$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/078AE946642A11EAA019224CC4F9AE02.roa File: 078AE946642A11EAA019224CC4F9AE02.roa (raw, json) Hash identifier: mTWsYywMPiMfrhBIpNOsBljvGA4XjVbx+hSty7byGCw= Subject key identifier: 05:7D:75:F3:E5:F9:DA:29:DD:04:FB:FF:60:4B:C6:77:9C:02:F6:9F Certificate issuer: /CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Certificate serial: 0ABA Authority key identifier: AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/078AE946642A11EAA019224CC4F9AE02.roa Signing time: Sat 02 Nov 2024 19:28:21 +0000 ROA not before: Sat 02 Nov 2024 19:28:21 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 135554 IP address blocks: 103.123.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:11:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2746 (0xaba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Validity Not Before: Nov 2 19:28:21 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67267d55-7452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ab:d2:2d:7f:be:cc:31:f9:c9:fa:f5:64:fd: 69:ea:5a:62:92:a3:0d:1e:d4:f3:ec:4d:e6:f5:00: d6:cb:72:39:4f:4e:58:cf:44:ba:87:75:6d:54:1a: 00:da:5c:9f:29:e8:e1:ec:1b:a0:30:8b:2c:07:85: 87:4c:c3:97:b2:ca:c3:32:23:4a:4c:8d:ab:4c:31: 9a:40:2f:42:a3:eb:51:ee:c5:02:73:b6:7f:49:ef: f8:e8:01:6b:2e:83:f9:64:c3:f2:38:01:49:d4:45: 64:c3:d4:6f:2a:b7:4c:a8:74:6e:f0:c9:74:96:01: 99:0e:7c:76:c4:31:02:64:7c:bf:4b:2f:52:3d:41: 4d:d2:3a:54:b5:6e:98:54:9b:84:41:a1:ad:29:b4: 80:9c:f1:d0:f0:99:6e:e6:ee:9f:75:5a:a2:c2:30: e9:11:82:ff:1c:5c:e6:20:4f:a5:d0:ed:dc:9d:e1: 3f:36:28:8c:9b:1f:c1:3b:43:74:83:03:07:fa:e6: 8e:4e:cc:a3:95:7b:26:93:fb:1b:15:a5:44:13:0f: 15:64:d7:e3:34:e3:e2:8b:6f:2c:ae:cf:68:f0:15: 39:46:15:8c:83:17:01:64:1a:55:14:6e:23:46:57: e2:55:2a:76:8d:95:b7:2b:a8:78:04:18:58:53:20: 29:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:7D:75:F3:E5:F9:DA:29:DD:04:FB:FF:60:4B:C6:77:9C:02:F6:9F X509v3 Authority Key Identifier: keyid:AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/078AE946642A11EAA019224CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.32.0/22 Signature Algorithm: sha256WithRSAEncryption c4:01:53:29:8e:2c:45:07:ef:7a:57:f5:48:83:63:33:bd:ca: ce:ff:56:05:63:11:af:86:3b:44:cc:4b:59:b9:0f:76:69:9b: 26:7f:a7:68:3d:0e:95:08:50:a4:9a:dc:1a:3c:8b:95:ba:66: 17:e5:5e:50:ba:d9:7b:d0:7b:d0:b8:1a:36:04:d1:0e:5b:cc: 3c:49:6d:0a:b0:b3:dc:48:3a:af:21:af:a0:d9:91:af:17:7e: 64:2b:61:18:55:3c:e7:01:7c:5e:a0:65:f3:b6:51:76:b5:54: a0:49:85:c2:18:b1:53:c1:ae:a7:ab:d0:dc:e6:59:15:b8:ea: 28:57:ea:e9:5d:84:74:34:95:57:08:70:35:c6:a2:9d:2e:1f: 63:0b:18:60:35:7c:01:7c:00:a1:4a:44:1b:b6:a7:52:2c:24: c5:5a:73:4f:1d:1a:8c:a4:d7:05:e9:f5:b4:cb:e7:17:e1:24: 39:b7:d3:e4:c0:bb:7d:57:17:10:7f:db:bd:81:46:e4:7c:27: 56:a1:ae:24:b4:e0:5d:4c:13:ba:3a:ec:c1:62:59:f5:66:2b: ad:ca:e8:dc:3e:dd:64:58:15:49:57:6c:6c:6f:3d:ef:b7:74: 5a:6c:f1:7c:6d:25:f3:2b:73:04:62:3b:b1:a5:ef:06:b6:e7: b8:e0:c5:65 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REIxMTAvBgNVBAUTKEFFQkExOUI2RkNDMUQyMUFFNzEzMTc3MEU3QjFEQTNF MTQ3NUVDOTAwHhcNMjQxMTAyMTkyODIxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2N2Q1NS03NDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7avSLX++zDH5yfr1ZP1p6lpikqMNHtTz7E3m9QDWy3I5T05Yz0S6h3VtVBoA 2lyfKejh7BugMIssB4WHTMOXssrDMiNKTI2rTDGaQC9Co+tR7sUCc7Z/Se/46AFr LoP5ZMPyOAFJ1EVkw9RvKrdMqHRu8Ml0lgGZDnx2xDECZHy/Sy9SPUFN0jpUtW6Y VJuEQaGtKbSAnPHQ8Jlu5u6fdVqiwjDpEYL/HFzmIE+l0O3cneE/NiiMmx/BO0N0 gwMH+uaOTsyjlXsmk/sbFaVEEw8VZNfjNOPii28srs9o8BU5RhWMgxcBZBpVFG4j RlfiVSp2jZW3K6h4BBhYUyApEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAV9dfPl +dop3QT7/2BLxnecAvafMB8GA1UdIwQYMBaAFK66Gbb8wdIa5xMXcOex2j4UdeyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdEQi9COTUxRTI4QzNE Q0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBocm5FeGR3NTdIYVBoUjE3 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jyb1p0dnpCMGhybkV4ZHc1N0hhUGhSMTdKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkU3REIvQjk1MUUyOEMzRENBMTFFQTgxQjlEMzUyQzRGOUFFMDIvMDc4QUU5NDY2 NDJBMTFFQUEwMTkyMjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneyAwDQYJKoZIhvcNAQELBQADggEBAMQBUymOLEUH73pX 9UiDYzO9ys7/VgVjEa+GO0TMS1m5D3ZpmyZ/p2g9DpUIUKSa3Bo8i5W6ZhflXlC6 2XvQe9C4GjYE0Q5bzDxJbQqws9xIOq8hr6DZka8XfmQrYRhVPOcBfF6gZfO2UXa1 VKBJhcIYsVPBrqer0NzmWRW46ihX6uldhHQ0lVcIcDXGop0uH2MLGGA1fAF8AKFK RBu2p1IsJMVac08dGoyk1wXp9bTL5xfhJDm30+TAu31XFxB/272BRuR8J1ahriS0 4F1ME7o67MFiWfVmK63K6Nw+3WRYFUlXbGxvPe+3dFps8XxtJfMrcwRiO7Gl7wa2 57jgxWU= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:50 2024 by rpki-client on console-ams.rpki-client.org