$ rpki-client -vvf rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/A60B75F62B7B11EEA4D0FA24C4F9AE02.roa File: A60B75F62B7B11EEA4D0FA24C4F9AE02.roa (raw, json) Hash identifier: uRadmjJVMxXwHVckAvvFZMfxFmfKoEQIvqTnZHW8nEs= Subject key identifier: 69:E2:8D:70:5A:73:36:5C:3D:AA:E3:50:E4:C9:B9:2D:01:16:47:F5 Certificate issuer: /CN=A91B778A/serialNumber=12ABBE9D4E5998585981349A5FA9B75FDABC5876 Certificate serial: 02 Authority key identifier: 12:AB:BE:9D:4E:59:98:58:59:81:34:9A:5F:A9:B7:5F:DA:BC:58:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/A60B75F62B7B11EEA4D0FA24C4F9AE02.roa Signing time: Wed 26 Jul 2023 06:14:16 +0000 ROA not before: Wed 26 Jul 2023 06:14:16 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 137844 IP address blocks: 103.115.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.crl rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B778A/serialNumber=12ABBE9D4E5998585981349A5FA9B75FDABC5876 Validity Not Before: Jul 26 06:14:16 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64c0b9b8-4913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e9:09:04:54:93:17:1a:72:a2:37:59:e9:a4: d4:23:cb:15:42:30:02:ef:97:03:8e:22:95:b7:64: 4c:c4:35:81:fe:08:35:5d:e9:f0:7d:e7:53:b4:05: 30:6b:8b:d2:38:e2:63:54:30:04:d4:f8:8a:45:22: 47:fc:a1:02:51:8b:2c:fc:61:15:a8:de:e5:18:ce: cf:ff:91:92:32:66:de:0c:a9:56:e5:2b:07:6b:64: 4a:c3:b6:05:11:28:de:07:ee:fe:b5:4f:96:5d:47: 68:cd:91:28:fb:4b:37:01:f4:e1:3a:23:19:f4:71: 76:41:8b:ba:e4:cc:68:08:aa:b8:d6:c0:16:b5:c3: bc:32:08:99:7e:d7:86:43:7b:9f:de:af:5f:70:1f: 8a:9a:22:6f:75:1f:ee:cb:5a:a5:bb:01:4a:39:8b: 28:1e:8d:48:4d:73:cb:54:5c:39:40:08:66:26:c9: 5e:83:0a:4c:ec:c0:b5:10:53:1a:9f:3d:4a:3f:b7: 61:36:69:3f:3f:8a:f0:74:df:51:16:53:d6:b5:3e: 56:45:77:21:8c:67:48:6a:8f:4d:0c:a3:ab:a2:bc: 8e:80:e1:2d:99:9c:11:18:c7:28:c2:ce:8c:84:fc: 28:8a:09:4e:69:76:da:dd:23:02:5c:49:4d:f0:79: d6:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E2:8D:70:5A:73:36:5C:3D:AA:E3:50:E4:C9:B9:2D:01:16:47:F5 X509v3 Authority Key Identifier: keyid:12:AB:BE:9D:4E:59:98:58:59:81:34:9A:5F:A9:B7:5F:DA:BC:58:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Equ-nU5ZmFhZgTSaX6m3X9q8WHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B778A/902AAE982B6F11EEA4BA8F7CC4F9AE02/A60B75F62B7B11EEA4D0FA24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.165.