$ rpki-client -vvf rpki.apnic.net/member_repository/A91F724B/1BC71A62168911E68EEFD97BC4F9AE02/36AB4096C51611E7AECA8B79C4F9AE02.roa File: 36AB4096C51611E7AECA8B79C4F9AE02.roa (raw, json) Hash identifier: 9bK3vePkX1h8tNppvkA1+AI2c+bNKaWwr/2Co9UEt9Q= Subject key identifier: 9E:DD:B5:56:21:B3:56:B7:AD:56:F8:0E:D3:B3:AE:8F:1A:9A:E9:97 Certificate issuer: /CN=A91F724B/serialNumber=E8EDA71C8964D29F06C24A2B6D1B77153CA8F389 Certificate serial: 1FA4 Authority key identifier: E8:ED:A7:1C:89:64:D2:9F:06:C2:4A:2B:6D:1B:77:15:3C:A8:F3:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6O2nHIlk0p8GwkorbRt3FTyo84k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F724B/1BC71A62168911E68EEFD97BC4F9AE02/36AB4096C51611E7AECA8B79C4F9AE02.roa Signing time: Sun 31 Mar 2024 16:53:46 +0000 ROA not before: Sun 31 Mar 2024 16:53:46 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 56109 IP address blocks: 43.239.233.0/24 maxlen: 24 43.239.234.0/24 maxlen: 24 103.17.124.0/24 maxlen: 24 103.17.125.0/24 maxlen: 24 103.35.143.0/24 maxlen: 24 203.10.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F724B/1BC71A62168911E68EEFD97BC4F9AE02/6O2nHIlk0p8GwkorbRt3FTyo84k.crl rsync://rpki.apnic.net/member_repository/A91F724B/1BC71A62168911E68EEFD97BC4F9AE02/6O2nHIlk0p8GwkorbRt3FTyo84k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6O2nHIlk0p8GwkorbRt3FTyo84k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:59:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8100 (0x1fa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F724B/serialNumber=E8EDA71C8964D29F06C24A2B6D1B77153CA8F389 Validity Not Before: Mar 31 16:53:46 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6609951a-00bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7b:f4:28:a0:2b:29:ad:51:3f:e9:ef:a9:15: 14:2e:66:ae:cd:ad:00:72:8b:f6:00:dc:6e:ff:48: 8a:c8:83:dc:f6:8a:66:88:33:3d:5b:ab:2c:8a:20: bf:ce:b5:06:28:a7:5f:ac:81:01:bf:db:ec:11:8d: 3d:3e:06:97:a3:1b:99:68:77:f3:77:5f:c4:f5:0b: 98:81:e2:24:d4:0a:06:22:54:41:ce:d5:2b:62:75: 80:fb:bd:d8:3c:14:90:0d:46:08:f5:ca:7d:14:aa: f8:ca:0e:19:da:bc:e4:46:43:0f:0c:8a:b8:67:ed: 5a:e0:39:48:84:fc:a9:d9:a5:70:88:e1:f9:ae:97: 7c:40:75:07:7f:37:95:89:0d:29:2c:ec:07:7c:11: 2a:d0:e0:a4:3d:08:d7:fd:f4:d9:ef:6e:97:ff:bd: 8b:99:e0:d4:c5:f5:24:17:c2:4e:63:d1:55:2a:96: 64:1f:1f:f6:66:9c:3d:64:4e:6f:7d:87:dc:74:fa: c7:c6:4b:f5:e8:8e:cf:30:00:07:f7:28:c0:f9:d0: 19:a2:f9:24:6f:a3:46:b4:a6:96:cd:f2:40:3c:78: 21:5c:2e:47:bf:67:06:aa:12:cb:7a:49:ca:16:4c: 4f:cf:a5:b5:eb:30:f4:93:3d:c1:c0:6c:18:09:56: 60:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:DD:B5:56:21:B3:56:B7:AD:56:F8:0E:D3:B3:AE:8F:1A:9A:E9:97 X509v3 Authority Key Identifier: keyid:E8:ED:A7:1C:89:64:D2:9F:06:C2:4A:2B:6D:1B:77:15:3C:A8:F3:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F724B/1BC71A62168911E68EEFD97BC4F9AE02/6O2nHIlk0p8GwkorbRt3FTyo84k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6O2nHIlk0p8GwkorbRt3FTyo84k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F724B/1BC71A62168911E68EEFD97BC4F9AE02/36AB4096C51611E7AECA8B79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.233.0-43.239.234.255 103.17.124.0/23 103.35.143.0/24 203.10.58.