$ rpki-client -vvf rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/76C782CC836811E9B8830935C4F9AE02.roa File: 76C782CC836811E9B8830935C4F9AE02.roa (raw, json) Hash identifier: A8AIxAg5gwWSMZiH0q8hrQIiNj9S46FbMDHCyBhebm8= Subject key identifier: BF:78:42:70:E0:22:38:77:C7:D2:AC:7A:19:11:FB:91:2E:BF:14:47 Certificate issuer: /CN=A91D58EC/serialNumber=731E27E12FB3DB0B6CCC0B20F186809BA08D0915 Certificate serial: 0E34 Authority key identifier: 73:1E:27:E1:2F:B3:DB:0B:6C:CC:0B:20:F1:86:80:9B:A0:8D:09:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx4n4S-z2wtszAsg8YaAm6CNCRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/76C782CC836811E9B8830935C4F9AE02.roa Signing time: Tue 04 Jun 2024 19:12:17 +0000 ROA not before: Tue 04 Jun 2024 19:12:17 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 64073 IP address blocks: 103.139.184.0/23 maxlen: 24 103.250.88.0/22 maxlen: 24 163.47.128.0/22 maxlen: 24 202.179.140.0/22 maxlen: 24 2407:8b00::/32 maxlen: 32 2407:8b00::/36 maxlen: 36 2407:8b00:1::/48 maxlen: 48 2407:8b00:1000::/36 maxlen: 36 2407:8b00:1160::/43 maxlen: 43 2407:8b00:1162::/48 maxlen: 48 2407:8b00:2000::/36 maxlen: 36 2407:8b00:3000::/36 maxlen: 36 2407:8b00:9000::/36 maxlen: 36 2407:8b00:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/cx4n4S-z2wtszAsg8YaAm6CNCRU.crl rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/cx4n4S-z2wtszAsg8YaAm6CNCRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx4n4S-z2wtszAsg8YaAm6CNCRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 18:40:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3636 (0xe34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D58EC/serialNumber=731E27E12FB3DB0B6CCC0B20F186809BA08D0915 Validity Not Before: Jun 4 19:12:17 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665f6711-989c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:73:3c:08:35:c1:a1:3e:11:57:9b:41:2b:34: 87:01:b8:34:8f:8a:3d:f2:17:6d:48:57:9e:08:80: e1:ee:fe:41:98:02:69:51:51:ef:8d:8a:fe:04:19: 9a:92:2b:47:a8:c4:f0:2c:4d:71:17:db:02:d4:b4: c2:65:bb:bc:df:22:04:17:6e:d9:3e:88:5d:74:4b: fd:f8:a5:00:e6:f6:b9:0d:f1:9a:19:b0:a0:37:d8: 6c:9c:d1:8b:59:e8:6b:9d:2a:ea:49:70:8f:49:ee: 4f:95:de:f9:ce:da:45:57:4f:e1:4b:33:85:7d:0b: b7:f3:c3:1f:b8:49:60:c1:16:10:19:2a:9e:97:97: c9:54:b6:06:05:bc:e5:1c:a2:ed:36:ec:15:5c:68: 06:20:61:6a:4d:27:63:aa:c7:e1:73:44:57:1b:0d: ae:5f:bc:a2:34:2a:ca:c2:eb:1e:17:b7:3b:b8:83: 06:a0:28:9d:d3:63:c3:a8:a4:f5:54:f1:89:83:49: 88:6e:c1:40:58:d2:ac:13:e7:6e:74:e7:55:fb:9c: 7c:dc:c0:43:d6:c6:96:07:25:e9:89:cd:42:55:3d: 49:dd:3f:5f:f4:e1:59:a9:a6:3a:d3:fd:dc:7c:91: 86:5d:82:1c:50:5b:61:7e:ba:f4:d9:64:38:03:1b: 81:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:78:42:70:E0:22:38:77:C7:D2:AC:7A:19:11:FB:91:2E:BF:14:47 X509v3 Authority Key Identifier: