$ rpki-client -vvf rpki.apnic.net/member_repository/A9191170/F32308C2042A11EE94A84941C4F9AE02/0FB9EB64042F11EEB364B741C4F9AE02.roa File: 0FB9EB64042F11EEB364B741C4F9AE02.roa (raw, json) Hash identifier: DuUc0YimiRCNq8wW/zdjd8VTBY4NbqXjLDx9fEGix6o= Subject key identifier: 7D:02:8C:B9:68:39:96:28:73:B5:AC:9E:97:60:CE:D7:44:97:A1:0F Certificate issuer: /CN=A9191170/serialNumber=DF538BBAA937B69BA00BB27B71A4B776E6E419FE Certificate serial: 2C Authority key identifier: DF:53:8B:BA:A9:37:B6:9B:A0:0B:B2:7B:71:A4:B7:76:E6:E4:19:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31OLuqk3tpugC7J7caS3dubkGf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191170/F32308C2042A11EE94A84941C4F9AE02/0FB9EB64042F11EEB364B741C4F9AE02.roa Signing time: Fri 25 Aug 2023 05:24:42 +0000 ROA not before: Fri 25 Aug 2023 05:24:42 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 132581 IP address blocks: 103.36.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191170/F32308C2042A11EE94A84941C4F9AE02/31OLuqk3tpugC7J7caS3dubkGf4.crl rsync://rpki.apnic.net/member_repository/A9191170/F32308C2042A11EE94A84941C4F9AE02/31OLuqk3tpugC7J7caS3dubkGf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31OLuqk3tpugC7J7caS3dubkGf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191170/serialNumber=DF538BBAA937B69BA00BB27B71A4B776E6E419FE Validity Not Before: Aug 25 05:24:42 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e83b1a-7eb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:e2:0e:12:96:15:1d:69:7d:1e:06:24:6b:e2: 68:82:75:a2:c1:3b:8a:a9:52:65:37:85:1b:69:7a: 7f:74:15:37:50:b3:51:b1:de:b2:0d:44:c2:73:63: d0:69:b8:af:90:9c:29:d0:85:1f:93:96:21:24:2a: 74:9c:0f:38:2a:a2:53:e2:34:32:3d:10:38:5d:58: b6:19:8f:bf:12:28:ec:61:0c:fc:d5:f3:1c:8b:b9: fa:86:45:c9:67:e9:0f:ea:32:c6:7f:0f:eb:8b:a0: cb:8b:45:93:42:05:de:d2:37:b6:12:13:49:da:f9: 23:13:d1:e5:34:3a:1c:ba:57:22:8a:5f:93:de:98: 92:8f:68:64:98:09:68:d7:c1:f1:b7:87:22:4f:f4: d9:0a:51:97:1e:43:7d:93:c7:3f:c6:91:50:c2:f4: 81:c5:07:f2:cf:31:96:10:33:9d:ba:53:bc:75:07: c7:bc:35:b8:b0:17:1c:1e:52:f6:85:65:c6:53:ba: 0b:b1:70:05:6b:8b:d6:79:04:1c:31:be:b6:02:9e: 16:5a:66:07:6d:5a:08:55:87:f9:a6:07:3a:4c:a5: 53:65:b2:97:6a:95:05:17:2e:75:1b:13:05:8f:a6: 1c:59:b0:6c:27:1e:1c:e6:4b:aa:65:25:13:a7:7e: e5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:02:8C:B9:68:39:96:28:73:B5:AC:9E:97:60:CE:D7:44:97:A1:0F X509v3 Authority Key Identifier: keyid:DF:53:8B:BA:A9:37:B6:9B:A0:0B:B2:7B:71:A4:B7:76:E6:E4:19:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191170/F32308C2042A11EE94A84941C4F9AE02/31OLuqk3tpugC7J7caS3dubkGf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31OLuqk3tpugC7J7caS3dubkGf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191170/F32308C2042A11EE94A84941C4F9AE02/0FB9EB64042F11EEB364B741C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.36.129.