$ rpki-client -vvf rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/36AEBDD61C9C11EF9953E67EC4F9AE02.roa File: 36AEBDD61C9C11EF9953E67EC4F9AE02.roa (raw, json) Hash identifier: y9ipesVJF6530t8WVs2qEr0X7RGO4yWHPQGA3YKJeHw= Subject key identifier: 74:E2:F1:28:26:03:AC:3A:4A:CB:13:92:BA:4D:11:2D:F7:0F:99:02 Certificate issuer: /CN=A916879A/serialNumber=399A5E17D9CA43B6C33AC330206DCBDD935E7871 Certificate serial: 2A Authority key identifier: 39:9A:5E:17:D9:CA:43:B6:C3:3A:C3:30:20:6D:CB:DD:93:5E:78:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/36AEBDD61C9C11EF9953E67EC4F9AE02.roa Signing time: Sat 03 Aug 2024 07:57:52 +0000 ROA not before: Sat 03 Aug 2024 07:57:52 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 137971 IP address blocks: 103.118.161.0/24 maxlen: 24 2001:df5:d500::/48 maxlen: 48 2001:df5:d501::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.crl rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:09:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916879A/serialNumber=399A5E17D9CA43B6C33AC330206DCBDD935E7871 Validity Not Before: Aug 3 07:57:52 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ade300-7e85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:78:97:f6:28:d0:0f:d0:db:40:ec:fd:00:22: 4c:ed:25:55:53:2d:5b:01:60:7e:1b:a8:77:7b:19: 10:c3:9d:f2:56:c0:32:6b:ca:a7:05:a7:d9:3e:78: 04:5d:4d:a0:a0:80:33:cb:28:02:43:ba:cd:35:40: a7:ca:fb:ed:20:70:37:2e:f1:ab:bc:74:5d:cf:77: f5:6c:9a:d0:13:ed:00:c9:a7:4b:a7:bd:98:17:ab: d3:86:ce:70:d4:65:79:df:9e:97:b7:8a:9e:da:d9: 65:df:33:09:e8:8b:be:13:0c:6a:65:54:2a:41:f2: de:25:6a:33:59:f0:18:dc:ba:4f:52:b2:14:67:21: 78:8b:60:b6:9f:16:ac:08:50:57:df:56:10:f2:43: 1d:b1:62:22:e0:fc:05:99:8e:95:2f:a7:ed:b0:30: 1c:ef:e6:f9:f7:27:d9:84:43:be:cb:98:11:fc:c2: 7d:9e:df:a1:7d:e1:c2:78:ec:ba:67:e5:23:2d:19: 58:fd:69:b8:9c:24:df:10:4b:ca:39:d2:b6:96:42: 74:f8:ee:de:9d:63:22:e7:e8:2f:9e:68:ff:3c:3d: 63:ad:8b:9e:53:83:5c:c7:65:04:88:1d:9e:1b:b3: 70:68:84:56:66:fe:2b:7a:2d:27:fe:42:3d:08:87: d9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:E2:F1:28:26:03:AC:3A:4A:CB:13:92:BA:4D:11:2D:F7:0F:99:02 X509v3 Authority Key Identifier: keyid:39:9A:5E:17:D9:CA:43:B6:C3:3A:C3:30:20:6D:CB:DD:93:5E:78:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/36AEBDD61C9C11EF9953E67EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.161.0/24 IPv6: 2001:df5:d500::/47 Signature Algorithm: sha256WithRSAEncryption 