keyid:73:1E:27:E1:2F:B3:DB:0B:6C:CC:0B:20:F1:86:80:9B:A0:8D:09:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/cx4n4S-z2wtszAsg8YaAm6CNCRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx4n4S-z2wtszAsg8YaAm6CNCRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/76C782CC836811E9B8830935C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.184.0/23 103.250.88.0/22 163.47.128.0/22 202.179.140.0/22 IPv6: 2407:8b00::/32 Signature Algorithm: sha256WithRSAEncryption 7d:a3:6a:c2:11:20:51:ff:50:fe:f4:4b:b0:69:f7:2a:e3:b9: be:62:42:d8:5c:32:09:8e:3d:ef:08:e4:a6:ac:54:55:29:45: 93:c3:0a:bf:86:0d:a1:75:d7:f5:69:6b:d6:a7:b5:c3:61:2c: 1f:f2:81:96:5d:75:73:a2:0c:e1:f7:e1:6e:de:e1:42:cd:a9: 3d:22:c0:b6:83:49:a4:5d:f4:38:c9:c1:6d:50:49:88:74:dc: 50:63:61:4f:3e:87:81:c4:48:8f:97:9b:60:ef:27:34:a5:6e: 66:eb:8d:1d:eb:e6:6f:32:89:7d:a3:23:95:18:0c:b7:7e:79: 0d:29:b0:14:f5:de:2f:55:a7:76:ae:e6:75:54:d9:0a:33:91: db:22:84:ca:9c:7e:06:5e:a7:60:c6:19:56:41:03:02:d8:d2: 6c:8b:99:89:f3:e5:27:27:ef:22:4b:99:5c:f6:a4:9a:00:e6: 68:91:df:de:13:59:bb:7f:f9:8e:a3:c7:e9:ce:a6:9e:de:a2: ba:4b:16:e6:c0:d1:b7:b0:a7:42:bd:62:9e:ae:05:a8:35:2a: 76:a8:e2:5b:d3:5d:39:8f:1f:e1:ea:d2:58:05:0d:8a:9c:8b: 92:06:3f:cc:06:91:35:3e:8f:c7:4d:e9:2b:4a:8d:78:6f:eb: 56:47:de:f0 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICDjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU4RUMxMTAvBgNVBAUTKDczMUUyN0UxMkZCM0RCMEI2Q0NDMEIyMEYxODY4MDlC QTA4RDA5MTUwHhcNMjQwNjA0MTkxMjE3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVmNjcxMS05ODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXM8CDXBoT4RV5tBKzSHAbg0j4o98hdtSFeeCIDh7v5BmAJpUVHvjYr+BBma kitHqMTwLE1xF9sC1LTCZbu83yIEF27ZPohddEv9+KUA5va5DfGaGbCgN9hsnNGL WehrnSrqSXCPSe5Pld75ztpFV0/hSzOFfQu388MfuElgwRYQGSqel5fJVLYGBbzl HKLtNuwVXGgGIGFqTSdjqsfhc0RXGw2uX7yiNCrKwuseF7c7uIMGoCid02PDqKT1 VPGJg0mIbsFAWNKsE+dudOdV+5x83MBD1saWByXpic1CVT1J3T9f9OFZqaY60/3c fJGGXYIcUFthfrr02WQ4AxuBwwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFL94QnDg Ijh3x9KsehkR+5EuvxRHMB8GA1UdIwQYMBaAFHMeJ+Evs9sLbMwLIPGGgJugjQkV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENThFQy9BRjUwQTBFODgz NjcxMUU5ODQ0Mzc3MzRDNEY5QUUwMi9jeDRuNFMtejJ3dHN6QXNnOFlhQW02Q05D UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4NG40Uy16Mnd0c3pBc2c4WWFBbTZDTkNSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDU4RUMvQUY1MEEwRTg4MzY3MTFFOTg0NDM3NzM0QzRGOUFFMDIvNzZDNzgyQ0M4 MzY4MTFFOUI4ODMwOTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAFni7gDBAJn+lgDBAKjL4ADBALKs4wwDQQCAAIwBwMFACQH iwAwDQYJKoZIhvcNAQELBQADggEBAH2jasIRIFH/UP70S7Bp9yrjub5iQthcMgmO Pe8I5KasVFUpRZPDCr+GDaF11/Vpa9antcNhLB/ygZZddXOiDOH34W7e4ULNqT0i wLaDSaRd9DjJwW1QSYh03FBjYU8+h4HESI+Xm2DvJzSlbmbrjR3r5m8yiX2jI5UY DLd+eQ0psBT13i9Vp3au5nVU2QozkdsihMqcfgZep2DGGVZBAwLY0myLmYnz5Scn 7yJLmVz2pJoA5miR394TWbt/+Y6jx+nOpp7eorpLFubA0bewp0K9Yp6uBag1Knao 4lvTXTmPH+Hq0lgFDYqci5IGP8wGkTU+j8dN6StKjXhv61ZH3vA= -----END CERTIFICATE-----Generated at Wed Jun 12 19:45:47 2024 by rpki-client on console-fra.rpki-client.org