$ rpki-client -vvf rpki.apnic.net/member_repository/A91F742D/E2AF9B76DE2611EB9CFF2A2FC4F9AE02/78423A52DE2911EB9B09A334C4F9AE02.roa File: 78423A52DE2911EB9B09A334C4F9AE02.roa (raw, json) Hash identifier: 6TM0Kz09gMjbJeG9e3468lar07wNf8zG8NNQJe1azz4= Subject key identifier: 59:F7:B7:80:31:C2:37:03:11:26:89:33:24:7F:6B:B9:30:71:BA:E4 Certificate issuer: /CN=A91F742D/serialNumber=5822270340F32AF8D70922610B7080FC34177ACF Certificate serial: 04E3 Authority key identifier: 58:22:27:03:40:F3:2A:F8:D7:09:22:61:0B:70:80:FC:34:17:7A:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WCInA0DzKvjXCSJhC3CA_DQXes8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F742D/E2AF9B76DE2611EB9CFF2A2FC4F9AE02/78423A52DE2911EB9B09A334C4F9AE02.roa Signing time: Fri 09 Aug 2024 00:31:41 +0000 ROA not before: Fri 09 Aug 2024 00:31:41 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 136742 IP address blocks: 103.169.150.0/23 maxlen: 23 2407:a3c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F742D/E2AF9B76DE2611EB9CFF2A2FC4F9AE02/WCInA0DzKvjXCSJhC3CA_DQXes8.crl rsync://rpki.apnic.net/member_repository/A91F742D/E2AF9B76DE2611EB9CFF2A2FC4F9AE02/WCInA0DzKvjXCSJhC3CA_DQXes8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WCInA0DzKvjXCSJhC3CA_DQXes8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1251 (0x4e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F742D/serialNumber=5822270340F32AF8D70922610B7080FC34177ACF Validity Not Before: Aug 9 00:31:41 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b5636c-1712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a2:7d:55:a1:23:1b:d9:c0:40:b4:d8:dc:bb: f4:81:a5:53:ed:f3:50:dc:43:78:43:93:91:0d:59: 78:68:53:21:06:c4:e2:01:73:a4:48:83:ed:88:62: 3c:1a:1b:a4:2b:e9:51:e0:41:9e:a1:8c:b6:77:b8: de:81:7a:1a:26:d4:69:13:6e:b0:0a:e9:66:ca:7a: b7:f9:25:6b:c2:9f:89:41:b8:e6:06:48:5b:60:4f: c3:12:b6:fe:09:f2:12:72:fb:94:3f:13:93:a4:67: 94:17:ed:2d:ea:43:87:fd:a0:d2:82:59:e4:96:c7: 0e:51:29:2e:cd:b0:bf:49:34:71:b8:ce:dc:fe:01: 64:6e:06:ff:0f:b0:c9:4c:49:31:96:22:85:2f:61: be:ff:10:78:c7:b9:8f:be:bb:0a:c1:d5:67:47:fb: f3:01:1a:2e:1d:81:c0:af:33:88:ed:4d:d1:b1:56: a9:8f:37:48:45:fa:dd:57:6c:21:d0:b8:4c:a3:89: 0a:e5:a9:eb:e9:d1:fe:c4:66:ef:76:dc:53:48:d3: 28:d6:53:d9:09:39:cd:0a:5a:83:ef:dc:25:e9:49: f0:78:1a:ba:31:b5:c8:7b:58:69:eb:8b:fc:68:35: 12:9e:b4:f8:aa:c9:00:54:6f:90:45:5d:d9:83:52: 70:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F7:B7:80:31:C2:37:03:11:26:89:33:24:7F:6B:B9:30:71:BA:E4 X509v3 Authority Key Identifier: keyid:58:22:27:03:40:F3:2A:F8:D7:09:22:61:0B:70:80:FC:34:17:7A:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F742D/E2AF9B76DE2611EB9CFF2A2FC4F9AE02/WCInA0DzKvjXCSJhC3CA_DQXes8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WCInA0DzKvjXCSJhC3CA_DQXes8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F742D/E2AF9B76DE2611EB9CFF2A2FC4F9AE02/78423A52DE2911EB9B09A334C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.150.0/23 