$ rpki-client -vvf rpki.apnic.net/member_repository/A9191170/F32308C2042A11EE94A84941C4F9AE02/0FB9EB64042F11EEB364B741C4F9AE02.roa File: 0FB9EB64042F11EEB364B741C4F9AE02.roa (raw, json) Hash identifier: n6Qf/JiR4rtaPvENLh8Bod7Vpff68SamyHvj1NNpSA4= Subject key identifier: 4E:42:94:61:4E:EB:5C:A8:CC:19:18:F0:1F:EA:BF:0E:3B:E4:B3:DF Certificate issuer: /CN=A9191170/serialNumber=DF538BBAA937B69BA00BB27B71A4B776E6E419FE Certificate serial: F2 Authority key identifier: DF:53:8B:BA:A9:37:B6:9B:A0:0B:B2:7B:71:A4:B7:76:E6:E4:19:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31OLuqk3tpugC7J7caS3dubkGf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191170/F32308C2042A11EE94A84941C4F9AE02/0FB9EB64042F11EEB364B741C4F9AE02.roa Signing time: Fri 13 Sep 2024 07:37:22 +0000 ROA not before: Fri 13 Sep 2024 07:37:22 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132581 IP address blocks: 103.36.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191170/F32308C2042A11EE94A84941C4F9AE02/31OLuqk3tpugC7J7caS3dubkGf4.crl rsync://rpki.apnic.net/member_repository/A9191170/F32308C2042A11EE94A84941C4F9AE02/31OLuqk3tpugC7J7caS3dubkGf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31OLuqk3tpugC7J7caS3dubkGf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 02:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191170 Validity Not Before: Sep 13 07:37:22 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e3ebb2-e6e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:bf:e9:d0:ac:d0:6f:74:37:e2:a4:4f:45:b9: 55:9d:5a:97:84:08:dc:57:0e:7a:07:97:21:00:56: 87:e1:7c:96:94:5d:90:d5:13:61:b6:b0:60:ff:09: 4d:b2:1d:17:d7:54:f9:9b:7c:b3:71:3c:83:ea:48: e7:c6:4c:66:0d:62:69:76:32:92:34:8e:06:40:ee: 89:54:47:2d:2d:36:38:5d:3b:ab:98:8a:3d:f8:54: 39:04:1e:6b:06:9f:38:fd:5d:64:9f:76:4c:60:b9: 7d:ca:ca:12:42:42:ab:4a:09:20:cd:7e:f0:6e:76: 5c:80:42:96:f6:65:ca:6a:71:38:be:68:2d:38:da: 53:70:08:05:a7:e9:56:5c:52:20:64:45:5c:b2:3b: 98:c5:c8:af:6e:c0:42:34:03:02:06:d4:23:41:cc: cb:15:c2:12:83:b9:bf:af:e2:67:7f:06:9c:88:a5: 5c:99:41:16:7b:21:f7:67:fc:13:68:c0:ff:97:3d: 17:3c:ac:ff:34:e7:67:2d:b4:94:26:53:e8:cb:42: bd:aa:b8:2e:c7:35:a6:ac:83:16:33:2b:8b:1f:ff: 40:cc:ae:e5:70:d3:b0:ba:15:93:78:f9:85:6e:a7: a4:31:85:c9:e5:8f:a1:26:b8:6e:20:c7:c8:3f:37: 0a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:42:94:61:4E:EB:5C:A8:CC:19:18:F0:1F:EA:BF:0E:3B:E4:B3:DF X509v3 Authority Key Identifier: keyid:DF:53:8B:BA:A9:37:B6:9B:A0:0B:B2:7B:71:A4:B7:76:E6:E4:19:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191170/F32308C2042A11EE94A84941C4F9AE02/31OLuqk3tpugC7J7caS3dubkGf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31OLuqk3tpugC7J7caS3dubkGf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191170/F32308C2042A11EE94A84941C4F9AE02/0FB9EB64042F11EEB364B741C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.36.129.