$ rpki-client -vvf rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/3EB855ACDE3A11E781926D6DC4F9AE02.roa File: 3EB855ACDE3A11E781926D6DC4F9AE02.roa (raw, json) Hash identifier: lFPMYub4jF21rdKxuKrVPhSY8cMHyvNWsZbOa244DEc= Subject key identifier: 6B:82:12:27:98:C5:4F:4B:39:7C:66:5C:A0:70:49:0B:BC:63:F8:07 Certificate issuer: /CN=A911C075/serialNumber=16CE8C1970B86A4AF4F35639104668D095B3D4E8 Certificate serial: 161B Authority key identifier: 16:CE:8C:19:70:B8:6A:4A:F4:F3:56:39:10:46:68:D0:95:B3:D4:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fs6MGXC4akr081Y5EEZo0JWz1Og.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/3EB855ACDE3A11E781926D6DC4F9AE02.roa Signing time: Sat 16 Sep 2023 16:54:25 +0000 ROA not before: Sat 16 Sep 2023 16:54:25 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 135607 IP address blocks: 36.255.60.0/22 maxlen: 22 36.255.60.0/24 maxlen: 24 36.255.61.0/24 maxlen: 24 36.255.62.0/24 maxlen: 24 36.255.63.0/24 maxlen: 24 103.236.176.0/24 maxlen: 24 103.236.177.0/24 maxlen: 24 103.236.178.0/24 maxlen: 24 103.236.179.0/24 maxlen: 24 2402:2dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/Fs6MGXC4akr081Y5EEZo0JWz1Og.crl rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/Fs6MGXC4akr081Y5EEZo0JWz1Og.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fs6MGXC4akr081Y5EEZo0JWz1Og.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5659 (0x161b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C075/serialNumber=16CE8C1970B86A4AF4F35639104668D095B3D4E8 Validity Not Before: Sep 16 16:54:25 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6505ddc1-0a87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a6:d7:e2:1f:91:04:b6:9f:3f:49:f4:16:4a: f1:82:6e:be:b3:bb:d5:41:20:3f:72:a7:f9:52:36: e9:55:a4:f3:73:44:c1:bf:b0:3f:06:42:55:e3:a0: f0:ed:cf:8b:ec:12:d0:75:98:e5:98:a0:56:3e:c7: 03:b9:0d:b6:51:cb:3e:5d:dc:a3:ec:89:4d:5a:c0: e4:38:1d:46:f3:d0:29:4f:26:be:b5:71:f8:a9:ef: 87:9e:bf:13:fb:ee:3d:59:56:25:22:59:d7:ed:c4: 58:88:4c:79:61:91:83:3f:a2:50:23:46:70:c7:93: 69:a6:45:10:a0:26:bb:ec:67:b8:4f:60:5e:1d:67: 0b:f7:b1:82:b2:a2:ab:2e:0f:81:92:c9:53:15:9a: 55:c2:e2:6e:7a:51:29:bc:09:d3:4d:ff:d4:a7:51: 63:b3:a4:43:72:86:5e:40:8f:1e:5d:56:d6:ad:3d: e1:b6:e4:5f:3e:ad:f6:73:94:ba:39:46:cd:33:58: f4:65:61:4c:9d:ed:20:e8:a9:1e:71:b4:9c:cb:34: 2c:ec:69:84:66:2b:90:96:a7:6a:c3:c0:40:0d:ed: 4f:75:bd:84:41:6e:0e:bf:ea:37:b6:82:87:77:56: c8:f9:0c:30:86:0d:43:52:87:04:8f:00:43:38:2a: 69:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:82:12:27:98:C5:4F:4B:39:7C:66:5C:A0:70:49:0B:BC:63:F8:07 X509v3 Authority Key Identifier: keyid:16:CE:8C:19:70:B8:6A:4A:F4:F3:56:39:10:46:68:D0:95:B3:D4:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/Fs6MGXC4akr081Y5EEZo0JWz1Og.