$ rpki-client -vvf rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/08B3B40EB14311E58FF2C717C4F9AE02.roa File: 08B3B40EB14311E58FF2C717C4F9AE02.roa (raw, json) Hash identifier: 4o07cxUY5DJ7AK2l5B8US6kLPTuoV56g/2Tj4aTzPZs= Subject key identifier: 16:19:96:7C:7A:C3:16:E6:70:BA:37:9E:9C:C4:8C:23:83:0B:27:CA Certificate issuer: /CN=A911918E/serialNumber=320B37F6E97045E38984610FFA47E9684A84677D Certificate serial: 243C Authority key identifier: 32:0B:37:F6:E9:70:45:E3:89:84:61:0F:FA:47:E9:68:4A:84:67:7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mgs39ulwReOJhGEP-kfpaEqEZ30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/08B3B40EB14311E58FF2C717C4F9AE02.roa Signing time: Fri 28 Jul 2023 16:12:39 +0000 ROA not before: Fri 28 Jul 2023 16:12:39 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 133623 IP address blocks: 103.36.16.0/22 maxlen: 22 103.36.16.0/24 maxlen: 24 103.36.17.0/24 maxlen: 24 103.36.18.0/24 maxlen: 24 103.36.19.0/24 maxlen: 24 103.252.32.0/22 maxlen: 22 103.252.32.0/24 maxlen: 24 103.252.33.0/24 maxlen: 24 103.252.34.0/24 maxlen: 24 103.252.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/Mgs39ulwReOJhGEP-kfpaEqEZ30.crl rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/Mgs39ulwReOJhGEP-kfpaEqEZ30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mgs39ulwReOJhGEP-kfpaEqEZ30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9276 (0x243c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911918E/serialNumber=320B37F6E97045E38984610FFA47E9684A84677D Validity Not Before: Jul 28 16:12:39 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c3e8f6-9372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:03:be:2e:97:ae:e1:97:60:a7:eb:bd:67:26: 8f:3d:6f:8c:c8:e3:22:e5:e9:e3:f1:7c:84:b8:71: 71:fb:07:92:b9:97:a9:7c:fb:d9:40:f2:20:3f:2c: b3:a7:b4:73:d6:4a:6a:bf:5d:21:d9:44:4a:fe:8f: 2a:14:bc:39:e5:08:19:84:ca:ea:71:f2:e2:00:83: 28:ba:05:ed:7c:fe:76:d6:75:4f:4c:45:ec:65:ce: 35:52:cf:2d:24:27:83:69:3d:5d:53:38:4a:5e:3f: ef:a4:3a:aa:b2:97:f9:98:b2:95:46:3c:3f:fd:a0: 06:cd:9a:6f:4b:5c:53:a3:9f:6a:37:ab:58:b1:0e: ec:1c:80:8b:b5:56:bc:86:e9:f8:d0:64:4d:dc:1e: c9:82:f4:0f:b4:90:55:20:1f:1c:b4:98:09:21:74: e2:a7:04:ee:07:ed:9c:6b:ca:3f:ea:88:e6:b0:c8: e0:e6:3c:ed:21:d5:79:66:e4:21:69:d0:df:b0:7c: 60:61:89:fe:af:71:21:5f:97:f1:fa:d4:ca:da:f2: f2:24:b0:13:f4:e6:df:22:51:58:9b:9a:3c:31:b3: af:ed:19:07:73:06:a6:b9:c2:45:ff:db:3f:22:61: ba:54:48:03:dd:1e:73:fe:a3:44:93:cb:80:96:53: 82:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:19:96:7C:7A:C3:16:E6:70:BA:37:9E:9C:C4:8C:23:83:0B:27:CA X509v3 Authority Key Identifier: