$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/41A8E738045111EA9C7DF516C4F9AE02.roa File: 41A8E738045111EA9C7DF516C4F9AE02.roa (raw, json) Hash identifier: 549cEJi0czWRyHHS6o5u4NQ6YCs80VKq9MH5xptp8mg= Subject key identifier: EC:35:5C:7B:97:0F:0E:62:A1:7F:72:96:FC:15:02:94:C5:4D:C9:75 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0C69 Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/41A8E738045111EA9C7DF516C4F9AE02.roa Signing time: Wed 18 Sep 2024 18:37:01 +0000 ROA not before: Wed 18 Sep 2024 18:37:00 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132436 IP address blocks: 103.73.36.0/24 maxlen: 24 103.73.37.0/24 maxlen: 24 103.73.38.0/24 maxlen: 24 103.73.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3177 (0xc69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: Sep 18 18:37:00 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eb1dcc-a280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ac:2a:53:94:49:ae:90:63:a7:56:3f:e1:9c: 77:3d:9e:14:c3:08:e8:89:cd:df:96:cf:11:a3:73: 2c:62:bc:e7:c3:69:93:21:6f:03:6e:85:a4:d1:ce: 61:bd:74:8c:57:04:f9:1f:e9:eb:dd:88:57:5b:f9: dd:69:3c:ea:0d:fc:9a:bc:d5:fb:51:e7:ae:8b:12: 2e:45:97:f1:f3:58:1f:82:38:e2:3b:75:24:ac:a7: c2:2b:ef:65:be:68:60:ec:41:e6:95:6e:69:d5:1d: cd:38:5b:ed:4c:5f:ff:7c:4b:73:d9:f5:f8:0f:df: 2d:b5:ae:80:a2:67:9f:15:88:b3:9c:b8:36:74:ee: 2f:f8:cf:85:e7:08:99:4f:a2:60:4a:6a:99:e0:25: 44:f4:f6:e0:d4:30:ea:2c:b7:ce:79:27:4d:9e:ff: cb:04:83:46:b2:88:e4:41:b2:02:6e:2b:1e:2f:ce: b8:e9:07:12:ef:85:f4:c3:96:e5:bc:c6:90:a1:a0: 76:61:54:40:9f:a0:d4:03:d0:92:18:f1:2f:2b:60: ff:d6:d2:19:fe:c1:9c:49:b8:5a:fb:2b:4b:70:7a: 56:aa:94:41:ae:53:23:dc:eb:f7:fe:b3:21:e1:4d: 30:c7:9e:8b:81:14:53:38:d5:5c:35:92:cb:f5:6e: 5f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:35:5C:7B:97:0F:0E:62:A1:7F:72:96:FC:15:02:94:C5:4D:C9:75 X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/41A8E738045111EA9C7DF516C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.36.0/22 Signature Algorithm: sha256WithRSAEncryption 14:a0:b9:af:86:17:6a:5c:e6:11:91:2d:45:f8:fc:b7:49:5b: b7:4e:00:c9:3c:08:47:da:e4:f1:fd:53:dc:b3:b8:8d:69:2b: a6:a1:cd:8a:aa:76:1d:e4:6c:a6:c5:54:9b:21:d7:c6:f5:39: af:22:62:05:a4:81:8c:f7:48:fe:61:12:3a:f7:9c:57:a3:b9: c9:c5:fc:1e:05:f4:8d:06:db:31:1e:98:cc:98:98:ac:50:74: 0c:dd:09:2a:05:e2:e9:19:63:95:29:c1:e9:3e:5a:e0:04:28: 79:37:db:11:6e:3b:90:ff:5f:a2:ea:00:d0:ce:f3:ae:34:68: 2a:0a:f0:04:70:40:60:06:1c:0c:42:9f:19:4a:1f:66:09:3f: f3:a5:a4:b8:ed:f2:0e:39:9c:bd:07:ae:c3:c8:5b:78:26:ab: a9:e3:d1:ce:a9:44:d5:69:a6:28:c6:85:7b:ac:e1:c5:48:ea: 2e:c4:39:5b:d9:31:e9:3e:aa:c3:d8:fe:21:ac:3e:70:ca:a4: 51:5d:6f:80:ae:4a:cc:95:f0:b3:f9:56:5e:c9:d8:bb:75:25: 61:d2:ba:51:b7:ce:da:c7:ca:d4:fe:92:05:86:65:06:7c:18: aa:51:8a:72:dd:b9:80:d7:b6:88:07:ea:90:a1:29:a1:04:16: 6d:52:0c:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjQwOTE4MTgzNzAwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmViMWRjYy1hMjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6wqU5RJrpBjp1Y/4Zx3PZ4Uwwjoic3fls8Ro3MsYrznw2mTIW8DboWk0c5h vXSMVwT5H+nr3YhXW/ndaTzqDfyavNX7UeeuixIuRZfx81gfgjjiO3UkrKfCK+9l vmhg7EHmlW5p1R3NOFvtTF//fEtz2fX4D98tta6AomefFYiznLg2dO4v+M+F5wiZ T6JgSmqZ4CVE9Pbg1DDqLLfOeSdNnv/LBINGsojkQbICbiseL8646QcS74X0w5bl vMaQoaB2YVRAn6DUA9CSGPEvK2D/1tIZ/sGcSbha+ytLcHpWqpRBrlMj3Ov3/rMh 4U0wx56LgRRTONVcNZLL9W5f4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOw1XHuX Dw5ioX9ylvwVApTFTcl1MB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU2MEQvRjVEQ0E2RDRFNUI4MTFFOThBNzYxMjBFQzRGOUFFMDIvNDFBOEU3Mzgw NDUxMTFFQTlDN0RGNTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnSSQwDQYJKoZIhvcNAQELBQADggEBABSgua+GF2pc5hGR LUX4/LdJW7dOAMk8CEfa5PH9U9yzuI1pK6ahzYqqdh3kbKbFVJsh18b1Oa8iYgWk gYz3SP5hEjr3nFejucnF/B4F9I0G2zEemMyYmKxQdAzdCSoF4ukZY5Upwek+WuAE KHk32xFuO5D/X6LqANDO8640aCoK8ARwQGAGHAxCnxlKH2YJP/OlpLjt8g45nL0H rsPIW3gmq6nj0c6pRNVppijGhXus4cVI6i7EOVvZMek+qsPY/iGsPnDKpFFdb4Cu SsyV8LP5Vl7J2Lt1JWHSulG3ztrHytT+kgWGZQZ8GKpRinLduYDXtogH6pChKaEE Fm1SDKk= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org