$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/7321413EC22511E99FB7F225C4F9AE02.roa File: 7321413EC22511E99FB7F225C4F9AE02.roa (raw, json) Hash identifier: XLiu0myTVTNkoyEVw4DoOb0tzPht9Oq5Pm0BGjRCZ3E= Subject key identifier: 92:1E:AB:04:F5:5C:78:25:53:54:F1:9B:C5:CA:77:87:E6:51:62:8A Certificate issuer: /CN=A91B0367/serialNumber=E15A360372DDAF1C5B218E8C4CF69F6F8BD7F59A Certificate serial: 0C29 Authority key identifier: E1:5A:36:03:72:DD:AF:1C:5B:21:8E:8C:4C:F6:9F:6F:8B:D7:F5:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/7321413EC22511E99FB7F225C4F9AE02.roa Signing time: Wed 14 Jun 2023 19:19:25 +0000 ROA not before: Wed 14 Jun 2023 19:19:25 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 58625 IP address blocks: 103.14.36.0/22 maxlen: 22 103.14.36.0/24 maxlen: 24 103.14.37.0/24 maxlen: 24 103.14.38.0/24 maxlen: 24 103.14.39.0/24 maxlen: 24 2404:2700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.crl rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3113 (0xc29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0367/serialNumber=E15A360372DDAF1C5B218E8C4CF69F6F8BD7F59A Validity Not Before: Jun 14 19:19:25 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=648a12bd-d2e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:a0:23:4b:58:b8:e2:fb:a0:89:1f:08:d4:df: b3:4f:fb:f3:be:fa:ff:d8:fb:16:5c:9b:51:0c:9e: cb:89:e8:ae:fd:30:b9:89:6d:82:5a:c2:af:01:48: ef:89:a9:24:1e:b0:c8:ab:1f:a1:de:6e:07:ed:55: c3:d7:95:0f:da:f4:46:a1:2d:99:3e:c8:bf:42:63: 02:53:4d:08:5e:72:3e:2c:80:d2:ad:73:99:07:bc: 0b:e4:df:32:f7:ed:3b:ca:83:09:0e:39:d6:19:00: 34:b7:1d:08:62:c1:a3:d7:61:f2:f9:12:4a:6e:da: dc:28:1a:3e:fc:05:e0:18:2c:0b:17:20:79:44:0b: 5c:c3:9f:25:fe:62:1b:ad:a1:e0:a8:cc:d6:dd:31: 4b:db:62:11:da:2c:e3:ce:a3:b9:b2:fc:6a:c9:03: a9:f5:43:eb:36:cb:89:1b:53:21:b8:1c:4a:b1:e9: da:aa:5b:54:f6:d5:15:3d:7d:68:95:b0:9e:53:2d: 0e:af:59:72:46:dd:2c:02:4d:a4:9c:44:52:41:4f: c6:74:1b:7d:17:ea:6c:b7:8f:87:24:32:d8:0e:b5: 33:51:7a:73:d4:54:3d:d1:10:80:70:65:56:93:bb: a3:9e:7c:26:36:d7:57:0d:cc:35:e6:eb:cd:2f:33: 03:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:1E:AB:04:F5:5C:78:25:53:54:F1:9B:C5:CA:77:87:E6:51:62:8A X509v3 Authority Key Identifier: keyid:E1:5A:36:03:72:DD:AF:1C:5B:21:8E:8C:4C:F6:9F:6F:8B:D7:F5:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/7321413EC22511E99FB7F225C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.36.0/22 IPv6: 2404:2700::/32 Signature Algorithm: