$ rpki-client -vvf rpki.apnic.net/member_repository/A916DA1F/81A04448362711E8A2108F74C4F9AE02/2036C856362911E8B6C37C78C4F9AE02.roa File: 2036C856362911E8B6C37C78C4F9AE02.roa (raw, json) Hash identifier: VjPDMCTDAl0F+kUlLL83qcuxLts9GNlg09c0jF2guQg= Subject key identifier: B9:A6:1C:74:0A:A2:CE:7D:11:22:C8:04:7F:BE:FA:FD:D3:C9:1F:40 Certificate issuer: /CN=A916DA1F/serialNumber=37E67892EBC2B7C24102E8527E907CFEAEF5C950 Certificate serial: 1565 Authority key identifier: 37:E6:78:92:EB:C2:B7:C2:41:02:E8:52:7E:90:7C:FE:AE:F5:C9:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-Z4kuvCt8JBAuhSfpB8_q71yVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DA1F/81A04448362711E8A2108F74C4F9AE02/2036C856362911E8B6C37C78C4F9AE02.roa Signing time: Thu 10 Apr 2025 16:54:54 +0000 ROA not before: Thu 10 Apr 2025 16:54:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 23898 IP address blocks: 103.112.116.0/22 maxlen: 22 2402:a840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DA1F/81A04448362711E8A2108F74C4F9AE02/N-Z4kuvCt8JBAuhSfpB8_q71yVA.crl rsync://rpki.apnic.net/member_repository/A916DA1F/81A04448362711E8A2108F74C4F9AE02/N-Z4kuvCt8JBAuhSfpB8_q71yVA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-Z4kuvCt8JBAuhSfpB8_q71yVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:48:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5477 (0x1565) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DA1F, serialNumber=37E67892EBC2B7C24102E8527E907CFEAEF5C950 Validity Not Before: Apr 10 16:54:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f7f7de-c665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:79:6f:7d:9c:b7:3e:b9:3c:2b:b3:7c:5a:57: aa:fd:eb:40:3f:04:38:eb:44:bf:42:8a:9a:00:59: 8b:38:cb:71:3a:67:cb:92:10:80:c6:ee:0e:48:63: d2:8e:61:1f:77:29:49:c8:83:8b:e9:39:1d:4a:1d: 42:b6:87:c7:7a:88:15:3b:21:87:26:bc:96:ec:c4: ff:98:f1:ef:34:a1:e5:36:9f:dc:e5:7e:dc:bc:a3: 01:c8:89:05:f2:24:c4:d2:46:98:46:ad:5f:ce:d1: ba:00:d7:54:37:6f:51:48:92:39:08:80:a8:1f:12: 92:a6:79:be:80:37:e3:a5:1d:24:f7:4f:db:7a:71: e8:95:c9:82:d7:64:a0:5f:db:bd:99:44:e8:51:7c: f4:0a:0f:4c:61:04:cb:f1:22:ca:c7:cd:69:0f:75: 2b:31:e2:07:bc:8a:fc:fd:7b:a1:c8:60:22:dc:b6: b3:e0:68:18:fd:70:42:39:9a:9c:02:ac:75:55:81: ba:42:e5:5d:86:54:4f:c0:b4:63:d7:f6:29:db:52: 5d:72:2c:bf:1d:97:d3:d1:a0:88:98:f5:45:a8:d8: 01:58:74:1f:78:2a:1d:03:5a:b7:4a:58:01:73:c7: 84:9e:28:e5:5e:08:98:8f:db:60:70:c4:a2:1e:d9: 99:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A6:1C:74:0A:A2:CE:7D:11:22:C8:04:7F:BE:FA:FD:D3:C9:1F:40 X509v3 Authority Key Identifier: