$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/D79607EEDCDD11EE85DBEB12C4F9AE02.roa File: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (raw, json) Hash identifier: 5S03I75+hNJBuUJ5fNzxs9YO5CLy34Di8bLlb2dNGpY= Subject key identifier: DB:1F:AE:F8:3D:43:DF:38:1F:1F:B7:C6:B8:E9:82:14:1C:C6:2B:77 Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 3472 Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/D79607EEDCDD11EE85DBEB12C4F9AE02.roa Signing time: Sat 04 May 2024 15:20:57 +0000 ROA not before: Sat 04 May 2024 15:20:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132509 IP address blocks: 103.244.180.0/24 maxlen: 24 103.244.181.0/24 maxlen: 24 103.244.182.0/24 maxlen: 24 103.244.183.0/24 maxlen: 24 2405:f900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13426 (0x3472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: May 4 15:20:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66365259-27e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:63:5f:7d:c6:53:0b:a2:98:1f:dc:51:e7:c6: 2f:57:41:95:08:8f:32:83:55:8e:0d:16:53:6b:3a: ff:a0:d3:15:a0:cb:9e:1b:d6:f7:e7:8d:36:fa:9b: 95:3d:72:06:c1:45:2d:d2:3b:f5:9a:e8:42:0a:73: c0:67:07:04:22:82:1b:d8:52:4b:ab:b9:f1:9b:3f: 2c:ec:2b:61:07:0b:85:c5:ef:ef:a0:7d:10:f0:fc: c7:45:67:2b:90:e1:85:e0:cb:f9:40:64:78:d0:90: 26:7b:b4:f2:5b:04:0e:04:6b:8c:92:c2:8b:2f:82: ae:dc:39:19:64:1a:5e:a7:28:2e:d4:fa:16:0f:f6: 23:4b:62:4b:47:a9:df:21:2e:c3:bb:d6:34:b4:5c: f2:1e:77:6a:19:48:55:b7:cf:94:1d:f6:0a:fc:18: 44:f3:11:ff:6f:e4:f7:15:77:82:3e:e5:1e:2c:e4: 01:50:1c:e1:0d:92:58:bf:ce:96:e0:7b:3c:02:86: 5b:12:77:d5:aa:d6:43:f6:ab:e2:55:49:02:66:7b: 3b:21:a9:45:66:7c:4e:63:ce:52:55:f9:41:90:c0: e0:29:ab:63:b4:b1:27:46:f0:f6:c3:a0:ad:9a:ad: 4d:90:1e:84:bb:62:16:d0:92:a0:6b:f4:2c:49:80: 6c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:1F:AE:F8:3D:43:DF:38:1F:1F:B7:C6:B8:E9:82:14:1C:C6:2B:77 X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/D79607EEDCDD11EE85DBEB12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.244.180.0/22 IPv6: 2405:f900::/32 Signature Algorithm: sha256WithRSAEncryption 22:df:f1:e1:f9:15:6d:81:fc:df:83:0e:a5:50:c9:8b:98:9d: c9:00:4b:81:c7:1b:c9:c8:60:02:d4:7d:5e:3b:36:47:f7:be: 41:40:a0:dd:1f:15:b0:2d:64:52:59:ec:bc:f8:e7:b3:95:4b: de:df:91:dc:51:da:5d:7c:17:d4:e9:0a:a6:d0:37:42:3c:7a: 91:18:79:fa:ff:2a:9e:19:7f:51:fb:b3:f3:46:d0:4a:29:13: cf:6f:73:73:b8:36:95:9d:8e:48:05:0d:d1:41:2a:bf:b9:5b: 84:f4:16:27:ff:32:69:98:a3:68:a8:5b:6f:ec:ae:6f:52:d5: 73:89:5c:c2:50:13:22:2f:3d:a4:cb:9c:10:ce:b1:ce:4c:bb: fa:cf:19:6a:94:e6:a9:1f:5d:ff:fb:79:6a:eb:43:cc:1a:93: 11:d5:96:54:61:77:00:cc:36:0b:08:8d:f9:27:ae:81:eb:dd: ce:c7:82:a2:71:59:46:fb:40:1c:c0:c9:1d:27:57:7f:a2:fb: 80:c3:d2:ce:be:63:de:25:bf:fd:7b:e9:ff:87:6a:68:d7:11: ba:dd:3a:c2:a3:37:e8:7b:d5:7d:9b:17:c3:25:1a:d1:49:e0: e6:34:1b:47:ab:54:a7:8f:4f:eb:19:eb:f5:8c:93:de:61:d1: a0:39:bb:67 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICNHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjQwNTA0MTUyMDU3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM2NTI1OS0yN2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmNffcZTC6KYH9xR58YvV0GVCI8yg1WODRZTazr/oNMVoMueG9b35402+puV PXIGwUUt0jv1muhCCnPAZwcEIoIb2FJLq7nxmz8s7CthBwuFxe/voH0Q8PzHRWcr kOGF4Mv5QGR40JAme7TyWwQOBGuMksKLL4Ku3DkZZBpepygu1PoWD/YjS2JLR6nf IS7Du9Y0tFzyHndqGUhVt8+UHfYK/BhE8xH/b+T3FXeCPuUeLOQBUBzhDZJYv86W 4Hs8AoZbEnfVqtZD9qviVUkCZns7IalFZnxOY85SVflBkMDgKatjtLEnRvD2w6Ct mq1NkB6Eu2IW0JKga/QsSYBsGQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNsfrvg9 Q984Hx+3xrjpghQcxit3MB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5NzgvMzIyM0YzNUUxRDk4MTFFMjhBOEMyRTgyMDhCMDJDRDIvRDc5NjA3RUVE Q0REMTFFRTg1REJFQjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn9LQwDQQCAAIwBwMFACQF+QAwDQYJKoZIhvcNAQELBQAD ggEBACLf8eH5FW2B/N+DDqVQyYuYnckAS4HHG8nIYALUfV47Nkf3vkFAoN0fFbAt ZFJZ7Lz457OVS97fkdxR2l18F9TpCqbQN0I8epEYefr/Kp4Zf1H7s/NG0EopE89v c3O4NpWdjkgFDdFBKr+5W4T0Fif/MmmYo2ioW2/srm9S1XOJXMJQEyIvPaTLnBDO sc5Mu/rPGWqU5qkfXf/7eWrrQ8wakxHVllRhdwDMNgsIjfknroHr3c7HgqJxWUb7 QBzAyR0nV3+i+4DD0s6+Y94lv/176f+HamjXEbrdOsKjN+h71X2bF8MlGtFJ4OY0 G0erVKePT+sZ6/WMk95h0aA5u2c= -----END CERTIFICATE-----Generated at Thu May 16 16:14:59 2024 by rpki-client on console-fra.rpki-client.org