$ rpki-client -vvf rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/36A2C2F4E19511EC8AD57C6CC4F9AE02.roa File: 36A2C2F4E19511EC8AD57C6CC4F9AE02.roa (raw, json) Hash identifier: DpOLUlWPlbI2gp7ZoelWQp4PI9MoGbMi8gA4FdEEoP8= Subject key identifier: C8:54:70:7E:43:9B:F2:93:14:0F:5C:72:0E:FE:A4:6B:E2:E0:5A:A1 Certificate issuer: /CN=A91415AA/serialNumber=16C01D9CA0FFBEFAE0BB010E5144507AEA410D03 Certificate serial: 06E6 Authority key identifier: 16:C0:1D:9C:A0:FF:BE:FA:E0:BB:01:0E:51:44:50:7A:EA:41:0D:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FsAdnKD_vvrguwEOUURQeupBDQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/36A2C2F4E19511EC8AD57C6CC4F9AE02.roa Signing time: Fri 26 May 2023 22:03:06 +0000 ROA not before: Fri 26 May 2023 22:03:06 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 139025 IP address blocks: 103.138.155.0/24 maxlen: 24 103.160.158.0/24 maxlen: 24 2001:df2:c080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/FsAdnKD_vvrguwEOUURQeupBDQM.crl rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/FsAdnKD_vvrguwEOUURQeupBDQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FsAdnKD_vvrguwEOUURQeupBDQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jul 2023 20:21:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1766 (0x6e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91415AA/serialNumber=16C01D9CA0FFBEFAE0BB010E5144507AEA410D03 Validity Not Before: May 26 22:03:06 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64712c9a-557f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0d:9e:6a:d9:71:22:c6:7e:04:69:e2:71:80: d9:11:91:80:f0:a3:4c:c0:52:13:f0:d1:6a:f9:f5: 73:df:9b:48:a5:11:7e:fc:a4:38:7b:62:66:d9:d4: bc:02:cc:ec:3d:18:2d:e9:89:25:41:37:1e:ef:1d: e0:31:6d:75:97:7a:6d:64:88:5b:42:e8:d9:7c:e3: 08:c7:53:aa:89:b9:99:ff:19:56:20:06:80:c3:07: cc:f5:44:cf:86:91:6c:e1:f6:53:dd:94:fd:fd:5b: c6:fd:1c:15:0f:36:83:bd:a9:87:22:90:06:c4:c3: 32:ac:f9:e9:94:59:8a:97:78:c6:06:9b:b9:92:6c: b7:26:ad:67:bb:80:a4:71:e8:d8:08:8d:80:54:14: 95:24:86:e0:0c:4a:ea:5b:e0:ee:48:a9:29:a4:8e: fd:11:55:b2:41:7b:75:c4:b5:09:19:ed:e6:1c:ec: 8b:37:f2:ed:49:9f:68:c4:e2:0a:59:a3:05:be:c3: b4:26:71:66:b3:7a:64:55:c1:ef:69:a3:9d:d5:9d: 4a:1e:17:58:39:0a:39:09:a4:ba:04:c9:27:3a:d3: 4e:c7:0f:4a:a7:27:9a:43:6e:38:81:2c:c1:cc:b5: 68:70:87:30:3e:46:34:9f:e4:47:6f:32:3d:6d:68: 61:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:54:70:7E:43:9B:F2:93:14:0F:5C:72:0E:FE:A4:6B:E2:E0:5A:A1 X509v3 Authority Key Identifier: keyid:16:C0:1D:9C:A0:FF:BE:FA:E0:BB:01:0E:51:44:50:7A:EA:41:0D:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/FsAdnKD_vvrguwEOUURQeupBDQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FsAdnKD_vvrguwEOUURQeupBDQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/36A2C2F4E19511EC8AD57C6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.155.0/24 