$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/3091AB2A81F111EE9CCDE11AC4F9AE02.roa File: 3091AB2A81F111EE9CCDE11AC4F9AE02.roa (raw, json) Hash identifier: 8s9RZoWhuXaL/OgRzbyz5adndAQTYe/JD4RJBSvRHGk= Subject key identifier: 39:B2:90:15:78:ED:B6:98:7B:3C:40:73:47:BC:77:50:DB:A3:E0:B8 Certificate issuer: /CN=A91BDCF1/serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A Certificate serial: 029D Authority key identifier: C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/3091AB2A81F111EE9CCDE11AC4F9AE02.roa Signing time: Wed 07 Feb 2024 03:15:33 +0000 ROA not before: Wed 07 Feb 2024 03:15:33 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 54600 IP address blocks: 103.178.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 669 (0x29d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDCF1/serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A Validity Not Before: Feb 7 03:15:33 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65c2f5d4-2708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:59:a8:d7:e7:83:0e:b7:9e:68:d1:f9:d9:1b: fa:65:52:9b:54:73:c0:cd:05:5d:c3:a9:9b:c6:f5: 44:a0:89:ca:67:2c:f6:12:c5:42:7b:5b:c3:df:23: 5f:7d:a9:d6:4e:83:37:7f:63:76:39:36:2b:ff:5e: 3e:17:ad:69:ec:73:c7:a7:71:f7:92:f1:0d:d8:7a: 99:79:0b:cd:cf:de:bf:b3:56:14:86:7e:20:8d:45: 6f:8b:7f:4a:da:e2:05:1b:8b:cc:bd:f8:3a:92:1f: 52:c5:96:cb:6c:1e:f2:03:d4:1d:79:71:86:b0:80: 0a:1d:68:28:14:6d:11:e8:58:bb:5e:13:dc:1a:6b: df:06:6b:5c:06:13:77:94:01:c2:6a:e6:8b:15:3c: 13:26:e9:56:8f:02:02:74:87:36:a5:12:b3:4b:00: ae:1f:cf:3b:c5:96:b5:ff:d3:0b:58:51:74:29:52: a7:aa:79:21:e2:e8:3d:47:5c:b1:12:13:9a:58:2f: 2d:9b:15:41:c2:85:99:22:c9:54:99:85:f5:d0:72: 82:74:81:6c:55:0f:a6:14:b1:b5:cc:bb:af:93:30: 0f:cd:1d:a9:32:ee:e5:a9:1f:38:1f:df:39:64:ef: c8:ca:d4:c0:36:14:09:fb:b3:35:f5:d9:c6:f9:e6: ce:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B2:90:15:78:ED:B6:98:7B:3C:40:73:47:BC:77:50:DB:A3:E0:B8 X509v3 Authority Key Identifier: keyid:C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/3091AB2A81F111EE9CCDE11AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.57.0/24 Signature Algorithm: sha256WithRSAEncryption 34:dc:78:bf:84:63:df:eb:97:0a:ba:be:c4:44:49:cb:b8:a5: 69:55:f0:c0:4e:68:fd:cb:98:53:37:a3:d6:2d:41:00:08:73: 17:68:23:0b:9e:76:cf:0f:70:7b:f9:2b:99:a2:7a:5d:ee:09: ea:d1:d7:23:47:0f:f6:b1:5d:00:2b:a2:90:6d:ea:ee:ea:83: 4c:a7:38:5a:07:ab:12:cf:23:2e:c5:d1:de:6d:0b:f8:2b:f9: 99:c2:d8:a1:86:0c:f5:56:b0:e4:26:7d:e1:3a:88:18:f8:50: c1:fa:4a:42:f6:83:8f:56:c9:bf:b2:9c:ef:ff:02:f6:3d:23: a0:b1:e5:8a:dc:d0:d3:62:db:f4:62:71:f5:57:6a:c9:41:a6: e7:29:0c:ea:ab:76:40:20:80:fa:7f:b0:aa:51:00:64:18:a6: 71:bd:bd:34:f2:cb:39:28:fa:fb:cb:fa:50:65:44:c3:41:0e: 29:e8:a0:c0:5f:9a:96:8d:f4:75:ba:89:e5:0e:90:34:94:1b: f9:b5:b5:cd:bc:40:00:e2:6c:35:33:2c:c3:04:9a:30:d3:a6: 1e:ae:cd:ac:28:a3:a9:06:ff:10:d2:b6:d7:33:ae:c1:a6:90: 5f:b8:3c:79:64:93:b6:44:3e:42:db:9e:27:09:ab:56:8d:63: 60:72:c8:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDRjExMTAvBgNVBAUTKEM0NEYyQUNBQjJBNzc5OTk0MzE1QUE5M0IzMjNEQTlC NDc1QzdCOUEwHhcNMjQwMjA3MDMxNTMzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyZjVkNC0yNzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFmo1+eDDreeaNH52Rv6ZVKbVHPAzQVdw6mbxvVEoInKZyz2EsVCe1vD3yNf fanWToM3f2N2OTYr/14+F61p7HPHp3H3kvEN2HqZeQvNz96/s1YUhn4gjUVvi39K 2uIFG4vMvfg6kh9SxZbLbB7yA9QdeXGGsIAKHWgoFG0R6Fi7XhPcGmvfBmtcBhN3 lAHCauaLFTwTJulWjwICdIc2pRKzSwCuH887xZa1/9MLWFF0KVKnqnkh4ug9R1yx EhOaWC8tmxVBwoWZIslUmYX10HKCdIFsVQ+mFLG1zLuvkzAPzR2pMu7lqR84H985 ZO/IytTANhQJ+7M19dnG+ebOOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDmykBV4 7baYezxAc0e8d1Dbo+C4MB8GA1UdIwQYMBaAFMRPKsqyp3mZQxWqk7Mj2ptHXHua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRENGMS9FQjU5MTEyMkE4 M0MxMUVDQTNBNEYzMjVDNEY5QUUwMi94RThxeXJLbmVabERGYXFUc3lQYW0wZGNl NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hFOHF5cktuZVpsREZhcVRzeVBhbTBkY2U1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkRDRjEvRUI1OTExMjJBODNDMTFFQ0EzQTRGMzI1QzRGOUFFMDIvMzA5MUFCMkE4 MUYxMTFFRTlDQ0RFMTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnsjkwDQYJKoZIhvcNAQELBQADggEBADTceL+EY9/rlwq6 vsREScu4pWlV8MBOaP3LmFM3o9YtQQAIcxdoIwueds8PcHv5K5miel3uCerR1yNH D/axXQAropBt6u7qg0ynOFoHqxLPIy7F0d5tC/gr+ZnC2KGGDPVWsOQmfeE6iBj4 UMH6SkL2g49Wyb+ynO//AvY9I6Cx5Yrc0NNi2/RicfVXaslBpucpDOqrdkAggPp/ sKpRAGQYpnG9vTTyyzko+vvL+lBlRMNBDinooMBfmpaN9HW6ieUOkDSUG/m1tc28 QADibDUzLMMEmjDTph6uzawoo6kG/xDSttczrsGmkF+4PHlkk7ZEPkLbnicJq1aN Y2ByyAo= -----END CERTIFICATE-----Generated at Wed May 1 05:59:10 2024 by rpki-client on console-fra.rpki-client.org