62:eb:78:c1:bc:e1:de:d9:46:e8:55:82:45:41:11:4d:9f:89: 7b:44:ff:16:a7:d6:34:3c:9d:ba:e3:7d:83:2d:ea:d2:54:d9: 6b:ca:31:0f:d3:a0:e9:80:74:27:43:9e:c8:fd:11:c6:72:c8: 74:19:c4:02:f9:0d:bf:4d:3a:60:73:51:37:df:59:34:76:4a: 07:97:8b:e5:e6:a5:00:4e:2d:e8:c8:c3:c1:7e:06:66:19:2e: a2:e5:68:12:5d:00:44:9f:a1:fd:ad:b9:23:c2:69:c9:6d:cd: ac:6f:76:ee:1b:65:d4:ce:6b:2d:a8:7c:3f:ef:01:fa:63:bb: de:e8:ec:c4:17:49:b0:ce:9f:dd:be:22:05:37:a0:d3:4b:d5: cb:75:9a:8d:d4:82:2f:c2:0f:25:fd:9d:78:4b:20:fc:34:9c: c6:5a:f3:2e:3b:7e:35:89:36:09:0d:49:7e:e5:a4:c4:04:a8: a0:2a:b2:53:8e:05:69:ed:cb:ac:29:ca:6e:22:5e:ae:bb:88: 16:95:95:4e:83:a1:8f:aa:b9:db:86:93:75:b2:a9:1a:ee:d8: 81:c8:65:ce:41:b8:97:a4:18:26:83:57:c7:97:5a:79:54:d2: 8e:fb:98:95:65:5d:ff:54:b4:2b:d4:fa:97:f9:49:96:f9:49: 1b:63:ba:e0 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODc5QTExMC8GA1UEBRMoMzk5QTVFMTdEOUNBNDNCNkMzM0FDMzMwMjA2RENCREQ5 MzVFNzg3MTAeFw0yNDA4MDMwNzU3NTJaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YWRlMzAwLTdlODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWeJf2KNAP0NtA7P0AIkztJVVTLVsBYH4bqHd7GRDDnfJWwDJryqcFp9k+eARd TaCggDPLKAJDus01QKfK++0gcDcu8au8dF3Pd/VsmtAT7QDJp0unvZgXq9OGznDU ZXnfnpe3ip7a2WXfMwnoi74TDGplVCpB8t4lajNZ8Bjcuk9SshRnIXiLYLafFqwI UFffVhDyQx2xYiLg/AWZjpUvp+2wMBzv5vn3J9mEQ77LmBH8wn2e36F94cJ47Lpn 5SMtGVj9abicJN8QS8o50raWQnT47t6dYyLn6C+eaP88PWOti55Tg1zHZQSIHZ4b s3BohFZm/it6LSf+Qj0Ih9ljAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUdOLxKCYD rDpKyxOSuk0RLfcPmQIwHwYDVR0jBBgwFoAUOZpeF9nKQ7bDOsMwIG3L3ZNeeHEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4NzlBL0I2NzAxNzNDMUM5 QjExRUY4RjQ1Q0M3REM0RjlBRTAyL09acGVGOW5LUTdiRE9zTXdJRzNMM1pOZWVI RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT1pwZUY5bktRN2JET3NNd0lHM0wzWk5lZUhFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODc5QS9CNjcwMTczQzFDOUIxMUVGOEY0NUNDN0RDNEY5QUUwMi8zNkFFQkRENjFD OUMxMUVGOTk1M0U2N0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGd2oTAPBAIAAjAJAwcBIAEN9dUAMA0GCSqGSIb3DQEBCwUA A4IBAQBi63jBvOHe2UboVYJFQRFNn4l7RP8Wp9Y0PJ26432DLerSVNlryjEP06Dp gHQnQ57I/RHGcsh0GcQC+Q2/TTpgc1E331k0dkoHl4vl5qUATi3oyMPBfgZmGS6i 5WgSXQBEn6H9rbkjwmnJbc2sb3buG2XUzmstqHw/7wH6Y7ve6OzEF0mwzp/dviIF N6DTS9XLdZqN1IIvwg8l/Z14SyD8NJzGWvMuO341iTYJDUl+5aTEBKigKrJTjgVp 7cusKcpuIl6uu4gWlZVOg6GPqrnbhpN1sqka7tiByGXOQbiXpBgmg1fHl1p5VNKO +5iVZV3/VLQr1PqX+UmW+UkbY7rg -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:05 2024 by rpki-client on console-ams.rpki-client.org