$ rpki-client -vvf rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/34FC96E8CFE711EB93714D2FC4F9AE02.roa File: 34FC96E8CFE711EB93714D2FC4F9AE02.roa (raw, json) Hash identifier: au9lymQdG+zcu+LkfXcooSCDteuusPKaYMcpKFL9o8c= Subject key identifier: 39:6F:C9:B2:61:22:75:16:C5:F1:DF:4D:38:CE:0C:4D:88:7D:B5:14 Certificate issuer: /CN=A911918E/serialNumber=320B37F6E97045E38984610FFA47E9684A84677D Certificate serial: 243D Authority key identifier: 32:0B:37:F6:E9:70:45:E3:89:84:61:0F:FA:47:E9:68:4A:84:67:7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mgs39ulwReOJhGEP-kfpaEqEZ30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/34FC96E8CFE711EB93714D2FC4F9AE02.roa Signing time: Fri 28 Jul 2023 16:12:40 +0000 ROA not before: Fri 28 Jul 2023 16:12:40 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 138965 IP address blocks: 103.36.16.0/22 maxlen: 24 103.252.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/Mgs39ulwReOJhGEP-kfpaEqEZ30.crl rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/Mgs39ulwReOJhGEP-kfpaEqEZ30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mgs39ulwReOJhGEP-kfpaEqEZ30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:07:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9277 (0x243d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911918E/serialNumber=320B37F6E97045E38984610FFA47E9684A84677D Validity Not Before: Jul 28 16:12:40 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c3e8f7-ed3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5f:59:97:a5:99:c5:bc:7d:d5:64:18:03:93: a9:35:c9:eb:da:db:9a:1e:02:01:f0:67:e8:f7:77: 6c:2f:3f:c2:5a:be:6b:3a:19:a2:cc:02:17:91:a6: 62:5e:a8:2b:20:08:62:a3:75:fe:d7:50:0e:61:bc: 1b:88:1b:26:9d:d2:6e:a4:1d:48:c6:41:8e:a5:d3: 86:78:e8:a5:1f:7b:5a:73:4b:47:50:0c:2d:dc:d4: 59:5c:df:86:87:1b:54:19:f2:81:55:c4:98:fc:c0: 62:5f:11:b0:3d:d7:4f:53:09:ea:54:df:7c:8d:a0: f0:a0:40:ff:f5:76:e3:c4:1a:23:59:cd:6a:cd:49: 00:84:5c:53:5a:a9:80:43:b4:13:db:59:75:90:88: c9:b8:b3:90:28:68:2d:03:7d:37:1d:2a:7d:2d:fc: ed:bd:dd:66:76:f5:c6:0d:91:7a:4b:0c:ab:6b:82: f7:72:80:b2:1d:e6:3f:fa:cf:f8:c4:af:e3:3f:38: 70:8a:5c:b4:7a:32:1e:f2:61:f9:c6:9c:aa:3d:08: d5:a2:e2:29:a0:46:e0:2d:39:3d:4e:a2:a5:01:1c: 1c:cd:b7:2c:3e:07:ce:23:5e:cb:ef:3c:c9:fb:30: 38:2b:d4:30:f8:f9:fe:2b:e1:96:26:ff:f3:5a:b6: 5b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:6F:C9:B2:61:22:75:16:C5:F1:DF:4D:38:CE:0C:4D:88:7D:B5:14 X509v3 Authority Key Identifier: keyid:32:0B:37:F6:E9:70:45:E3:89:84:61:0F:FA:47:E9:68:4A:84:67:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/Mgs39ulwReOJhGEP-kfpaEqEZ30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mgs39ulwReOJhGEP-kfpaEqEZ30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911918E/95507384133211E59BC0D379C4F9AE02/34FC96E8CFE711EB93714D2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.36.16.0/22 