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:64:a4:7d:0c:05:be:51:db:3f:c1:bc:3d:f3:ee:12:7a:9c: a8:ad:8f:32:03:24:17:c6:8f:64:5f:1f:93:ce:f8:60:38:75: da:9c:57:b4:f1:67:0c:13:9a:4f:7c:85:08:53:41:b0:8e:59: 90:46:33:8c:b0:ed:7f:32:98:ed:63:ac:6c:22:e2:01:e0:c0: d0:49:59:d9:3b:3d:84:0a:e8:45:4e:bf:f9:38:5c:cf:d9:b1: fd:b1:be:c3:e8:bd:f2:43:03:9b:d0:f4:31:f7:05:59:ef:ce: 79:4e:42:3f:e9:7e:41:60:f7:f3:a7:24:e4:10:55:05:c2:7b: 0b:10:69:bf:ba:cd:37:c0:89:7e:da:8d:6e:46:69:e0:e8:9c: 91:0a:db:bc:26:4f:26:99:38:55:35:da:a1:b1:ec:b0:94:51: f5:2a:67:31:43:ef:2c:fe:f8:a8:aa:37:18:87:e4:73:4a:93: 8b:b1:51:2f:e7:b3:da:31:b8:b7:df:d0:04:45:4d:7d:fe:41: a2:55:c2:74:d3:2f:00:aa:37:a7:39:db:04:34:7f:12:86:28: a5:87:96:f1:6f:9b:53:0d:2a:76:01:43:3b:76:90:0c:6a:bd: 87:91:94:b0:94:97:40:f4:23:55:c2:a5:0e:eb:ed:be:14:66: 1b:a6:10:e3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Nzc4QTExMC8GA1UEBRMoMTJBQkJFOUQ0RTU5OTg1ODU5ODEzNDlBNUZBOUI3NUZE QUJDNTg3NjAeFw0yMzA3MjYwNjE0MTZaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YzBiOWI4LTQ5MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv6QkEVJMXGnKiN1nppNQjyxVCMALvlwOOIpW3ZEzENYH+CDVd6fB951O0BTBr i9I44mNUMATU+IpFIkf8oQJRiyz8YRWo3uUYzs//kZIyZt4MqVblKwdrZErDtgUR KN4H7v61T5ZdR2jNkSj7SzcB9OE6Ixn0cXZBi7rkzGgIqrjWwBa1w7wyCJl+14ZD e5/er19wH4qaIm91H+7LWqW7AUo5iygejUhNc8tUXDlACGYmyV6DCkzswLUQUxqf PUo/t2E2aT8/ivB031EWU9a1PlZFdyGMZ0hqj00Mo6uivI6A4S2ZnBEYxyjCzoyE /CiKCU5pdtrdIwJcSU3wedbRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUaeKNcFpz Nlw9quNQ5Mm5LQEWR/UwHwYDVR0jBBgwFoAUEqu+nU5ZmFhZgTSaX6m3X9q8WHYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3NzhBLzkwMkFBRTk4MkI2 RjExRUVBNEJBOEY3Q0M0RjlBRTAyL0VxdS1uVTVabUZoWmdUU2FYNm0zWDlxOFdI WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRXF1LW5VNVptRmhaZ1RTYVg2bTNYOXE4V0hZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzc4QS85MDJBQUU5ODJCNkYxMUVFQTRCQThGN0NDNEY5QUUwMi9BNjBCNzVGNjJC N0IxMUVFQTREMEZBMjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGdzpTANBgkqhkiG9w0BAQsFAAOCAQEAP2SkfQwFvlHbP8G8 PfPuEnqcqK2PMgMkF8aPZF8fk874YDh12pxXtPFnDBOaT3yFCFNBsI5ZkEYzjLDt fzKY7WOsbCLiAeDA0ElZ2Ts9hAroRU6/+Thcz9mx/bG+w+i98kMDm9D0MfcFWe/O eU5CP+l+QWD386ck5BBVBcJ7CxBpv7rNN8CJftqNbkZp4OickQrbvCZPJpk4VTXa obHssJRR9SpnMUPvLP74qKo3GIfkc0qTi7FRL+ez2jG4t9/QBEVNff5BolXCdNMv AKo3pznbBDR/EoYopYeW8W+bUw0qdgFDO3aQDGq9h5GUsJSXQPQjVcKlDuvtvhRm G6YQ4w== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:37 2024 by rpki-client on console-fra.rpki-client.org