$ rpki-client -vvf rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/9436AC3668C711EE8C53A031C4F9AE02.roa File: 9436AC3668C711EE8C53A031C4F9AE02.roa (raw, json) Hash identifier: tQbaDYmXOZ6Re8oB65ZBH8mnpQhhpReEIf03ePzZjxI= Subject key identifier: DF:8E:EC:A2:16:0A:FE:36:C8:94:B5:53:E2:E8:BD:E6:AD:B6:31:83 Certificate issuer: /CN=A919ED93/serialNumber=72EF32DAF4E83F9019296320874E3B445008EC39 Certificate serial: 26 Authority key identifier: 72:EF:32:DA:F4:E8:3F:90:19:29:63:20:87:4E:3B:44:50:08:EC:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cu8y2vToP5AZKWMgh047RFAI7Dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/9436AC3668C711EE8C53A031C4F9AE02.roa Signing time: Wed 06 Dec 2023 08:41:38 +0000 ROA not before: Wed 06 Dec 2023 08:41:38 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 14618 IP address blocks: 103.38.221.0/24 maxlen: 24 210.79.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/cu8y2vToP5AZKWMgh047RFAI7Dk.crl rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/cu8y2vToP5AZKWMgh047RFAI7Dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cu8y2vToP5AZKWMgh047RFAI7Dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 07:50:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919ED93/serialNumber=72EF32DAF4E83F9019296320874E3B445008EC39 Validity Not Before: Dec 6 08:41:38 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=657033c2-3589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6d:95:23:33:ae:92:d5:c0:de:04:3c:db:4c: 3f:71:bd:ce:5d:88:ba:dd:2b:ac:f1:c4:74:96:99: d1:57:61:14:83:38:f4:55:f1:ef:bc:5d:8c:d3:0b: 9b:d7:20:3b:f4:de:4a:e3:69:c9:47:3b:a5:fe:8d: 72:7c:37:76:a2:f4:33:78:1c:d2:f0:7a:d4:9b:59: 47:2a:c5:25:ac:9c:5e:98:f6:e8:6c:8a:35:d3:9e: 7a:73:ae:30:16:c3:3e:34:28:07:69:1e:8b:29:b6: 56:27:2b:1a:ae:34:10:11:3f:7e:23:90:92:ff:6d: e9:03:95:e0:42:da:84:44:80:de:aa:1b:b9:8e:07: e6:ad:ad:ec:90:ae:27:11:fc:44:85:46:5f:22:d2: 6b:51:99:b9:65:0d:b0:0a:2d:8d:f9:bd:b5:8a:02: 14:36:71:42:e3:4b:ee:12:77:01:77:e2:09:99:d2: 66:36:92:13:1f:ef:17:fd:0b:81:9a:8a:ed:40:02: db:52:8d:f1:95:06:eb:b5:28:ea:f0:1f:58:c5:3f: 26:20:e4:dd:3c:2c:f2:f1:20:2d:40:51:8b:c0:66: 75:55:60:47:c9:d7:76:1e:7a:44:34:b5:29:8e:79: ba:7f:9b:92:18:1c:4f:af:d2:3b:1d:4b:a3:c2:c0: 65:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:8E:EC:A2:16:0A:FE:36:C8:94:B5:53:E2:E8:BD:E6:AD:B6:31:83 X509v3 Authority Key Identifier: keyid:72:EF:32:DA:F4:E8:3F:90:19:29:63:20:87:4E:3B:44:50:08:EC:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/cu8y2vToP5AZKWMgh047RFAI7Dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cu8y2vToP5AZKWMgh047RFAI7Dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/9436AC3668C711EE8C53A031C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.221.0/24 