$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/5A76CDC2989511EC821F343DC4F9AE02.roa File: 5A76CDC2989511EC821F343DC4F9AE02.roa (raw, json) Hash identifier: WpCfV48MxVsvrCFja30wG20lXynE945EHFIKLttGYCo= Subject key identifier: 06:B6:AF:07:25:85:8F:24:45:53:7F:E0:18:99:C7:2B:21:32:62:46 Certificate issuer: /CN=A91D5F2D/serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Certificate serial: 02BC Authority key identifier: A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/5A76CDC2989511EC821F343DC4F9AE02.roa Signing time: Wed 03 Jan 2024 03:04:32 +0000 ROA not before: Wed 03 Jan 2024 03:04:32 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 4755 IP address blocks: 103.82.176.0/24 maxlen: 24 103.82.177.0/24 maxlen: 24 103.82.178.0/24 maxlen: 24 103.82.179.0/24 maxlen: 24 2400:8740:1000::/48 maxlen: 48 2400:8740:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 700 (0x2bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5F2D/serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Validity Not Before: Jan 3 03:04:32 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6594cec0-d8d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4a:e0:ac:35:aa:5e:3b:ee:e2:f8:70:67:27: ad:10:cf:3c:70:89:93:f0:cf:0e:f4:8e:1d:cd:4f: f6:c1:43:c3:57:d2:4a:7e:5f:75:9d:9d:73:1e:aa: 0e:0a:01:70:d8:21:f5:c5:48:15:4f:bb:e3:35:52: 27:fa:bd:56:75:2c:1f:ad:ed:96:a5:1f:4c:98:5f: 05:06:73:d4:ee:ae:b5:4c:e6:42:16:c6:54:e2:f5: f0:c8:09:6b:b9:c3:f3:b0:5a:ec:ee:4d:75:2b:69: 30:83:a6:c0:50:38:3d:08:84:fb:e1:f2:f0:ef:b6: 1c:c1:0a:b7:a6:b1:cd:ee:34:6c:7f:c7:40:0e:3f: 9a:ed:ba:de:27:42:e0:66:6d:f4:3c:97:86:41:79: 00:7f:76:6c:ae:4d:95:79:4c:92:5c:e6:0b:31:c4: 2a:7d:24:98:a4:4f:82:4e:ae:3d:7e:86:ee:42:b7: e7:4d:ba:31:72:7d:d2:01:51:ff:3d:04:6e:7a:13: 33:07:72:b7:8c:de:dc:95:e0:e5:f1:d0:94:a3:82: e3:67:d6:1a:eb:8d:b1:81:11:89:54:90:20:3e:07: 1e:6a:39:78:52:d8:2b:60:85:04:61:2b:1c:9b:e5: 85:08:37:16:69:c2:da:97:ab:15:d3:54:46:f0:ca: 44:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:B6:AF:07:25:85:8F:24:45:53:7F:E0:18:99:C7:2B:21:32:62:46 X509v3 Authority Key Identifier: keyid:A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/5A76CDC2989511EC821F343DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.176.0/22 IPv6: 2400:8740:1000::/48 2400:8740:2000::/48 Signature Algorithm: sha256WithRSAEncryption 9c:8e:27:8a:09:18:d3:2b:e1:6a:bb:a5:0e:50:e2:68:d7:fc: 