$ rpki-client -vvf rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/C36AEA764F7911ECAA7C6A6FC4F9AE02.roa File: C36AEA764F7911ECAA7C6A6FC4F9AE02.roa (raw, json) Hash identifier: 8ByvvFFKt1zvL3QHLs2vh7JrTlBF05iNMW+KAad1GDc= Subject key identifier: AE:A0:FB:B5:65:FF:10:6D:8D:A4:EC:75:E1:9F:D4:CC:B3:7E:BC:1D Certificate issuer: /CN=A91609E6/serialNumber=4E4CB4B9151E7BAE112BEC5359C31C95580EE031 Certificate serial: 033A Authority key identifier: 4E:4C:B4:B9:15:1E:7B:AE:11:2B:EC:53:59:C3:1C:95:58:0E:E0:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tky0uRUee64RK-xTWcMclVgO4DE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/C36AEA764F7911ECAA7C6A6FC4F9AE02.roa Signing time: Fri 03 Nov 2023 02:34:54 +0000 ROA not before: Fri 03 Nov 2023 02:34:54 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 147040 IP address blocks: 103.173.114.0/24 maxlen: 24 103.173.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/Tky0uRUee64RK-xTWcMclVgO4DE.crl rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/Tky0uRUee64RK-xTWcMclVgO4DE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tky0uRUee64RK-xTWcMclVgO4DE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 03:06:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 826 (0x33a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609E6/serialNumber=4E4CB4B9151E7BAE112BEC5359C31C95580EE031 Validity Not Before: Nov 3 02:34:54 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65445c4e-88e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a8:a4:dd:7f:a6:1b:d1:9a:3f:ba:ce:d0:73: 7a:df:be:b3:2d:36:03:41:a4:2d:10:62:86:c1:b6: b3:82:40:50:0d:93:e2:23:39:96:fd:9e:bc:94:b2: 75:6f:d3:e3:88:13:66:c7:d2:8f:80:1a:f1:b3:63: 56:1e:75:6a:4c:5a:d7:a5:54:09:f3:fb:4f:31:08: 0f:7c:54:fd:d9:eb:69:98:99:b9:73:2f:6e:69:d7: d8:4f:9a:46:f4:ce:a0:de:ac:91:14:a8:b8:75:05: 5e:15:7b:60:8c:62:bb:59:69:d0:15:be:04:ee:8c: fb:5e:24:48:fa:6f:95:ce:56:62:13:c6:fa:48:1d: 8d:32:b8:6c:42:92:17:d9:1d:88:43:27:da:95:15: 54:ee:62:48:29:81:d8:6a:22:9e:f2:50:9d:0e:d8: 74:61:33:ca:6f:9b:30:fb:96:46:79:00:3b:a1:74: 4b:cd:68:ad:e7:bc:40:85:f7:aa:bd:ab:88:3f:37: 89:81:34:13:f3:b6:af:8c:5f:1f:4c:cb:27:23:74: 2f:84:da:46:f8:01:d0:8e:e9:c0:1e:d2:8c:2c:1f: 17:cf:f3:fb:08:cb:b7:e5:0e:5c:16:db:28:f5:b4: e9:64:07:0a:52:60:d1:b4:a6:7d:4f:02:dc:96:43: e5:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A0:FB:B5:65:FF:10:6D:8D:A4:EC:75:E1:9F:D4:CC:B3:7E:BC:1D X509v3 Authority Key Identifier: keyid:4E:4C:B4:B9:15:1E:7B:AE:11:2B:EC:53:59:C3:1C:95:58:0E:E0:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/Tky0uRUee64RK-xTWcMclVgO4DE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tky0uRUee64RK-xTWcMclVgO4DE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/C36AEA764F7911ECAA7C6A6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.114.0/23 