$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/3BF0A4D868F511ECAB15DE18C4F9AE02.roa File: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (raw, json) Hash identifier: Q1BzyslOLkek7OFJ4yZ5WF5DVkAdzFXRft9/gNTOUEs= Subject key identifier: 27:83:8C:02:19:67:33:AC:F4:EE:36:FD:5A:C2:F3:5D:3D:27:1B:BB Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 06DF Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/3BF0A4D868F511ECAB15DE18C4F9AE02.roa Signing time: Tue 08 Aug 2023 21:58:27 +0000 ROA not before: Tue 08 Aug 2023 21:58:27 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 45935 IP address blocks: 103.36.144.0/24 maxlen: 24 103.36.145.0/24 maxlen: 24 103.36.147.0/24 maxlen: 24 180.222.208.0/24 maxlen: 24 180.222.209.0/24 maxlen: 24 180.222.210.0/24 maxlen: 24 180.222.211.0/24 maxlen: 24 203.191.128.0/24 maxlen: 24 203.191.129.0/24 maxlen: 24 203.191.130.0/24 maxlen: 24 203.191.131.0/24 maxlen: 24 2400:3100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1759 (0x6df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: Aug 8 21:58:27 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64d2ba82-076d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2c:99:e9:2a:39:59:15:4d:dd:0f:69:56:c9: ab:d8:b9:2c:a7:ab:6a:7d:00:10:d1:df:e4:09:87: 9a:c4:2f:77:60:83:cb:7c:50:04:2c:7c:bf:e5:f5: 17:8a:a2:79:df:71:15:0a:06:7b:31:4f:d6:bb:1f: 88:7c:1c:a6:13:6f:5c:71:df:36:e2:da:24:6b:3e: 4b:6c:7c:68:43:dc:c5:ec:23:7f:e4:5c:8a:b6:2c: 19:12:49:57:f9:44:d2:46:e4:07:f9:6d:70:f3:d6: 34:b0:23:ca:5e:2d:96:d9:51:2a:0c:2d:d0:f8:6e: b9:1f:63:65:a5:81:f7:af:77:34:1a:c9:20:14:a7: b6:08:d0:26:9b:f1:36:ba:a9:3b:76:f1:4e:2e:27: 6b:98:ea:59:88:26:0f:39:8b:02:58:c4:a1:89:d0: b5:e6:97:0a:b6:f8:16:c0:22:3e:87:29:78:46:dc: 24:79:f4:e2:1d:7f:ed:73:3d:d9:de:6c:6f:87:50: 3b:dc:2a:d2:d5:ef:2f:65:6c:a7:0d:ee:5b:d9:e3: 25:ef:40:6e:9b:cb:a5:04:d0:76:76:85:6a:a9:d4: 72:0d:dd:8c:81:de:a8:41:6e:c2:a8:96:4c:eb:f8: e6:a8:dd:22:0e:6e:aa:83:42:b0:c4:df:12:d3:4b: 73:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:83:8C:02:19:67:33:AC:F4:EE:36:FD:5A:C2:F3:5D:3D:27:1B:BB X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/3BF0A4D868F511ECAB15DE18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.36.144.0/23 103.36.147.0/24 180.222.208.0/22 203.191.128.0/22 IPv6: 2400:3100::/40 Signature Algorithm: sha256WithRSAEncryption 3c:37:ca:4d:96:4c:41:8f:4e:05:e7:36:45:b1:17:3f:b3:f3: 51:2e:12:33:21:88:85:ba:d1:57:f3:db:e2:fa:8f:24:e8:81: 97:db:e6:b6:75:7e:6c:84:88:ef:7a:30:13:d2:93:3f:8f:cf: 69:18:f7:8f:f6:6a:3d:8d:89:af:39:9e:e3:0c:b1:79:e2:f4: 83:e9:74:b2:78:42:e6:f9:07:9d:d2:2d:d7:45:d9:64:3a:b5: af:1d:22:f7:0c:b3:36:a5:da:46:01:ae:fd:9e:91:87:01:11: c8:37:e5:66:a4:93:15:fa:26:a3:91:91:d9:f4:68:d0:d7:79: ba:cd:af:eb:35:c1:df:62:ea:e3:e5:6e:90:5f:5d:1d:fd:4b: be:af:6a:74:3c:3d:c2:4e:f3:97:af:4a:6e:cc:e1:d9:09:2f: d5:d8:5a:6d:58:49:92:4a:b6:94:e0:e6:54:59:ce:74:a3:5e: 23:40:75:e8:c9:6d:60:0d:d5:3c:9b:f8:9f:d9:21:9c:fd:09: ac:ec:69:23:86:c5:47:c5:a5:39:79:91:f9:b8:07:68:61:11: 00:54:68:ca:22:8d:2b:7a:59:e5:51:83:d8:d5:79:d8:ce:fc: 55:73:9e:8a:72:b7:cd:1d:03:b9:ed:ed:5f:2f:80:3a:fe:83: 55:f5:37:53 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICBt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjMwODA4MjE1ODI3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQyYmE4Mi0wNzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiyZ6So5WRVN3Q9pVsmr2Lksp6tqfQAQ0d/kCYeaxC93YIPLfFAELHy/5fUX iqJ533EVCgZ7MU/Wux+IfBymE29ccd824tokaz5LbHxoQ9zF7CN/5FyKtiwZEklX +UTSRuQH+W1w89Y0sCPKXi2W2VEqDC3Q+G65H2NlpYH3r3c0GskgFKe2CNAmm/E2 uqk7dvFOLidrmOpZiCYPOYsCWMShidC15pcKtvgWwCI+hyl4RtwkefTiHX/tcz3Z 3mxvh1A73CrS1e8vZWynDe5b2eMl70Bum8ulBNB2doVqqdRyDd2Mgd6oQW7CqJZM 6/jmqN0iDm6qg0KwxN8S00tzXwIDAQABo4ICtzCCArMwHQYDVR0OBBYEFCeDjAIZ ZzOs9O42/VrC8109Jxu7MB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OThEMDIvMjhBNTA2RkFEODY3MTFFQThCNTE2MjBEQzRGOUFFMDIvM0JGMEE0RDg2 OEY1MTFFQ0FCMTVERTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMB4EAgABMBgDBAFnJJADBABnJJMDBAK03tADBALLv4AwDgQCAAIwCAMGACQA MQAAMA0GCSqGSIb3DQEBCwUAA4IBAQA8N8pNlkxBj04F5zZFsRc/s/NRLhIzIYiF utFX89vi+o8k6IGX2+a2dX5shIjvejAT0pM/j89pGPeP9mo9jYmvOZ7jDLF54vSD 6XSyeELm+Qed0i3XRdlkOrWvHSL3DLM2pdpGAa79npGHARHIN+VmpJMV+iajkZHZ 9GjQ13m6za/rNcHfYurj5W6QX10d/Uu+r2p0PD3CTvOXr0puzOHZCS/V2FptWEmS SraU4OZUWc50o14jQHXoyW1gDdU8m/if2SGc/Qms7GkjhsVHxaU5eZH5uAdoYREA VGjKIo0relnlUYPY1XnYzvxVc56KcrfNHQO57e1fL4A6/oNV9TdT -----END CERTIFICATE-----Generated at Wed May 22 23:39:38 2024 by rpki-client on console-fra.rpki-client.org