D3:E4:1A:48:16:36:16:BC:9A:E4:F4:A0 Certificate issuer: /CN=A91AA897/serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Certificate serial: 04EB Authority key identifier: D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/D78A16ECCAC311EC910B8C20C4F9AE02.roa Signing time: Sat 05 Aug 2023 00:00:51 +0000 ROA not before: Sat 05 Aug 2023 00:00:51 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 136950 IP address blocks: 103.97.228.0/23 maxlen: 23 103.97.228.0/24 maxlen: 24 103.97.229.0/24 maxlen: 24 2401:8f40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1259 (0x4eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA897/serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Validity Not Before: Aug 5 00:00:51 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cd9133-d729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0c:e9:ed:a0:f7:7f:ac:c1:5c:1c:d2:a1:a1: 69:57:ce:70:e5:af:cf:f7:3f:33:e7:09:77:af:d1: bc:74:eb:fa:77:54:09:9a:92:36:21:20:fc:08:53: 95:5f:1d:c2:90:ce:3e:bd:20:3a:fb:18:a7:66:55: 19:4d:10:b1:45:92:2c:69:8b:f5:1a:e5:63:c6:00: 18:40:85:04:7e:66:ea:7b:d5:15:6d:96:c5:a6:09: fe:96:bb:3e:c6:db:74:60:5c:f7:b8:99:ef:f9:60: 06:5f:c9:3f:8f:e0:57:d6:22:e9:80:b2:8b:e9:9e: 4d:0d:88:e8:e8:ac:a9:51:f1:5a:c9:15:1b:b7:23: d6:3f:44:8a:e4:4b:cb:94:e3:8f:e5:dd:ec:5b:05: 87:26:22:c4:f7:7b:c5:28:a0:1a:e0:8a:3a:dd:a3: cc:d7:28:40:8c:f9:0a:b5:a6:90:9b:03:f0:64:60: 00:23:d3:e9:39:e2:ab:06:14:ab:78:50:93:2e:67: 5a:e8:69:2d:53:8e:8c:a7:a2:56:03:e5:9f:9c:77: 0f:0d:d8:1b:a6:00:1d:a6:31:f8:53:e5:7b:fc:f4: ad:eb:84:7e:a3:86:b5:f8:7f:02:ba:d7:ce:9e:12: dd:de:44:a0:15:b5:bb:8c:23:e3:6b:45:fa:38:b1: 7f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:E2:59:B1:42:FE:D0:38:D3:E4:1A:48:16:36:16:BC:9A:E4:F4:A0 X509v3 Authority Key Identifier: keyid:D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/D78A16ECCAC311EC910B8C20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.228.0/23 IPv6: 2401:8f40:1::/48 Signature Algorithm: sha256WithRSAEncryption b1:6d:08:a3:5d:85:f9:c4:61:8b:61:55:e8:c2:de:fb:68:ba: ab:e9:b0:cd:37:7a:37:f7:c9:d1:5d:ed:23:3a:bf:69:47:49: 21:be:91:3b:08:d6:37:23:31:ae:6f:6d:5f:93:48:07:c0:40: 5d:c4:f9:c5:65:e5:67:e1:84:6d:ca:5b:d0:02:ce:da:47:f5: a2:e1:f5:41:47:fb:75:55:f4:b0:fa:8d:5f:ff:44:99:d1:65: 99:99:1d:28:d5:48:a5:29:12:0a:bb:6d:be:15:82:70:0a:12: 19:c5:29:c3:35:26:df:87:a5:13:f4:73:0e:14:ff:9c:5c:e5: 3f:d2:4a:9a:7d:fb:df:11:71:59:1f:13:04:33:0a:a6:bb:54: 7c:25:0e:d1:54:fc:82:eb:3f:a0:22:44:f9:7b:42:4f:9e:3b: 21:30:6d:c1:64:71:cd:3a:51:a2:74:07:0f:82:eb:29:80:ea: f4:ab:39:04:d7:48:7c:26:9f:7b:f4:28:37:c3:e4:6e:01:49: a8:50:59:5f:51:0f:5a:5d:b2:7a:f6:5e:3b:5f:9f:17:e9:7e: 0f:a1:c0:e0:4d:67:06:7b:33:cb:3a:5a:e3:1f:d5:9a:82:dd: 62:be:71:64:63:36:bc:f9:2f:8d:e7:c2:a1:53:b8:3d:71:5f: ad:a8:2e:5e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE4OTcxMTAvBgNVBAUTKEQ2OEQ0MTFBRDAzRTczMTRGMTQ5MkQwNjJEQjBEOTE5 NEU5RjUwOTUwHhcNMjMwODA1MDAwMDUxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkOTEzMy1kNzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgzp7aD3f6zBXBzSoaFpV85w5a/P9z8z5wl3r9G8dOv6d1QJmpI2ISD8CFOV Xx3CkM4+vSA6+xinZlUZTRCxRZIsaYv1GuVjxgAYQIUEfmbqe9UVbZbFpgn+lrs+ xtt0YFz3uJnv+WAGX8k/j+BX1iLpgLKL6Z5NDYjo6KypUfFayRUbtyPWP0SK5EvL lOOP5d3sWwWHJiLE93vFKKAa4Io63aPM1yhAjPkKtaaQmwPwZGAAI9PpOeKrBhSr eFCTLmda6GktU46Mp6JWA+WfnHcPDdgbpgAdpjH4U+V7/PSt64R+o4a1+H8CutfO nhLd3kSgFbW7jCPja0X6OLF/7wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJbiWbFC /tA40+QaSBY2Frya5PSgMB8GA1UdIwQYMBaAFNaNQRrQPnMU8UktBi2w2RlOn1CV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTg5Ny9FMUQxMTc3MDk1 QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4VHhTUzBHTGJEWkdVNmZV SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFvMUJHdEEtY3hUeFNTMEdMYkRaR1U2ZlVKVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUE4OTcvRTFEMTE3NzA5NUJBMTFFQkIyODEyMzcxQzRGOUFFMDIvRDc4QTE2RUND QUMzMTFFQzkxMEI4QzIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnYeQwDwQCAAIwCQMHACQBj0AAATANBgkqhkiG9w0BAQsF AAOCAQEAsW0Io12F+cRhi2FV6MLe+2i6q+mwzTd6N/fJ0V3tIzq/aUdJIb6ROwjW NyMxrm9tX5NIB8BAXcT5xWXlZ+GEbcpb0ALO2kf1ouH1QUf7dVX0sPqNX/9EmdFl mZkdKNVIpSkSCrttvhWCcAoSGcUpwzUm34elE/RzDhT/nFzlP9JKmn373xFxWR8T BDMKprtUfCUO0VT8gus/oCJE+XtCT547ITBtwWRxzTpRonQHD4LrKYDq9Ks5BNdI fCafe/QoN8PkbgFJqFBZX1EPWl2yevZeO1+fF+l+D6HA4E1nBnszyzpa4x/VmoLd Yr5xZGM2vPkvjefCoVO4PXFfraguXg== -----END CERTIFICATE-----Generated at Sun May 5 01:22:23 2024 by rpki-client on console-fra.rpki-client.org