Signature Algorithm: sha256WithRSAEncryption 11:e5:0a:27:a8:b5:f1:46:84:5a:fc:e7:a0:82:0f:11:d8:23: 59:e6:ae:cd:5a:f3:4e:80:e2:f3:95:5c:65:81:4b:75:00:7e: 58:aa:31:8e:73:29:f3:8a:05:39:22:87:f0:cb:38:75:88:d5: ec:98:09:7d:cb:28:66:b7:0c:cc:a3:0d:6b:09:49:4b:fa:94: 32:aa:69:c6:00:d8:60:50:4f:25:69:02:1c:c6:b4:de:2d:eb: e6:f3:46:8c:07:9a:83:8c:69:00:ff:05:69:c7:6f:95:cf:8c: 4d:c7:5d:81:59:27:aa:7b:59:04:5d:fc:29:4e:5d:bb:b9:9c: 3f:20:06:d0:85:59:20:d8:44:c4:c0:20:7e:fd:a0:88:ff:68: cc:b3:25:65:3e:9a:27:8e:08:61:c0:d5:5e:47:1b:a6:70:bd: 08:ac:60:10:0c:9e:56:8d:6f:1c:83:a4:6f:10:1c:87:1b:1d: 0a:3e:6f:55:23:9d:ef:32:57:0e:d8:db:3f:79:98:3d:68:e1: 55:41:c2:fa:16:f4:84:09:18:fe:37:19:0b:0c:0c:ba:43:a0: 5b:23:f5:91:4a:13:ec:11:42:c9:09:2c:8d:2b:e3:81:1a:1e: 10:09:68:b0:1f:f9:c4:ba:8c:3e:57:a3:fd:8b:c4:20:c1:2d: 4e:49:56:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA5RTYxMTAvBgNVBAUTKDRFNENCNEI5MTUxRTdCQUUxMTJCRUM1MzU5QzMxQzk1 NTgwRUUwMzEwHhcNMjMxMTAzMDIzNDU0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0NWM0ZS04OGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoqik3X+mG9GaP7rO0HN6376zLTYDQaQtEGKGwbazgkBQDZPiIzmW/Z68lLJ1 b9PjiBNmx9KPgBrxs2NWHnVqTFrXpVQJ8/tPMQgPfFT92etpmJm5cy9uadfYT5pG 9M6g3qyRFKi4dQVeFXtgjGK7WWnQFb4E7oz7XiRI+m+VzlZiE8b6SB2NMrhsQpIX 2R2IQyfalRVU7mJIKYHYaiKe8lCdDth0YTPKb5sw+5ZGeQA7oXRLzWit57xAhfeq vauIPzeJgTQT87avjF8fTMsnI3QvhNpG+AHQjunAHtKMLB8Xz/P7CMu35Q5cFtso 9bTpZAcKUmDRtKZ9TwLclkPl+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFK6g+7Vl /xBtjaTsdeGf1MyzfrwdMB8GA1UdIwQYMBaAFE5MtLkVHnuuESvsU1nDHJVYDuAx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDlFNi9CNjE2Qzg2QTRG NzcxMUVDOUYwOTQ1NkVDNEY5QUUwMi9Ua3kwdVJVZWU2NFJLLXhUV2NNY2xWZ080 REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RreTB1UlVlZTY0UksteFRXY01jbFZnTzRERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA5RTYvQjYxNkM4NkE0Rjc3MTFFQzlGMDk0NTZFQzRGOUFFMDIvQzM2QUVBNzY0 Rjc5MTFFQ0FBN0M2QTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrXIwDQYJKoZIhvcNAQELBQADggEBABHlCieotfFGhFr8 56CCDxHYI1nmrs1a806A4vOVXGWBS3UAfliqMY5zKfOKBTkih/DLOHWI1eyYCX3L KGa3DMyjDWsJSUv6lDKqacYA2GBQTyVpAhzGtN4t6+bzRowHmoOMaQD/BWnHb5XP jE3HXYFZJ6p7WQRd/ClOXbu5nD8gBtCFWSDYRMTAIH79oIj/aMyzJWU+mieOCGHA 1V5HG6ZwvQisYBAMnlaNbxyDpG8QHIcbHQo+b1Ujne8yVw7Y2z95mD1o4VVBwvoW 9IQJGP43GQsMDLpDoFsj9ZFKE+wRQskJLI0r44EaHhAJaLAf+cS6jD5Xo/2LxCDB LU5JVhA= -----END CERTIFICATE-----Generated at Fri Jun 7 04:06:20 2024 by rpki-client on console-fra.rpki-client.org