$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/36F0A6E6370811ECA61C8B38C4F9AE02.roa File: 36F0A6E6370811ECA61C8B38C4F9AE02.roa (raw, json) Hash identifier: ofPWMxlhICdSKGTCU/b001ZJjB4sClqS+xTcAblTppI= Subject key identifier: B8:47:A5:7F:00:6C:A8:D8:FD:2D:39:09:0F:F5:99:97:C0:85:71:16 Certificate issuer: /CN=A917E0AC/serialNumber=18D5CFC8AAF517B076D1FC9C2E65F691435D3A5F Certificate serial: 08EC Authority key identifier: 18:D5:CF:C8:AA:F5:17:B0:76:D1:FC:9C:2E:65:F6:91:43:5D:3A:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNXPyKr1F7B20fycLmX2kUNdOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/36F0A6E6370811ECA61C8B38C4F9AE02.roa Signing time: Wed 04 Sep 2024 21:09:35 +0000 ROA not before: Wed 04 Sep 2024 21:09:35 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136950 IP address blocks: 103.142.100.0/23 maxlen: 23 103.142.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/GNXPyKr1F7B20fycLmX2kUNdOl8.crl rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/GNXPyKr1F7B20fycLmX2kUNdOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNXPyKr1F7B20fycLmX2kUNdOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2284 (0x8ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0AC/serialNumber=18D5CFC8AAF517B076D1FC9C2E65F691435D3A5F Validity Not Before: Sep 4 21:09:35 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d8cc8f-aa36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a1:e0:77:1d:58:5d:bb:cc:eb:38:f1:e5:fb: 9d:eb:13:5b:5a:a9:fb:b1:87:3d:b4:a4:91:e4:df: 27:a3:1e:f8:5c:f2:0c:57:c3:a2:f7:7a:89:db:8a: 68:db:2f:8d:0d:e0:34:cc:07:2e:78:32:a0:0d:27: a0:87:72:55:30:49:5f:e7:19:d7:b9:35:2a:08:f0: 3d:60:b5:e4:5a:61:17:f2:05:3f:8b:a3:22:55:c0: 8d:c3:bf:03:02:14:50:80:8e:f1:d8:7a:e0:8e:10: f4:d1:35:b3:13:4b:f7:6c:83:90:cd:7c:0f:2d:7c: 73:d9:da:6f:9c:d7:7e:d5:e4:5c:f1:af:79:3b:0a: e2:7b:b8:2b:14:06:a6:e8:e3:3f:d4:0b:80:e3:1b: 4e:09:47:79:3a:b3:20:bf:d9:68:76:13:da:02:30: 85:9d:9c:80:d4:5d:34:49:95:34:1c:4c:6f:10:d9: bb:f5:6c:b5:10:ea:09:bf:2a:9b:bd:19:f9:e5:76: 5d:53:ec:62:8f:eb:62:0b:c6:d9:88:cc:6f:6c:5e: 02:18:d7:50:f8:9c:b1:a7:75:4e:18:4e:f1:25:2e: 31:1b:33:64:c7:43:90:32:13:18:b2:5c:18:19:ff: e7:eb:e8:fd:5c:dc:9c:c0:fb:5a:84:2d:93:62:5a: df:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:47:A5:7F:00:6C:A8:D8:FD:2D:39:09:0F:F5:99:97:C0:85:71:16 X509v3 Authority Key Identifier: keyid:18:D5:CF:C8:AA:F5:17:B0:76:D1:FC:9C:2E:65:F6:91:43:5D:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/GNXPyKr1F7B20fycLmX2kUNdOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNXPyKr1F7B20fycLmX2kUNdOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/36F0A6E6370811ECA61C8B38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.100.0/23 