$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/36F3B6A86E5411EEAA31F87AC4F9AE02.roa File: 36F3B6A86E5411EEAA31F87AC4F9AE02.roa (raw, json) Hash identifier: TgP6m9OEjffqCLWh57vOCQCFFyLSkjZJc7ba7bn55rY= Subject key identifier: 9B:EE:BF:79:AD:20:F2:8C:A2:4C:B4:37:B7:FE:04:2E:FD:33:30:2B Certificate issuer: /CN=A9120E98/serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B Certificate serial: CE Authority key identifier: 6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/36F3B6A86E5411EEAA31F87AC4F9AE02.roa Signing time: Thu 07 Nov 2024 03:57:22 +0000 ROA not before: Thu 07 Nov 2024 03:57:22 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 151969 IP address blocks: 103.67.64.0/23 maxlen: 23 103.67.64.0/24 maxlen: 24 103.67.65.0/24 maxlen: 24 2001:df3:d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.crl rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E98/serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B Validity Not Before: Nov 7 03:57:22 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672c3aa1-190e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:82:50:2e:da:62:aa:6c:db:e6:b6:35:bf:36: bc:0e:56:07:35:d7:2f:b1:2c:e8:a7:25:db:5d:9b: b3:a0:8a:19:29:dc:e7:89:49:8d:2c:1a:5d:35:6b: 0c:b4:99:2d:b4:d1:d3:59:69:32:ec:28:7f:5e:29: 06:84:32:e0:6a:64:2b:38:99:1a:b4:eb:19:ff:2b: 4a:d3:87:17:b4:57:fc:fd:f7:c2:e4:fb:69:4b:09: 27:31:90:e8:99:1b:c8:2f:f6:7e:7a:88:db:64:e7: 57:63:9a:11:e6:70:57:4e:df:d2:b3:d7:ec:1e:7c: 14:db:f8:c9:6c:57:e3:83:88:e0:14:f8:80:4a:93: aa:65:3d:3b:1c:59:fe:4f:3d:55:66:a6:78:8f:80: 59:02:4a:a7:b0:73:ca:ac:6b:e0:4c:2d:c1:b6:20: 13:af:fe:21:69:fa:85:f4:11:2f:41:a0:72:9c:10: c1:d8:d6:1f:83:80:cf:29:e5:51:32:f7:db:cb:25: bc:30:8a:b4:14:db:75:ed:02:c2:fc:a2:3f:25:49: c2:36:ff:ac:90:cc:b1:5f:47:1d:ad:ee:d0:54:e6: 49:5d:40:be:df:24:85:18:ab:1c:ec:71:e6:7e:62: 6d:3c:1b:a8:d5:ee:7f:2a:92:10:6a:43:4f:95:3d: 4a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:EE:BF:79:AD:20:F2:8C:A2:4C:B4:37:B7:FE:04:2E:FD:33:30:2B X509v3 Authority Key Identifier: keyid:6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/36F3B6A86E5411EEAA31F87AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.64.0/23 IPv6: 2001:df3:d40::/48 Signature Algorithm: sha256WithRSAEncryption 81:63:aa:01:d6:43:96:ca:2a:45:76:e5:e1:12:71:4e:bd:a2: 2a:d0:62:58:25:f9:e6:ff:0f:42:1c:0c:1c:f3:53:69:4f:d2: d6:ee:d1:b2:79:0f:9d:44:c2:f6:30:93:e4:6f:ce:b9:a9:28: a8:65:89:8a:f5:36:38:b9:0e:ae:f1:d5:9f:e3:be:50:7b:da: fd:1d:d1:18:d2:7a:66:51:36:98:97:bb:28:7c:5b:17:ef:56: c4:80:ae:9f:d8:9c:29:c5:d6:75:a1:73:59:b4:f0:8f:12:3a: 9b:40:7c:59:50:0d:b8:5a:03:cf:0d:8a:2b:34:67:78:72:2b: 79:83:98:90:92:c8:1e:28:02:43:76:a3:fd:23:1c:d3:fa:2a: c3:b3:a6:60:29:b2:58:94:98:5b:88:ee:67:65:79:82:8d:e5: 00:17:c5:73:1c:a6:73:3a:ff:1e:0c:0f:20:68:14:f8:bf:79: 72:e5:39:0a:35:d3:31:f5:71:00:07:b2:85:8e:2d:8b:c1:48: 29:ea:0f:1b:59:d6:6f:ff:7b:7a:dc:90:c8:d5:45:24:e9:e1: ee:62:81:70:4b:d6:aa:e4:ea:20:be:58:60:43:0f:6a:f7:0f: 8f:f0:13:13:4c:7b:b0:91:0e:3b:f0:04:10:1f:dc:58:9e:44: 1a:d3:e9:84 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFOTgxMTAvBgNVBAUTKDZDRTJEN0QwRDk1OTgwRDc0M0NBRDQ4NDg2OTg0OERC QTEyNUMyOUIwHhcNMjQxMTA3MDM1NzIyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJjM2FhMS0xOTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IJQLtpiqmzb5rY1vza8DlYHNdcvsSzopyXbXZuzoIoZKdzniUmNLBpdNWsM tJkttNHTWWky7Ch/XikGhDLgamQrOJkatOsZ/ytK04cXtFf8/ffC5PtpSwknMZDo mRvIL/Z+eojbZOdXY5oR5nBXTt/Ss9fsHnwU2/jJbFfjg4jgFPiASpOqZT07HFn+ Tz1VZqZ4j4BZAkqnsHPKrGvgTC3BtiATr/4hafqF9BEvQaBynBDB2NYfg4DPKeVR MvfbyyW8MIq0FNt17QLC/KI/JUnCNv+skMyxX0cdre7QVOZJXUC+3ySFGKsc7HHm fmJtPBuo1e5/KpIQakNPlT1KowIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJvuv3mt IPKMoky0N7f+BC79MzArMB8GA1UdIwQYMBaAFGzi19DZWYDXQ8rUhIaYSNuhJcKb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEU5OC83NEZENUU4MjZF NTMxMUVFOUI5MTdFNzlDNEY5QUUwMi9iT0xYME5sWmdOZER5dFNFaHBoSTI2RWx3 cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPTFgwTmxaZ05kRHl0U0VocGhJMjZFbHdwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBFOTgvNzRGRDVFODI2RTUzMTFFRTlCOTE3RTc5QzRGOUFFMDIvMzZGM0I2QTg2 RTU0MTFFRUFBMzFGODdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnQ0AwDwQCAAIwCQMHACABDfMNQDANBgkqhkiG9w0BAQsF AAOCAQEAgWOqAdZDlsoqRXbl4RJxTr2iKtBiWCX55v8PQhwMHPNTaU/S1u7RsnkP nUTC9jCT5G/OuakoqGWJivU2OLkOrvHVn+O+UHva/R3RGNJ6ZlE2mJe7KHxbF+9W xICun9icKcXWdaFzWbTwjxI6m0B8WVANuFoDzw2KKzRneHIreYOYkJLIHigCQ3aj /SMc0/oqw7OmYCmyWJSYW4juZ2V5go3lABfFcxymczr/HgwPIGgU+L95cuU5CjXT MfVxAAeyhY4ti8FIKeoPG1nWb/97etyQyNVFJOnh7mKBcEvWquTqIL5YYEMPavcP j/ATE0x7sJEOO/AEEB/cWJ5EGtPphA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:01 2024 by rpki-client on console-ams.rpki-client.org