$ rpki-client -vvf rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/436398BA3B7011EAA14F566EC4F9AE02.roa File: 436398BA3B7011EAA14F566EC4F9AE02.roa (raw, json) Hash identifier: P3cGsQsna63n3FYRu3bD3sLrovGJMw7zYzgpFqbr0gE= Subject key identifier: 47:DC:76:F6:BA:F2:4A:61:EA:9B:2E:6C:C2:C5:D7:D4:42:76:89:88 Certificate issuer: /CN=A91555EA/serialNumber=978DAE2C10A72ED04F94128FFC5E8CB7D102EACA Certificate serial: 09EC Authority key identifier: 97:8D:AE:2C:10:A7:2E:D0:4F:94:12:8F:FC:5E:8C:B7:D1:02:EA:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l42uLBCnLtBPlBKP_F6Mt9EC6so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/436398BA3B7011EAA14F566EC4F9AE02.roa Signing time: Fri 04 Aug 2023 19:57:23 +0000 ROA not before: Fri 04 Aug 2023 19:57:23 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 63967 IP address blocks: 103.9.185.0/24 maxlen: 24 103.9.187.0/24 maxlen: 24 103.244.162.0/24 maxlen: 24 117.104.186.0/24 maxlen: 24 117.104.187.0/24 maxlen: 24 2404:b780::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/l42uLBCnLtBPlBKP_F6Mt9EC6so.crl rsync://rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/l42uLBCnLtBPlBKP_F6Mt9EC6so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l42uLBCnLtBPlBKP_F6Mt9EC6so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:56:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2540 (0x9ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91555EA/serialNumber=978DAE2C10A72ED04F94128FFC5E8CB7D102EACA Validity Not Before: Aug 4 19:57:23 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cd5822-1e8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9f:52:aa:61:ba:0f:84:f2:4d:47:6d:b7:7a: f4:ee:9a:70:1f:95:4a:3a:e6:dd:aa:ac:5c:bc:f5: 45:c9:7f:4b:9e:d0:5c:59:54:fc:a2:25:84:f1:b5: cb:7c:7e:c5:f6:cd:68:7a:9a:ac:74:48:33:6b:b7: de:b0:6f:6f:3c:79:75:7e:7e:b3:a6:ed:5a:54:7a: 05:79:31:e9:9f:ff:41:dc:b2:0a:89:88:a1:76:45: 06:fe:85:aa:a8:44:aa:d7:5f:4c:a9:f3:94:66:e6: c6:86:76:b2:23:ca:dd:54:34:36:58:bc:c2:7d:dd: e5:50:84:e3:7b:1c:24:8b:08:43:35:3f:d8:3a:67: 1a:cf:7b:ca:97:32:b0:5c:8d:74:e7:4a:5b:2d:dc: b3:3d:5e:41:a2:5d:78:80:ec:d5:27:eb:78:ed:b9: 85:77:68:0e:fd:48:23:57:d2:44:96:fd:18:64:6c: 30:2e:d8:af:1f:a7:ed:1f:e0:60:a8:56:6d:45:bf: 31:17:57:1e:e9:80:65:f1:6d:51:77:ed:c1:6d:c9: a1:b7:8b:bc:4c:c8:aa:98:ec:3c:ad:3e:82:fe:54: b5:31:0a:bc:09:ba:5a:8a:3f:90:a0:37:f9:33:21: e4:70:59:33:bd:bb:9f:a6:14:46:06:ad:8d:78:d7: d6:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:DC:76:F6:BA:F2:4A:61:EA:9B:2E:6C:C2:C5:D7:D4:42:76:89:88 X509v3 Authority Key Identifier: keyid:97:8D:AE:2C:10:A7:2E:D0:4F:94:12:8F:FC:5E:8C:B7:D1:02:EA:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/l42uLBCnLtBPlBKP_F6Mt9EC6so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l42uLBCnLtBPlBKP_F6Mt9EC6so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/436398BA3B7011EAA14F566EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.185.0/24 