103.160.158.0/24 IPv6: 2001:df2:c080::/48 Signature Algorithm: sha256WithRSAEncryption 95:dc:b7:64:76:0b:37:99:9c:de:b8:59:6e:ec:7f:c4:e7:d1: 8c:8a:b4:8a:3f:a0:92:6b:75:07:d2:26:f0:f7:92:5e:1f:f5: 1d:aa:76:3d:54:d5:5c:22:bd:43:e4:6d:09:48:b9:dd:cf:59: 91:dc:f9:bd:fc:22:b7:c8:91:5f:fd:f8:21:14:c0:44:f5:54: ea:e7:5c:ff:17:1c:f4:06:2e:61:03:96:66:54:ce:01:fe:ca: 4a:53:84:d6:6d:ac:ee:48:66:f2:ee:13:10:6a:0b:38:d0:3a: d6:2a:1c:da:60:ef:bc:6f:d9:8e:a6:64:18:22:19:3f:92:8e: ca:08:64:e2:b8:b9:79:5a:99:d0:b9:c9:63:f8:5c:74:a6:2b: 3a:31:ef:db:1b:aa:aa:49:7b:cf:fe:76:87:89:69:f1:00:0a: d0:56:5b:0e:f0:d0:32:e2:4b:aa:67:3d:96:53:31:18:30:3b: d3:50:cf:bc:5a:45:0a:65:2b:e0:49:97:f3:02:90:95:75:4b: 59:28:55:d7:75:8e:2b:38:b1:f0:be:21:fa:20:35:05:d3:9c: 86:c6:f6:5f:9c:b1:80:b0:13:04:d7:d4:a8:de:7e:06:b5:fb: bf:0d:0f:2b:88:cf:c2:ee:04:35:5e:c0:bb:e8:b2:48:44:52: 29:1e:39:70 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE1QUExMTAvBgNVBAUTKDE2QzAxRDlDQTBGRkJFRkFFMEJCMDEwRTUxNDQ1MDdB RUE0MTBEMDMwHhcNMjMwNTI2MjIwMzA2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcxMmM5YS01NTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQ2eatlxIsZ+BGnicYDZEZGA8KNMwFIT8NFq+fVz35tIpRF+/KQ4e2Jm2dS8 AszsPRgt6YklQTce7x3gMW11l3ptZIhbQujZfOMIx1OqibmZ/xlWIAaAwwfM9UTP hpFs4fZT3ZT9/VvG/RwVDzaDvamHIpAGxMMyrPnplFmKl3jGBpu5kmy3Jq1nu4Ck cejYCI2AVBSVJIbgDErqW+DuSKkppI79EVWyQXt1xLUJGe3mHOyLN/LtSZ9oxOIK WaMFvsO0JnFms3pkVcHvaaOd1Z1KHhdYOQo5CaS6BMknOtNOxw9KpyeaQ244gSzB zLVocIcwPkY0n+RHbzI9bWhhAQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMhUcH5D m/KTFA9ccg7+pGvi4FqhMB8GA1UdIwQYMBaAFBbAHZyg/7764LsBDlFEUHrqQQ0D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTVBQS8zRUZBMjQxNDYy RTAxMUVBQTZENTlBMkNDNEY5QUUwMi9Gc0FkbktEX3Z2cmd1d0VPVVVSUWV1cEJE UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZzQWRuS0RfdnZyZ3V3RU9VVVJRZXVwQkRRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDE1QUEvM0VGQTI0MTQ2MkUwMTFFQUE2RDU5QTJDQzRGOUFFMDIvMzZBMkMyRjRF MTk1MTFFQzhBRDU3QzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnipsDBABnoJ4wDwQCAAIwCQMHACABDfLAgDANBgkqhkiG 9w0BAQsFAAOCAQEAldy3ZHYLN5mc3rhZbux/xOfRjIq0ij+gkmt1B9Im8PeSXh/1 Hap2PVTVXCK9Q+RtCUi53c9Zkdz5vfwit8iRX/34IRTARPVU6udc/xcc9AYuYQOW ZlTOAf7KSlOE1m2s7khm8u4TEGoLONA61ioc2mDvvG/ZjqZkGCIZP5KOyghk4ri5 eVqZ0LnJY/hcdKYrOjHv2xuqqkl7z/52h4lp8QAK0FZbDvDQMuJLqmc9llMxGDA7 01DPvFpFCmUr4EmX8wKQlXVLWShV13WOKzix8L4h+iA1BdOchsb2X5yxgLATBNfU qN5+BrX7vw0PK4jPwu4ENV7Au+iySERSKR45cA== -----END CERTIFICATE-----Generated at Wed Jul 19 23:22:40 2023 by rpki-client on console-fra.rpki-client.org