$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/6CB78E8E967811EA92E45A27C4F9AE02.roa File: 6CB78E8E967811EA92E45A27C4F9AE02.roa (raw, json) Hash identifier: yiBFuvz0wowXTsPwdEFLgJjJDBfixilogFNMg4CpnLU= Subject key identifier: 7D:92:50:9D:4C:0B:67:EC:7A:42:CC:CC:CB:B1:69:5E:36:E2:E5:03 Certificate issuer: /CN=A91FEB27/serialNumber=79E5632AF29BAE64E5F9F19C575BC5A995E20550 Certificate serial: 2C38 Authority key identifier: 79:E5:63:2A:F2:9B:AE:64:E5:F9:F1:9C:57:5B:C5:A9:95:E2:05:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eeVjKvKbrmTl-fGcV1vFqZXiBVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/6CB78E8E967811EA92E45A27C4F9AE02.roa Signing time: Mon 04 Mar 2024 16:12:18 +0000 ROA not before: Mon 04 Mar 2024 16:12:18 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 56304 IP address blocks: 103.15.152.0/22 maxlen: 24 175.111.100.0/22 maxlen: 24 2400:6900::/32 maxlen: 32 2400:6900:3010::/48 maxlen: 48 2400:6900:f000::/48 maxlen: 48 2400:6900:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/eeVjKvKbrmTl-fGcV1vFqZXiBVA.crl rsync://rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/eeVjKvKbrmTl-fGcV1vFqZXiBVA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eeVjKvKbrmTl-fGcV1vFqZXiBVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 15:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11320 (0x2c38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEB27/serialNumber=79E5632AF29BAE64E5F9F19C575BC5A995E20550 Validity Not Before: Mar 4 16:12:18 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e5f2e2-99a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e1:77:86:dd:56:c3:37:7c:38:e8:45:2b:99: e9:19:ce:cf:82:79:d0:78:a4:81:0d:1c:c2:9f:91: f6:78:d3:85:4c:3e:31:cf:1a:8d:d2:f0:95:b4:1d: 13:92:53:06:16:25:9a:f4:2e:cf:14:7a:fa:14:fa: 4c:2f:6b:02:b6:5b:b6:0b:ce:6d:3d:27:2b:57:02: 28:71:de:47:b0:5e:bd:b3:c5:87:0d:40:57:97:22: 2d:d9:a0:55:1c:78:64:c8:9f:7d:c0:a6:08:9d:e5: 38:95:2c:5c:7f:3f:17:ce:77:27:c4:8a:16:d6:fc: ad:ed:58:d2:65:b9:37:e0:51:3e:cf:96:f2:56:05: 86:d7:5e:8c:f6:66:3d:4a:9b:1e:50:7a:64:fc:20: 15:79:e5:fe:47:dd:e1:de:15:4a:0a:3e:68:24:cc: 10:9d:0f:ec:0e:48:52:00:2a:e2:ff:55:f2:09:3c: 55:d0:ad:76:8c:47:02:dd:5c:2f:c7:39:56:c6:d9: fa:ee:0a:8d:2b:25:4e:35:6b:72:b6:fb:24:5d:87: 74:86:ea:28:9c:07:0d:f3:7d:19:11:13:0c:0c:0b: 23:40:b2:0a:81:f8:09:51:d1:5b:67:fa:47:55:cf: 0a:c8:bb:6b:42:7b:8c:bc:50:7a:5a:73:db:53:6b: 5e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:92:50:9D:4C:0B:67:EC:7A:42:CC:CC:CB:B1:69:5E:36:E2:E5:03 X509v3 Authority Key Identifier: keyid:79:E5:63:2A:F2:9B:AE:64:E5:F9:F1:9C:57:5B:C5:A9:95:E2:05:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/eeVjKvKbrmTl-fGcV1vFqZXiBVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eeVjKvKbrmTl-fGcV1vFqZXiBVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/6CB78E8E967811EA92E45A27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.15.152.0/22 