sha256WithRSAEncryption bb:b6:6c:9a:b6:2b:d5:d5:de:c9:bd:72:db:54:4e:15:6d:ac: 07:b1:3c:d2:a8:2f:d5:dc:73:51:c6:f7:72:55:9a:b1:40:35: 6f:51:9e:bb:71:14:de:38:df:60:42:c5:13:b1:5e:63:b1:c5: 2c:e6:09:87:14:ba:82:ea:0e:e0:9e:ce:2f:09:e1:d9:76:3f: db:d6:d8:0e:97:5d:18:29:04:24:ae:a4:da:64:c6:37:8f:ba: 38:ae:86:2b:bf:f7:d3:05:f3:f6:ff:0a:ce:e5:a0:88:b4:3a: aa:34:f1:58:f9:a0:3a:bb:8a:f9:3c:6d:84:68:ee:d7:80:ec: 38:e3:b1:fe:e7:ab:79:87:00:b6:c4:49:77:a7:8e:7e:a8:e7: aa:4c:81:2d:2e:cb:7f:44:cf:dd:91:31:24:68:fd:3d:9d:e5: ba:cd:24:73:ab:0a:f1:46:b1:50:eb:7c:c8:17:0e:1d:7e:d6: ef:fe:0f:9c:04:11:6d:fd:b9:5d:af:9c:54:c8:76:16:58:9b: 3f:11:a2:01:bc:91:27:bb:99:4c:4d:45:a8:ee:d9:1d:57:a0: 7c:80:b2:23:a7:bb:a9:f0:cb:11:58:8f:78:e7:b4:62:4a:eb: 0c:3d:41:fe:05:7c:57:15:5f:18:20:e2:5a:4b:b7:b9:d7:45: 36:d4:8d:fd -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAzNjcxMTAvBgNVBAUTKEUxNUEzNjAzNzJEREFGMUM1QjIxOEU4QzRDRjY5RjZG OEJEN0Y1OUEwHhcNMjMwNjE0MTkxOTI1WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDhhMTJiZC1kMmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlqAjS1i44vugiR8I1N+zT/vzvvr/2PsWXJtRDJ7Lieiu/TC5iW2CWsKvAUjv iakkHrDIqx+h3m4H7VXD15UP2vRGoS2ZPsi/QmMCU00IXnI+LIDSrXOZB7wL5N8y 9+07yoMJDjnWGQA0tx0IYsGj12Hy+RJKbtrcKBo+/AXgGCwLFyB5RAtcw58l/mIb raHgqMzW3TFL22IR2izjzqO5svxqyQOp9UPrNsuJG1MhuBxKsenaqltU9tUVPX1o lbCeUy0Or1lyRt0sAk2knERSQU/GdBt9F+pst4+HJDLYDrUzUXpz1FQ90RCAcGVW k7ujnnwmNtdXDcw15uvNLzMDaQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJIeqwT1 XHglU1Txm8XKd4fmUWKKMB8GA1UdIwQYMBaAFOFaNgNy3a8cWyGOjEz2n2+L1/Wa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDM2Ny8wOEMzRDI4RUMy MjUxMUU5QTM2N0QzMjVDNEY5QUUwMi80Vm8yQTNMZHJ4eGJJWTZNVFBhZmI0dlg5 Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWbzJBM0xkcnh4YklZNk1UUGFmYjR2WDlaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAzNjcvMDhDM0QyOEVDMjI1MTFFOUEzNjdEMzI1QzRGOUFFMDIvNzMyMTQxM0VD MjI1MTFFOTlGQjdGMjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnDiQwDQQCAAIwBwMFACQEJwAwDQYJKoZIhvcNAQELBQAD ggEBALu2bJq2K9XV3sm9cttUThVtrAexPNKoL9Xcc1HG93JVmrFANW9RnrtxFN44 32BCxROxXmOxxSzmCYcUuoLqDuCezi8J4dl2P9vW2A6XXRgpBCSupNpkxjePujiu hiu/99MF8/b/Cs7loIi0Oqo08Vj5oDq7ivk8bYRo7teA7Djjsf7nq3mHALbESXen jn6o56pMgS0uy39Ez92RMSRo/T2d5brNJHOrCvFGsVDrfMgXDh1+1u/+D5wEEW39 uV2vnFTIdhZYmz8RogG8kSe7mUxNRaju2R1XoHyAsiOnu6nwyxFYj3jntGJK6ww9 Qf4FfFcVXxgg4lpLt7nXRTbUjf0= -----END CERTIFICATE-----Generated at Fri May 31 19:47:52 2024 by rpki-client on console-fra.rpki-client.org