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fs6MGXC4akr081Y5EEZo0JWz1Og.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/3EB855ACDE3A11E781926D6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.60.0/22 103.236.176.0/22 IPv6: 2402:2dc0::/32 Signature Algorithm: sha256WithRSAEncryption 40:a0:9b:70:c9:58:69:ee:08:7d:33:4c:39:c7:90:df:95:59: c4:2e:c4:27:28:f3:d1:54:c1:26:3c:c7:63:8b:96:60:c1:23: 5a:bf:e8:09:a0:f1:72:f4:a5:3b:a6:83:ec:59:26:de:53:db: 90:a3:46:d3:1f:fd:6c:c5:1e:93:82:d0:f4:72:7b:e2:42:fc: 2c:76:26:33:cd:bc:0c:d4:2b:6e:49:48:0a:4d:ff:0f:27:e2: a0:8b:d4:6f:de:ca:d2:d4:8c:f4:0d:fb:6c:61:e9:d0:aa:36: 8d:83:e7:4d:2a:5a:d0:88:b7:1e:5f:97:db:a0:c0:bb:2b:8f: 26:aa:9c:54:27:50:15:05:7d:83:d5:c7:3e:71:63:c5:6b:6a: 67:66:55:a3:3d:14:82:84:90:f6:ae:2c:3a:00:09:ec:24:5b: 3d:ef:81:80:17:47:42:07:f9:b9:8e:1f:cf:28:bb:08:7c:b5: 13:96:02:ee:4a:86:8c:6a:1f:3b:57:9d:a5:b5:a2:33:5d:c8: d4:d9:cc:ee:f7:98:96:8e:74:af:6a:cb:1a:63:a8:a1:2f:60: 96:30:be:ad:46:2d:d2:6d:8f:66:de:79:77:fd:9d:0e:7a:14: 02:ab:a6:a0:3a:02:64:0f:ce:1a:d6:89:1d:20:99:2a:c7:f5: da:79:48:97 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICFhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMwNzUxMTAvBgNVBAUTKDE2Q0U4QzE5NzBCODZBNEFGNEYzNTYzOTEwNDY2OEQw OTVCM0Q0RTgwHhcNMjMwOTE2MTY1NDI1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTA1ZGRjMS0wYTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqbX4h+RBLafP0n0Fkrxgm6+s7vVQSA/cqf5UjbpVaTzc0TBv7A/BkJV46Dw 7c+L7BLQdZjlmKBWPscDuQ22Ucs+Xdyj7IlNWsDkOB1G89ApTya+tXH4qe+Hnr8T ++49WVYlIlnX7cRYiEx5YZGDP6JQI0Zwx5NppkUQoCa77Ge4T2BeHWcL97GCsqKr Lg+BkslTFZpVwuJuelEpvAnTTf/Up1Fjs6RDcoZeQI8eXVbWrT3htuRfPq32c5S6 OUbNM1j0ZWFMne0g6KkecbScyzQs7GmEZiuQlqdqw8BADe1Pdb2EQW4Ov+o3toKH d1bI+Qwwhg1DUocEjwBDOCppKQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFGuCEieY xU9LOXxmXKBwSQu8Y/gHMB8GA1UdIwQYMBaAFBbOjBlwuGpK9PNWORBGaNCVs9To MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzA3NS83NUE2MjE4QURF MzkxMUU3ODNCN0NDNkNDNEY5QUUwMi9GczZNR1hDNGFrcjA4MVk1RUVabzBKV3ox T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZzNk1HWEM0YWtyMDgxWTVFRVpvMEpXejFPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMwNzUvNzVBNjIxOEFERTM5MTFFNzgzQjdDQzZDQzRGOUFFMDIvM0VCODU1QUNE RTNBMTFFNzgxOTI2RDZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIk/zwDBAJn7LAwDQQCAAIwBwMFACQCLcAwDQYJKoZIhvcN AQELBQADggEBAECgm3DJWGnuCH0zTDnHkN+VWcQuxCco89FUwSY8x2OLlmDBI1q/ 6Amg8XL0pTumg+xZJt5T25CjRtMf/WzFHpOC0PRye+JC/Cx2JjPNvAzUK25JSApN /w8n4qCL1G/eytLUjPQN+2xh6dCqNo2D500qWtCItx5fl9ugwLsrjyaqnFQnUBUF fYPVxz5xY8VramdmVaM9FIKEkPauLDoACewkWz3vgYAXR0IH+bmOH88ouwh8tROW Au5KhoxqHztXnaW1ojNdyNTZzO73mJaOdK9qyxpjqKEvYJYwvq1GLdJtj2beeXf9 nQ56FAKrpqA6AmQPzhrWiR0gmSrH9dp5SJc= -----END CERTIFICATE-----Generated at Sat May 18 18:21:35 2024 by rpki-client on console-ams.rpki-client.org