103.9.187.0/24 103.244.162.0/24 117.104.186.0/23 IPv6: 2404:b780::/32 Signature Algorithm: sha256WithRSAEncryption 80:be:98:0f:1d:76:95:bd:3b:a2:dd:91:55:66:c3:9d:64:2a: 07:e8:f2:27:6b:a0:a2:0e:99:cd:53:33:01:22:90:5c:b4:51: ea:53:54:50:71:f8:1e:d1:d3:37:29:e0:89:b2:d9:b7:35:0a: a2:28:9a:d9:62:db:10:45:00:a7:b0:ba:26:fd:5e:80:b3:e1: 37:a8:28:63:36:c3:f9:88:bb:28:08:fd:d5:e0:8b:fd:86:53: f7:58:ae:22:88:80:5f:30:3c:aa:5b:93:0f:3f:64:70:61:43: b8:32:04:f2:5d:ad:ac:75:41:2b:24:09:36:a8:64:a5:53:e4: dd:68:7d:8c:36:f8:d1:0b:a8:ba:01:01:2b:ad:d0:8c:d6:c6: 3f:eb:26:d5:13:6c:be:a9:c7:3a:17:d4:ad:d9:7e:ed:2a:c7: a7:1f:dd:2d:fb:81:90:39:3c:2c:8b:07:2d:fa:a8:de:88:ad: 72:cd:89:24:5f:ac:16:22:bd:c8:5a:dd:8b:d8:81:6f:37:11: 62:59:e0:64:82:94:4d:1c:1b:5a:a3:50:f3:72:cd:51:2f:67: 8c:ec:f6:f5:db:15:6b:37:57:7e:84:a8:9a:09:87:cf:14:41: 4a:87:f8:43:2e:e3:b1:52:5e:9d:1f:2f:c1:b2:95:8c:3e:ac: 6a:09:03:d9 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICCewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU1RUExMTAvBgNVBAUTKDk3OERBRTJDMTBBNzJFRDA0Rjk0MTI4RkZDNUU4Q0I3 RDEwMkVBQ0EwHhcNMjMwODA0MTk1NzIzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkNTgyMi0xZThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZ9SqmG6D4TyTUdtt3r07ppwH5VKOubdqqxcvPVFyX9LntBcWVT8oiWE8bXL fH7F9s1oepqsdEgza7fesG9vPHl1fn6zpu1aVHoFeTHpn/9B3LIKiYihdkUG/oWq qESq119MqfOUZubGhnayI8rdVDQ2WLzCfd3lUITjexwkiwhDNT/YOmcaz3vKlzKw XI1050pbLdyzPV5Bol14gOzVJ+t47bmFd2gO/UgjV9JElv0YZGwwLtivH6ftH+Bg qFZtRb8xF1ce6YBl8W1Rd+3Bbcmht4u8TMiqmOw8rT6C/lS1MQq8Cbpaij+QoDf5 MyHkcFkzvbufphRGBq2NeNfWcwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFEfcdva6 8kph6psubMLF19RCdomIMB8GA1UdIwQYMBaAFJeNriwQpy7QT5QSj/xejLfRAurK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTVFQS83QzYwQjlGNjNC NkUxMUVBQUU1RjE2NkJDNEY5QUUwMi9sNDJ1TEJDbkx0QlBsQktQX0Y2TXQ5RUM2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w0MnVMQkNuTHRCUGxCS1BfRjZNdDlFQzZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU1RUEvN0M2MEI5RjYzQjZFMTFFQUFFNUYxNjZCQzRGOUFFMDIvNDM2Mzk4QkEz QjcwMTFFQUExNEY1NjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBABnCbkDBABnCbsDBABn9KIDBAF1aLowDQQCAAIwBwMFACQE t4AwDQYJKoZIhvcNAQELBQADggEBAIC+mA8ddpW9O6LdkVVmw51kKgfo8idroKIO mc1TMwEikFy0UepTVFBx+B7R0zcp4Imy2bc1CqIomtli2xBFAKewuib9XoCz4Teo KGM2w/mIuygI/dXgi/2GU/dYriKIgF8wPKpbkw8/ZHBhQ7gyBPJdrax1QSskCTao ZKVT5N1ofYw2+NELqLoBASut0IzWxj/rJtUTbL6pxzoX1K3Zfu0qx6cf3S37gZA5 PCyLBy36qN6IrXLNiSRfrBYivcha3YvYgW83EWJZ4GSClE0cG1qjUPNyzVEvZ4zs 9vXbFWs3V36EqJoJh88UQUqH+EMu47FSXp0fL8GylYw+rGoJA9k= -----END CERTIFICATE-----Generated at Fri May 31 22:13:04 2024 by rpki-client on console-fra.rpki-client.org