$ rpki-client -vvf rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/37649AB0D6C511EEB512CC7FC4F9AE02.roa File: 37649AB0D6C511EEB512CC7FC4F9AE02.roa (raw, json) Hash identifier: QsZCX38HOl+dBkxAH3vFj5saHvQvIOkybXtpubuR6K0= Subject key identifier: 42:17:A4:AA:B9:17:9C:7E:20:CB:65:1E:F4:84:4E:B1:A3:20:71:D1 Certificate issuer: /CN=A9129969/serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Certificate serial: 91 Authority key identifier: 01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/37649AB0D6C511EEB512CC7FC4F9AE02.roa Signing time: Thu 29 Feb 2024 05:41:42 +0000 ROA not before: Thu 29 Feb 2024 05:41:42 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.212.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129969/serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Validity Not Before: Feb 29 05:41:42 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e01916-0c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:84:3b:cf:4d:60:b3:fc:48:5f:33:47:f7:43: bb:33:e6:fb:3c:c7:20:74:c2:93:64:e7:da:d1:63: f2:4a:3e:76:2e:bc:ef:c0:16:24:1a:86:00:6d:bf: 70:30:9c:c7:e1:2d:6d:00:3d:38:0e:4b:e7:03:4b: 2a:e3:2c:f8:ff:94:bf:b2:8c:62:9c:4d:02:8b:7b: 87:d2:32:81:88:1f:9b:0e:72:84:dc:8c:d8:9d:b9: 41:3c:13:05:e2:6b:8b:77:42:58:56:5a:d6:0a:87: 30:7a:73:4b:e5:56:cc:c2:cf:7b:19:87:ff:d8:32: ba:5b:af:ea:f8:05:8e:16:57:23:30:ae:69:4c:02: f1:8c:f3:1d:62:d0:29:19:60:4e:6b:65:c9:cb:09: da:78:fe:8e:9d:e8:36:21:5f:b5:c1:c2:fa:3c:58: 6c:4d:d2:bb:c6:90:a1:0f:a6:35:53:65:64:07:65: 68:b5:f5:f4:23:d3:7a:8d:b9:c0:42:fc:f3:96:a8: 45:4b:e5:9c:a0:eb:40:ef:a5:a8:06:ce:9f:8a:48: 37:bd:f4:6a:ff:9c:43:88:5a:df:fb:a4:41:0f:70: 05:05:62:33:d3:12:65:be:d9:93:eb:66:5a:9b:d7: b5:d4:62:77:c6:11:78:39:02:f4:51:29:3d:a3:1c: a4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:17:A4:AA:B9:17:9C:7E:20:CB:65:1E:F4:84:4E:B1:A3:20:71:D1 X509v3 Authority Key Identifier: keyid:01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/37649AB0D6C511EEB512CC7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.67.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:5f:c2:45:dd:bc:8f:42:3c:7a:e4:cd:61:ce:b9:4d:5f:5f: d9:21:59:98:f9:26:b6:a3:e9:13:97:72:93:37:22:86:47:01: 72:cd:62:23:dd:7e:c1:fd:b2:8b:7f:4f:98:b8:fb:8e:97:3d: e8:0f:7a:24:88:ef:5d:f3:a2:f2:d7:cc:8e:10:68:32:35:76: d0:a3:42:6c:6e:b6:24:76:35:8a:1a:8e:5b:8d:a3:81:17:90: 79:b4:26:9c:b9:ea:0f:39:fb:d8:e6:e8:2e:ed:27:a2:1a:6f: 27:3f:ad:96:40:e0:19:75:6c:91:da:bb:6e:8d:00:2d:96:02: 9b:71:08:3b:ed:b9:af:19:5a:60:72:89:d0:65:3f:ba:84:ce: ba:4f:7a:ab:9b:e4:77:4e:a0:dd:c0:da:66:6f:52:95:69:64: 9d:ad:a2:20:ef:61:b0:71:33:db:de:c0:85:59:9e:aa:85:36: eb:c0:6e:f9:5d:c7:3a:99:5a:1b:db:e9:a8:cf:8a:35:e5:b2: e7:e3:20:28:28:e4:47:83:8b:72:ed:6b:59:9b:7a:4d:97:fd: 98:ec:04:08:00:5a:e0:d0:f7:54:0c:ee:43:b0:6d:f1:bd:de: 64:8e:32:f5:e2:12:a8:85:ad:df:57:99:4d:89:af:7b:c6:ef: 32:38:17:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk5NjkxMTAvBgNVBAUTKDAxNjY2RkM3REQ4NzVERkZBMEUxOUJDNzNDQkFEQThF Q0Y5QTU4MjcwHhcNMjQwMjI5MDU0MTQyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwMTkxNi0wYzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIQ7z01gs/xIXzNH90O7M+b7PMcgdMKTZOfa0WPySj52LrzvwBYkGoYAbb9w MJzH4S1tAD04DkvnA0sq4yz4/5S/soxinE0Ci3uH0jKBiB+bDnKE3IzYnblBPBMF 4muLd0JYVlrWCocwenNL5VbMws97GYf/2DK6W6/q+AWOFlcjMK5pTALxjPMdYtAp GWBOa2XJywnaeP6Oneg2IV+1wcL6PFhsTdK7xpChD6Y1U2VkB2VotfX0I9N6jbnA QvzzlqhFS+WcoOtA76WoBs6fikg3vfRq/5xDiFrf+6RBD3AFBWIz0xJlvtmT62Za m9e11GJ3xhF4OQL0USk9oxykoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEIXpKq5 F5x+IMtlHvSETrGjIHHRMB8GA1UdIwQYMBaAFAFmb8fdh13/oOGbxzy62o7Pmlgn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTk2OS9DRjM5NUMzODFD NkExMUVFQkY2MkFDMERDNEY5QUUwMi9BV1p2eDkySFhmLWc0WnZIUExyYWpzLWFX Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FXWnZ4OTJIWGYtZzRadkhQTHJhanMtYVdDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk5NjkvQ0YzOTVDMzgxQzZBMTFFRUJGNjJBQzBEQzRGOUFFMDIvMzc2NDlBQjBE NkM1MTFFRUI1MTJDQzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1EMwDQYJKoZIhvcNAQELBQADggEBAJpfwkXdvI9CPHrk zWHOuU1fX9khWZj5Jraj6ROXcpM3IoZHAXLNYiPdfsH9sot/T5i4+46XPegPeiSI 713zovLXzI4QaDI1dtCjQmxutiR2NYoajluNo4EXkHm0Jpy56g85+9jm6C7tJ6Ia byc/rZZA4Bl1bJHau26NAC2WAptxCDvtua8ZWmByidBlP7qEzrpPequb5HdOoN3A 2mZvUpVpZJ2toiDvYbBxM9vewIVZnqqFNuvAbvldxzqZWhvb6ajPijXlsufjICgo 5EeDi3Lta1mbek2X/ZjsBAgAWuDQ91QM7kOwbfG93mSOMvXiEqiFrd9XmU2Jr3vG 7zI4F7A= -----END CERTIFICATE-----Generated at Wed May 1 07:55:37 2024 by rpki-client on console-fra.rpki-client.org