$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/41A8E738045111EA9C7DF516C4F9AE02.roa File: 41A8E738045111EA9C7DF516C4F9AE02.roa (raw, json) Hash identifier: XbZhqC+SWXG40xObMAPMUMkWbjxQGYlTOkWVpPfPZdg= Subject key identifier: D4:E6:31:FB:56:8E:5D:7C:21:2F:E1:AE:D5:64:70:39:6A:00:B6:48 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0BB2 Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/41A8E738045111EA9C7DF516C4F9AE02.roa Signing time: Mon 02 Oct 2023 18:56:18 +0000 ROA not before: Mon 02 Oct 2023 18:56:18 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132436 IP address blocks: 103.73.36.0/24 maxlen: 24 103.73.37.0/24 maxlen: 24 103.73.38.0/24 maxlen: 24 103.73.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2994 (0xbb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: Oct 2 18:56:18 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651b1252-a30f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4f:38:fb:85:fb:53:02:86:03:23:16:a6:ec: 05:82:f5:3f:f5:f3:77:df:12:c1:4c:cd:3f:26:ae: 1f:77:a5:56:9f:f6:d2:56:aa:26:2b:22:e5:8a:c8: 9c:20:b0:95:c7:d7:64:9d:d7:96:ff:44:96:a8:7d: e9:b9:47:2a:9d:82:62:b5:e7:73:a4:9b:04:f5:77: e2:e1:39:7a:49:05:ca:80:d2:f3:e3:c8:70:13:ce: 27:43:d4:48:00:cb:3a:6e:a8:55:69:30:4e:ef:ad: 62:bf:90:77:68:45:c7:e6:46:6d:0d:fd:a5:55:03: b4:c7:2c:23:a7:27:05:8a:e4:cb:c4:6c:5a:28:2b: e7:98:01:ca:fd:69:45:4b:88:db:57:a2:dd:39:f2: fb:65:26:44:ad:bd:5d:38:20:6c:28:d4:17:be:6d: 3a:7e:b0:f8:15:a2:b4:16:c6:19:1c:0f:e7:f2:36: 7e:47:45:21:72:29:23:09:f0:5e:80:ca:16:25:f3: 90:80:68:3a:bf:0e:df:53:91:fd:c4:16:b1:48:8b: 2b:38:29:76:d7:ca:1a:6b:4c:42:30:07:6d:50:ea: 0b:8c:0b:57:45:da:62:bb:d0:cd:81:7e:4a:fc:ee: 7d:a8:d3:ab:52:db:5f:2c:c8:2c:20:f8:75:a4:f4: f1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E6:31:FB:56:8E:5D:7C:21:2F:E1:AE:D5:64:70:39:6A:00:B6:48 X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/41A8E738045111EA9C7DF516C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.36.0/22 Signature Algorithm: sha256WithRSAEncryption 03:4d:1b:a7:59:71:ec:4e:0f:d4:b6:4e:26:96:84:07:44:6e: 81:6f:e8:3e:82:55:a5:78:ea:48:44:8e:07:86:f1:48:13:fb: 3d:e1:5f:38:35:02:d1:1d:90:ec:82:ad:28:51:fe:5b:27:8f: 89:76:39:9c:0f:49:7f:c3:92:0f:68:11:96:66:b0:d6:e9:57: c4:4c:12:de:cf:00:f4:77:81:11:28:38:07:f7:3e:ba:ce:2f: 2e:a9:bb:e6:37:4f:11:5d:de:e3:b7:ef:63:98:ec:76:66:13: b2:13:2f:1d:b2:8b:02:2d:95:5e:ae:6f:8a:b4:b2:0d:fe:85: 0c:55:20:2a:33:e0:ab:0f:01:17:9a:c7:9f:61:0f:4f:89:87: b1:27:97:f5:37:cd:9d:c3:77:b3:73:4a:98:54:35:37:38:2f: 8d:08:09:d8:76:ec:a1:53:1c:fd:4d:17:9e:8c:b6:25:8e:a6: a5:cc:b4:cd:79:e5:b2:03:e8:85:c8:59:be:56:33:44:74:90: 0d:a7:3f:3b:40:59:3e:8b:e0:0e:57:d1:09:fe:07:24:78:e2: 25:67:dd:92:5b:41:b1:c4:9c:fd:4a:b1:f7:f3:b3:b1:e3:2e: bc:09:ed:78:35:7e:e9:e3:d9:81:94:28:db:d6:f2:68:ae:51: ea:61:b6:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjMxMDAyMTg1NjE4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFiMTI1Mi1hMzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1084+4X7UwKGAyMWpuwFgvU/9fN33xLBTM0/Jq4fd6VWn/bSVqomKyLlisic ILCVx9dkndeW/0SWqH3puUcqnYJitedzpJsE9Xfi4Tl6SQXKgNLz48hwE84nQ9RI AMs6bqhVaTBO761iv5B3aEXH5kZtDf2lVQO0xywjpycFiuTLxGxaKCvnmAHK/WlF S4jbV6LdOfL7ZSZErb1dOCBsKNQXvm06frD4FaK0FsYZHA/n8jZ+R0UhcikjCfBe gMoWJfOQgGg6vw7fU5H9xBaxSIsrOCl218oaa0xCMAdtUOoLjAtXRdpiu9DNgX5K /O59qNOrUttfLMgsIPh1pPTxEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNTmMftW jl18IS/hrtVkcDlqALZIMB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU2MEQvRjVEQ0E2RDRFNUI4MTFFOThBNzYxMjBFQzRGOUFFMDIvNDFBOEU3Mzgw NDUxMTFFQTlDN0RGNTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnSSQwDQYJKoZIhvcNAQELBQADggEBAANNG6dZcexOD9S2 TiaWhAdEboFv6D6CVaV46khEjgeG8UgT+z3hXzg1AtEdkOyCrShR/lsnj4l2OZwP SX/Dkg9oEZZmsNbpV8RMEt7PAPR3gREoOAf3PrrOLy6pu+Y3TxFd3uO372OY7HZm E7ITLx2yiwItlV6ub4q0sg3+hQxVICoz4KsPAReax59hD0+Jh7Enl/U3zZ3Dd7Nz SphUNTc4L40ICdh27KFTHP1NF56MtiWOpqXMtM155bID6IXIWb5WM0R0kA2nPztA WT6L4A5X0Qn+ByR44iVn3ZJbQbHEnP1Ksffzs7HjLrwJ7Xg1funj2YGUKNvW8miu Uephtjw= -----END CERTIFICATE-----Generated at Sun May 12 20:04:27 2024 by rpki-client on console-fra.rpki-client.org