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:7d:2f:ca:fa:a3:89:ee:da:b0:d3:ab:cd:19:64:47:27:35: b1:3e:da:d8:77:9f:d3:67:7f:8f:52:79:59:47:50:a0:73:2f: f5:12:46:85:86:f5:b3:be:41:e7:b3:48:12:99:1e:b8:2c:81: 7c:07:fa:0f:89:0e:e8:b5:06:af:12:cf:df:53:f6:54:6b:5b: 79:19:89:5a:05:fe:fd:e8:73:fd:b9:ad:87:4a:3c:4e:89:c9: c5:25:68:df:70:48:c6:c9:8a:2b:19:b3:e1:59:98:ca:4f:6d: 98:4c:0c:98:4b:da:94:57:b0:a5:ac:60:29:c4:b9:09:f8:5e: cc:49:45:4d:49:cf:0d:90:13:4d:7a:21:ab:6e:51:89:a4:33: 77:d3:ad:27:d1:73:15:27:83:5c:c3:96:40:1e:d6:da:66:fe: 32:4f:b6:40:0e:20:8c:a3:fe:72:bf:da:56:20:9e:74:0c:c3: a4:b1:63:1e:27:65:f7:a8:33:23:2b:41:10:c8:95:8e:60:16: 86:10:0e:78:5c:48:ea:da:26:79:67:37:21:d9:cf:f2:18:b4: 55:62:7f:59:2e:4a:5a:39:19:ef:a5:9a:e1:2c:5a:c5:5e:e6: 64:03:73:55:c6:09:91:0f:29:67:57:3f:98:73:6e:0a:fe:e7: b0:27:8a:8a -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICH6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjcyNEIxMTAvBgNVBAUTKEU4RURBNzFDODk2NEQyOUYwNkMyNEEyQjZEMUI3NzE1 M0NBOEYzODkwHhcNMjQwMzMxMTY1MzQ2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA5OTUxYS0wMGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnv0KKArKa1RP+nvqRUULmauza0Acov2ANxu/0iKyIPc9opmiDM9W6ssiiC/ zrUGKKdfrIEBv9vsEY09PgaXoxuZaHfzd1/E9QuYgeIk1AoGIlRBztUrYnWA+73Y PBSQDUYI9cp9FKr4yg4Z2rzkRkMPDIq4Z+1a4DlIhPyp2aVwiOH5rpd8QHUHfzeV iQ0pLOwHfBEq0OCkPQjX/fTZ726X/72LmeDUxfUkF8JOY9FVKpZkHx/2Zpw9ZE5v fYfcdPrHxkv16I7PMAAH9yjA+dAZovkkb6NGtKaWzfJAPHghXC5Hv2cGqhLLeknK FkxPz6W16zD0kz3BwGwYCVZg1QIDAQABo4ICrzCCAqswHQYDVR0OBBYEFJ7dtVYh s1a3rVb4DtOzro8amumXMB8GA1UdIwQYMBaAFOjtpxyJZNKfBsJKK20bdxU8qPOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzI0Qi8xQkM3MUE2MjE2 ODkxMUU2OEVFRkQ5N0JDNEY5QUUwMi82TzJuSElsazBwOEd3a29yYlJ0M0ZUeW84 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZPMm5ISWxrMHA4R3drb3JiUnQzRlR5bzg0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjcyNEIvMUJDNzFBNjIxNjg5MTFFNjhFRUZEOTdCQzRGOUFFMDIvMzZBQjQwOTZD NTE2MTFFN0FFQ0E4Qjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCAwDAMEACvv6QMEACvv6gMEAWcRfAMEAGcjjwMEAMsKOjANBgkq hkiG9w0BAQsFAAOCAQEAfX0vyvqjie7asNOrzRlkRyc1sT7a2Hef02d/j1J5WUdQ oHMv9RJGhYb1s75B57NIEpkeuCyBfAf6D4kO6LUGrxLP31P2VGtbeRmJWgX+/ehz /bmth0o8TonJxSVo33BIxsmKKxmz4VmYyk9tmEwMmEvalFewpaxgKcS5CfhezElF TUnPDZATTXohq25RiaQzd9OtJ9FzFSeDXMOWQB7W2mb+Mk+2QA4gjKP+cr/aViCe dAzDpLFjHidl96gzIytBEMiVjmAWhhAOeFxI6tomeWc3IdnP8hi0VWJ/WS5KWjkZ 76Wa4SxaxV7mZANzVcYJkQ8pZ1c/mHNuCv7nsCeKig== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org