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:fa:6e:54:2e:ee:c7:36:f2:7c:52:da:14:a0:69:cb:fd:90: 86:db:b5:55:c7:8e:7c:7a:cd:69:a7:71:28:00:7d:e0:6d:84: 38:06:ae:74:b1:89:a2:2c:c2:75:5b:53:df:ea:63:65:ff:7f: 3f:21:18:41:4f:a5:b1:9a:9a:1a:47:19:3c:cb:73:df:72:b2: c8:f1:ed:71:83:8a:0e:4f:74:a2:17:bc:1b:50:4d:3e:9b:d8: e7:67:9c:23:7b:7f:d9:f8:ae:ba:f1:60:c8:7a:4c:ad:62:ad: 44:93:15:7b:5b:d6:93:7c:f5:45:a2:ce:22:a1:be:10:54:ac: d1:f0:53:82:b7:77:18:57:ea:61:0e:d4:48:aa:aa:9c:9d:3f: 81:3b:d9:c1:4e:0a:71:89:04:05:53:55:2d:26:5a:b6:4a:29: e0:9f:82:99:50:bc:c4:f2:81:94:03:73:ca:ce:d0:82:58:f9: a7:26:48:d9:89:10:26:e0:86:2a:c3:5c:21:bc:68:3e:94:fb: d1:ad:79:45:74:07:f2:6f:74:9f:05:09:55:7e:28:62:f6:93: 7d:7e:63:ba:61:0d:84:a8:2b:5f:9c:f8:d7:77:49:55:0d:14: 00:e0:93:4d:00:aa:b4:26:cc:84:0d:ca:39:c6:91:65:65:4f: 8f:0e:70:eb -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MTE3MDExMC8GA1UEBRMoREY1MzhCQkFBOTM3QjY5QkEwMEJCMjdCNzFBNEI3NzZF NkU0MTlGRTAeFw0yMzA4MjUwNTI0NDJaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZTgzYjFhLTdlYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD44g4SlhUdaX0eBiRr4miCdaLBO4qpUmU3hRtpen90FTdQs1Gx3rINRMJzY9Bp uK+QnCnQhR+TliEkKnScDzgqolPiNDI9EDhdWLYZj78SKOxhDPzV8xyLufqGRcln 6Q/qMsZ/D+uLoMuLRZNCBd7SN7YSE0na+SMT0eU0Ohy6VyKKX5PemJKPaGSYCWjX wfG3hyJP9NkKUZceQ32Txz/GkVDC9IHFB/LPMZYQM526U7x1B8e8NbiwFxweUvaF ZcZTuguxcAVri9Z5BBwxvrYCnhZaZgdtWghVh/mmBzpMpVNlspdqlQUXLnUbEwWP phxZsGwnHhzmS6plJROnfuVfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUfQKMuWg5 lihztayel2DO10SXoQ8wHwYDVR0jBBgwFoAU31OLuqk3tpugC7J7caS3dubkGf4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkxMTcwL0YzMjMwOEMyMDQy QTExRUU5NEE4NDk0MUM0RjlBRTAyLzMxT0x1cWszdHB1Z0M3SjdjYVMzZHVia0dm NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMzFPTHVxazN0cHVnQzdKN2NhUzNkdWJrR2Y0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTE3MC9GMzIzMDhDMjA0MkExMUVFOTRBODQ5NDFDNEY5QUUwMi8wRkI5RUI2NDA0 MkYxMUVFQjM2NEI3NDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGckgTANBgkqhkiG9w0BAQsFAAOCAQEAK/puVC7uxzbyfFLa FKBpy/2Qhtu1VceOfHrNaadxKAB94G2EOAaudLGJoizCdVtT3+pjZf9/PyEYQU+l sZqaGkcZPMtz33KyyPHtcYOKDk90ohe8G1BNPpvY52ecI3t/2fiuuvFgyHpMrWKt RJMVe1vWk3z1RaLOIqG+EFSs0fBTgrd3GFfqYQ7USKqqnJ0/gTvZwU4KcYkEBVNV LSZatkop4J+CmVC8xPKBlANzys7Qglj5pyZI2YkQJuCGKsNcIbxoPpT70a15RXQH 8m90nwUJVX4oYvaTfX5jumENhKgrX5z413dJVQ0UAOCTTQCqtCbMhA3KOcaRZWVP jw5w6w== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:34 2024 by rpki-client on console-fra.rpki-client.org