$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/369A67D4B01B11EEBD075854C4F9AE02.roa File: 369A67D4B01B11EEBD075854C4F9AE02.roa (raw, json) Hash identifier: ll8uPXO7+p+L4mr0tZPETWCxlV0OBmMVm5vFHlyDwyk= Subject key identifier: F9:4A:6B:40:35:33:F3:51:61:E9:D2:93:61:C2:61:A2:BD:3C:2E:27 Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0E71 Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/369A67D4B01B11EEBD075854C4F9AE02.roa Signing time: Sun 02 Jun 2024 18:51:52 +0000 ROA not before: Sun 02 Jun 2024 18:51:52 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 54197 IP address blocks: 43.250.107.0/24 maxlen: 24 103.232.213.0/24 maxlen: 24 2402:3180:8::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 17:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3697 (0xe71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF Validity Not Before: Jun 2 18:51:52 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665cbf47-7f17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c7:c9:34:79:7a:4e:b7:2a:62:5f:29:0e:74: d0:7c:b6:b3:98:2e:72:46:1d:43:30:71:76:99:64: fc:ac:8c:4c:49:53:e5:dc:87:37:41:ac:5c:e3:ce: b6:26:bb:07:95:ec:97:63:99:1a:26:e4:85:23:97: ca:1b:f7:ee:0e:b6:87:16:ca:c8:68:3e:10:35:8d: 42:49:47:22:42:84:c7:84:14:bc:17:b9:7b:5e:a6: fb:4a:0a:1e:62:55:a1:42:17:e6:f4:17:ff:f5:b1: 72:7d:c8:f3:43:fe:73:a7:19:f2:6c:18:72:4d:aa: 3c:0d:f7:75:67:af:30:25:3b:8f:ec:92:45:84:3e: ce:a8:64:d1:cc:ed:a2:12:9d:5d:25:cb:2c:2c:97: 20:70:45:7b:c0:76:a9:16:f5:7c:8c:4b:06:38:10: ba:ec:9b:35:5d:e7:f9:16:bb:e1:5f:ec:88:d4:98: f1:4a:8a:1e:b9:11:34:4b:a8:53:74:ff:bc:25:74: 87:25:9b:71:8f:64:a3:3d:1c:ea:a4:59:cb:87:46: c9:0d:3f:1c:8f:d1:98:ef:34:22:89:fc:3b:3a:43: dd:b6:62:90:23:a7:bb:c2:56:26:44:73:e8:2e:fc: b1:12:0b:a5:8e:f0:31:7e:ae:63:00:0e:63:4e:2c: cd:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:4A:6B:40:35:33:F3:51:61:E9:D2:93:61:C2:61:A2:BD:3C:2E:27 X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/369A67D4B01B11EEBD075854C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.107.0/24 103.232.213.0/24 IPv6: 2402:3180:8::/45 Signature Algorithm: sha256WithRSAEncryption 43:92:98:2a:8e:f1:3d:0c:ac:9a:69:73:8a:2f:c3:60:8a:ab: 36:09:96:13:a8:a8:ff:84:9c:ce:c1:bf:03:b7:33:0a:31:2d: 21:d8:5b:f6:2d:80:a6:6a:88:ed:17:39:6e:18:fa:39:7b:11: 3e:b9:20:f2:aa:c2:6b:12:5d:23:d8:56:82:34:78:33:f2:e3: 66:f3:8c:55:97:fe:35:ab:25:ff:9d:e0:81:f5:ed:8c:da:7f: 56:84:11:1e:15:49:ea:38:e4:c1:0f:62:0c:b4:88:eb:a6:04: 76:59:c9:f7:ee:f2:1d:f2:bf:29:20:eb:d0:98:14:dc:fc:8d: 24:d6:64:c7:32:33:0c:b6:92:59:da:25:94:ed:35:ad:4d:29: 8d:07:06:79:4c:42:35:e0:47:dd:63:bd:ba:f6:fa:dd:74:01: a1:2d:ea:c5:eb:bb:93:1b:a6:36:23:a1:97:20:79:03:3e:ed: 1c:a3:ca:a1:1e:4b:cc:46:7f:d2:3a:60:a6:b1:8f:db:43:24: 46:b1:f3:f6:c3:b6:ee:92:dd:ba:7c:52:bd:2b:11:2d:af:ac: d2:5c:0c:d8:de:67:7d:62:2e:0e:ed:11:31:63:5b:60:d6:db: fa:07:92:c1:d5:9d:cf:6e:77:37:04:e6:bf:0d:46:77:22:12: 0f:ee:a1:d1 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjQwNjAyMTg1MTUyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVjYmY0Ny03ZjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3MfJNHl6TrcqYl8pDnTQfLazmC5yRh1DMHF2mWT8rIxMSVPl3Ic3Qaxc4862 JrsHleyXY5kaJuSFI5fKG/fuDraHFsrIaD4QNY1CSUciQoTHhBS8F7l7Xqb7Sgoe YlWhQhfm9Bf/9bFyfcjzQ/5zpxnybBhyTao8Dfd1Z68wJTuP7JJFhD7OqGTRzO2i Ep1dJcssLJcgcEV7wHapFvV8jEsGOBC67Js1Xef5FrvhX+yI1JjxSooeuRE0S6hT dP+8JXSHJZtxj2SjPRzqpFnLh0bJDT8cj9GY7zQiifw7OkPdtmKQI6e7wlYmRHPo LvyxEguljvAxfq5jAA5jTizNmwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPlKa0A1 M/NRYenSk2HCYaK9PC4nMB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRkYvRTQyQkVBQzI5M0YwMTFFOUJDMENGRjcxQzRGOUFFMDIvMzY5QTY3RDRC MDFCMTFFRUJEMDc1ODU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAAr+msDBABn6NUwDwQCAAIwCQMHAyQCMYAACDANBgkqhkiG 9w0BAQsFAAOCAQEAQ5KYKo7xPQysmmlzii/DYIqrNgmWE6io/4SczsG/A7czCjEt Idhb9i2ApmqI7Rc5bhj6OXsRPrkg8qrCaxJdI9hWgjR4M/LjZvOMVZf+Nasl/53g gfXtjNp/VoQRHhVJ6jjkwQ9iDLSI66YEdlnJ9+7yHfK/KSDr0JgU3PyNJNZkxzIz DLaSWdollO01rU0pjQcGeUxCNeBH3WO9uvb63XQBoS3qxeu7kxumNiOhlyB5Az7t HKPKoR5LzEZ/0jpgprGP20MkRrHz9sO27pLdunxSvSsRLa+s0lwM2N5nfWIuDu0R MWNbYNbb+geSwdWdz253NwTmvw1GdyISD+6h0Q== -----END CERTIFICATE-----Generated at Thu Mar 13 21:48:59 2025 by rpki-client