$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/336BD320CA6111EA97DD3439C4F9AE02.roa File: 336BD320CA6111EA97DD3439C4F9AE02.roa (raw, json) Hash identifier: IW7LXVcbi9wiFPMILg6JU1RNMCUNAiTI3E8d9d0dT/g= Subject key identifier: B0:ED:0C:D1:1D:5F:52:AE:A5:48:9F:0D:BF:C7:9C:F1:5C:28:F0:D3 Certificate issuer: /CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Certificate serial: 079C Authority key identifier: F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/336BD320CA6111EA97DD3439C4F9AE02.roa Signing time: Mon 22 Apr 2024 20:29:01 +0000 ROA not before: Mon 22 Apr 2024 20:29:01 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138649 IP address blocks: 103.135.132.0/22 maxlen: 22 103.135.132.0/23 maxlen: 23 103.135.132.0/24 maxlen: 24 103.135.133.0/24 maxlen: 24 2404:7e40::/32 maxlen: 32 2404:7e40::/48 maxlen: 48 2404:7e40:1::/48 maxlen: 48 2404:7e40:2::/48 maxlen: 48 2404:7e40:3::/48 maxlen: 48 2404:7e40:4::/48 maxlen: 48 2404:7e40:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1948 (0x79c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Validity Not Before: Apr 22 20:29:01 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6626c88c-8e6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:18:3f:3d:9b:48:64:1e:7f:d2:63:ef:eb:6d: dd:15:b6:da:21:de:2a:04:e7:b2:5e:72:6b:de:2d: 70:43:46:a8:77:5b:87:1f:3a:e3:aa:86:42:ef:82: c1:1f:bb:10:30:86:3c:1c:ac:5e:ee:99:64:50:f4: f0:b3:a2:de:83:28:01:a4:da:87:3c:f7:54:c7:ba: 51:16:e6:ca:82:64:4a:d6:1a:0a:9d:d3:3b:50:e9: 7e:57:c3:7e:2a:f6:84:11:14:f2:9f:c8:c0:e4:9e: b8:b6:f2:a4:1d:03:5f:d6:af:19:97:df:86:b7:0e: 37:38:a8:ab:5e:f5:31:18:81:7a:5f:f3:06:f8:4c: 6b:c4:20:8d:26:0e:7e:02:12:1a:3f:e9:c7:12:14: c7:b4:52:cd:c1:b3:ad:03:f3:20:8d:5e:9d:23:7d: 5b:1d:f0:c7:8a:97:e8:88:cb:3f:23:36:6d:f0:23: e8:35:d7:f8:4f:90:65:fc:e7:52:14:d2:96:51:9d: fa:10:33:0d:11:39:c6:39:b0:b4:93:56:6e:ca:35: b0:f7:72:26:c2:7e:e8:30:46:9e:7c:86:66:50:61: 2b:2b:88:0c:c6:89:bc:b2:43:69:96:71:a3:c6:0a: 2b:ed:de:25:1f:c4:ae:53:2a:c3:25:fb:bf:4c:ac: 9c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:ED:0C:D1:1D:5F:52:AE:A5:48:9F:0D:BF:C7:9C:F1:5C:28:F0:D3 X509v3 Authority Key Identifier: keyid:F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/336BD320CA6111EA97DD3439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.132.0/22 IPv6: 2404:7e40::/32 Signature Algorithm: sha256WithRSAEncryption 