IPv6: 2407:a3c0::/32 Signature Algorithm: sha256WithRSAEncryption b7:20:7a:06:b6:23:3b:07:ba:74:3d:5d:eb:9c:08:d9:d2:7e: 17:a0:f3:23:fd:1d:74:1e:5a:de:31:9a:c5:e0:90:81:13:bf: 76:39:b7:41:c8:df:65:d2:43:7a:f6:69:8d:3d:5a:09:41:bc: 71:11:f1:55:31:80:91:2c:bc:58:a4:39:a1:0e:8b:04:47:7d: df:2b:45:48:96:6b:9c:cc:15:9e:ad:02:c6:83:a6:56:12:32: fa:24:ed:f1:c5:6e:78:4b:6d:48:b1:52:5a:00:c3:c0:79:59: 2a:45:c1:94:29:4b:04:30:1c:71:f9:38:7d:45:26:ee:21:29: 53:b1:ec:a6:5c:78:ea:0f:68:ad:78:28:34:d7:a4:38:fe:68: 6e:5b:53:af:a2:20:41:ab:c4:6b:d2:c9:8f:8e:20:fb:be:41: 84:b5:e1:ea:92:99:51:30:83:fb:6c:4a:63:d6:24:0b:b7:3e: 66:7f:ee:53:c5:d0:e9:57:51:64:f4:6d:53:24:dc:61:c8:92: 11:c6:06:2d:6e:94:b9:77:7f:02:85:0e:7e:1c:00:5a:7e:b1: ab:b8:1a:f6:d8:5c:41:10:5b:18:b4:53:9c:c4:46:cd:fa:8e: 22:03:b1:47:69:29:b2:93:c4:42:1e:ae:b9:a8:cd:bb:69:5f: e9:45:ae:84 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc0MkQxMTAvBgNVBAUTKDU4MjIyNzAzNDBGMzJBRjhENzA5MjI2MTBCNzA4MEZD MzQxNzdBQ0YwHhcNMjQwODA5MDAzMTQxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI1NjM2Yy0xNzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoaJ9VaEjG9nAQLTY3Lv0gaVT7fNQ3EN4Q5ORDVl4aFMhBsTiAXOkSIPtiGI8 GhukK+lR4EGeoYy2d7jegXoaJtRpE26wCulmynq3+SVrwp+JQbjmBkhbYE/DErb+ CfIScvuUPxOTpGeUF+0t6kOH/aDSglnklscOUSkuzbC/STRxuM7c/gFkbgb/D7DJ TEkxliKFL2G+/xB4x7mPvrsKwdVnR/vzARouHYHArzOI7U3RsVapjzdIRfrdV2wh 0LhMo4kK5anr6dH+xGbvdtxTSNMo1lPZCTnNClqD79wl6UnweBq6MbXIe1hp64v8 aDUSnrT4qskAVG+QRV3Zg1Jw8wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFn3t4Ax wjcDESaJMyR/a7kwcbrkMB8GA1UdIwQYMBaAFFgiJwNA8yr41wkiYQtwgPw0F3rP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzQyRC9FMkFGOUI3NkRF MjYxMUVCOUNGRjJBMkZDNEY5QUUwMi9XQ0luQTBEekt2alhDU0poQzNDQV9EUVhl czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dDSW5BMER6S3ZqWENTSmhDM0NBX0RRWGVzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjc0MkQvRTJBRjlCNzZERTI2MTFFQjlDRkYyQTJGQzRGOUFFMDIvNzg0MjNBNTJE RTI5MTFFQjlCMDlBMzM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnqZYwDQQCAAIwBwMFACQHo8AwDQYJKoZIhvcNAQELBQAD ggEBALcgega2IzsHunQ9XeucCNnSfheg8yP9HXQeWt4xmsXgkIETv3Y5t0HI32XS Q3r2aY09WglBvHER8VUxgJEsvFikOaEOiwRHfd8rRUiWa5zMFZ6tAsaDplYSMvok 7fHFbnhLbUixUloAw8B5WSpFwZQpSwQwHHH5OH1FJu4hKVOx7KZceOoPaK14KDTX pDj+aG5bU6+iIEGrxGvSyY+OIPu+QYS14eqSmVEwg/tsSmPWJAu3PmZ/7lPF0OlX UWT0bVMk3GHIkhHGBi1ulLl3fwKFDn4cAFp+sau4GvbYXEEQWxi0U5zERs36jiID sUdpKbKTxEIerrmozbtpX+lFroQ= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:25 2024 by rpki-client on console-fra.rpki-client.org