$ rpki-client -vvf rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/C2D236E6B70E11EAAE6CE049C4F9AE02.roa File: C2D236E6B70E11EAAE6CE049C4F9AE02.roa (raw, json) Hash identifier: Y47apNgOzJ6xhPSgejM+cnUgXuOKmmkEQCObfhcCUEc= Subject key identifier: 04:49:C3:78:EF:84:C7:6B:66:53:01:89:F6:8D:83:D5:F4:D8:49:05 Certificate issuer: /CN=A911849D/serialNumber=11C9727CA5292CE5DA5D70BA882BC2D643F41085 Certificate serial: 078C Authority key identifier: 11:C9:72:7C:A5:29:2C:E5:DA:5D:70:BA:88:2B:C2:D6:43:F4:10:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/C2D236E6B70E11EAAE6CE049C4F9AE02.roa Signing time: Tue 26 Sep 2023 21:38:50 +0000 ROA not before: Tue 26 Sep 2023 21:38:50 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 63399 IP address blocks: 103.35.126.0/24 maxlen: 24 2402:c580::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.crl rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1932 (0x78c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911849D/serialNumber=11C9727CA5292CE5DA5D70BA882BC2D643F41085 Validity Not Before: Sep 26 21:38:50 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65134f6a-0bfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:cd:59:8b:66:01:df:18:90:ef:84:14:12:0e: 43:e0:40:73:cb:2e:ff:a7:d7:c5:e1:8c:69:8c:83: b7:14:4f:ba:0b:61:29:da:63:c2:62:85:8d:af:7b: f0:a9:0c:31:3f:97:00:b4:36:5f:b0:17:0e:51:69: 55:da:a3:80:41:b4:16:b3:72:ac:af:38:fd:21:3c: 7b:58:33:03:b3:e7:f5:5b:86:d8:96:32:22:8d:8f: da:e0:38:d4:10:dc:17:b6:a5:5b:71:94:57:ee:5b: 84:50:06:32:83:25:b8:b6:bc:4d:dd:cd:ba:33:a1: 2c:7e:1f:f7:d1:5d:14:21:0e:05:c1:36:65:a3:4d: e2:6e:1d:78:d0:c3:ec:e4:7c:c1:cc:24:a9:e4:0a: e5:cd:df:08:a4:1b:42:b0:3c:6d:93:e1:38:f2:37: 9a:25:25:09:8d:a6:ad:09:3b:80:54:76:e1:98:d7: 36:f9:66:0a:59:79:44:6c:61:9c:15:21:e4:8c:40: 95:82:f2:94:60:3f:df:c1:2c:96:57:07:ec:09:6b: 61:78:df:0a:b6:08:dc:7a:4b:67:3e:db:65:88:ec: 5d:ee:be:35:58:c3:b9:38:27:e0:69:9e:37:d8:d0: 6c:0b:4e:70:de:38:73:5e:e1:73:96:a3:7c:2a:6a: d6:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:49:C3:78:EF:84:C7:6B:66:53:01:89:F6:8D:83:D5:F4:D8:49:05 X509v3 Authority Key Identifier: keyid:11:C9:72:7C:A5:29:2C:E5:DA:5D:70:BA:88:2B:C2:D6:43:F4:10:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/C2D236E6B70E11EAAE6CE049C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.126.0/24 IPv6: 2402:c580::/32 Signature Algorithm: sha256WithRSAEncryption 