$ rpki-client -vvf rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/36AEBDD61C9C11EF9953E67EC4F9AE02.roa File: 36AEBDD61C9C11EF9953E67EC4F9AE02.roa (raw, json) Hash identifier: rpKykEqpdMyajRCddAlip64oJnnTVjSFIgS+VJO9Sp4= Subject key identifier: B9:89:63:96:B4:06:DD:A5:CA:6A:E2:3B:2E:13:F3:D7:89:66:54:4C Certificate issuer: /CN=A916879A/serialNumber=399A5E17D9CA43B6C33AC330206DCBDD935E7871 Certificate serial: 02 Authority key identifier: 39:9A:5E:17:D9:CA:43:B6:C3:3A:C3:30:20:6D:CB:DD:93:5E:78:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/36AEBDD61C9C11EF9953E67EC4F9AE02.roa Signing time: Tue 28 May 2024 02:44:33 +0000 ROA not before: Tue 28 May 2024 02:44:33 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 137971 IP address blocks: 103.118.161.0/24 maxlen: 24 2001:df5:d500::/48 maxlen: 48 2001:df5:d501::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.crl rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jul 2024 07:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916879A/serialNumber=399A5E17D9CA43B6C33AC330206DCBDD935E7871 Validity Not Before: May 28 02:44:33 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=66554511-e11c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:32:73:35:6e:71:98:44:74:99:9e:3e:36:9a: 3e:fb:6a:9f:cb:0b:85:65:14:07:52:86:26:a0:df: 35:c1:b6:70:4f:54:47:10:3e:09:35:3f:a8:43:2f: 03:e0:db:f7:3d:95:b2:0b:51:e9:65:3d:e2:1c:af: b1:db:f7:c1:20:f6:b0:f3:b1:54:50:05:c0:7c:1f: 41:6f:89:bf:dd:57:33:9f:42:b3:f1:a7:6c:e1:d9: 7b:8e:b0:68:dc:4d:39:a3:8a:11:ed:3c:1d:b7:78: 15:ef:9b:a4:59:78:c0:ed:0f:85:4d:f7:4e:ab:36: e2:e6:10:43:68:f7:28:af:5f:fd:19:4a:e4:35:99: 3c:a0:96:cd:24:64:e0:af:75:44:bd:73:00:11:19: 6e:8a:a2:b0:ee:02:5e:c8:3b:93:f9:3e:78:c3:0c: e3:61:ec:bc:f1:4c:22:2d:f7:37:44:6d:13:e1:b9: 17:b7:a9:15:72:bc:09:54:38:5e:d0:f9:dc:33:86: 72:ac:f3:33:45:91:56:11:54:90:e0:d7:e9:d4:cc: 11:c1:e9:3b:f4:d6:fd:31:b2:c0:ac:82:43:6d:f9: 16:ae:a5:66:45:de:2a:0f:49:98:2f:c4:dc:5e:90: e3:30:6b:79:6d:2e:e1:05:e4:c6:1a:5e:60:83:0b: 9f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:89:63:96:B4:06:DD:A5:CA:6A:E2:3B:2E:13:F3:D7:89:66:54:4C X509v3 Authority Key Identifier: keyid:39:9A:5E:17:D9:CA:43:B6:C3:3A:C3:30:20:6D:CB:DD:93:5E:78:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/36AEBDD61C9C11EF9953E67EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.161.0/24 IPv6: 2001:df5:d500::/47 Signature Algorithm: sha256WithRSAEncryption 