$ rpki-client -vvf rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa File: F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa (raw, json) Hash identifier: Wdo4xbo2jThOBALG/swFdSWyPEiRkzeC/w2Ayzy6Ytc= Subject key identifier: C0:30:04:A5:46:72:3B:B2:53:82:1E:09:41:0E:A9:1E:8C:EF:88:50 Certificate issuer: /CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Certificate serial: 07C9 Authority key identifier: 6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa Signing time: Wed 18 Oct 2023 21:29:01 +0000 ROA not before: Wed 18 Oct 2023 21:29:01 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 136566 IP address blocks: 103.20.120.0/24 maxlen: 24 2405:2500:5::/48 maxlen: 48 2405:2500:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 21:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1993 (0x7c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Validity Not Before: Oct 18 21:29:01 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65304e1d-e262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:38:e0:e6:05:cc:98:0d:db:2f:36:1b:4e:c9: 6d:3b:95:74:83:8f:36:b6:48:3e:ac:89:38:59:75: eb:1d:72:72:aa:b6:c7:d1:11:21:cf:d1:b5:8a:ba: fb:49:27:c7:74:57:df:8a:ac:86:72:83:37:a9:e9: bf:9c:97:e9:79:4e:d1:dc:cb:e2:3b:e2:b9:cb:41: bf:04:e7:9a:6d:71:14:f3:27:24:21:3c:3b:65:41: 29:9d:ac:c0:c2:24:c5:b1:13:57:90:34:1b:dc:c6: 92:de:29:43:a8:54:55:3f:da:82:e4:0c:6b:d3:59: 6d:e5:2f:97:99:df:30:2f:e1:18:26:cb:ee:82:59: b8:0b:71:9c:68:b9:d7:66:6c:45:d9:8c:59:d3:bd: f2:eb:71:fc:b9:c9:38:24:41:ca:62:2f:d0:b0:c5: 34:0c:e0:73:c7:4a:e9:6a:16:66:b6:fe:ca:3c:de: 41:d5:26:10:29:55:f5:e6:33:49:63:2a:37:60:58: 75:de:6e:29:63:5e:7d:81:b4:6e:0d:4e:4f:84:31: 1c:2a:76:7a:18:ff:e7:aa:2f:93:5a:d2:96:d7:48: 8b:a6:f4:e2:56:13:ca:b3:07:93:f6:64:fd:c8:c7: a7:4e:0f:2f:db:62:18:01:f3:b0:88:7b:bd:e3:3c: f6:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:30:04:A5:46:72:3B:B2:53:82:1E:09:41:0E:A9:1E:8C:EF:88:50 X509v3 Authority Key Identifier: keyid:6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.120.0/24 IPv6: 2405:2500:5::/48 2405:2500:11::/48 Signature Algorithm: sha256WithRSAEncryption 81:c7:93:ce:3f:46:be:95:76:e5:93:73:0d:29:50:5b:b9:d8: 15:b9:88:3c:68:26:49:f2:43:80:24:52:0b:a4:59:4d:21:fb: f6:e1:56:d1:d4:00:cd:d0:c5:48:67:38:b6:a3:62:e8:e5:f6: 16:52:51:12:32:0c:f6:9a:f9:ad:83:55:60:8c:dc:ce:dc:ce: 80:8e:6e:62:bd:16:13:14:04:34:46:b0:9a:e0:70:01:fc:b2: 26:3f:cd:72:dc:cd:0f:65:4c:aa:55:38:43:12:bc:80:18:b8: 1d:de:20:76:85:23:68:85:d6:11:84:9d:45:9a:2f:07:cd:66: aa:35:9e:3b:ab:9f:03:af:97:e8:14:99:a1:c5:a2:a4:bc:e7: 52:a8:7b:92:26:7a:e7:48:1d:6b:54:72:35:5d:b3:5e:3b:d3: 90:23:e4:18:41:9a:cf:2e:e0:cf:05:52:e4:ea:89:a1:79:36: 2e:06:48:0c:a5:ed:b3:8b:7b:08:97:75:6b:ba:b4:e1:e6:c1: 7f:f0:e1:97:4e:cf:68:20:f1:01:6d:95:9a:90:49:36:0d:a2: 74:85:58:48:16:92:43:6e:34:f8:37:57:0e:64:48:d6:07:a8: 76:2c:07:c2:0e:07:fe:1c:e9:b6:a5:44:61:71:18:76:18:3e: 46:74:5f:0a -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICB8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBBNTMxMTAvBgNVBAUTKDZFNEU2OUJFMTNENjEzQTcwMjc0QzBDRTc3MzgzOTIz RjE1NjI3MkQwHhcNMjMxMDE4MjEyOTAxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMwNGUxZC1lMjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzjg5gXMmA3bLzYbTsltO5V0g482tkg+rIk4WXXrHXJyqrbH0REhz9G1irr7 SSfHdFffiqyGcoM3qem/nJfpeU7R3MviO+K5y0G/BOeabXEU8yckITw7ZUEpnazA wiTFsRNXkDQb3MaS3ilDqFRVP9qC5Axr01lt5S+Xmd8wL+EYJsvuglm4C3GcaLnX ZmxF2YxZ073y63H8uck4JEHKYi/QsMU0DOBzx0rpahZmtv7KPN5B1SYQKVX15jNJ Yyo3YFh13m4pY159gbRuDU5PhDEcKnZ6GP/nqi+TWtKW10iLpvTiVhPKsweT9mT9 yMenTg8v22IYAfOwiHu94zz28wIDAQABo4ICrzCCAqswHQYDVR0OBBYEFMAwBKVG cjuyU4IeCUEOqR6M74hQMB8GA1UdIwQYMBaAFG5Oab4T1hOnAnTAznc4OSPxVict MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEE1My83MUI3RDQ3MEFC NEExMUVBODlEMTYzNTlDNEY5QUUwMi9iazVwdmhQV0U2Y0NkTURPZHpnNUlfRldK eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrNXB2aFBXRTZjQ2RNRE9kemc1SV9GV0p5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBBNTMvNzFCN0Q0NzBBQjRBMTFFQTg5RDE2MzU5QzRGOUFFMDIvRjM2QTBFMkVB QjRCMTFFQUEyQ0E1ODVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBABnFHgwGAQCAAIwEgMHACQFJQAABQMHACQFJQAAETANBgkq hkiG9w0BAQsFAAOCAQEAgceTzj9GvpV25ZNzDSlQW7nYFbmIPGgmSfJDgCRSC6RZ TSH79uFW0dQAzdDFSGc4tqNi6OX2FlJREjIM9pr5rYNVYIzcztzOgI5uYr0WExQE NEawmuBwAfyyJj/NctzND2VMqlU4QxK8gBi4Hd4gdoUjaIXWEYSdRZovB81mqjWe O6ufA6+X6BSZocWipLznUqh7kiZ650gda1RyNV2zXjvTkCPkGEGazy7gzwVS5OqJ oXk2LgZIDKXts4t7CJd1a7q04ebBf/Dhl07PaCDxAW2VmpBJNg2idIVYSBaSQ240 +DdXDmRI1geodiwHwg4H/hzptqVEYXEYdhg+RnRfCg== -----END CERTIFICATE-----Generated at Mon May 20 22:38:25 2024 by rpki-client on console-fra.rpki-client.org