$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/36AFB016FC6111EEAFBE4719C4F9AE02.roa File: 36AFB016FC6111EEAFBE4719C4F9AE02.roa (raw, json) Hash identifier: CvHjodYxCU1lkipyPCpjKYmxopoHgKt+OYSOb3KYdj0= Subject key identifier: 4C:E0:73:27:BC:47:4F:A5:5F:57:47:9E:A2:A1:BE:9B:5F:69:D1:AE Certificate issuer: /CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Certificate serial: 11AB Authority key identifier: EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/36AFB016FC6111EEAFBE4719C4F9AE02.roa Signing time: Wed 17 Apr 2024 02:21:36 +0000 ROA not before: Wed 17 Apr 2024 02:21:35 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 63930 IP address blocks: 45.119.203.0/24 maxlen: 24 103.60.10.0/24 maxlen: 24 103.60.11.0/24 maxlen: 24 119.161.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 17:50:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4523 (0x11ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Validity Not Before: Apr 17 02:21:35 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=661f322f-6c65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f6:b5:47:70:ea:72:77:ec:d6:b5:8d:6e:a3: 68:ce:06:8e:94:2c:89:1c:8c:b6:b2:e5:01:9b:67: 5d:cd:c0:77:6c:c3:8a:6a:3e:7c:a1:73:f6:95:f1: 28:94:4a:af:28:b0:76:88:e0:14:8e:a0:b6:59:32: 48:f2:95:ad:91:22:f2:51:71:7e:42:5c:a0:8f:ae: d2:6d:ea:80:61:05:b6:2b:f2:89:6b:a3:84:41:23: 99:4d:c5:cf:d6:96:7f:ae:59:ed:26:8a:85:59:2e: 39:21:88:50:1e:35:4c:c8:d8:18:f8:ed:48:2c:3e: 69:d5:3b:6c:05:06:31:5e:0b:da:45:19:a4:aa:10: 42:5e:0e:ad:8a:2c:76:19:a2:db:c5:df:73:2c:d9: 6f:70:ed:2c:c7:b2:44:1a:cd:f8:b2:89:e5:04:4c: aa:88:78:48:90:99:ad:6a:11:a1:f8:ea:90:64:05: a1:dc:5b:82:39:b7:e5:52:54:65:a7:cd:31:a1:10: 15:2d:86:37:ce:b3:0d:72:0d:09:54:c9:3b:c2:6c: ae:07:14:74:1a:50:bd:aa:3e:b9:bc:6d:f2:61:83: da:7b:50:e0:ab:d7:13:c2:9b:99:d6:9e:92:ef:e3: dd:5a:9d:03:c2:70:5d:4c:b1:ec:26:45:52:9c:23: f4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:E0:73:27:BC:47:4F:A5:5F:57:47:9E:A2:A1:BE:9B:5F:69:D1:AE X509v3 Authority Key Identifier: keyid:EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/36AFB016FC6111EEAFBE4719C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.119.203.0/24 103.60.10.0/23 119.161.100.0/24 Signature Algorithm: sha256WithRSAEncryption 96:97:5d:34:83:a2:d1:b0:66:9a:8f:b7:ef:b9:8e:7a:fa:3a: 41:98:77:bd:91:34:9b:8a:ab:d0:ff:3a:69:4e:29:d3:bf:df: 17:b2:00:91:94:4e:f3:4e:a3:5c:7b:6f:0f:d9:2b:84:17:da: 53:f9:07:dd:9a:8f:3d:a0:31:fa:9a:63:b3:6f:0b:1a:7e:95: d1:96:db:40:9a:29:c9:6d:4d:1b:42:e6:ac:d0:a4:b3:9a:58: 61:6e:00:99:84:98:5e:bd:9c:c4:0a:65:78:62:03:d1:0a:29: 8a:66:28:d9:77:f9:ee:bf:a0:24:25:78:e5:3b:70:dd:b6:01: a8:ef:5e:29:16:a4:29:d4:e7:cd:db:97:d6:40:4e:bf:bd:6c: 57:73:e1:e4:a7:01:f4:39:0c:f3:01:40:85:37:cd:e4:9e:c3: 96:78:07:58:56:83:bc:7c:d8:43:89:59:63:27:bc:1d:36:c1: c9:92:f9:bb:e4:7e:84:64:66:f8:c4:55:64:d1:58:91:31:1a: 4f:de:82:9f:7b:38:d2:f0:73:e5:ec:11:3b:99:16:9b:46:36: 85:cd:1d:68:d8:31:69:d8:5f:85:54:1f:27:e6:2d:43:6a:7a: ec:dd:ce:fd:ce:de:bb:ab:67:35:ea:7e:26:d4:32:a5:12:3a: 32:3f:cf:f0 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICEaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNkExMTAvBgNVBAUTKEVGNjJGMTU1QzE5NzFENTA0OTQxRjU3MUVFREZBQzBB RkNDNTI4NTkwHhcNMjQwNDE3MDIyMTM1WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFmMzIyZi02YzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPa1R3Dqcnfs1rWNbqNozgaOlCyJHIy2suUBm2ddzcB3bMOKaj58oXP2lfEo lEqvKLB2iOAUjqC2WTJI8pWtkSLyUXF+Qlygj67SbeqAYQW2K/KJa6OEQSOZTcXP 1pZ/rlntJoqFWS45IYhQHjVMyNgY+O1ILD5p1TtsBQYxXgvaRRmkqhBCXg6tiix2 GaLbxd9zLNlvcO0sx7JEGs34sonlBEyqiHhIkJmtahGh+OqQZAWh3FuCObflUlRl p80xoRAVLYY3zrMNcg0JVMk7wmyuBxR0GlC9qj65vG3yYYPae1Dgq9cTwpuZ1p6S 7+PdWp0DwnBdTLHsJkVSnCP0oQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFEzgcye8 R0+lX1dHnqKhvptfadGuMB8GA1UdIwQYMBaAFO9i8VXBlx1QSUH1ce7frAr8xShZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU2QS8xRDY0MzI4RUQz ODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhWQkpRZlZ4N3Qtc0N2ekZL RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTHhWY0dYSFZCSlFmVng3dC1zQ3Z6RktGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZFNkEvMUQ2NDMyOEVEMzg3MTFFOEJENzA3NTVDQzRGOUFFMDIvMzZBRkIwMTZG QzYxMTFFRUFGQkU0NzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAtd8sDBAFnPAoDBAB3oWQwDQYJKoZIhvcNAQELBQADggEB AJaXXTSDotGwZpqPt++5jnr6OkGYd72RNJuKq9D/OmlOKdO/3xeyAJGUTvNOo1x7 bw/ZK4QX2lP5B92ajz2gMfqaY7NvCxp+ldGW20CaKcltTRtC5qzQpLOaWGFuAJmE mF69nMQKZXhiA9EKKYpmKNl3+e6/oCQleOU7cN22AajvXikWpCnU583bl9ZATr+9 bFdz4eSnAfQ5DPMBQIU3zeSew5Z4B1hWg7x82EOJWWMnvB02wcmS+bvkfoRkZvjE VWTRWJExGk/egp97ONLwc+XsETuZFptGNoXNHWjYMWnYX4VUHyfmLUNqeuzdzv3O 3rurZzXqfibUMqUSOjI/z/A= -----END CERTIFICATE-----Generated at Thu May 2 20:50:35 2024 by rpki-client on console-fra.rpki-client.org