$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/2F3E0638BE4C11ED9598AC4EC4F9AE02.roa File: 2F3E0638BE4C11ED9598AC4EC4F9AE02.roa (raw, json) Hash identifier: Lg+5/CIRgp+ST/H5JbNbhT63WQCypcRpjs1ukUFHNj8= Subject key identifier: 18:6E:1A:04:81:B2:32:1F:83:D7:A7:CE:87:A7:BA:DB:2C:98:85:A5 Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 065B Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/2F3E0638BE4C11ED9598AC4EC4F9AE02.roa Signing time: Wed 02 Aug 2023 22:19:36 +0000 ROA not before: Wed 02 Aug 2023 22:19:36 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 17408 IP address blocks: 103.37.236.0/22 maxlen: 22 103.154.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 22:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: Aug 2 22:19:36 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cad678-8782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d0:d9:f5:02:d5:88:9f:f2:c8:40:7c:7e:74: 13:5f:ee:3f:b5:dc:cd:81:5c:b8:7f:4a:c2:46:e0: 6e:83:af:7d:aa:15:58:bd:48:b7:ca:71:80:7d:50: 17:1a:fd:0f:7f:a7:9c:2b:82:0d:5e:82:13:a2:77: 1d:89:12:28:bb:5a:0a:27:d4:d3:f4:1f:41:1c:43: f8:dc:65:35:44:a4:e7:19:d5:56:dc:23:43:80:af: 7a:f2:b1:64:eb:59:dc:a5:c9:36:50:64:70:85:cb: 37:80:08:7d:4d:74:fe:70:ec:f2:20:8a:47:4d:73: 7c:71:97:92:12:3d:2c:6d:ea:fc:0e:96:4e:5b:26: 6f:a2:4c:35:e8:63:33:18:31:4c:ab:7b:83:0d:1c: da:6f:b4:3c:fc:af:b6:85:f0:f7:4a:d2:ff:47:ef: 59:58:5f:83:b5:23:de:b5:eb:a7:d5:82:31:2c:df: 27:f1:1c:f1:2e:d3:10:b1:03:13:99:b9:49:be:cc: c5:c3:8e:c1:13:10:aa:70:9f:6f:50:9a:85:fd:ff: ea:41:fc:08:37:43:c9:85:05:bb:f9:e5:66:78:b3: 44:a0:50:bd:5b:c6:36:0e:6f:d1:e0:46:f1:98:af: f4:23:f8:0c:4a:b1:b4:53:a3:9f:72:f8:00:42:21: 87:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:6E:1A:04:81:B2:32:1F:83:D7:A7:CE:87:A7:BA:DB:2C:98:85:A5 X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/2F3E0638BE4C11ED9598AC4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.37.236.0/22 103.154.21.0/24 Signature Algorithm: sha256WithRSAEncryption 56:30:3c:62:63:54:ed:d3:95:20:67:b5:22:7a:5c:7c:0b:ce: a2:00:e1:c8:90:ba:b4:21:f6:3a:ba:45:45:c1:ed:47:71:aa: 17:71:6f:45:57:de:79:e7:f5:18:96:14:0d:14:94:7f:ee:bd: 63:02:7a:8e:22:5d:7e:ba:f4:2b:41:79:92:e4:ff:c0:25:3f: ec:e2:40:0b:12:dd:7f:d3:f6:39:f6:69:a9:6c:06:1a:f4:55: 4e:a8:bd:55:8e:45:59:cc:67:ae:67:66:fb:f5:32:c2:8e:a6: d2:a3:d1:cb:a1:9d:30:6f:d7:7f:b8:6f:37:f7:b6:f4:1c:4e: 51:00:d5:53:b9:4a:7a:da:39:0b:37:92:19:74:67:be:22:2d: 1d:3e:15:5e:6b:1e:3f:70:a1:1c:d4:c3:b4:09:e3:1e:f6:c0: ff:ee:69:a7:18:7f:c9:6c:fe:a0:8c:12:13:71:c0:3c:f2:91: fd:fc:44:4e:aa:b6:14:cc:8f:ae:40:92:67:84:a6:f7:e2:ea: 49:01:9b:ff:03:ca:3d:b9:b3:ce:be:09:b7:f4:0e:07:c4:75: 63:72:57:b9:09:eb:f7:e5:5f:f1:98:4d:df:5b:d5:37:a6:ba: 1f:67:f1:6f:c3:85:ab:8e:e0:f7:e1:46:70:37:9a:9d:9e:df: 02:7a:77:94 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjMwODAyMjIxOTM2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZDY3OC04NzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNDZ9QLViJ/yyEB8fnQTX+4/tdzNgVy4f0rCRuBug699qhVYvUi3ynGAfVAX Gv0Pf6ecK4INXoIToncdiRIou1oKJ9TT9B9BHEP43GU1RKTnGdVW3CNDgK968rFk 61ncpck2UGRwhcs3gAh9TXT+cOzyIIpHTXN8cZeSEj0sber8DpZOWyZvokw16GMz GDFMq3uDDRzab7Q8/K+2hfD3StL/R+9ZWF+DtSPeteun1YIxLN8n8RzxLtMQsQMT mblJvszFw47BExCqcJ9vUJqF/f/qQfwIN0PJhQW7+eVmeLNEoFC9W8Y2Dm/R4Ebx mK/0I/gMSrG0U6OfcvgAQiGHJQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBhuGgSB sjIfg9enzoenutssmIWlMB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQxRTkvREFEOEZCODAwNzkwMTFFQkJCOThDMDc2QzRGOUFFMDIvMkYzRTA2MzhC RTRDMTFFRDk1OThBQzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnJewDBABnmhUwDQYJKoZIhvcNAQELBQADggEBAFYwPGJj VO3TlSBntSJ6XHwLzqIA4ciQurQh9jq6RUXB7Udxqhdxb0VX3nnn9RiWFA0UlH/u vWMCeo4iXX669CtBeZLk/8AlP+ziQAsS3X/T9jn2aalsBhr0VU6ovVWORVnMZ65n Zvv1MsKOptKj0cuhnTBv13+4bzf3tvQcTlEA1VO5SnraOQs3khl0Z74iLR0+FV5r Hj9woRzUw7QJ4x72wP/uaacYf8ls/qCMEhNxwDzykf38RE6qthTMj65AkmeEpvfi 6kkBm/8Dyj25s86+Cbf0DgfEdWNyV7kJ6/flX/GYTd9b1Temuh9n8W/DhauO4Pfh RnA3mp2e3wJ6d5Q= -----END CERTIFICATE-----Generated at Tue May 7 01:58:24 2024 by rpki-client on console-fra.rpki-client.org