01:3c:71:35:49:22:25:78:7e:71:48:06:1d:f5:c1:e0:6d:55: 8b:2c:07:19:94:51:7e:02:1e:41:c2:63:57:a4:50:d9:f8:d4: 5c:3d:1f:16:ae:26:57:d3:d8:ef:d7:89:88:ca:a9:87:74:22: 0e:a4:35:67:7f:99:a9:09:64:ab:25:7b:61:dc:af:33:60:7c: c3:87:13:10:14:4c:71:ed:b2:a6:5a:40:34:09:74:b2:8a:9b: 05:f9:f3:b5:ad:85:12:e1:47:10:8f:52:32:e7:9e:24:dd:58: 85:3c:7c:4b:70:ac:0f:74:f0:60:b0:e1:cc:d0:1e:81:3d:7f: 05:8b:66:fc:05:50:14:f8:9f:11:90:52:68:6a:c1:64:89:3f: 04:d0:29:35:cf:e2:e5:58:c6:47:9f:77:b3:d3:cc:66:b0:09: bb:cb:a6:02:3b:e6:60:a7:b1:db:ce:f9:b8:d5:b1:1d:c3:e7: b8:c5:ef:3d:e7:3a:32:16:dd:85:a8:c8:17:92:44:fe:67:93: 64:c0:d3:47:51:b3:5a:b3:82:36:2b:1f:27:b3:8c:8a:a2:ef: 0d:7b:8d:72:6d:7b:c2:6c:44:9b:40:55:43:f3:15:29:79:cc: ab:e3:04:c8 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICArwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVGMkQxMTAvBgNVBAUTKEEwMTNCMTM4OEEzOTMzQkUxMDZCRUFFRERGRTlGM0I4 MzQ2RDM3NDgwHhcNMjQwMTAzMDMwNDMyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0Y2VjMC1kOGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukrgrDWqXjvu4vhwZyetEM88cImT8M8O9I4dzU/2wUPDV9JKfl91nZ1zHqoO CgFw2CH1xUgVT7vjNVIn+r1WdSwfre2WpR9MmF8FBnPU7q61TOZCFsZU4vXwyAlr ucPzsFrs7k11K2kwg6bAUDg9CIT74fLw77YcwQq3prHN7jRsf8dADj+a7breJ0Lg Zm30PJeGQXkAf3Zsrk2VeUySXOYLMcQqfSSYpE+CTq49fobuQrfnTboxcn3SAVH/ PQRuehMzB3K3jN7cleDl8dCUo4LjZ9Ya642xgRGJVJAgPgceajl4UtgrYIUEYSsc m+WFCDcWacLal6sV01RG8MpE7QIDAQABo4ICrzCCAqswHQYDVR0OBBYEFAa2rwcl hY8kRVN/4BiZxyshMmJGMB8GA1UdIwQYMBaAFKATsTiKOTO+EGvq7d/p87g0bTdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUYyRC9DRDZENkU1Njk4 OTIxMUVDOEY5MzU3M0JDNEY5QUUwMi9vQk94T0lvNU03NFFhLXJ0My1uenVEUnRO MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CT3hPSW81TTc0UWEtcnQzLW56dURSdE4wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDVGMkQvQ0Q2RDZFNTY5ODkyMTFFQzhGOTM1NzNCQzRGOUFFMDIvNUE3NkNEQzI5 ODk1MTFFQzgyMUYzNDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAJnUrAwGAQCAAIwEgMHACQAh0AQAAMHACQAh0AgADANBgkq hkiG9w0BAQsFAAOCAQEAnI4nigkY0yvharulDlDiaNf8ATxxNUkiJXh+cUgGHfXB 4G1ViywHGZRRfgIeQcJjV6RQ2fjUXD0fFq4mV9PY79eJiMqph3QiDqQ1Z3+ZqQlk qyV7YdyvM2B8w4cTEBRMce2yplpANAl0soqbBfnzta2FEuFHEI9SMueeJN1YhTx8 S3CsD3TwYLDhzNAegT1/BYtm/AVQFPifEZBSaGrBZIk/BNApNc/i5VjGR593s9PM ZrAJu8umAjvmYKex2875uNWxHcPnuMXvPec6MhbdhajIF5JE/meTZMDTR1GzWrOC NisfJ7OMiqLvDXuNcm17wmxEm0BVQ/MVKXnMq+MEyA== -----END CERTIFICATE-----Generated at Fri May 17 04:44:33 2024 by rpki-client on console-ams.rpki-client.org