$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/3636BCD2937011EA8A795583C4F9AE02.roa File: 3636BCD2937011EA8A795583C4F9AE02.roa (raw, json) Hash identifier: YRt4jKdI4p9jPEw/yG2fC1+AmKWnjwB4/jgfu0A37Zs= Subject key identifier: 32:FA:95:A6:06:3E:94:50:A3:65:5C:1E:A7:03:70:EA:6E:3D:D5:29 Certificate issuer: /CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Certificate serial: 087F Authority key identifier: 53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/3636BCD2937011EA8A795583C4F9AE02.roa Signing time: Tue 30 Jan 2024 21:39:23 +0000 ROA not before: Tue 30 Jan 2024 21:39:23 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 55361 IP address blocks: 103.6.4.0/24 maxlen: 24 103.6.5.0/24 maxlen: 24 103.6.6.0/24 maxlen: 24 103.6.7.0/24 maxlen: 24 113.20.20.0/24 maxlen: 24 113.20.21.0/24 maxlen: 24 113.20.22.0/24 maxlen: 24 113.20.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:07:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2175 (0x87f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Validity Not Before: Jan 30 21:39:23 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b96c8a-81f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:91:96:9b:49:51:96:f8:24:24:0e:da:12:88: 51:fc:49:94:3b:09:0e:aa:ca:91:7f:df:cd:47:06: c2:88:5a:e0:44:9a:74:6f:3d:de:12:18:0e:c1:a5: ed:92:10:21:55:2d:99:4d:45:c5:bf:88:ad:ed:44: 92:89:96:ee:5e:92:75:3f:88:5b:c8:ee:94:05:22: 39:d6:32:99:b5:63:ab:40:8c:d7:cf:7e:f1:4d:49: 9f:b8:76:7e:4c:dc:34:b5:a4:0e:55:65:28:27:f7: bb:b1:74:2e:8a:df:a5:03:84:c3:d8:b5:d3:48:d2: e4:b2:5e:66:a2:01:f8:b9:3d:93:7c:dd:5f:9c:75: cb:f0:e4:2f:d5:7b:81:9b:eb:ef:7d:26:47:ac:a6: 0a:f6:a4:00:aa:3d:d4:38:89:49:2e:f8:62:95:65: 93:a8:08:f4:c7:6f:d7:bb:d7:29:20:b3:5a:36:77: 37:5b:50:26:b0:99:c9:5c:d2:af:62:df:69:85:01: ae:dc:a4:f3:ff:25:60:65:be:dd:6c:97:99:2f:e9: d3:e0:c9:a4:a1:43:9d:33:28:8f:dc:a2:f9:b7:18: 88:4d:99:63:c0:60:19:45:4e:7c:40:f8:f9:ca:a9: 3c:6f:6e:4a:1b:bc:bc:09:bd:bf:b3:1f:5f:26:8a: 2b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:FA:95:A6:06:3E:94:50:A3:65:5C:1E:A7:03:70:EA:6E:3D:D5:29 X509v3 Authority Key Identifier: keyid:53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/3636BCD2937011EA8A795583C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.4.0/22 113.20.20.0/22 Signature Algorithm: sha256WithRSAEncryption 72:b0:c9:77:c9:55:e1:d2:e0:f7:94:ca:26:5b:44:64:eb:08: 66:56:38:7d:6b:fe:82:6e:c0:08:6b:e7:90:ed:dd:58:67:c7: 21:36:e8:c6:88:bd:65:b1:65:29:73:4c:f4:63:1b:b1:02:d3: 99:79:1b:04:e0:fe:af:1a:06:48:a4:de:72:da:d5:5a:34:f8: de:e2:00:6e:e7:5f:25:17:21:c7:72:81:9f:a5:2e:2c:0f:8f: 59:e9:63:4d:be:40:85:0a:47:02:62:11:d3:6c:77:a6:b7:93: a3:25:66:73:76:e8:80:00:09:93:14:68:77:3d:6f:b7:7e:f2: db:60:41:84:61:3a:e3:26:9d:52:d1:f9:20:34:6b:66:ff:5e: 79:96:63:ea:53:0e:33:e5:74:7c:f5:e2:2e:9b:1e:5e:5d:f4: 4a:83:75:41:a0:35:0f:8f:e6:07:cc:0d:88:d3:14:1c:39:9d: a1:ea:b0:ba:ff:4a:b4:49:ac:02:6b:25:59:4d:64:d8:23:24: ad:ee:58:6d:9c:d0:06:cb:5f:5c:bb:eb:b3:29:61:20:c3:07: 60:be:49:0d:ae:d3:ee:3b:f3:a0:0d:6e:01:33:4c:53:57:dd: b9:23:8f:c1:2d:b0:e8:46:58:57:f7:4e:0e:4c:01:2d:6e:e9: 64:93:51:c6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGRUIxMTAvBgNVBAUTKDUzODVFMTNBMUI1ODQ1RkI0NENFRUI2QkVEOERFQjRF ODlBRjM4MjkwHhcNMjQwMTMwMjEzOTIzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5NmM4YS04MWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6pGWm0lRlvgkJA7aEohR/EmUOwkOqsqRf9/NRwbCiFrgRJp0bz3eEhgOwaXt khAhVS2ZTUXFv4it7USSiZbuXpJ1P4hbyO6UBSI51jKZtWOrQIzXz37xTUmfuHZ+ TNw0taQOVWUoJ/e7sXQuit+lA4TD2LXTSNLksl5mogH4uT2TfN1fnHXL8OQv1XuB m+vvfSZHrKYK9qQAqj3UOIlJLvhilWWTqAj0x2/Xu9cpILNaNnc3W1AmsJnJXNKv Yt9phQGu3KTz/yVgZb7dbJeZL+nT4MmkoUOdMyiP3KL5txiITZljwGAZRU58QPj5 yqk8b25KG7y8Cb2/sx9fJoor+QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDL6laYG PpRQo2VcHqcDcOpuPdUpMB8GA1UdIwQYMBaAFFOF4TobWEX7RM7ra+2N606Jrzgp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0ZFQi9DQjJDMzNFNjkz NkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJmdEV6dXRyN1kzclRvbXZP Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0WGhPaHRZUmZ0RXp1dHI3WTNyVG9tdk9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNGRUIvQ0IyQzMzRTY5MzZFMTFFQUE1RTU2QjdFQzRGOUFFMDIvMzYzNkJDRDI5 MzcwMTFFQThBNzk1NTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnBgQDBAJxFBQwDQYJKoZIhvcNAQELBQADggEBAHKwyXfJ VeHS4PeUyiZbRGTrCGZWOH1r/oJuwAhr55Dt3VhnxyE26MaIvWWxZSlzTPRjG7EC 05l5GwTg/q8aBkik3nLa1Vo0+N7iAG7nXyUXIcdygZ+lLiwPj1npY02+QIUKRwJi EdNsd6a3k6MlZnN26IAACZMUaHc9b7d+8ttgQYRhOuMmnVLR+SA0a2b/XnmWY+pT DjPldHz14i6bHl5d9EqDdUGgNQ+P5gfMDYjTFBw5naHqsLr/SrRJrAJrJVlNZNgj JK3uWG2c0AbLX1y767MpYSDDB2C+SQ2u0+4786ANbgEzTFNX3bkjj8EtsOhGWFf3 Tg5MAS1u6WSTUcY= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:38 2024 by rpki-client on console-ams.rpki-client.org