17:49:0f:38:34:7d:11:78:f6:2d:9f:bc:1a:d6:c9:c2:86:70: 28:23:7c:91:51:7d:89:3c:05:a0:b7:d2:b7:a5:36:76:a5:16: a6:7b:71:0e:7c:9d:a6:ea:52:fd:f8:5d:1c:a0:e5:43:92:b3: 35:cf:a7:37:55:7a:6f:6a:be:4e:14:09:30:32:86:a5:0f:36: 84:56:e4:31:cc:a0:85:c0:5c:44:af:f5:6d:7b:d8:7c:92:d8: 6c:27:e2:d3:ad:09:c3:14:7c:31:50:55:af:90:35:d2:56:01: 7a:bd:b6:95:3f:1b:92:b3:a3:88:09:fb:24:0d:04:a9:c8:f4: 58:63:79:47:75:16:de:fb:ea:59:d2:06:4d:24:59:a2:b3:13: ea:c5:b3:15:98:8e:b6:9b:fd:a3:6e:f2:f2:78:b3:34:78:ba: 16:1b:86:c2:b1:c9:d8:8d:7d:f9:e0:72:8d:3a:b0:72:8f:f0: cb:21:7d:93:2f:0f:e8:64:fd:2b:15:33:c2:9c:a2:b5:c5:fe: cb:c4:1e:a4:31:0d:a0:da:4e:6b:1c:7e:b1:5c:1e:1a:c1:53: 83:d6:eb:42:d3:93:eb:fe:70:fc:b2:ee:a8:b6:03:fa:25:34: 79:ee:e1:68:de:ad:bf:5d:c4:64:db:db:19:84:0f:f5:9b:52: 27:e8:c8:be -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMTUxMTAvBgNVBAUTKEY2MUI0REVBNTg3OTk5Q0I2RTE1QzU0MDg5RTREQjk4 M0QwMUJCMTAwHhcNMjQwNDIyMjAyOTAxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjI2Yzg4Yy04ZTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Bg/PZtIZB5/0mPv623dFbbaId4qBOeyXnJr3i1wQ0aod1uHHzrjqoZC74LB H7sQMIY8HKxe7plkUPTws6LegygBpNqHPPdUx7pRFubKgmRK1hoKndM7UOl+V8N+ KvaEERTyn8jA5J64tvKkHQNf1q8Zl9+Gtw43OKirXvUxGIF6X/MG+ExrxCCNJg5+ AhIaP+nHEhTHtFLNwbOtA/MgjV6dI31bHfDHipfoiMs/IzZt8CPoNdf4T5Bl/OdS FNKWUZ36EDMNETnGObC0k1ZuyjWw93Imwn7oMEaefIZmUGErK4gMxom8skNplnGj xgor7d4lH8SuUyrDJfu/TKyc9QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLDtDNEd X1KupUifDb/HnPFcKPDTMB8GA1UdIwQYMBaAFPYbTepYeZnLbhXFQInk25g9AbsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1jdHVGY1ZBaWVUYm1EMEJ1 eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlodE42bGg1bWN0dUZjVkFpZVRibUQwQnV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjczMTUvODIwNkY4MzIzMkUyMTFFQTk5QTQzRTY0QzRGOUFFMDIvMzM2QkQzMjBD QTYxMTFFQTk3REQzNDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnh4QwDQQCAAIwBwMFACQEfkAwDQYJKoZIhvcNAQELBQAD ggEBABdJDzg0fRF49i2fvBrWycKGcCgjfJFRfYk8BaC30relNnalFqZ7cQ58nabq Uv34XRyg5UOSszXPpzdVem9qvk4UCTAyhqUPNoRW5DHMoIXAXESv9W172HyS2Gwn 4tOtCcMUfDFQVa+QNdJWAXq9tpU/G5Kzo4gJ+yQNBKnI9FhjeUd1Ft776lnSBk0k WaKzE+rFsxWYjrab/aNu8vJ4szR4uhYbhsKxydiNffngco06sHKP8MshfZMvD+hk /SsVM8KcorXF/svEHqQxDaDaTmscfrFcHhrBU4PW60LTk+v+cPyy7qi2A/olNHnu 4Wjerb9dxGTb2xmED/WbUifoyL4= -----END CERTIFICATE-----Generated at Thu May 16 21:45:32 2024 by rpki-client on console-fra.rpki-client.org