$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/11685AAC4F0D11EAA161D143C4F9AE02.roa File: 11685AAC4F0D11EAA161D143C4F9AE02.roa (raw, json) Hash identifier: ame4UZMdYFliqC/mSpG65pYY+jVmeYH/e2VwVJkKgkw= Subject key identifier: 1F:4E:9E:20:A7:F4:B8:8B:64:57:C2:31:B0:3B:AF:E5:53:42:7B:41 Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 099F Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/11685AAC4F0D11EAA161D143C4F9AE02.roa Signing time: Wed 18 Oct 2023 20:28:12 +0000 ROA not before: Wed 18 Oct 2023 20:28:12 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 136979 IP address blocks: 103.101.36.0/22 maxlen: 22 103.101.36.0/24 maxlen: 24 103.101.37.0/24 maxlen: 24 103.101.38.0/24 maxlen: 24 103.101.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 20:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2463 (0x99f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: Oct 18 20:28:12 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65303fdc-35b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fa:f2:37:0a:01:b4:ea:93:ce:9a:00:0b:3b: 59:ba:58:50:99:ba:5b:54:8d:7b:65:92:36:6a:61: 3f:15:c6:31:42:40:59:60:ec:31:0c:eb:bf:30:04: c6:38:df:83:32:fb:af:67:c5:e0:40:07:08:0a:5c: 63:8a:26:fb:cd:82:aa:83:a8:e1:0c:2e:6f:47:0e: 09:2c:59:b8:1a:18:8a:2f:e1:70:d0:3f:fc:36:b3: 75:e0:25:e9:e8:43:78:6c:1a:e0:47:c4:1f:eb:7a: fb:b0:90:c4:56:73:0c:47:bc:1b:1f:9f:53:20:a3: 65:2a:53:ed:80:4d:a7:ee:e0:85:c8:be:85:c8:8a: 6f:04:0f:12:8f:f3:5f:80:55:17:0a:89:95:20:15: 37:9c:91:e8:9b:50:91:0e:89:7c:b0:f5:92:e8:5a: 6f:81:4b:1e:29:55:fb:47:c4:ac:62:2f:e0:29:54: 7a:ab:c7:1c:b6:c4:a7:8c:9e:de:39:69:75:b5:17: f6:c2:4c:1a:2c:35:3c:0e:5a:89:f0:96:e5:07:a7: 78:64:5d:41:5f:30:71:e6:2d:dc:21:b4:27:13:6c: 81:52:86:e0:07:ca:a6:6f:2e:ec:7c:2b:d1:19:a2: 01:c5:be:87:6f:57:21:6e:a8:7e:3d:81:59:f8:36: ca:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:4E:9E:20:A7:F4:B8:8B:64:57:C2:31:B0:3B:AF:E5:53:42:7B:41 X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/11685AAC4F0D11EAA161D143C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.36.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:b2:2e:91:97:e4:6e:41:b9:31:ba:43:f8:c3:9c:63:29:f5: c0:6d:27:e4:61:f9:7c:ea:41:30:2a:5a:15:96:23:79:ef:81: 42:f5:e5:8c:4a:36:38:20:43:a0:c6:b3:c1:5b:4b:13:3d:bd: 4d:64:3d:de:9d:6c:79:95:20:bd:f6:0a:ef:71:70:08:64:34: 44:6a:ea:91:46:79:c8:15:4a:75:6c:b8:4f:92:5d:ca:bb:18: 87:59:00:a3:c1:20:56:73:b5:a4:90:80:19:d7:b1:7f:c5:f3: 1d:0a:13:a0:4c:f6:b4:b3:af:1d:c5:8c:0f:67:97:8a:af:0d: dc:b7:f0:8c:03:85:e5:79:7a:57:26:4e:09:64:5e:0d:ea:72: 7c:05:f0:01:c6:fe:f1:64:fa:f8:22:d1:b1:c6:41:aa:00:96: f2:67:c8:95:93:f5:6c:e0:fb:5e:99:9a:f6:f4:bb:65:6f:b6: b4:8b:fc:b5:f8:ea:d9:9a:72:8a:fa:4c:de:8e:44:ef:3a:ec: 54:ab:18:25:a7:5f:de:e4:b0:49:b8:58:82:78:73:c9:93:ea: 85:c5:a4:a5:c5:dc:05:b3:7d:40:8d:a9:57:bc:44:66:b6:3d: cb:bd:23:a2:c9:41:ce:11:85:8f:f7:2d:a9:7a:76:be:3d:e1: aa:89:cb:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjMxMDE4MjAyODEyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMwM2ZkYy0zNWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufryNwoBtOqTzpoACztZulhQmbpbVI17ZZI2amE/FcYxQkBZYOwxDOu/MATG ON+DMvuvZ8XgQAcIClxjiib7zYKqg6jhDC5vRw4JLFm4GhiKL+Fw0D/8NrN14CXp 6EN4bBrgR8Qf63r7sJDEVnMMR7wbH59TIKNlKlPtgE2n7uCFyL6FyIpvBA8Sj/Nf gFUXComVIBU3nJHom1CRDol8sPWS6FpvgUseKVX7R8SsYi/gKVR6q8cctsSnjJ7e OWl1tRf2wkwaLDU8DlqJ8JblB6d4ZF1BXzBx5i3cIbQnE2yBUobgB8qmby7sfCvR GaIBxb6Hb1chbqh+PYFZ+DbKQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFB9OniCn 9LiLZFfCMbA7r+VTQntBMB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEI1N0YvQjI0NTdENkE0RTU5MTFFQTlFRTlFMjBEQzRGOUFFMDIvMTE2ODVBQUM0 RjBEMTFFQUExNjFEMTQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnZSQwDQYJKoZIhvcNAQELBQADggEBAJuyLpGX5G5BuTG6 Q/jDnGMp9cBtJ+Rh+XzqQTAqWhWWI3nvgUL15YxKNjggQ6DGs8FbSxM9vU1kPd6d bHmVIL32Cu9xcAhkNERq6pFGecgVSnVsuE+SXcq7GIdZAKPBIFZztaSQgBnXsX/F 8x0KE6BM9rSzrx3FjA9nl4qvDdy38IwDheV5elcmTglkXg3qcnwF8AHG/vFk+vgi 0bHGQaoAlvJnyJWT9Wzg+16Zmvb0u2VvtrSL/LX46tmacor6TN6ORO867FSrGCWn X97ksEm4WIJ4c8mT6oXFpKXF3AWzfUCNqVe8RGa2Pcu9I6LJQc4RhY/3Lal6dr49 4aqJy+M= -----END CERTIFICATE-----Generated at Wed May 22 23:16:41 2024 by rpki-client on console-ams.rpki-client.org