$ rpki-client -vvf rpki.apnic.net/member_repository/A9134CF6/FD25018A0B7D11EA98E8FA3CC4F9AE02/4A6A598EDB1311EB9B223B40C4F9AE02.roa File: 4A6A598EDB1311EB9B223B40C4F9AE02.roa (raw, json) Hash identifier: 1gxw5LanH6K05ytHQ24AFaIeR9aTp+NtUFQdmJYcVT0= Subject key identifier: 2A:CF:E6:A2:46:4A:2F:9A:B5:DD:3D:1B:A2:94:2A:3F:5D:37:AD:70 Certificate issuer: /CN=A9134CF6/serialNumber=27CC1291845507ACAFC287B77FE94FEA53DDC9C2 Certificate serial: 0B6D Authority key identifier: 27:CC:12:91:84:55:07:AC:AF:C2:87:B7:7F:E9:4F:EA:53:DD:C9:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8wSkYRVB6yvwoe3f-lP6lPdycI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134CF6/FD25018A0B7D11EA98E8FA3CC4F9AE02/4A6A598EDB1311EB9B223B40C4F9AE02.roa Signing time: Sat 04 May 2024 19:58:35 +0000 ROA not before: Sat 04 May 2024 19:58:35 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138694 IP address blocks: 103.136.204.0/22 maxlen: 22 103.136.204.0/23 maxlen: 23 103.136.204.0/24 maxlen: 24 103.136.205.0/24 maxlen: 24 103.136.206.0/23 maxlen: 23 103.136.206.0/24 maxlen: 24 103.136.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134CF6/FD25018A0B7D11EA98E8FA3CC4F9AE02/J8wSkYRVB6yvwoe3f-lP6lPdycI.crl rsync://rpki.apnic.net/member_repository/A9134CF6/FD25018A0B7D11EA98E8FA3CC4F9AE02/J8wSkYRVB6yvwoe3f-lP6lPdycI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8wSkYRVB6yvwoe3f-lP6lPdycI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2925 (0xb6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134CF6/serialNumber=27CC1291845507ACAFC287B77FE94FEA53DDC9C2 Validity Not Before: May 4 19:58:35 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6636936a-a414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:74:d7:df:ac:8d:13:7a:ed:49:3d:77:56:95: 87:50:f2:da:81:de:34:3f:38:9e:cb:8b:e0:90:87: ab:79:30:b0:dc:b0:23:1f:2d:6f:10:c7:01:e5:95: aa:aa:09:ab:46:c6:0a:94:8e:bd:3d:ba:10:4c:67: aa:7e:c5:87:89:9f:41:a3:f6:12:79:07:43:36:6c: 4e:e8:67:4f:84:d9:88:fa:9e:03:7a:66:db:9d:8d: 0e:61:8f:8a:d7:33:df:3d:f3:a7:8b:2c:5f:10:c4: a7:c2:49:c9:b2:a4:f1:a2:ea:d0:b3:8e:03:6f:82: 8b:ed:78:94:ba:12:da:cf:49:1d:8b:fa:da:63:93: 63:33:2b:36:90:ec:94:39:5b:8e:32:7a:1e:4d:e8: 0e:a2:7f:54:ca:f7:59:07:c9:34:27:d8:78:e9:dd: 3f:45:18:b6:c2:73:37:fa:93:ef:89:a3:9f:67:ac: 79:75:2e:c9:b4:28:10:68:13:d2:82:a6:74:9b:64: bc:7b:5b:7a:4e:1d:1f:fb:c9:d5:11:dd:ce:bd:9e: b6:45:80:43:e4:d9:4a:30:12:a1:51:f5:7b:47:0c: 3a:1b:88:75:44:6f:6d:51:6b:47:25:b1:3a:0e:49: e9:df:b4:43:99:62:f5:33:82:9e:88:cb:11:01:b5: d2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:CF:E6:A2:46:4A:2F:9A:B5:DD:3D:1B:A2:94:2A:3F:5D:37:AD:70 X509v3 Authority Key Identifier: keyid:27:CC:12:91:84:55:07:AC:AF:C2:87:B7:7F:E9:4F:EA:53:DD:C9:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134CF6/FD25018A0B7D11EA98E8FA3CC4F9AE02/J8wSkYRVB6yvwoe3f-lP6lPdycI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8wSkYRVB6yvwoe3f-lP6lPdycI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134CF6/FD25018A0B7D11EA98E8FA3CC4F9AE02/4A6A598EDB1311EB9B223B40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.204.0/22 Signature Algorithm: sha256WithRSAEncryption be:83:09:eb:a9:78:06:c2:93:cd:64:12:e4:05:e6:02:47:e4: 9d:8e:98:81:02:fc:a7:6b:8d:e0:e3:1a:c6:41:6e:d4:ca:f9: 03:a8:9a:0f:4e:2d:84:91:b3:95:c1:3e:b9:53:f5:72:36:10: 09:93:54:8f:78:e8:b9:7d:1f:74:76:a8:11:e7:85:3b:2c:c6: ae:82:23:bb:a1:7c:49:83:cf:66:fa:ac:c5:b1:b5:47:83:79: 06:ab:97:18:ce:d7:22:fb:fb:2a:c1:40:01:20:7f:71:de:d7: 35:7a:de:2f:d6:59:0d:d2:d2:ef:43:0a:53:87:ea:8c:3a:70: 0e:69:5f:23:90:88:b8:2f:11:64:1a:e1:99:36:66:27:57:4f: 23:05:d3:fe:6a:4d:66:c5:39:84:a9:56:dd:22:ed:9d:a9:81: 86:75:9d:4e:57:b7:85:9a:fb:d5:bf:38:3e:3c:4d:8a:e2:ec: 7a:09:e1:08:3f:a4:a2:5e:96:6c:59:12:75:a3:57:cf:e5:c0: dd:75:d6:56:fd:65:25:d6:b6:d7:50:2f:11:4f:69:b1:e7:c2: 0f:58:7f:15:ba:42:99:b1:5c:90:50:c3:ed:bc:66:55:c2:6d: 7a:f3:a4:e6:93:9a:3d:9f:fe:67:80:de:c7:67:a4:91:03:5d: 9d:0e:4d:c6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRDRjYxMTAvBgNVBAUTKDI3Q0MxMjkxODQ1NTA3QUNBRkMyODdCNzdGRTk0RkVB NTNEREM5QzIwHhcNMjQwNTA0MTk1ODM1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjM2OTM2YS1hNDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXTX36yNE3rtST13VpWHUPLagd40Pziey4vgkIereTCw3LAjHy1vEMcB5ZWq qgmrRsYKlI69PboQTGeqfsWHiZ9Bo/YSeQdDNmxO6GdPhNmI+p4DembbnY0OYY+K 1zPfPfOniyxfEMSnwknJsqTxourQs44Db4KL7XiUuhLaz0kdi/raY5NjMys2kOyU OVuOMnoeTegOon9UyvdZB8k0J9h46d0/RRi2wnM3+pPviaOfZ6x5dS7JtCgQaBPS gqZ0m2S8e1t6Th0f+8nVEd3OvZ62RYBD5NlKMBKhUfV7Rww6G4h1RG9tUWtHJbE6 Dknp37RDmWL1M4KeiMsRAbXSRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCrP5qJG Si+atd09G6KUKj9dN61wMB8GA1UdIwQYMBaAFCfMEpGEVQesr8KHt3/pT+pT3cnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNENGNi9GRDI1MDE4QTBC N0QxMUVBOThFOEZBM0NDNEY5QUUwMi9KOHdTa1lSVkI2eXZ3b2UzZi1sUDZsUGR5 Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o4d1NrWVJWQjZ5dndvZTNmLWxQNmxQZHljSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzRDRjYvRkQyNTAxOEEwQjdEMTFFQTk4RThGQTNDQzRGOUFFMDIvNEE2QTU5OEVE QjEzMTFFQjlCMjIzQjQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJniMwwDQYJKoZIhvcNAQELBQADggEBAL6DCeupeAbCk81k EuQF5gJH5J2OmIEC/KdrjeDjGsZBbtTK+QOomg9OLYSRs5XBPrlT9XI2EAmTVI94 6Ll9H3R2qBHnhTssxq6CI7uhfEmDz2b6rMWxtUeDeQarlxjO1yL7+yrBQAEgf3He 1zV63i/WWQ3S0u9DClOH6ow6cA5pXyOQiLgvEWQa4Zk2ZidXTyMF0/5qTWbFOYSp Vt0i7Z2pgYZ1nU5Xt4Wa+9W/OD48TYri7HoJ4Qg/pKJelmxZEnWjV8/lwN111lb9 ZSXWttdQLxFPabHnwg9YfxW6QpmxXJBQw+28ZlXCbXrzpOaTmj2f/meA3sdnpJED XZ0OTcY= -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:59 2024 by rpki-client on console-ams.rpki-client.org