$ rpki-client -vvf rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/08B3B40EB14311E58FF2C717C4F9AE02.roa File: 08B3B40EB14311E58FF2C717C4F9AE02.roa (raw, json) Hash identifier: sAmTypMf5/yjgtAyFRTnQXafX3UsjEyUxFVjaKwVwKI= Subject key identifier: F9:FA:CC:FB:33:1F:14:DC:25:82:B7:28:DE:EF:21:58:6F:1F:A7:A7 Certificate issuer: /CN=A911918E/serialNumber=320B37F6E97045E38984610FFA47E9684A84677D Certificate serial: 24F7 Authority key identifier: 32:0B:37:F6:E9:70:45:E3:89:84:61:0F:FA:47:E9:68:4A:84:67:7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mgs39ulwReOJhGEP-kfpaEqEZ30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/08B3B40EB14311E58FF2C717C4F9AE02.roa Signing time: Thu 18 Jul 2024 16:03:20 +0000 ROA not before: Thu 18 Jul 2024 16:03:19 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 133623 IP address blocks: 103.36.16.0/22 maxlen: 22 103.36.16.0/24 maxlen: 24 103.36.17.0/24 maxlen: 24 103.36.18.0/24 maxlen: 24 103.36.19.0/24 maxlen: 24 103.252.32.0/22 maxlen: 22 103.252.32.0/24 maxlen: 24 103.252.33.0/24 maxlen: 24 103.252.34.0/24 maxlen: 24 103.252.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/Mgs39ulwReOJhGEP-kfpaEqEZ30.crl rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/Mgs39ulwReOJhGEP-kfpaEqEZ30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mgs39ulwReOJhGEP-kfpaEqEZ30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9463 (0x24f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911918E/serialNumber=320B37F6E97045E38984610FFA47E9684A84677D Validity Not Before: Jul 18 16:03:19 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66993cc7-305a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9a:17:0a:c1:9f:72:a2:51:68:2b:a1:10:40: 5c:f9:00:2e:36:10:0c:5b:a4:22:69:b1:18:1b:8b: 3b:14:fc:fc:4c:cd:1a:05:eb:5e:9f:99:dd:ba:fe: da:5a:b6:00:6d:7b:f0:04:7a:dd:d8:73:2a:24:a8: 4c:bd:21:3d:6c:e0:f2:4c:35:27:10:ac:17:1a:fc: 06:c7:a5:ea:28:86:cf:bd:82:ff:f7:ac:bb:cb:0a: 73:b5:24:15:d2:ee:d0:33:76:e3:dc:7e:77:3e:78: 1c:c7:d9:ad:e8:dc:e4:04:3b:8d:0e:6b:df:b4:7a: 50:57:cc:33:c0:ca:92:e3:71:32:21:61:c1:d8:0e: d3:94:a3:64:2d:f1:64:6f:42:e6:3b:a7:c8:d9:21: d3:7e:82:20:8b:bb:86:42:6d:42:8d:e1:be:62:45: 14:d8:44:9b:69:53:04:42:c5:1e:02:4b:0c:14:bb: d3:77:f3:b6:c1:71:b9:1a:c6:af:6b:b2:5a:71:6c: 2f:a4:fc:a0:eb:0f:cf:ce:2c:0a:54:ed:67:a9:f5: 33:b5:07:c8:03:13:49:0a:bf:92:97:eb:08:aa:18: c5:65:ce:c8:13:06:cb:e4:55:7c:31:81:92:a6:0b: 10:81:50:22:97:9e:3a:66:af:81:51:60:bd:56:33: 84:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:FA:CC:FB:33:1F:14:DC:25:82:B7:28:DE:EF:21:58:6F:1F:A7:A7 X509v3 Authority Key Identifier: keyid:32:0B:37:F6:E9:70:45:E3:89:84:61:0F:FA:47:E9:68:4A:84:67:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/Mgs39ulwReOJhGEP-kfpaEqEZ30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mgs39ulwReOJhGEP-kfpaEqEZ30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/08B3B40EB14311E58FF2C717C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.36.16.0/22 103.252.32.0/22 Signature Algorithm: sha256WithRSAEncryption a2:b3:e5:3c:6c:a7:4b:57:42:4e:75:15:f3:33:90:47:fb:1e: 81:51:64:63:1f:4d:43:c6:f1:59:45:3b:36:72:09:01:17:b6: a9:c9:30:e3:1b:ed:31:f6:53:3b:0d:58:d3:90:94:5b:05:0e: 20:06:e0:af:3f:66:6e:1d:f2:f6:11:d6:7f:60:88:71:f3:42: 16:3b:68:b3:b5:a6:54:31:14:f4:cb:41:79:5d:1d:4a:c3:3f: 7a:4a:93:bd:a8:7f:b9:4c:51:9f:7d:59:db:b7:d0:bd:b0:1b: e4:3d:ae:4e:92:1a:b8:af:7c:9b:65:6f:97:36:c3:03:0a:ff: ab:16:5f:24:83:05:37:c4:35:5b:0f:4c:39:bd:cd:60:46:e7: 20:eb:f6:33:62:77:67:a0:d6:2d:c1:8a:70:a6:b7:68:e2:68: 2b:76:65:df:85:53:39:62:b0:2e:11:c2:c6:56:ed:ae:62:84: 9b:1b:0f:6e:e7:a8:76:7b:f3:be:7d:c9:e3:1d:7a:00:d6:f7: b6:6c:60:ce:dc:d8:41:19:46:f5:cd:c3:88:5b:b4:d1:d2:8c: 37:be:d4:83:80:8f:8a:f6:20:92:23:6c:89:cd:79:1e:31:86: 7e:e2:63:d2:65:34:cb:f3:9c:f8:66:08:d3:bd:e3:11:f6:70: a2:4f:a6:11 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkxOEUxMTAvBgNVBAUTKDMyMEIzN0Y2RTk3MDQ1RTM4OTg0NjEwRkZBNDdFOTY4 NEE4NDY3N0QwHhcNMjQwNzE4MTYwMzE5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk5M2NjNy0zMDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypoXCsGfcqJRaCuhEEBc+QAuNhAMW6QiabEYG4s7FPz8TM0aBeten5nduv7a WrYAbXvwBHrd2HMqJKhMvSE9bODyTDUnEKwXGvwGx6XqKIbPvYL/96y7ywpztSQV 0u7QM3bj3H53Pngcx9mt6NzkBDuNDmvftHpQV8wzwMqS43EyIWHB2A7TlKNkLfFk b0LmO6fI2SHTfoIgi7uGQm1CjeG+YkUU2ESbaVMEQsUeAksMFLvTd/O2wXG5Gsav a7JacWwvpPyg6w/PziwKVO1nqfUztQfIAxNJCr+Sl+sIqhjFZc7IEwbL5FV8MYGS pgsQgVAil546Zq+BUWC9VjOErQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPn6zPsz HxTcJYK3KN7vIVhvH6enMB8GA1UdIwQYMBaAFDILN/bpcEXjiYRhD/pH6WhKhGd9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTE4RS85NTUwNzM4NDEz MzIxMUU1OUJDMEQzNzlDNEY5QUUwMi9NZ3MzOXVsd1JlT0poR0VQLWtmcGFFcUVa MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01nczM5dWx3UmVPSmhHRVAta2ZwYUVxRVozMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkxOEUvOTU1MDczODQxMzMyMTFFNTlCQzBEMzc5QzRGOUFFMDIvMDhCM0I0MEVC MTQzMTFFNThGRjJDNzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnJBADBAJn/CAwDQYJKoZIhvcNAQELBQADggEBAKKz5Txs p0tXQk51FfMzkEf7HoFRZGMfTUPG8VlFOzZyCQEXtqnJMOMb7TH2UzsNWNOQlFsF DiAG4K8/Zm4d8vYR1n9giHHzQhY7aLO1plQxFPTLQXldHUrDP3pKk72of7lMUZ99 Wdu30L2wG+Q9rk6SGrivfJtlb5c2wwMK/6sWXySDBTfENVsPTDm9zWBG5yDr9jNi d2eg1i3BinCmt2jiaCt2Zd+FUzlisC4RwsZW7a5ihJsbD27nqHZ78759yeMdegDW 97ZsYM7c2EEZRvXNw4hbtNHSjDe+1IOAj4r2IJIjbInNeR4xhn7iY9JlNMvznPhm CNO94xH2cKJPphE= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:13 2024 by rpki-client on console-ams.rpki-client.org