keyid:32:0B:37:F6:E9:70:45:E3:89:84:61:0F:FA:47:E9:68:4A:84:67:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/Mgs39ulwReOJhGEP-kfpaEqEZ30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mgs39ulwReOJhGEP-kfpaEqEZ30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/08B3B40EB14311E58FF2C717C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.36.16.0/22 103.252.32.0/22 Signature Algorithm: sha256WithRSAEncryption 82:61:82:1e:1a:22:2c:39:f1:b2:15:8f:d6:a7:5c:e3:6f:00: 5d:0d:ea:f2:07:46:f2:9b:d7:aa:1d:5e:3d:80:5d:62:a6:2e: 05:3b:e6:02:00:2f:ca:4e:25:e2:5e:7a:3a:bb:ef:62:da:82: 13:16:8e:9a:aa:71:63:40:24:b4:4e:0d:7e:ad:25:cc:26:db: 0b:84:ae:c3:be:89:ad:b0:f3:66:a1:c5:c9:ca:5b:ed:51:0e: ec:27:6e:73:02:a7:d4:fd:05:58:b4:cf:2c:bf:58:4a:2f:a8: 09:b4:17:08:c3:97:94:bd:c5:5e:c3:2d:c6:7b:72:27:35:24: 0a:ff:48:d0:5e:5b:96:08:91:a6:be:62:bf:cb:60:1f:d1:1b: 88:73:fa:38:5e:9e:65:12:db:54:39:3d:92:f5:e1:39:63:16: e5:d8:90:c6:fb:df:5a:c4:02:1a:24:f0:85:20:98:be:f6:23: 2a:6f:15:7a:97:e7:a4:6f:ae:59:92:7c:b0:7a:4d:2e:8a:ae: bb:66:c7:b5:18:62:d2:48:45:ed:3c:a2:39:c8:7a:5e:1d:c8: 3e:5b:d0:08:30:86:05:d2:dc:c4:e5:ee:1c:54:8a:55:15:90: d4:15:60:fa:da:ac:c5:fd:23:c1:a1:22:11:b0:97:07:e2:8a: 44:ab:6b:bf -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkxOEUxMTAvBgNVBAUTKDMyMEIzN0Y2RTk3MDQ1RTM4OTg0NjEwRkZBNDdFOTY4 NEE4NDY3N0QwHhcNMjMwNzI4MTYxMjM5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMzZThmNi05MzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wO+Lpeu4Zdgp+u9ZyaPPW+MyOMi5enj8XyEuHFx+weSuZepfPvZQPIgPyyz p7Rz1kpqv10h2URK/o8qFLw55QgZhMrqcfLiAIMougXtfP521nVPTEXsZc41Us8t JCeDaT1dUzhKXj/vpDqqspf5mLKVRjw//aAGzZpvS1xTo59qN6tYsQ7sHICLtVa8 hun40GRN3B7JgvQPtJBVIB8ctJgJIXTipwTuB+2ca8o/6ojmsMjg5jztIdV5ZuQh adDfsHxgYYn+r3EhX5fx+tTK2vLyJLAT9ObfIlFYm5o8MbOv7RkHcwamucJF/9s/ ImG6VEgD3R5z/qNEk8uAllOCWQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBYZlnx6 wxbmcLo3npzEjCODCyfKMB8GA1UdIwQYMBaAFDILN/bpcEXjiYRhD/pH6WhKhGd9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTE4RS85NTUwNzM4NDEz MzIxMUU1OUJDMEQzNzlDNEY5QUUwMi9NZ3MzOXVsd1JlT0poR0VQLWtmcGFFcUVa MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01nczM5dWx3UmVPSmhHRVAta2ZwYUVxRVozMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkxOEUvOTU1MDczODQxMzMyMTFFNTlCQzBEMzc5QzRGOUFFMDIvMDhCM0I0MEVC MTQzMTFFNThGRjJDNzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnJBADBAJn/CAwDQYJKoZIhvcNAQELBQADggEBAIJhgh4a Iiw58bIVj9anXONvAF0N6vIHRvKb16odXj2AXWKmLgU75gIAL8pOJeJeejq772La ghMWjpqqcWNAJLRODX6tJcwm2wuErsO+ia2w82ahxcnKW+1RDuwnbnMCp9T9BVi0 zyy/WEovqAm0FwjDl5S9xV7DLcZ7cic1JAr/SNBeW5YIkaa+Yr/LYB/RG4hz+jhe nmUS21Q5PZL14TljFuXYkMb731rEAhok8IUgmL72IypvFXqX56RvrlmSfLB6TS6K rrtmx7UYYtJIRe08ojnIel4dyD5b0AgwhgXS3MTl7hxUilUVkNQVYPrarMX9I8Gh IhGwlwfiikSra78= -----END CERTIFICATE-----Generated at Sat May 18 16:57:52 2024 by rpki-client on console-fra.rpki-client.org