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:2f:42:5f:59:9c:1c:fc:16:82:9f:0a:a4:f7:45:9d:e0:e1: 9e:52:61:f5:8c:b1:e7:ad:69:f4:0a:8e:dc:d2:ea:8f:73:52: 9d:13:aa:06:6e:2c:b1:2f:6a:af:b5:4c:a3:ce:1e:e6:81:e9: 51:7a:de:1b:f4:fa:ab:c9:97:3b:79:c7:4a:02:a7:fb:40:b1: 39:8a:9c:0f:a9:c5:44:f9:16:fd:d4:2c:8f:d9:e7:52:0b:dc: ef:b5:e1:c9:f8:90:5c:a0:bf:c6:4c:8d:47:00:20:7b:16:b6: fc:43:99:64:4d:58:1d:1d:98:5d:2f:31:44:be:8a:96:74:0d: c0:7a:8c:e5:76:db:95:0a:13:3d:b4:f2:bd:02:16:b8:03:43: e1:2a:e7:93:f6:87:df:29:93:6f:35:59:b8:83:f7:67:23:8b: 01:57:1e:85:4f:70:1a:df:81:61:5b:bd:a7:de:04:6e:bf:df: 39:a2:20:47:6b:4c:74:a5:bb:85:c3:88:f4:7d:ea:39:29:8f: 6a:9b:a1:f6:4d:a4:30:14:ad:ea:29:e6:a1:93:16:72:c8:80: d6:9b:e3:0a:2d:0a:8b:97:c4:78:03:9e:f2:22:ec:19:e6:66: f1:6a:df:57:ba:32:2c:7f:2f:68:fa:1f:d7:65:f0:ec:2f:1b: 53:78:1f:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTExNzAxMTAvBgNVBAUTKERGNTM4QkJBQTkzN0I2OUJBMDBCQjI3QjcxQTRCNzc2 RTZFNDE5RkUwHhcNMjQwOTEzMDczNzIyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzZWJiMi1lNmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7/p0KzQb3Q34qRPRblVnVqXhAjcVw56B5chAFaH4XyWlF2Q1RNhtrBg/wlN sh0X11T5m3yzcTyD6kjnxkxmDWJpdjKSNI4GQO6JVEctLTY4XTurmIo9+FQ5BB5r Bp84/V1kn3ZMYLl9ysoSQkKrSgkgzX7wbnZcgEKW9mXKanE4vmgtONpTcAgFp+lW XFIgZEVcsjuYxcivbsBCNAMCBtQjQczLFcISg7m/r+JnfwaciKVcmUEWeyH3Z/wT aMD/lz0XPKz/NOdnLbSUJlPoy0K9qrguxzWmrIMWMyuLH/9AzK7lcNOwuhWTePmF bqekMYXJ5Y+hJrhuIMfIPzcKowIDAQABo4IClTCCApEwHQYDVR0OBBYEFE5ClGFO 61yozBkY8B/qvw475LPfMB8GA1UdIwQYMBaAFN9Ti7qpN7aboAuye3Gkt3bm5Bn+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTE3MC9GMzIzMDhDMjA0 MkExMUVFOTRBODQ5NDFDNEY5QUUwMi8zMU9MdXFrM3RwdWdDN0o3Y2FTM2R1YmtH ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMxT0x1cWszdHB1Z0M3SjdjYVMzZHVia0dmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTExNzAvRjMyMzA4QzIwNDJBMTFFRTk0QTg0OTQxQzRGOUFFMDIvMEZCOUVCNjQw NDJGMTFFRUIzNjRCNzQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnJIEwDQYJKoZIhvcNAQELBQADggEBADovQl9ZnBz8FoKf CqT3RZ3g4Z5SYfWMseetafQKjtzS6o9zUp0TqgZuLLEvaq+1TKPOHuaB6VF63hv0 +qvJlzt5x0oCp/tAsTmKnA+pxUT5Fv3ULI/Z51IL3O+14cn4kFygv8ZMjUcAIHsW tvxDmWRNWB0dmF0vMUS+ipZ0DcB6jOV225UKEz208r0CFrgDQ+Eq55P2h98pk281 WbiD92cjiwFXHoVPcBrfgWFbvafeBG6/3zmiIEdrTHSlu4XDiPR96jkpj2qbofZN pDAUreop5qGTFnLIgNab4wotCouXxHgDnvIi7BnmZvFq31e6Mix/L2j6H9dl8Owv G1N4H4E= -----END CERTIFICATE-----Generated at Thu Mar 13 21:49:02 2025 by rpki-client