$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/359322B2D1E711EDB90DBF27C4F9AE02.roa File: 359322B2D1E711EDB90DBF27C4F9AE02.roa (raw, json) Hash identifier: g3jRBxrdz6zKgIcn2QreDWmD/HJu19xeFhsqvhWYUBA= Subject key identifier: 56:3F:08:0E:81:B1:90:11:63:0F:DD:DB:B9:02:AF:85:BE:9B:1E:ED Certificate issuer: /CN=A911CC1D/serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Certificate serial: 55 Authority key identifier: FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/359322B2D1E711EDB90DBF27C4F9AE02.roa Signing time: Fri 01 Sep 2023 04:54:43 +0000 ROA not before: Fri 01 Sep 2023 04:54:43 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 135069 IP address blocks: 103.96.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC1D/serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Validity Not Before: Sep 1 04:54:43 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f16e93-a17a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:38:52:f5:75:b2:4d:ed:c3:3d:d6:2b:9f:3b: e8:53:42:dd:dd:c2:d6:55:57:da:c3:7d:b6:0d:fb: b4:e8:00:71:a1:09:f4:54:4d:c1:41:2a:64:04:3c: 67:d3:1b:83:ba:d9:a0:4d:87:26:ae:09:86:de:c6: d5:9f:29:49:83:72:7f:c0:0b:8c:5e:48:2e:ef:92: 6c:c8:df:53:1a:75:26:b1:96:06:e3:60:35:08:3e: f4:09:39:7e:ca:ac:09:0e:d5:c8:fc:26:f3:34:42: af:ad:53:df:7b:ae:a6:b2:75:f2:9c:d4:ec:dd:ad: 0b:d3:e7:82:77:5e:46:e0:e5:93:50:bc:30:da:4a: b1:4f:88:ce:b6:f3:14:14:5f:bb:82:8a:4b:98:ab: 6a:49:b5:e2:75:6c:65:72:c5:0c:dd:70:4a:2a:71: 16:4a:ff:4e:90:92:ec:dd:2c:04:2d:a6:e3:a7:63: 1d:1f:8e:cc:e2:64:63:43:75:90:a9:5d:bf:ba:3f: 3c:f0:64:6e:85:46:e9:34:e8:de:6a:ee:c5:70:91: 6d:57:a4:32:35:b8:8e:ca:0a:e9:c1:7a:ea:d0:bc: e8:2a:cd:d8:05:7d:41:f2:7f:62:0d:38:9b:a3:2c: cb:d2:9c:dc:69:f0:35:25:ca:68:8b:ac:e7:16:b2: 1c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:3F:08:0E:81:B1:90:11:63:0F:DD:DB:B9:02:AF:85:BE:9B:1E:ED X509v3 Authority Key Identifier: keyid:FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/359322B2D1E711EDB90DBF27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.84.0/22 Signature Algorithm: sha256WithRSAEncryption 34:1a:b6:68:c5:79:40:b4:29:c7:58:0f:f4:59:79:28:74:87: 99:d0:f6:35:74:cd:5b:1d:46:2b:d5:b5:69:b0:f2:5b:32:74: eb:fc:f3:97:66:83:3c:ce:98:25:14:ea:6d:50:9c:a8:3d:27: 00:02:ca:53:c6:49:f4:2e:8f:15:53:36:98:31:0f:63:6a:86: bd:c8:5a:23:68:15:6f:c3:a4:7c:cd:80:2d:2e:c3:3c:16:91: ee:7f:17:91:f4:4e:ad:79:8c:94:59:20:73:2c:c4:f0:20:c0: a0:57:aa:78:44:7a:ea:a5:c4:df:5d:3b:4e:ea:27:c9:9f:35: fd:29:56:44:f1:7b:1a:69:35:9d:6b:79:7c:37:a8:29:c2:dc: 7f:9c:d5:cc:51:67:01:ce:b9:45:94:33:4a:af:dd:5f:27:85: 40:74:72:84:a9:1b:79:2b:31:61:29:1a:90:a4:75:30:f3:17: d9:1e:28:02:e6:d4:ab:ee:0d:3f:1a:57:78:d0:d2:13:fd:98: 96:e5:83:3e:37:05:2b:5b:f9:e9:e0:3a:39:03:0e:20:1b:5b: e0:5e:7d:36:32:84:3b:95:ba:ce:e6:70:c5:38:6b:1a:1c:a7: 5a:15:cd:26:eb:e2:ea:6f:e5:ff:2b:6a:a7:6f:3b:c4:6a:5a: 81:44:02:3d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0MxRDExMC8GA1UEBRMoRkIwMTk3RDgwMkE2NjE4NkU4NDBCRDYyRTg4RUU0MEVE OTVFOTUyOTAeFw0yMzA5MDEwNDU0NDNaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZjE2ZTkzLWExN2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtOFL1dbJN7cM91iufO+hTQt3dwtZVV9rDfbYN+7ToAHGhCfRUTcFBKmQEPGfT G4O62aBNhyauCYbextWfKUmDcn/AC4xeSC7vkmzI31MadSaxlgbjYDUIPvQJOX7K rAkO1cj8JvM0Qq+tU997rqaydfKc1OzdrQvT54J3Xkbg5ZNQvDDaSrFPiM628xQU X7uCikuYq2pJteJ1bGVyxQzdcEoqcRZK/06QkuzdLAQtpuOnYx0fjsziZGNDdZCp Xb+6PzzwZG6FRuk06N5q7sVwkW1XpDI1uI7KCunBeurQvOgqzdgFfUHyf2INOJuj LMvSnNxp8DUlymiLrOcWshzlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVj8IDoGx kBFjD93buQKvhb6bHu0wHwYDVR0jBBgwFoAU+wGX2AKmYYboQL1i6I7kDtlelSkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzFELzhDRkUxRDlBRDFF MjExRUQ5MjNDNjExRkM0RjlBRTAyLy13R1gyQUttWVlib1FMMWk2STdrRHRsZWxT ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLXdHWDJBS21ZWWJvUUwxaTZJN2tEdGxlbFNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0MxRC84Q0ZFMUQ5QUQxRTIxMUVEOTIzQzYxMUZDNEY5QUUwMi8zNTkzMjJCMkQx RTcxMUVEQjkwREJGMjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmdgVDANBgkqhkiG9w0BAQsFAAOCAQEANBq2aMV5QLQpx1gP 9Fl5KHSHmdD2NXTNWx1GK9W1abDyWzJ06/zzl2aDPM6YJRTqbVCcqD0nAALKU8ZJ 9C6PFVM2mDEPY2qGvchaI2gVb8OkfM2ALS7DPBaR7n8XkfROrXmMlFkgcyzE8CDA oFeqeER66qXE3107TuonyZ81/SlWRPF7Gmk1nWt5fDeoKcLcf5zVzFFnAc65RZQz Sq/dXyeFQHRyhKkbeSsxYSkakKR1MPMX2R4oAubUq+4NPxpXeNDSE/2YluWDPjcF K1v56eA6OQMOIBtb4F59NjKEO5W6zuZwxThrGhynWhXNJuvi6m/l/ytqp287xGpa gUQCPQ== -----END CERTIFICATE-----Generated at Fri May 17 06:46:20 2024 by rpki-client on console-ams.rpki-client.org