175.111.100.0/22 IPv6: 2400:6900::/32 Signature Algorithm: sha256WithRSAEncryption 3a:f5:5f:f3:d8:38:4e:d7:c7:9f:ce:f6:8a:c0:70:8b:59:e7: c6:9e:59:ff:04:8c:a4:95:40:fe:52:a9:46:eb:d0:ce:d3:e5: 60:70:61:b1:b1:b5:e9:88:ec:81:41:d4:c3:91:c4:62:fe:a9: 05:72:1d:d5:a5:5d:90:16:7e:8b:92:92:55:4c:b3:bb:e3:4f: 4d:f0:ce:79:ba:42:91:c9:67:28:f9:e1:29:16:ec:06:35:c4: a2:96:b5:46:39:d6:20:da:59:b1:95:38:0b:4e:76:63:3d:fe: e3:31:2a:c5:57:a8:19:61:4f:1e:31:9a:94:3e:b6:1a:37:ac: e8:c5:ad:31:e3:22:4a:c9:4d:11:3e:a7:75:25:41:4a:8d:9c: a4:fd:6e:10:20:2d:d9:93:c1:04:4f:db:9c:e0:b1:8e:4f:01: f4:f1:f4:09:00:17:cd:94:89:fe:f1:83:6e:87:36:24:05:be: 8c:96:57:ab:07:62:98:51:2e:2c:43:e9:26:e7:1a:0e:df:1b: f5:8a:0a:57:db:57:52:00:ff:8f:f1:dc:ea:ae:e6:4a:d2:81: 22:a8:06:b8:db:e3:d4:51:fe:43:a4:f2:cc:48:56:82:63:67: c9:c1:c3:dc:9b:ca:3f:4c:d1:40:da:01:1a:2e:86:d5:11:79: b2:4c:36:dc -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICLDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVCMjcxMTAvBgNVBAUTKDc5RTU2MzJBRjI5QkFFNjRFNUY5RjE5QzU3NUJDNUE5 OTVFMjA1NTAwHhcNMjQwMzA0MTYxMjE4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU1ZjJlMi05OWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuF3ht1Wwzd8OOhFK5npGc7PgnnQeKSBDRzCn5H2eNOFTD4xzxqN0vCVtB0T klMGFiWa9C7PFHr6FPpML2sCtlu2C85tPScrVwIocd5HsF69s8WHDUBXlyIt2aBV HHhkyJ99wKYIneU4lSxcfz8XzncnxIoW1vyt7VjSZbk34FE+z5byVgWG116M9mY9 SpseUHpk/CAVeeX+R93h3hVKCj5oJMwQnQ/sDkhSACri/1XyCTxV0K12jEcC3Vwv xzlWxtn67gqNKyVONWtytvskXYd0huoonAcN830ZERMMDAsjQLIKgfgJUdFbZ/pH Vc8KyLtrQnuMvFB6WnPbU2teAwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFH2SUJ1M C2fsekLMzMuxaV424uUDMB8GA1UdIwQYMBaAFHnlYyrym65k5fnxnFdbxamV4gVQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUIyNy8xNjdBOTdFQzlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9lZVZqS3ZLYnJtVGwtZkdjVjF2RnFaWGlC VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VlVmpLdkticm1UbC1mR2NWMXZGcVpYaUJWQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkVCMjcvMTY3QTk3RUM5QUUzMTFFM0E1QTI1N0E3NTkxMUVBMzIvNkNCNzhFOEU5 Njc4MTFFQTkyRTQ1QTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnD5gDBAKvb2QwDQQCAAIwBwMFACQAaQAwDQYJKoZIhvcN AQELBQADggEBADr1X/PYOE7Xx5/O9orAcItZ58aeWf8EjKSVQP5SqUbr0M7T5WBw YbGxtemI7IFB1MORxGL+qQVyHdWlXZAWfouSklVMs7vjT03wznm6QpHJZyj54SkW 7AY1xKKWtUY51iDaWbGVOAtOdmM9/uMxKsVXqBlhTx4xmpQ+tho3rOjFrTHjIkrJ TRE+p3UlQUqNnKT9bhAgLdmTwQRP25zgsY5PAfTx9AkAF82Uif7xg26HNiQFvoyW V6sHYphRLixD6SbnGg7fG/WKClfbV1IA/4/x3Oqu5krSgSKoBrjb49RR/kOk8sxI VoJjZ8nBw9ybyj9M0UDaARouhtURebJMNtw= -----END CERTIFICATE-----Generated at Wed May 22 16:49:35 2024 by rpki-client on console-fra.rpki-client.org