$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/36AFB016FC6111EEAFBE4719C4F9AE02.roa File: 36AFB016FC6111EEAFBE4719C4F9AE02.roa (raw, json) Hash identifier: CA19srqh0Q6qSkpS5f1WI4ZLZ8befQ3b095HOMVpe8Q= Subject key identifier: E3:71:B7:02:12:9D:FA:CF:ED:4E:74:02:6F:EE:2F:14:73:1F:A5:33 Certificate issuer: /CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Certificate serial: 11C7 Authority key identifier: EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/36AFB016FC6111EEAFBE4719C4F9AE02.roa Signing time: Mon 20 May 2024 17:56:03 +0000 ROA not before: Mon 20 May 2024 17:56:03 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 63930 IP address blocks: 45.119.203.0/24 maxlen: 24 103.60.10.0/24 maxlen: 24 103.60.11.0/24 maxlen: 24 119.161.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 17:04:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4551 (0x11c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE6A Validity Not Before: May 20 17:56:03 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=664b8eb3-486f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bd:40:4a:cb:93:fd:42:b8:cf:49:ae:b9:03: 9b:05:e9:55:f5:93:06:b9:e0:b3:49:fc:b5:b4:09: 55:e9:52:64:14:87:72:56:92:88:15:56:1d:e6:f2: b1:d4:c5:8e:7e:23:96:f2:7b:f5:52:46:88:d2:c4: 17:4b:e9:fa:d2:fc:0c:f1:73:92:18:96:f7:21:3e: 42:ef:96:92:38:cb:7c:fb:9d:d0:18:33:1e:88:07: 58:ef:72:27:74:8f:4d:b3:2b:c6:ab:82:d3:c9:59: 5e:b8:e9:dd:99:a6:7f:ae:3b:cf:f9:91:2f:54:ba: 2f:d2:c2:a5:f9:07:13:25:2f:80:6f:57:f4:e9:65: 1a:0e:b2:73:f7:6c:b2:68:c4:5a:71:87:64:8a:2c: 25:0a:02:86:20:da:7c:19:ee:90:93:84:aa:a1:d8: 12:82:59:91:5a:c2:07:6f:e2:e4:92:f5:3f:36:7e: 3e:3f:af:07:ba:18:59:d1:9d:3d:e4:e2:64:8f:7c: a3:a5:c2:d0:64:80:76:71:2f:65:bc:e4:f1:81:8c: b6:44:03:a9:1c:4a:2d:82:a2:da:a2:da:08:d9:4e: ac:b4:5c:9c:3a:cd:2b:96:5b:ee:2f:59:82:66:31: e7:7e:0a:c6:e3:ae:f8:48:47:cc:d6:78:fd:21:cd: c0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:71:B7:02:12:9D:FA:CF:ED:4E:74:02:6F:EE:2F:14:73:1F:A5:33 X509v3 Authority Key Identifier: keyid:EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/36AFB016FC6111EEAFBE4719C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.119.203.0/24 103.60.10.0/23 119.161.100.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:e8:56:0d:0c:4c:ba:2a:d4:0a:f0:99:99:c1:38:71:6a:4d: 5a:8b:0c:a3:ed:e5:b6:53:0c:67:af:0f:8a:f5:79:7d:71:4c: 5e:65:cb:76:c7:f3:a9:94:96:d3:36:5d:19:da:55:1c:58:db: 25:63:22:0d:aa:51:60:ae:3e:ba:2e:cd:5b:8f:71:98:1a:72: 77:c1:93:fb:2a:0f:f3:e1:1c:f9:77:f9:f5:65:2a:e3:b4:b5: 28:77:9b:cf:13:82:1d:51:d8:09:42:d7:8c:3a:f9:ba:5f:2f: 69:80:2f:41:07:f9:c0:a6:20:fa:d2:b7:bd:a6:8c:3b:31:ab: 32:ed:08:46:1b:33:be:0e:5d:9f:0a:b0:17:c8:0e:34:49:28: 1b:40:de:1d:08:82:49:fa:f9:56:61:96:a2:dd:1b:fe:2e:b7: 53:69:e4:f5:2d:10:69:0d:2a:d3:1d:b4:e9:c5:3a:39:4e:7a: 5b:64:e4:35:09:74:81:ca:d0:e3:22:47:c6:21:36:31:c5:7c: 38:ec:87:75:b8:b1:2c:c7:21:f7:e0:fe:d0:ce:4a:e0:d7:60: 18:34:0c:db:5c:12:20:d8:30:9a:da:b4:8d:d4:24:ed:82:b8: 75:55:64:71:82:2e:37:b6:14:79:10:2d:a2:52:69:57:05:ef: 82:e5:69:ee -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICEccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNkExMTAvBgNVBAUTKEVGNjJGMTU1QzE5NzFENTA0OTQxRjU3MUVFREZBQzBB RkNDNTI4NTkwHhcNMjQwNTIwMTc1NjAzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRiOGViMy00ODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyL1ASsuT/UK4z0muuQObBelV9ZMGueCzSfy1tAlV6VJkFIdyVpKIFVYd5vKx 1MWOfiOW8nv1UkaI0sQXS+n60vwM8XOSGJb3IT5C75aSOMt8+53QGDMeiAdY73In dI9NsyvGq4LTyVleuOndmaZ/rjvP+ZEvVLov0sKl+QcTJS+Ab1f06WUaDrJz92yy aMRacYdkiiwlCgKGINp8Ge6Qk4SqodgSglmRWsIHb+LkkvU/Nn4+P68HuhhZ0Z09 5OJkj3yjpcLQZIB2cS9lvOTxgYy2RAOpHEotgqLaotoI2U6stFycOs0rllvuL1mC ZjHnfgrG4674SEfM1nj9Ic3ATwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFONxtwIS nfrP7U50Am/uLxRzH6UzMB8GA1UdIwQYMBaAFO9i8VXBlx1QSUH1ce7frAr8xShZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU2QS8xRDY0MzI4RUQz ODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhWQkpRZlZ4N3Qtc0N2ekZL RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTHhWY0dYSFZCSlFmVng3dC1zQ3Z6RktGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZFNkEvMUQ2NDMyOEVEMzg3MTFFOEJENzA3NTVDQzRGOUFFMDIvMzZBRkIwMTZG QzYxMTFFRUFGQkU0NzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAtd8sDBAFnPAoDBAB3oWQwDQYJKoZIhvcNAQELBQADggEB AE/oVg0MTLoq1ArwmZnBOHFqTVqLDKPt5bZTDGevD4r1eX1xTF5ly3bH86mUltM2 XRnaVRxY2yVjIg2qUWCuProuzVuPcZgacnfBk/sqD/PhHPl3+fVlKuO0tSh3m88T gh1R2AlC14w6+bpfL2mAL0EH+cCmIPrSt72mjDsxqzLtCEYbM74OXZ8KsBfIDjRJ KBtA3h0Igkn6+VZhlqLdG/4ut1Np5PUtEGkNKtMdtOnFOjlOeltk5DUJdIHK0OMi R8YhNjHFfDjsh3W4sSzHIffg/tDOSuDXYBg0DNtcEiDYMJratI3UJO2CuHVVZHGC Lje2FHkQLaJSaVcF74Llae4= -----END CERTIFICATE-----Generated at Thu Mar 13 21:51:50 2025 by rpki-client