$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C36DF7C87ABD11EDA9C3947EC4F9AE02.roa File: C36DF7C87ABD11EDA9C3947EC4F9AE02.roa (raw, json) Hash identifier: oRhG6wJK5msR8fcEXtNaarw0aK6cJlUvn259FCpupFA= Subject key identifier: F0:52:45:8D:8A:4C:33:59:4B:7B:5B:D5:35:55:D6:25:FF:87:73:28 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 70D9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C36DF7C87ABD11EDA9C3947EC4F9AE02.roa Signing time: Wed 10 May 2023 16:45:29 +0000 ROA not before: Wed 10 May 2023 16:45:29 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150067 IP address blocks: 103.39.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28889 (0x70d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:45:29 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca29-2bc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:66:8e:48:a3:4d:09:30:85:57:ba:f8:42:25: a3:cd:43:42:be:67:cb:91:eb:48:f8:01:4a:91:f8: c6:58:6e:a5:d5:7c:41:14:41:5e:45:78:10:1a:5a: 14:00:7a:53:68:dd:87:63:b2:b5:40:27:03:64:e8: 6c:10:69:7a:e9:76:79:2d:3b:a1:7f:cd:c7:9d:22: fa:68:c7:52:a6:98:64:d6:60:04:69:80:9a:16:70: 6c:24:29:09:f9:1e:99:9b:78:9f:f9:95:72:ff:d1: e9:76:a2:f6:e5:c7:55:91:d6:f4:05:c7:81:cb:4b: 3c:19:a2:9a:35:73:ea:8d:a7:99:63:ed:0b:78:a7: c5:ec:ff:d0:f0:61:09:a2:20:29:a0:54:9d:db:0c: 3d:06:b0:cd:66:32:87:41:75:80:fc:de:03:c3:b2: 29:85:d5:ec:89:40:31:41:4d:a5:fb:17:26:ec:c8: 31:20:3e:9d:7e:d7:18:57:88:91:33:cf:a3:6e:71: a7:0c:80:cc:ce:a3:88:a0:6e:85:c6:08:c4:58:06: a0:89:3a:cd:7a:0d:98:69:bb:ad:c1:7f:e9:41:df: 68:51:eb:8b:47:a1:e5:f8:a9:74:7b:9b:d6:2a:ef: c0:61:21:e1:5e:a6:5e:a7:b3:a8:3f:b3:21:d5:52: 32:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:52:45:8D:8A:4C:33:59:4B:7B:5B:D5:35:55:D6:25:FF:87:73:28 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C36DF7C87ABD11EDA9C3947EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.144.0/23 Signature Algorithm: sha256WithRSAEncryption a3:f8:cd:0a:dc:7c:58:1b:24:83:d1:2c:6c:6b:d0:c6:e9:39: 01:d9:fe:dc:16:d3:a2:1e:29:5b:c2:82:db:ca:eb:cd:83:36: 95:d1:56:7f:0b:96:d0:3d:e1:6e:56:88:71:9a:19:62:1f:34: 62:95:fd:fe:f8:4b:f2:6a:b8:71:a2:75:d5:50:32:01:94:7e: 69:13:34:18:48:ae:00:62:64:58:ae:05:73:6d:3e:5f:ed:53: 63:4b:f9:de:61:fb:25:fb:20:88:7a:4b:b0:86:ee:cb:8d:3a: b4:c2:1b:9d:fa:3c:35:20:82:c5:cb:ef:2c:10:d9:8b:fc:2e: ac:15:c7:78:56:74:58:07:a1:cb:d5:08:fb:f6:27:1a:60:d5: b9:92:2a:67:c2:73:c5:9f:a5:43:dc:dd:0a:22:4f:61:8c:c5: 73:10:18:7d:77:f4:29:b8:8b:9a:d6:d4:cb:8e:79:f3:a7:97: c5:93:4c:41:77:0a:6c:2c:00:63:5a:f8:68:b9:7c:e7:3a:2c: d3:d2:7d:94:eb:b5:c2:79:31:56:c7:9f:e4:f2:6f:80:cb:d8: 41:ac:6f:ab:26:d2:c7:af:34:28:6d:fe:c4:f6:61:4a:49:69: f9:53:1f:10:9e:dc:61:0a:ed:0b:73:2c:f0:41:26:15:85:a9: cc:82:0e:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NTI5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2EyOS0yYmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2aOSKNNCTCFV7r4QiWjzUNCvmfLketI+AFKkfjGWG6l1XxBFEFeRXgQGloU AHpTaN2HY7K1QCcDZOhsEGl66XZ5LTuhf83HnSL6aMdSpphk1mAEaYCaFnBsJCkJ +R6Zm3if+ZVy/9HpdqL25cdVkdb0BceBy0s8GaKaNXPqjaeZY+0LeKfF7P/Q8GEJ oiApoFSd2ww9BrDNZjKHQXWA/N4Dw7IphdXsiUAxQU2l+xcm7MgxID6dftcYV4iR M8+jbnGnDIDMzqOIoG6FxgjEWAagiTrNeg2YabutwX/pQd9oUeuLR6Hl+Kl0e5vW Ku/AYSHhXqZep7OoP7Mh1VIy8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPBSRY2K TDNZS3tb1TVV1iX/h3MoMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzM2REY3Qzg3 QUJEMTFFREE5QzM5NDdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnJ5AwDQYJKoZIhvcNAQELBQADggEBAKP4zQrcfFgbJIPR LGxr0MbpOQHZ/twW06IeKVvCgtvK682DNpXRVn8LltA94W5WiHGaGWIfNGKV/f74 S/JquHGiddVQMgGUfmkTNBhIrgBiZFiuBXNtPl/tU2NL+d5h+yX7IIh6S7CG7suN OrTCG536PDUggsXL7ywQ2Yv8LqwVx3hWdFgHocvVCPv2Jxpg1bmSKmfCc8WfpUPc 3QoiT2GMxXMQGH139Cm4i5rW1MuOefOnl8WTTEF3CmwsAGNa+Gi5fOc6LNPSfZTr tcJ5MVbHn+Tyb4DL2EGsb6sm0sevNCht/sT2YUpJaflTHxCe3GEK7QtzLPBBJhWF qcyCDqA= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:45 2024 by rpki-client on console-ams.rpki-client.org