$ rpki-client -vvf rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/36E93942D6C511EEB512CC7FC4F9AE02.roa File: 36E93942D6C511EEB512CC7FC4F9AE02.roa (raw, json) Hash identifier: 20cjlAP6NeFAH2tXjpji57gGDZUFT/JgfA0kyWGQcYw= Subject key identifier: 27:EC:3D:8A:0D:93:EF:A6:CA:52:54:98:F7:94:5A:A4:13:4C:1F:CA Certificate issuer: /CN=A9129969/serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Certificate serial: 90 Authority key identifier: 01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/36E93942D6C511EEB512CC7FC4F9AE02.roa Signing time: Thu 29 Feb 2024 05:41:41 +0000 ROA not before: Thu 29 Feb 2024 05:41:41 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.212.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129969/serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Validity Not Before: Feb 29 05:41:41 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e01915-02a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:10:d1:9f:80:2d:29:66:90:84:5f:57:b2:35: ae:13:fe:d3:04:bc:7f:6b:58:43:f0:f8:86:8d:08: 39:c9:a4:c9:a7:78:21:f5:00:66:aa:6d:a4:76:63: af:61:04:80:89:8c:42:18:6d:24:5c:cd:f9:38:5c: cd:b3:93:2d:fc:e5:99:e7:9a:c0:08:ff:5f:94:fd: 73:b9:09:ba:68:e3:e7:a2:72:cd:1d:0c:6c:ae:4a: a7:b4:71:28:25:a9:89:d0:d9:2e:dd:dd:4e:5a:c8: 7b:bb:a3:d4:00:2a:22:cd:d0:d6:bd:fa:89:58:36: 2d:10:c8:9a:3f:90:b8:85:4c:29:b9:aa:ea:72:bf: a0:be:0d:f7:3f:7e:c0:80:3d:db:73:61:4b:dc:c0: 19:45:b2:ff:40:12:d7:88:f6:61:4d:59:9d:e3:e5: 5d:fd:34:42:2d:37:ea:ca:0e:e5:46:43:b6:e0:a9: 18:62:4c:1d:64:de:cd:ad:57:00:43:22:b9:37:bf: bc:19:ec:38:af:1b:13:c5:b3:a9:df:71:5c:7d:d1: f8:6a:c3:03:62:8c:a4:c6:13:50:82:b3:48:d3:3e: 71:5c:67:fd:1b:3d:0f:a9:b5:8c:fd:65:7e:13:93: f4:31:d6:eb:39:b2:2b:99:7b:89:d7:af:85:7e:c6: 90:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:EC:3D:8A:0D:93:EF:A6:CA:52:54:98:F7:94:5A:A4:13:4C:1F:CA X509v3 Authority Key Identifier: keyid:01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/36E93942D6C511EEB512CC7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.67.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:00:e3:43:77:86:18:35:e3:d2:fc:ad:3e:0d:22:67:54:1f: 7a:6b:f2:86:73:9d:40:89:7f:44:05:34:53:d4:df:56:09:d7: 18:10:50:23:96:d5:00:9d:ea:0b:c9:ea:2c:bf:a2:ca:8d:32: 84:f2:21:06:97:be:ae:63:5b:27:0b:0f:80:fa:91:93:0d:0b: 56:bc:39:fd:90:3a:54:42:6b:9b:90:6b:ce:5c:51:d2:78:3e: 4d:6c:6d:ad:20:78:22:88:9b:a4:7b:48:cf:93:a7:d0:e2:b8: 67:3e:f1:2b:cc:81:78:44:1d:da:28:9c:42:b6:f0:ee:2f:d8: c2:97:56:04:75:9b:ed:40:b9:da:0a:d2:31:28:c7:b8:31:da: 82:13:19:00:1e:45:36:0f:9e:48:0d:d2:6e:68:5c:e0:e6:75: cd:18:f4:37:ca:b8:43:bd:7e:ca:b6:9a:9c:5a:b4:8d:fb:e1: 60:38:bc:be:a1:eb:c3:fa:de:fc:76:d1:d3:35:b1:a2:41:53: ac:4a:7a:58:55:d1:3d:97:e3:22:1f:fb:1a:ec:38:ce:2d:61: 32:60:aa:cc:f7:31:91:e6:99:a3:f6:e9:b9:2c:85:53:72:a8: fa:ba:88:c9:98:47:d0:3b:c4:69:a1:17:fc:54:73:ed:d4:41: 4f:68:2b:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk5NjkxMTAvBgNVBAUTKDAxNjY2RkM3REQ4NzVERkZBMEUxOUJDNzNDQkFEQThF Q0Y5QTU4MjcwHhcNMjQwMjI5MDU0MTQxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwMTkxNS0wMmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxDRn4AtKWaQhF9XsjWuE/7TBLx/a1hD8PiGjQg5yaTJp3gh9QBmqm2kdmOv YQSAiYxCGG0kXM35OFzNs5Mt/OWZ55rACP9flP1zuQm6aOPnonLNHQxsrkqntHEo JamJ0Nku3d1OWsh7u6PUACoizdDWvfqJWDYtEMiaP5C4hUwpuarqcr+gvg33P37A gD3bc2FL3MAZRbL/QBLXiPZhTVmd4+Vd/TRCLTfqyg7lRkO24KkYYkwdZN7NrVcA QyK5N7+8Gew4rxsTxbOp33FcfdH4asMDYoykxhNQgrNI0z5xXGf9Gz0PqbWM/WV+ E5P0MdbrObIrmXuJ16+FfsaQcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCfsPYoN k++mylJUmPeUWqQTTB/KMB8GA1UdIwQYMBaAFAFmb8fdh13/oOGbxzy62o7Pmlgn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTk2OS9DRjM5NUMzODFD NkExMUVFQkY2MkFDMERDNEY5QUUwMi9BV1p2eDkySFhmLWc0WnZIUExyYWpzLWFX Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FXWnZ4OTJIWGYtZzRadkhQTHJhanMtYVdDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk5NjkvQ0YzOTVDMzgxQzZBMTFFRUJGNjJBQzBEQzRGOUFFMDIvMzZFOTM5NDJE NkM1MTFFRUI1MTJDQzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1EMwDQYJKoZIhvcNAQELBQADggEBAHwA40N3hhg149L8 rT4NImdUH3pr8oZznUCJf0QFNFPU31YJ1xgQUCOW1QCd6gvJ6iy/osqNMoTyIQaX vq5jWycLD4D6kZMNC1a8Of2QOlRCa5uQa85cUdJ4Pk1sba0geCKIm6R7SM+Tp9Di uGc+8SvMgXhEHdoonEK28O4v2MKXVgR1m+1AudoK0jEox7gx2oITGQAeRTYPnkgN 0m5oXODmdc0Y9DfKuEO9fsq2mpxatI374WA4vL6h68P63vx20dM1saJBU6xKelhV 0T2X4yIf+xrsOM4tYTJgqsz3MZHmmaP26bkshVNyqPq6iMmYR9A7xGmhF/xUc+3U QU9oK7Q= -----END CERTIFICATE-----Generated at Wed May 1 08:05:03 2024 by rpki-client on console-ams.rpki-client.org