$ rpki-client -vvf rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/7036FFF00E9611EF8B4CB827C4F9AE02.roa File: 7036FFF00E9611EF8B4CB827C4F9AE02.roa (raw, json) Hash identifier: Bv5PsAPlsXup053SqORErIKD7VS3IvYR+Xy+2uhjxJk= Subject key identifier: 8E:96:C8:17:76:75:EE:64:D1:9E:D4:9D:D1:D4:2F:70:3C:3A:85:CF Certificate issuer: /CN=A9118A69/serialNumber=350731B66044D34A3D2DA7589BD8331D145FE498 Certificate serial: 04 Authority key identifier: 35:07:31:B6:60:44:D3:4A:3D:2D:A7:58:9B:D8:33:1D:14:5F:E4:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQcxtmBE00o9LadYm9gzHRRf5Jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/7036FFF00E9611EF8B4CB827C4F9AE02.roa Signing time: Fri 10 May 2024 06:27:56 +0000 ROA not before: Fri 10 May 2024 06:27:56 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152735 IP address blocks: 103.142.152.0/24 maxlen: 24 2001:def:c000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/NQcxtmBE00o9LadYm9gzHRRf5Jg.crl rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/NQcxtmBE00o9LadYm9gzHRRf5Jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQcxtmBE00o9LadYm9gzHRRf5Jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Jul 2024 07:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118A69/serialNumber=350731B66044D34A3D2DA7589BD8331D145FE498 Validity Not Before: May 10 06:27:56 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=663dbe6c-4b81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bb:a7:44:22:4d:63:d8:cb:0a:e4:0f:ea:fc: 4d:bc:5e:f8:2e:94:79:58:4a:b0:ad:7c:be:8e:f8: c9:66:81:98:85:95:97:10:9b:cb:ce:f1:ee:51:61: da:a5:41:75:3c:50:dc:13:5e:d5:c8:48:bd:30:38: b4:b2:d6:f3:0e:ef:76:51:03:26:87:fa:7a:76:b7: 19:db:5a:d7:a7:2b:ba:34:50:93:63:62:a0:30:26: a6:16:ee:ee:3b:fc:cc:d2:a2:f7:2e:5f:0a:5d:df: 4e:7f:9d:f1:b3:53:fb:3c:8d:b5:ad:4e:2d:37:df: 7b:00:cb:bf:2c:e9:04:bc:c9:95:d3:88:43:36:d5: 29:44:d0:09:6b:dc:8b:40:73:46:d5:f0:7e:0d:00: b7:be:f3:a1:ca:9d:93:4f:b9:3f:0f:3b:ec:53:af: 02:ce:97:4a:b0:6d:b8:3b:7c:b1:e9:d3:6d:aa:c7: f6:5e:0d:2a:d0:62:f8:39:b0:78:80:3a:83:1e:1d: 93:ab:c9:fe:96:e8:15:e3:0f:f8:fe:52:b6:77:7b: df:f6:f1:be:b4:5f:03:27:36:3f:32:e5:d2:fb:9e: 2c:cb:2e:91:aa:5c:4c:52:fe:d9:70:87:4d:97:05: 23:53:46:f9:18:d5:2a:cf:84:ba:47:1c:b4:d5:87: 79:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:96:C8:17:76:75:EE:64:D1:9E:D4:9D:D1:D4:2F:70:3C:3A:85:CF X509v3 Authority Key Identifier: keyid:35:07:31:B6:60:44:D3:4A:3D:2D:A7:58:9B:D8:33:1D:14:5F:E4:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/NQcxtmBE00o9LadYm9gzHRRf5Jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQcxtmBE00o9LadYm9gzHRRf5Jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118A69/C62011D60CE811EF9EFDA31BC4F9AE02/7036FFF00E9611EF8B4CB827C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.152.0/24 