49:bb:8c:d2:14:02:b6:8c:8b:02:8c:96:48:f0:89:f5:35:38: 48:98:e7:d6:8f:8e:0e:ae:cd:88:1e:d2:e0:2d:d8:68:40:2f: 89:93:02:11:4d:e4:d0:86:ff:03:97:9d:b9:aa:d7:9c:f8:88: e6:29:5f:f3:ec:23:2e:f8:97:15:6f:02:83:3f:3b:26:48:ab: 1f:b5:07:fd:e4:39:14:f5:ef:23:b0:48:c3:3f:aa:12:91:f7: af:ae:9a:ea:34:6c:c2:0d:51:49:f7:a9:82:41:9f:f0:21:9d: e6:ee:b5:62:95:f6:c2:08:46:b0:35:e6:14:b1:b3:0e:46:59: eb:5f:2d:d4:d4:92:4a:5c:b6:55:4b:0b:59:e2:11:8c:a6:b8: 1f:02:a2:59:64:cd:0b:34:93:a8:42:a0:3b:79:3a:39:b6:70: 7f:1e:90:aa:c3:d8:c7:7b:bf:a6:5f:5e:c7:22:cf:38:f7:c4: 4e:6b:bf:9b:d6:eb:28:da:6a:1c:af:e4:3c:60:eb:0e:b3:43: 1b:75:cc:d9:72:19:72:2f:6c:48:a9:98:70:de:74:49:03:90: 1b:f8:6e:e9:7e:18:00:44:1f:81:22:13:72:3d:e8:b0:6f:c9: 92:50:1a:d4:f7:d7:8b:0a:fb:19:71:e4:76:5d:19:7f:2d:14: 73:de:45:df -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg0OUQxMTAvBgNVBAUTKDExQzk3MjdDQTUyOTJDRTVEQTVENzBCQTg4MkJDMkQ2 NDNGNDEwODUwHhcNMjMwOTI2MjEzODUwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEzNGY2YS0wYmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx81Zi2YB3xiQ74QUEg5D4EBzyy7/p9fF4YxpjIO3FE+6C2Ep2mPCYoWNr3vw qQwxP5cAtDZfsBcOUWlV2qOAQbQWs3Ksrzj9ITx7WDMDs+f1W4bYljIijY/a4DjU ENwXtqVbcZRX7luEUAYygyW4trxN3c26M6Esfh/30V0UIQ4FwTZlo03ibh140MPs 5HzBzCSp5Arlzd8IpBtCsDxtk+E48jeaJSUJjaatCTuAVHbhmNc2+WYKWXlEbGGc FSHkjECVgvKUYD/fwSyWVwfsCWtheN8KtgjcektnPttliOxd7r41WMO5OCfgaZ43 2NBsC05w3jhzXuFzlqN8KmrWhQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFARJw3jv hMdrZlMBifaNg9X02EkFMB8GA1UdIwQYMBaAFBHJcnylKSzl2l1wuogrwtZD9BCF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODQ5RC80NDFBNzI2NEI2 NkUxMUVBOUIwODcyNDdDNEY5QUUwMi9FY2x5ZktVcExPWGFYWEM2aUN2QzFrUDBF SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VjbHlmS1VwTE9YYVhYQzZpQ3ZDMWtQMEVJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg0OUQvNDQxQTcyNjRCNjZFMTFFQTlCMDg3MjQ3QzRGOUFFMDIvQzJEMjM2RTZC NzBFMTFFQUFFNkNFMDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnI34wDQQCAAIwBwMFACQCxYAwDQYJKoZIhvcNAQELBQAD ggEBAEm7jNIUAraMiwKMlkjwifU1OEiY59aPjg6uzYge0uAt2GhAL4mTAhFN5NCG /wOXnbmq15z4iOYpX/PsIy74lxVvAoM/OyZIqx+1B/3kORT17yOwSMM/qhKR96+u muo0bMINUUn3qYJBn/AhnebutWKV9sIIRrA15hSxsw5GWetfLdTUkkpctlVLC1ni EYymuB8CollkzQs0k6hCoDt5Ojm2cH8ekKrD2Md7v6ZfXscizzj3xE5rv5vW6yja ahyv5Dxg6w6zQxt1zNlyGXIvbEipmHDedEkDkBv4bul+GABEH4EiE3I96LBvyZJQ GtT314sK+xlx5HZdGX8tFHPeRd8= -----END CERTIFICATE-----Generated at Sun May 26 22:43:30 2024 by rpki-client on console-fra.rpki-client.org