keyid:37:E6:78:92:EB:C2:B7:C2:41:02:E8:52:7E:90:7C:FE:AE:F5:C9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DA1F/81A04448362711E8A2108F74C4F9AE02/N-Z4kuvCt8JBAuhSfpB8_q71yVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-Z4kuvCt8JBAuhSfpB8_q71yVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DA1F/81A04448362711E8A2108F74C4F9AE02/2036C856362911E8B6C37C78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.116.0/22 IPv6: 2402:a840::/32 Signature Algorithm: sha256WithRSAEncryption 32:dd:66:a1:a0:2d:0d:c3:ac:18:7b:00:a3:4d:f7:0c:6a:0e: b7:b8:24:7b:53:68:16:c2:23:04:1e:ff:ed:95:4c:2d:13:0a: 0c:91:3a:f0:e3:54:8d:82:22:0a:34:ca:35:36:18:6a:cd:3e: eb:5d:e3:e1:22:df:36:c7:48:36:07:d7:bd:6a:5e:34:90:de: db:35:65:dd:ea:5c:0c:04:83:88:7b:2a:c1:b8:f2:e5:d2:a0: 21:ec:b1:d7:24:79:f5:ab:a1:5d:db:db:55:5e:07:0b:53:92: 7a:01:f8:b1:e5:6c:06:45:3b:a5:77:42:3e:59:ac:f2:65:3e: 5b:58:1f:5d:da:55:3c:3f:4d:71:ca:9b:44:81:83:c8:da:c1: 29:01:32:25:2d:8d:bf:1c:ed:1a:29:b9:5d:43:97:bc:f2:2f: 49:ec:eb:20:e2:63:3e:3e:4c:e7:0e:4b:24:b4:05:51:39:c6: dd:64:66:c7:c9:12:4d:ab:0e:96:95:22:f9:30:85:18:94:5a: 01:86:ec:5e:36:59:d4:32:b3:17:70:8a:2a:39:7d:a2:e2:8b: 78:e3:88:30:04:00:60:c1:ec:1f:60:65:c8:e5:e6:01:64:51: 2d:42:6a:46:bb:6e:e9:fa:69:60:5e:b0:83:1f:18:2f:97:71: b5:27:58:f5 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRBMUYxMTAvBgNVBAUTKDM3RTY3ODkyRUJDMkI3QzI0MTAyRTg1MjdFOTA3Q0ZF QUVGNUM5NTAwHhcNMjUwNDEwMTY1NDU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y3ZjdkZS1jNjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3lvfZy3Prk8K7N8Wleq/etAPwQ460S/QoqaAFmLOMtxOmfLkhCAxu4OSGPS jmEfdylJyIOL6TkdSh1CtofHeogVOyGHJryW7MT/mPHvNKHlNp/c5X7cvKMByIkF 8iTE0kaYRq1fztG6ANdUN29RSJI5CICoHxKSpnm+gDfjpR0k90/benHolcmC12Sg X9u9mUToUXz0Cg9MYQTL8SLKx81pD3UrMeIHvIr8/XuhyGAi3Laz4GgY/XBCOZqc Aqx1VYG6QuVdhlRPwLRj1/Yp21Jdciy/HZfT0aCImPVFqNgBWHQfeCodA1q3SlgB c8eEnijlXgiYj9tgcMSiHtmZGwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLmmHHQK os59ESLIBH+++v3TyR9AMB8GA1UdIwQYMBaAFDfmeJLrwrfCQQLoUn6QfP6u9clQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REExRi84MUEwNDQ0ODM2 MjcxMUU4QTIxMDhGNzRDNEY5QUUwMi9OLVo0a3V2Q3Q4SkJBdWhTZnBCOF9xNzF5 VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04tWjRrdXZDdDhKQkF1aFNmcEI4X3E3MXlWQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkRBMUYvODFBMDQ0NDgzNjI3MTFFOEEyMTA4Rjc0QzRGOUFFMDIvMjAzNkM4NTYz NjI5MTFFOEI2QzM3Qzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJncHQwDQQCAAIwBwMFACQCqEAwDQYJKoZIhvcNAQELBQAD ggEBADLdZqGgLQ3DrBh7AKNN9wxqDre4JHtTaBbCIwQe/+2VTC0TCgyROvDjVI2C Igo0yjU2GGrNPutd4+Ei3zbHSDYH171qXjSQ3ts1Zd3qXAwEg4h7KsG48uXSoCHs sdckefWroV3b21VeBwtTknoB+LHlbAZFO6V3Qj5ZrPJlPltYH13aVTw/TXHKm0SB g8jawSkBMiUtjb8c7RopuV1Dl7zyL0ns6yDiYz4+TOcOSyS0BVE5xt1kZsfJEk2r DpaVIvkwhRiUWgGG7F42WdQysxdwiio5faLii3jjiDAEAGDB7B9gZcjl5gFkUS1C aka7bun6aWBesIMfGC+XcbUnWPU= -----END CERTIFICATE-----Generated at Sat Apr 26 17:08:34 2025 by rpki-client