$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/36F3B6A86E5411EEAA31F87AC4F9AE02.roa File: 36F3B6A86E5411EEAA31F87AC4F9AE02.roa (raw, json) Hash identifier: vc95pWIwY/O90dCzIDvkkXU3ok7B1feeaGtEaxmTRj8= Subject key identifier: C8:C5:52:A1:50:E6:49:41:22:90:9F:A5:68:94:CD:97:EC:8A:69:87 Certificate issuer: /CN=A9120E98/serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B Certificate serial: 08 Authority key identifier: 6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/36F3B6A86E5411EEAA31F87AC4F9AE02.roa Signing time: Thu 19 Oct 2023 07:52:50 +0000 ROA not before: Thu 19 Oct 2023 07:52:50 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 151969 IP address blocks: 103.67.64.0/23 maxlen: 23 103.67.64.0/24 maxlen: 24 103.67.65.0/24 maxlen: 24 2001:df3:d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.crl rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:48:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E98/serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B Validity Not Before: Oct 19 07:52:50 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6530e052-3846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:17:da:8e:a1:35:e4:7b:82:f1:a8:c2:cc:df: 80:9a:66:16:6c:ce:da:bd:72:ca:22:37:73:8c:cd: f7:33:d8:ad:cb:04:5f:2b:40:6c:3a:57:ff:c5:31: 79:0a:00:73:b1:3d:c0:ce:56:7f:76:af:f7:c4:ed: 22:71:19:ad:6b:32:76:2b:64:5f:96:03:c8:a0:81: 98:0f:f5:e3:2c:1c:11:2e:71:8a:a9:23:13:ab:09: 92:18:35:af:3b:20:f0:a6:a9:11:63:2c:65:4f:34: b6:46:fb:6a:f3:36:42:b7:c7:6b:5a:1d:85:00:e9: 45:9b:30:cd:99:d9:3c:49:4b:e4:14:91:7f:63:3d: 79:48:85:2c:91:41:c7:fd:bb:33:92:07:b6:ef:b8: 30:a5:d8:19:83:32:aa:d4:08:48:f3:45:e0:b0:c7: 39:f9:54:40:fa:46:aa:2d:56:ab:63:ba:e9:a4:55: b2:19:7b:97:8a:ea:65:10:0e:31:f9:e1:f0:ad:a8: f8:02:bb:c8:19:60:fe:1a:3d:bb:59:b9:70:cf:a8: 7b:dc:59:78:e5:c1:bb:37:3e:8a:47:a4:00:d9:ae: bb:15:46:d0:4e:e3:8b:31:54:34:c5:c0:40:96:96: a0:47:b8:7e:6c:84:f5:15:ab:4c:55:ae:13:3f:f1: a6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C5:52:A1:50:E6:49:41:22:90:9F:A5:68:94:CD:97:EC:8A:69:87 X509v3 Authority Key Identifier: keyid:6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/36F3B6A86E5411EEAA31F87AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.64.0/23 IPv6: 2001:df3:d40::/48 Signature Algorithm: sha256WithRSAEncryption 08:b2:a5:4e:36:66:47:6c:9b:e7:60:cb:e1:50:a4:21:7d:79: 4c:f4:b9:32:a3:6d:46:3a:1e:d8:b1:d1:b4:8b:b0:67:7d:91: 59:99:78:db:41:f3:8b:04:e7:fd:aa:89:18:1b:5b:5e:ea:29: 6e:c7:21:7a:d7:eb:ca:8c:11:8f:cb:52:93:8e:25:97:83:9b: 23:63:13:fc:97:a4:18:89:c3:d0:d9:f1:d7:1c:39:8b:72:f8: d6:91:1a:e1:9b:70:0b:b2:35:20:0f:17:1a:eb:49:8f:d9:4e: 2d:75:5b:8d:9a:65:66:ac:e8:87:20:66:ad:94:b5:d1:de:3b: 3d:af:e4:a5:33:70:f7:86:a2:c0:fa:47:62:96:3f:a5:a7:65: 75:1e:f1:99:92:67:38:c5:2d:41:7e:e9:79:c5:ac:61:cc:c1: 45:41:40:32:f5:87:e3:8c:f2:bd:46:c5:5d:db:9e:7a:b9:b8: 07:11:a4:29:ce:b1:46:87:8e:f5:b6:dc:06:e9:4b:7d:9b:69: d2:b7:22:ce:6b:8f:0d:f4:73:f7:b6:05:74:1a:88:0e:c4:07: 9d:2d:d3:c9:36:57:52:11:c2:b5:7e:7e:39:bf:ba:e2:da:3c: a1:4b:be:9b:31:aa:16:dd:74:74:84:0c:4d:b7:d9:c4:22:b6: c6:43:8e:78 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MEU5ODExMC8GA1UEBRMoNkNFMkQ3RDBEOTU5ODBENzQzQ0FENDg0ODY5ODQ4REJB MTI1QzI5QjAeFw0yMzEwMTkwNzUyNTBaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MzBlMDUyLTM4NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAF9qOoTXke4LxqMLM34CaZhZsztq9csoiN3OMzfcz2K3LBF8rQGw6V//FMXkK AHOxPcDOVn92r/fE7SJxGa1rMnYrZF+WA8iggZgP9eMsHBEucYqpIxOrCZIYNa87 IPCmqRFjLGVPNLZG+2rzNkK3x2taHYUA6UWbMM2Z2TxJS+QUkX9jPXlIhSyRQcf9 uzOSB7bvuDCl2BmDMqrUCEjzReCwxzn5VED6RqotVqtjuumkVbIZe5eK6mUQDjH5 4fCtqPgCu8gZYP4aPbtZuXDPqHvcWXjlwbs3PopHpADZrrsVRtBO44sxVDTFwECW lqBHuH5shPUVq0xVrhM/8aafAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUyMVSoVDm SUEikJ+laJTNl+yKaYcwHwYDVR0jBBgwFoAUbOLX0NlZgNdDytSEhphI26Elwpsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwRTk4Lzc0RkQ1RTgyNkU1 MzExRUU5QjkxN0U3OUM0RjlBRTAyL2JPTFgwTmxaZ05kRHl0U0VocGhJMjZFbHdw cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYk9MWDBObFpnTmREeXRTRWhwaEkyNkVsd3BzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEU5OC83NEZENUU4MjZFNTMxMUVFOUI5MTdFNzlDNEY5QUUwMi8zNkYzQjZBODZF NTQxMUVFQUEzMUY4N0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWdDQDAPBAIAAjAJAwcAIAEN8w1AMA0GCSqGSIb3DQEBCwUA A4IBAQAIsqVONmZHbJvnYMvhUKQhfXlM9Lkyo21GOh7YsdG0i7BnfZFZmXjbQfOL BOf9qokYG1te6iluxyF61+vKjBGPy1KTjiWXg5sjYxP8l6QYicPQ2fHXHDmLcvjW kRrhm3ALsjUgDxca60mP2U4tdVuNmmVmrOiHIGatlLXR3js9r+SlM3D3hqLA+kdi lj+lp2V1HvGZkmc4xS1Bful5xaxhzMFFQUAy9YfjjPK9RsVd2556ubgHEaQpzrFG h471ttwG6Ut9m2nStyLOa48N9HP3tgV0GogOxAedLdPJNldSEcK1fn45v7ri2jyh S76bMaoW3XR0hAxNt9nEIrbGQ454 -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:08 2024 by rpki-client on console-ams.rpki-client.org