210.79.172.0/24 Signature Algorithm: sha256WithRSAEncryption a5:9d:88:90:40:0f:69:ba:db:fa:0c:7b:fc:8a:8f:28:ae:a0: f2:92:6a:ac:87:01:8c:41:2c:eb:16:17:50:28:3d:7d:fd:b5: 6e:54:2e:ba:fc:b5:65:34:f1:d3:fb:3a:5e:57:41:fd:e5:e0: a6:38:a9:5d:d2:99:66:ae:5f:f2:41:c9:b1:52:08:61:10:2f: 66:5e:f4:9c:13:25:95:cd:88:7e:39:af:7a:af:c6:35:d2:a5: 52:12:19:29:9e:f5:45:3c:7a:c6:0b:46:11:e7:75:11:04:de: 33:9a:43:15:ca:ba:68:40:ed:79:2d:eb:12:74:62:a9:38:08: e7:af:36:43:cb:c0:77:d9:44:3e:e9:30:42:74:e1:e4:0a:e0: b9:d8:c5:0d:fc:5b:8b:18:05:fb:e5:69:f1:12:fb:ca:20:f6: 6e:ad:ac:fa:f5:21:59:52:63:4f:f2:44:4a:45:88:49:54:94: 56:12:6c:8b:53:82:08:4c:a3:4a:ad:96:f8:ca:ee:5e:44:7a: c2:21:1c:e0:59:cf:df:da:10:93:e6:0a:de:d6:75:ac:f0:e8: ed:ea:31:46:da:64:ad:18:db:78:36:56:11:4f:fa:81:15:1d: c7:01:1f:37:d7:41:07:72:73:2a:4e:55:68:f3:fc:61:f5:23: f0:77:2d:dc -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RUQ5MzExMC8GA1UEBRMoNzJFRjMyREFGNEU4M0Y5MDE5Mjk2MzIwODc0RTNCNDQ1 MDA4RUMzOTAeFw0yMzEyMDYwODQxMzhaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NzAzM2MyLTM1ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxbZUjM66S1cDeBDzbTD9xvc5diLrdK6zxxHSWmdFXYRSDOPRV8e+8XYzTC5vX IDv03krjaclHO6X+jXJ8N3ai9DN4HNLwetSbWUcqxSWsnF6Y9uhsijXTnnpzrjAW wz40KAdpHosptlYnKxquNBARP34jkJL/bekDleBC2oREgN6qG7mOB+atreyQricR /ESFRl8i0mtRmbllDbAKLY35vbWKAhQ2cULjS+4SdwF34gmZ0mY2khMf7xf9C4Ga iu1AAttSjfGVBuu1KOrwH1jFPyYg5N08LPLxIC1AUYvAZnVVYEfJ13YeekQ0tSmO ebp/m5IYHE+v0jsdS6PCwGW3AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU347sohYK /jbIlLVT4ui95q22MYMwHwYDVR0jBBgwFoAUcu8y2vToP5AZKWMgh047RFAI7Dkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlFRDkzL0EzNkM2OEY0NjhD NjExRUU5NTk2NEY3Q0M0RjlBRTAyL2N1OHkydlRvUDVBWktXTWdoMDQ3UkZBSTdE ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3U4eTJ2VG9QNUFaS1dNZ2gwNDdSRkFJN0RrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUQ5My9BMzZDNjhGNDY4QzYxMUVFOTU5NjRGN0NDNEY5QUUwMi85NDM2QUMzNjY4 QzcxMUVFOEM1M0EwMzFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGcm3QMEANJPrDANBgkqhkiG9w0BAQsFAAOCAQEApZ2IkEAP abrb+gx7/IqPKK6g8pJqrIcBjEEs6xYXUCg9ff21blQuuvy1ZTTx0/s6XldB/eXg pjipXdKZZq5f8kHJsVIIYRAvZl70nBMllc2Ifjmveq/GNdKlUhIZKZ71RTx6xgtG Eed1EQTeM5pDFcq6aEDteS3rEnRiqTgI5682Q8vAd9lEPukwQnTh5ArgudjFDfxb ixgF++Vp8RL7yiD2bq2s+vUhWVJjT/JESkWISVSUVhJsi1OCCEyjSq2W+MruXkR6 wiEc4FnP39oQk+YK3tZ1rPDo7eoxRtpkrRjbeDZWEU/6gRUdxwEfN9dBB3JzKk5V aPP8YfUj8Hct3A== -----END CERTIFICATE-----Generated at Wed May 1 10:10:57 2024 by rpki-client on console-ams.rpki-client.org