IPv6: 2001:def:c000::/48 Signature Algorithm: sha256WithRSAEncryption 7f:7e:14:5b:8c:74:aa:1b:9f:48:d8:a5:6f:c3:24:39:82:57: 0b:d6:5d:1a:ed:24:35:7e:42:4f:c7:da:19:b6:e0:2e:91:ff: c7:1e:37:84:b0:11:26:04:2a:3e:26:60:31:71:58:ed:73:c1: da:e6:4a:be:55:b8:2d:fe:6d:db:47:60:3f:67:b7:8e:82:b7: 51:f4:b4:6b:ed:88:11:d1:1b:68:75:2b:79:64:e4:d1:67:47: 2e:d3:dd:d1:7d:cf:16:fb:6c:89:f3:8d:3b:c9:81:8e:d7:35: ea:5d:82:28:80:a6:e8:2d:a7:96:66:aa:ee:7c:da:8c:98:16: 1d:ae:e3:43:04:7f:66:06:e5:20:27:be:67:4e:59:ac:fa:69: 3c:7c:1e:c0:85:f2:26:a1:48:6f:a6:b0:5d:c8:ac:c1:ff:e5: ca:6b:4f:62:83:ea:9d:82:b4:b4:5a:b9:91:b6:18:fa:a9:c5: 31:ba:18:01:3d:d4:48:a6:79:db:23:6a:5a:e8:46:97:5c:b3: f2:a9:58:0c:f0:01:50:fa:8e:4b:b2:bd:74:54:87:1a:07:3f: 5a:d4:1f:c1:fd:59:65:36:dd:81:7b:fc:c4:93:94:b5:96:f5: 1c:3c:c0:ec:8b:71:f7:5e:6e:2c:11:9a:6b:10:76:21:bd:17: 73:96:08:f6 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OEE2OTExMC8GA1UEBRMoMzUwNzMxQjY2MDQ0RDM0QTNEMkRBNzU4OUJEODMzMUQx NDVGRTQ5ODAeFw0yNDA1MTAwNjI3NTZaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2M2RiZTZjLTRiODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2u6dEIk1j2MsK5A/q/E28XvgulHlYSrCtfL6O+MlmgZiFlZcQm8vO8e5RYdql QXU8UNwTXtXISL0wOLSy1vMO73ZRAyaH+np2txnbWtenK7o0UJNjYqAwJqYW7u47 /MzSovcuXwpd305/nfGzU/s8jbWtTi0333sAy78s6QS8yZXTiEM21SlE0Alr3ItA c0bV8H4NALe+86HKnZNPuT8PO+xTrwLOl0qwbbg7fLHp022qx/ZeDSrQYvg5sHiA OoMeHZOryf6W6BXjD/j+UrZ3e9/28b60XwMnNj8y5dL7nizLLpGqXExS/tlwh02X BSNTRvkY1SrPhLpHHLTVh3nLAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUjpbIF3Z1 7mTRntSd0dQvcDw6hc8wHwYDVR0jBBgwFoAUNQcxtmBE00o9LadYm9gzHRRf5Jgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4QTY5L0M2MjAxMUQ2MENF ODExRUY5RUZEQTMxQkM0RjlBRTAyL05RY3h0bUJFMDBvOUxhZFltOWd6SFJSZjVK Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlFjeHRtQkUwMG85TGFkWW05Z3pIUlJmNUpnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEE2OS9DNjIwMTFENjBDRTgxMUVGOUVGREEzMUJDNEY5QUUwMi83MDM2RkZGMDBF OTYxMUVGOEI0Q0I4MjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGeOmDAPBAIAAjAJAwcAIAEN78AAMA0GCSqGSIb3DQEBCwUA A4IBAQB/fhRbjHSqG59I2KVvwyQ5glcL1l0a7SQ1fkJPx9oZtuAukf/HHjeEsBEm BCo+JmAxcVjtc8Ha5kq+Vbgt/m3bR2A/Z7eOgrdR9LRr7YgR0RtodSt5ZOTRZ0cu 093Rfc8W+2yJ8407yYGO1zXqXYIogKboLaeWZqrufNqMmBYdruNDBH9mBuUgJ75n Tlms+mk8fB7AhfImoUhvprBdyKzB/+XKa09ig+qdgrS0WrmRthj6qcUxuhgBPdRI pnnbI2pa6EaXXLPyqVgM8AFQ+o5Lsr10VIcaBz9a1B/B/VllNt2Be/zEk5S1lvUc PMDsi3H3Xm4sEZprEHYhvRdzlgj2 -----END CERTIFICATE-----Generated at Wed Jul 3 09:22:25 2024 by rpki-client on console-ams.rpki-client.org