103.252.32.0/22 Signature Algorithm: sha256WithRSAEncryption 72:8d:33:f2:84:cb:24:fb:42:71:73:e0:85:f8:53:b3:77:18: 55:cb:63:2c:07:5f:fe:86:6f:d1:a2:3b:da:73:cd:a7:cd:48: 36:d6:21:88:3d:fa:b0:ff:9b:ff:1a:5e:ed:2c:ed:4d:99:d6: 83:f2:7b:ad:06:63:d8:b5:a5:27:a8:7a:bf:2e:42:60:1d:5e: a0:1a:7d:69:9d:82:89:4f:97:da:32:df:dd:61:ae:03:fb:cb: 0f:82:71:13:d6:17:34:4e:53:e7:79:45:74:33:e7:38:73:b1: 6c:c8:51:26:9c:3f:a4:f9:e4:1a:c8:78:5b:2e:66:98:ca:40: 31:dd:df:54:02:43:d5:98:0e:b5:09:28:4d:b7:29:08:99:45: 07:cb:76:fe:b5:cf:e4:19:d8:bc:08:19:46:d8:dc:09:8a:89: b6:36:84:04:85:00:e8:1f:d8:3d:0b:6d:3d:a8:77:03:39:09: fc:e3:9a:b8:be:59:8c:8b:fc:69:e6:ec:34:26:df:e8:9e:99: 1c:40:70:3b:76:de:c1:8a:e0:d3:d9:e0:d3:94:dd:4b:50:80: ba:17:27:16:86:b2:17:fd:d9:8a:09:26:7c:44:f1:09:70:fb: 29:89:a0:c7:96:4e:df:f5:7e:b5:44:b8:a2:60:41:e2:f2:53: cc:cd:2a:0a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkxOEUxMTAvBgNVBAUTKDMyMEIzN0Y2RTk3MDQ1RTM4OTg0NjEwRkZBNDdFOTY4 NEE4NDY3N0QwHhcNMjMwNzI4MTYxMjQwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMzZThmNy1lZDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzV9Zl6WZxbx91WQYA5OpNcnr2tuaHgIB8Gfo93dsLz/CWr5rOhmizAIXkaZi XqgrIAhio3X+11AOYbwbiBsmndJupB1IxkGOpdOGeOilH3tac0tHUAwt3NRZXN+G hxtUGfKBVcSY/MBiXxGwPddPUwnqVN98jaDwoED/9XbjxBojWc1qzUkAhFxTWqmA Q7QT21l1kIjJuLOQKGgtA303HSp9Lfztvd1mdvXGDZF6Swyra4L3coCyHeY/+s/4 xK/jPzhwily0ejIe8mH5xpyqPQjVouIpoEbgLTk9TqKlARwczbcsPgfOI17L7zzJ +zA4K9Qw+Pn+K+GWJv/zWrZb5QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDlvybJh InUWxfHfTTjODE2IfbUUMB8GA1UdIwQYMBaAFDILN/bpcEXjiYRhD/pH6WhKhGd9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTE4RS85NTUwNzM4NDEz MzIxMUU1OUJDMEQzNzlDNEY5QUUwMi9NZ3MzOXVsd1JlT0poR0VQLWtmcGFFcUVa MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01nczM5dWx3UmVPSmhHRVAta2ZwYUVxRVozMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkxOEUvOTU1MDczODQxMzMyMTFFNTlCQzBEMzc5QzRGOUFFMDIvMzRGQzk2RThD RkU3MTFFQjkzNzE0RDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnJBADBAJn/CAwDQYJKoZIhvcNAQELBQADggEBAHKNM/KE yyT7QnFz4IX4U7N3GFXLYywHX/6Gb9GiO9pzzafNSDbWIYg9+rD/m/8aXu0s7U2Z 1oPye60GY9i1pSeoer8uQmAdXqAafWmdgolPl9oy391hrgP7yw+CcRPWFzROU+d5 RXQz5zhzsWzIUSacP6T55BrIeFsuZpjKQDHd31QCQ9WYDrUJKE23KQiZRQfLdv61 z+QZ2LwIGUbY3AmKibY2hASFAOgf2D0LbT2odwM5Cfzjmri+WYyL/Gnm7DQm3+ie mRxAcDt23sGK4NPZ4NOU3UtQgLoXJxaGshf92YoJJnxE8Qlw+ymJoMeWTt/1frVE uKJgQeLyU8zNKgo= -----END CERTIFICATE-----Generated at Mon May 6 17:35:34 2024 by rpki-client on console-fra.rpki-client.org