$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/369A67D4B01B11EEBD075854C4F9AE02.roa File: 369A67D4B01B11EEBD075854C4F9AE02.roa (raw, json) Hash identifier: XbK9ZS66lQ8Sh5MzdlkIQKDZwfgQBO6b/QK9xz6pZFM= Subject key identifier: 49:DC:E3:B5:DB:EE:8D:8F:67:88:34:54:31:21:83:4B:9D:13:8B:B7 Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0E1D Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/369A67D4B01B11EEBD075854C4F9AE02.roa Signing time: Thu 11 Jan 2024 00:49:02 +0000 ROA not before: Thu 11 Jan 2024 00:49:02 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 54197 IP address blocks: 43.250.107.0/24 maxlen: 24 103.232.213.0/24 maxlen: 24 2402:3180:8::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3613 (0xe1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Validity Not Before: Jan 11 00:49:02 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=659f3afe-abf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:45:9c:49:b9:b1:ed:4c:e2:e3:78:a2:58:20: 77:9b:a4:28:6e:75:d8:e8:01:90:69:b2:93:fc:bf: fa:e2:85:d1:92:36:3a:c6:66:43:33:47:8a:e8:95: 88:ef:4b:cd:b6:5a:9a:2c:91:cb:3b:3f:59:98:ac: 62:33:c2:48:45:9b:fb:4a:ed:d8:f8:8c:ed:63:b0: 78:cb:c4:ba:27:a7:51:18:77:c5:5a:67:8d:18:41: 58:23:c6:c9:64:d3:f3:ea:15:b7:85:c3:8b:e2:66: e3:ba:6e:92:d5:4b:83:29:e9:3d:6d:de:36:49:58: 8a:47:19:ae:29:34:84:e3:cc:aa:a4:5a:03:b3:18: 2a:58:45:63:5c:b8:2c:e1:15:f7:e1:6f:54:52:0e: c4:7f:48:ab:1d:e6:ca:ad:d1:2f:c7:88:7d:6f:2c: ea:8b:7b:39:ea:75:d2:1f:fc:52:cd:76:c3:28:23: 54:84:d6:b6:92:29:d9:05:7f:f8:29:78:63:30:ad: 5c:5a:3c:25:64:d9:b0:d0:46:d3:0e:25:b4:08:d0: ea:99:f5:83:03:ca:e1:b0:39:9f:c2:74:84:80:da: b9:99:66:ff:2e:a6:28:33:f4:ff:df:67:fa:4a:fa: 10:9f:b9:16:5f:fb:e3:fa:95:04:6c:cd:88:24:d4: 84:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:DC:E3:B5:DB:EE:8D:8F:67:88:34:54:31:21:83:4B:9D:13:8B:B7 X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/369A67D4B01B11EEBD075854C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.107.0/24 103.232.213.0/24 IPv6: 2402:3180:8::/45 Signature Algorithm: sha256WithRSAEncryption 54:a7:26:1a:75:76:03:d9:7e:24:6b:0d:47:15:6f:3c:7f:ac: 76:d4:aa:7e:a7:0e:f4:9f:be:43:f4:be:db:2a:f6:08:78:e1: 11:49:94:25:07:69:3b:a6:40:99:d3:4c:b4:5a:2c:ff:31:6d: da:d9:5f:72:2b:83:b8:bf:55:31:f3:62:23:99:06:ed:1b:04: c6:ce:06:2b:11:6c:25:3d:cd:99:62:f3:b5:df:dc:b3:fb:1c: 94:b9:7b:33:e5:e9:05:db:fb:d5:ad:9c:87:11:86:54:ee:bc: 79:82:5c:f9:4d:5f:ce:cf:7b:0d:2b:b1:3d:72:e7:61:c3:d3: e7:97:68:25:5b:45:6a:22:97:e9:95:ce:ad:84:24:41:7c:5d: a8:a6:95:e8:55:27:12:db:b5:0a:33:1e:c1:ce:3b:5d:6a:0b: f7:8c:e7:dc:d8:45:95:09:92:1a:f4:2f:0b:97:72:7d:05:46: 7b:21:86:cd:08:2f:ba:90:fb:04:ef:3a:0c:66:42:3a:12:34: c6:9a:32:e9:b2:26:47:fb:c9:26:c7:e0:3d:f5:75:85:68:20: f2:b0:61:42:da:82:60:1c:4c:6a:b7:f8:48:ae:fd:66:e7:b5: e3:db:b8:32:4e:bc:ba:a7:2b:53:44:4d:9c:20:49:5d:62:50: af:47:90:fc -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjQwMTExMDA0OTAyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmM2FmZS1hYmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EWcSbmx7Uzi43iiWCB3m6QobnXY6AGQabKT/L/64oXRkjY6xmZDM0eK6JWI 70vNtlqaLJHLOz9ZmKxiM8JIRZv7Su3Y+IztY7B4y8S6J6dRGHfFWmeNGEFYI8bJ ZNPz6hW3hcOL4mbjum6S1UuDKek9bd42SViKRxmuKTSE48yqpFoDsxgqWEVjXLgs 4RX34W9UUg7Ef0irHebKrdEvx4h9byzqi3s56nXSH/xSzXbDKCNUhNa2kinZBX/4 KXhjMK1cWjwlZNmw0EbTDiW0CNDqmfWDA8rhsDmfwnSEgNq5mWb/LqYoM/T/32f6 SvoQn7kWX/vj+pUEbM2IJNSE1QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFEnc47Xb 7o2PZ4g0VDEhg0udE4u3MB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRkYvRTQyQkVBQzI5M0YwMTFFOUJDMENGRjcxQzRGOUFFMDIvMzY5QTY3RDRC MDFCMTFFRUJEMDc1ODU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAAr+msDBABn6NUwDwQCAAIwCQMHAyQCMYAACDANBgkqhkiG 9w0BAQsFAAOCAQEAVKcmGnV2A9l+JGsNRxVvPH+sdtSqfqcO9J++Q/S+2yr2CHjh EUmUJQdpO6ZAmdNMtFos/zFt2tlfciuDuL9VMfNiI5kG7RsExs4GKxFsJT3NmWLz td/cs/sclLl7M+XpBdv71a2chxGGVO68eYJc+U1fzs97DSuxPXLnYcPT55doJVtF aiKX6ZXOrYQkQXxdqKaV6FUnEtu1CjMewc47XWoL94zn3NhFlQmSGvQvC5dyfQVG eyGGzQgvupD7BO86DGZCOhI0xpoy6bImR/vJJsfgPfV1hWgg8rBhQtqCYBxMarf4 SK79Zue149u4Mk68uqcrU0RNnCBJXWJQr0eQ/A== -----END CERTIFICATE-----Generated at Fri May 10 20:05:23 2024 by rpki-client on console-fra.rpki-client.org