$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/3CB103648C2511EDB64DB410C4F9AE02.roa File: 3CB103648C2511EDB64DB410C4F9AE02.roa (raw, json) Hash identifier: vxp9DdAEwv8w7T2TYeLcZ04S/h06V4VND1+Sikmui+s= Subject key identifier: B7:DD:3B:25:9D:08:5E:8D:B0:40:9B:7B:7B:44:64:79:38:74:17:E8 Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: D0 Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/3CB103648C2511EDB64DB410C4F9AE02.roa Signing time: Mon 29 Jan 2024 05:17:23 +0000 ROA not before: Mon 29 Jan 2024 05:17:23 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 131471 IP address blocks: 103.178.78.0/24 maxlen: 24 103.178.79.0/24 maxlen: 24 2001:df0:3740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Validity Not Before: Jan 29 05:17:23 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b734e2-9bc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f5:4f:5b:55:0b:bd:27:05:fa:f2:d2:4d:0c: 6a:47:c1:05:63:bc:58:2c:06:3e:92:16:87:e3:79: 4c:b4:10:af:f6:c5:65:00:87:57:b2:a6:53:04:bd: ff:d9:23:6d:57:0a:54:78:e2:c1:2f:e5:15:62:e7: 07:c2:f4:d9:1d:a7:7d:23:92:35:f3:17:47:94:1b: 89:b3:fb:45:e3:b1:7d:dc:22:f6:f3:39:74:0e:ec: 1b:47:20:1f:c4:7f:53:e1:a6:e1:8f:28:ba:47:d1: 2c:40:31:79:e5:9b:31:bb:e7:43:c5:c6:29:e4:75: 56:5d:09:b6:fc:d5:76:4e:b9:4f:cc:06:d9:b7:c4: 07:79:12:64:51:71:74:ee:7e:fd:84:27:38:fb:45: ca:88:cc:35:c0:43:8f:dd:27:cf:b6:9d:cc:5b:41: 62:a2:4d:b1:c4:68:ec:87:f8:82:68:7a:61:35:c2: ed:50:7a:23:73:1f:23:08:43:12:21:c7:f9:f3:ca: 0d:6c:d5:ba:05:b9:14:51:57:e9:8e:c8:a0:73:fc: a2:d9:1b:1f:28:f8:58:c5:4d:01:fc:9a:2a:07:0c: e2:e6:62:a3:06:f7:41:bd:ef:05:81:5e:96:a5:b8: 58:33:0e:af:ea:09:89:46:77:05:96:3b:f9:67:bc: c1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:DD:3B:25:9D:08:5E:8D:B0:40:9B:7B:7B:44:64:79:38:74:17:E8 X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/3CB103648C2511EDB64DB410C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.78.0/23 IPv6: 2001:df0:3740::/48 Signature Algorithm: sha256WithRSAEncryption c4:9f:3a:45:1f:1a:89:f6:dc:7e:1f:1b:8c:26:28:07:71:5c: 05:24:51:6b:a1:0f:1d:3f:72:21:0e:96:c3:7d:e9:a1:cd:a1: 7f:38:de:8c:04:75:1d:cb:0a:27:1d:ac:6b:aa:3b:84:f9:90: 7d:e7:f1:6d:db:e7:99:4a:1c:17:5c:41:a4:90:64:2e:a0:59: c0:ac:35:4c:24:31:4c:e1:83:af:84:42:71:90:2f:ca:b2:79: f0:1d:d6:6a:e4:7e:70:bd:d2:77:d3:e9:9f:eb:c1:ea:e8:45: 21:a3:9d:54:64:41:06:e4:01:eb:2b:50:ee:7d:e5:b6:b8:fb: f2:c5:f4:fc:8d:27:0e:7f:52:ab:1a:fc:ee:80:a7:84:3e:4c: f6:41:9e:42:38:53:86:e0:ff:1c:71:d9:8d:36:6e:af:4f:d0: e5:04:14:2f:22:06:e2:ea:6c:b7:59:77:a0:cf:8a:12:4d:47: 47:99:c4:4c:33:c8:48:0f:ef:c8:e3:01:d9:6e:51:ef:94:a8: ad:f9:ff:44:ad:8d:90:45:d7:21:a3:fb:d4:46:fa:9c:31:5e: 25:a6:72:d3:d5:a7:61:be:ca:6e:2f:84:19:e0:74:8f:d9:36: 22:16:0d:90:02:53:ad:54:73:fc:87:c1:ef:76:34:92:3d:29: e8:c3:18:7a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjQwMTI5MDUxNzIzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI3MzRlMi05YmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvVPW1ULvScF+vLSTQxqR8EFY7xYLAY+khaH43lMtBCv9sVlAIdXsqZTBL3/ 2SNtVwpUeOLBL+UVYucHwvTZHad9I5I18xdHlBuJs/tF47F93CL28zl0DuwbRyAf xH9T4abhjyi6R9EsQDF55Zsxu+dDxcYp5HVWXQm2/NV2TrlPzAbZt8QHeRJkUXF0 7n79hCc4+0XKiMw1wEOP3SfPtp3MW0Fiok2xxGjsh/iCaHphNcLtUHojcx8jCEMS Icf588oNbNW6BbkUUVfpjsigc/yi2RsfKPhYxU0B/JoqBwzi5mKjBvdBve8FgV6W pbhYMw6v6gmJRncFljv5Z7zBawIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLfdOyWd CF6NsECbe3tEZHk4dBfoMB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVCMkUvNkZDOEJGREU4QzIxMTFFREIyQjJGMzBBQzRGOUFFMDIvM0NCMTAzNjQ4 QzI1MTFFREI2NERCNDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnsk4wDwQCAAIwCQMHACABDfA3QDANBgkqhkiG9w0BAQsF AAOCAQEAxJ86RR8aifbcfh8bjCYoB3FcBSRRa6EPHT9yIQ6Ww33poc2hfzjejAR1 HcsKJx2sa6o7hPmQfefxbdvnmUocF1xBpJBkLqBZwKw1TCQxTOGDr4RCcZAvyrJ5 8B3WauR+cL3Sd9Ppn+vB6uhFIaOdVGRBBuQB6ytQ7n3ltrj78sX0/I0nDn9Sqxr8 7oCnhD5M9kGeQjhThuD/HHHZjTZur0/Q5QQULyIG4upst1l3oM+KEk1HR5nETDPI SA/vyOMB2W5R75Sorfn/RK2NkEXXIaP71Eb6nDFeJaZy09WnYb7Kbi+EGeB0j9k2 IhYNkAJTrVRz/IfB73Y0kj0p6MMYeg== -----END CERTIFICATE-----Generated at Tue May 7 06:20:56 2024 by rpki-client on console-fra.rpki-client.org