5a:2d:76:82:35:44:5c:4e:d2:a7:64:ca:e3:2b:43:90:ce:21: b8:5f:a1:52:e5:84:47:82:39:38:65:d7:9b:f4:39:f6:aa:e1: 53:88:92:09:63:b5:9c:90:d3:e2:68:aa:06:00:9b:76:c1:73: e9:c7:90:04:46:7c:42:ab:11:f3:da:a7:0f:4e:a1:cf:56:25: 60:cd:22:f4:ff:93:36:6c:fe:09:09:8a:5e:11:86:92:8b:e1: 78:a0:05:9e:4c:d8:d9:bb:f1:a3:b9:fd:76:81:76:94:5b:90: 5e:90:c3:fb:d5:f7:97:75:f1:4d:dc:97:f5:6c:a5:e0:54:3b: 2d:2b:f5:24:6f:0b:f9:34:bd:8a:60:e6:21:91:2f:3c:4d:d3: 5f:25:03:7a:d6:08:af:dd:4b:bb:4f:03:e1:a9:da:44:de:58: fb:3f:01:ec:ec:cc:e5:97:4e:d7:6c:ba:4d:8e:a7:72:1d:ea: bb:54:a6:33:51:11:33:8e:0d:01:da:c2:9c:7d:e9:3a:47:7b: 19:3d:c2:6d:e6:a5:18:ec:65:22:d2:40:2e:35:94:69:fb:69: 0e:b5:55:4b:86:6e:ae:58:8a:6f:d1:50:37:50:df:49:c9:8e: 51:af:52:1e:0d:1b:d3:55:61:fd:81:ec:33:ae:94:67:d5:3e: a0:18:0c:1b -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODc5QTExMC8GA1UEBRMoMzk5QTVFMTdEOUNBNDNCNkMzM0FDMzMwMjA2RENCREQ5 MzVFNzg3MTAeFw0yNDA1MjgwMjQ0MzNaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTU0NTExLWUxMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEMnM1bnGYRHSZnj42mj77ap/LC4VlFAdShiag3zXBtnBPVEcQPgk1P6hDLwPg 2/c9lbILUellPeIcr7Hb98Eg9rDzsVRQBcB8H0Fvib/dVzOfQrPxp2zh2XuOsGjc TTmjihHtPB23eBXvm6RZeMDtD4VN906rNuLmEENo9yivX/0ZSuQ1mTygls0kZOCv dUS9cwARGW6KorDuAl7IO5P5PnjDDONh7LzxTCIt9zdEbRPhuRe3qRVyvAlUOF7Q +dwzhnKs8zNFkVYRVJDg1+nUzBHB6Tv01v0xssCsgkNt+RaupWZF3ioPSZgvxNxe kOMwa3ltLuEF5MYaXmCDC5+JAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUuYljlrQG 3aXKauI7LhPz14lmVEwwHwYDVR0jBBgwFoAUOZpeF9nKQ7bDOsMwIG3L3ZNeeHEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4NzlBL0I2NzAxNzNDMUM5 QjExRUY4RjQ1Q0M3REM0RjlBRTAyL09acGVGOW5LUTdiRE9zTXdJRzNMM1pOZWVI RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT1pwZUY5bktRN2JET3NNd0lHM0wzWk5lZUhFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODc5QS9CNjcwMTczQzFDOUIxMUVGOEY0NUNDN0RDNEY5QUUwMi8zNkFFQkRENjFD OUMxMUVGOTk1M0U2N0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGd2oTAPBAIAAjAJAwcBIAEN9dUAMA0GCSqGSIb3DQEBCwUA A4IBAQBaLXaCNURcTtKnZMrjK0OQziG4X6FS5YRHgjk4Zdeb9Dn2quFTiJIJY7Wc kNPiaKoGAJt2wXPpx5AERnxCqxHz2qcPTqHPViVgzSL0/5M2bP4JCYpeEYaSi+F4 oAWeTNjZu/Gjuf12gXaUW5BekMP71feXdfFN3Jf1bKXgVDstK/Ukbwv5NL2KYOYh kS88TdNfJQN61giv3Uu7TwPhqdpE3lj7PwHs7Mzll07XbLpNjqdyHeq7VKYzUREz jg0B2sKcfek6R3sZPcJt5qUY7GUi0kAuNZRp+2kOtVVLhm6uWIpv0VA3UN9JyY5R r1IeDRvTVWH9gewzrpRn1T6gGAwb -----END CERTIFICATE-----Generated at Mon Jul 1 10:03:05 2024 by rpki-client on console-fra.rpki-client.org