Signature Algorithm: sha256WithRSAEncryption 18:31:f4:2a:15:4a:12:6a:d9:aa:75:4c:76:be:c3:d0:aa:a8: d8:8c:4e:a3:3a:03:69:e8:64:96:17:00:58:5d:1c:db:e5:8f: 4a:4c:08:5b:5c:a8:90:77:3e:e9:c0:5f:c8:4c:a8:c6:f0:38: 28:4a:b3:e3:68:f3:86:59:f6:44:ef:42:aa:ff:1c:fb:d2:9b: c1:69:e1:df:0b:49:02:fb:5b:00:b6:ba:e5:90:73:1e:ad:d2: 83:c4:85:d2:ba:52:09:b7:74:70:7e:58:dd:32:01:a7:54:ea: 62:97:5d:1c:7f:96:31:95:0f:5c:c6:b2:cd:1a:d6:ec:f0:d8: 35:d6:81:4a:bf:d2:d6:8b:5b:bb:1e:f4:4d:38:3a:41:8c:5c: 0f:ae:fa:f4:7d:03:6b:44:7f:2b:01:49:0f:d4:8e:45:93:46: 14:6b:a1:6b:54:7e:77:40:f1:87:2c:e4:b2:f3:1e:a7:2e:51: 7b:a6:7a:c3:98:67:32:23:1b:df:aa:00:d7:02:7e:a7:70:f6: 02:1a:1c:bc:f3:9b:2d:0f:60:5d:51:c1:07:5b:db:7d:89:98: fe:d7:62:80:03:fe:ad:e1:1c:b0:12:93:d9:7a:74:b7:ee:e3: 46:c0:1e:10:6b:2c:99:c8:4d:e5:45:00:40:a3:db:52:6b:4b: 26:df:21:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQUMxMTAvBgNVBAUTKDE4RDVDRkM4QUFGNTE3QjA3NkQxRkM5QzJFNjVGNjkx NDM1RDNBNUYwHhcNMjQwOTA0MjEwOTM1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4Y2M4Zi1hYTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qHgdx1YXbvM6zjx5fud6xNbWqn7sYc9tKSR5N8nox74XPIMV8Oi93qJ24po 2y+NDeA0zAcueDKgDSegh3JVMElf5xnXuTUqCPA9YLXkWmEX8gU/i6MiVcCNw78D AhRQgI7x2HrgjhD00TWzE0v3bIOQzXwPLXxz2dpvnNd+1eRc8a95Owrie7grFAam 6OM/1AuA4xtOCUd5OrMgv9lodhPaAjCFnZyA1F00SZU0HExvENm79Wy1EOoJvyqb vRn55XZdU+xij+tiC8bZiMxvbF4CGNdQ+Jyxp3VOGE7xJS4xGzNkx0OQMhMYslwY Gf/n6+j9XNycwPtahC2TYlrfMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLhHpX8A bKjY/S05CQ/1mZfAhXEWMB8GA1UdIwQYMBaAFBjVz8iq9RewdtH8nC5l9pFDXTpf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBQy82RUEzOUMwNjk0 MkYxMUVBQjE2NDUyN0VDNEY5QUUwMi9HTlhQeUtyMUY3QjIwZnljTG1YMmtVTmRP bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dOWFB5S3IxRjdCMjBmeWNMbVgya1VOZE9sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQUMvNkVBMzlDMDY5NDJGMTFFQUIxNjQ1MjdFQzRGOUFFMDIvMzZGMEE2RTYz NzA4MTFFQ0E2MUM4QjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjmQwDQYJKoZIhvcNAQELBQADggEBABgx9CoVShJq2ap1 THa+w9CqqNiMTqM6A2noZJYXAFhdHNvlj0pMCFtcqJB3PunAX8hMqMbwOChKs+No 84ZZ9kTvQqr/HPvSm8Fp4d8LSQL7WwC2uuWQcx6t0oPEhdK6Ugm3dHB+WN0yAadU 6mKXXRx/ljGVD1zGss0a1uzw2DXWgUq/0taLW7se9E04OkGMXA+u+vR9A2tEfysB SQ/UjkWTRhRroWtUfndA8Ycs5LLzHqcuUXumesOYZzIjG9+qANcCfqdw9gIaHLzz my0PYF1RwQdb232JmP7XYoAD/q3hHLASk9l6dLfu40bAHhBrLJnITeVFAECj21Jr SybfIVE= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:41 2024 by rpki-client on console-fra.rpki-client.org