$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6BCEC330344311EFB7DD0D34C4F9AE02.roa File: 6BCEC330344311EFB7DD0D34C4F9AE02.roa (raw, json) Hash identifier: V5GXfj7MVmj/bsrh8ZK5BOMK+sTslcHA1M5O9HLWM8M= Subject key identifier: 63:E6:1B:AD:D4:CE:85:DE:F8:08:61:AD:4D:0B:D4:86:62:5D:64:D2 Certificate issuer: /CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Certificate serial: 76 Authority key identifier: 85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6BCEC330344311EFB7DD0D34C4F9AE02.roa Signing time: Fri 31 Jan 2025 04:49:54 +0000 ROA not before: Fri 31 Jan 2025 04:49:54 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152122 IP address blocks: 36.50.22.0/23 maxlen: 23 36.50.22.0/24 maxlen: 24 36.50.23.0/24 maxlen: 24 2001:df3:3140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911954F Validity Not Before: Jan 31 04:49:54 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=679c5672-5d8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:68:83:09:c9:82:62:f0:d0:30:f9:03:4a:b1: 74:5a:c1:50:0f:ee:34:9a:a6:7e:06:37:75:8a:b7: 7c:8f:39:57:6d:81:a8:bf:a4:41:f1:2c:9a:25:34: 3f:5a:fc:da:99:f0:52:4b:97:b2:22:e3:33:31:1a: 1d:7d:12:87:a4:15:3b:b0:a6:2b:df:72:77:8e:30: a0:a8:25:d2:03:e3:95:56:e2:b4:71:8a:d2:eb:63: 33:cf:5e:4f:6e:b0:74:be:86:4b:70:a9:17:44:09: 82:e4:af:02:0d:10:cf:d2:37:0f:1f:c5:2a:60:81: 14:cf:aa:75:9c:62:72:16:86:4c:72:90:6a:28:45: 34:f8:6a:bb:a4:33:2e:26:bc:74:10:09:ae:c3:ba: 2d:df:e8:a7:c4:00:51:37:65:07:76:c4:e4:0d:27: fe:80:d0:db:d2:6a:ce:88:e3:72:f0:8e:28:c8:da: 72:e0:21:81:f8:35:bd:9a:d9:02:25:21:d0:b1:78: 79:ad:20:2b:51:04:e7:58:2f:eb:5a:6e:12:65:cc: 15:ba:ed:ea:ff:73:88:d2:23:eb:f2:4c:73:03:35: e6:ce:37:08:3f:ce:ed:50:b2:51:89:a4:2b:cb:e6: 85:f5:0c:ee:ee:21:d2:e9:10:d5:d7:17:28:b8:19: 84:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E6:1B:AD:D4:CE:85:DE:F8:08:61:AD:4D:0B:D4:86:62:5D:64:D2 X509v3 Authority Key Identifier: keyid:85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6BCEC330344311EFB7DD0D34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.22.0/23 IPv6: 2001:df3:3140::/48 Signature Algorithm: sha256WithRSAEncryption d4:f9:f7:65:a1:2e:63:f9:57:68:3e:1e:cc:93:17:7e:dc:8c: 76:b3:fc:5c:31:55:95:91:9c:26:a5:67:9c:c0:59:eb:4b:d6: 58:23:24:1c:93:90:1a:ad:f2:89:a9:5f:a2:8b:b2:f3:b5:00: 2a:45:3c:29:4d:bd:7d:26:d7:c4:54:88:9a:37:25:d3:3f:33: 61:a6:2c:1f:b0:e5:b0:8f:fa:cb:e0:85:c8:c5:86:c5:ce:cc: 2d:41:d9:31:a8:0a:0c:9d:d5:c8:8b:c1:cb:8e:e4:75:e2:36: 2a:e6:35:da:bb:5e:45:54:2b:ba:93:dd:c6:f6:4e:29:9f:d0: ae:3f:7f:45:cf:ae:ed:89:63:c9:65:1e:dc:1f:60:4a:b3:aa: a2:f1:d4:d4:b9:63:c2:65:1a:f7:1f:c6:16:eb:dd:15:c4:43: 27:68:d6:f9:64:da:0d:2a:95:14:2b:4d:ae:5a:19:d0:1b:4e: 07:2c:c0:af:08:aa:0c:99:b5:b8:1f:5d:81:e5:ae:7e:75:1f: 09:c9:76:7a:7a:29:db:25:72:73:ec:f7:84:04:79:f2:9d:5d: 64:e2:53:91:16:e6:4f:01:24:c1:f5:65:b0:66:5a:3a:b6:8c: 6a:7a:9d:6b:da:e0:aa:3d:08:23:a6:a2:27:70:ed:89:b1:ec: a0:83:bf:f6 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OTU0RjExMC8GA1UEBRMoODVGRkJFNThEQzFDRjdGOTFDMkQzODEzNEUyMEI2RUYw QjJDM0E1RjAeFw0yNTAxMzEwNDQ5NTRaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OWM1NjcyLTVkOGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5aIMJyYJi8NAw+QNKsXRawVAP7jSapn4GN3WKt3yPOVdtgai/pEHxLJolND9a /NqZ8FJLl7Ii4zMxGh19EoekFTuwpivfcneOMKCoJdID45VW4rRxitLrYzPPXk9u sHS+hktwqRdECYLkrwINEM/SNw8fxSpggRTPqnWcYnIWhkxykGooRTT4arukMy4m vHQQCa7Dui3f6KfEAFE3ZQd2xOQNJ/6A0NvSas6I43LwjijI2nLgIYH4Nb2a2QIl IdCxeHmtICtRBOdYL+tabhJlzBW67er/c4jSI+vyTHMDNebONwg/zu1QslGJpCvL 5oX1DO7uIdLpENXXFyi4GYQlAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUY+YbrdTO hd74CGGtTQvUhmJdZNIwHwYDVR0jBBgwFoAUhf++WNwc9/kcLTgTTiC27wssOl8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5NTRGLzU5MUEzMjIwOTE0 QTExRUU5NDJDQzg3MUM0RjlBRTAyL2hmLS1XTndjOV9rY0xUZ1RUaUMyN3dzc09s OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGYtLVdOd2M5X2tjTFRnVFRpQzI3d3NzT2w4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTU0Ri81OTFBMzIyMDkxNEExMUVFOTQyQ0M4NzFDNEY5QUUwMi82QkNFQzMzMDM0 NDMxMUVGQjdERDBEMzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEASQyFjAPBAIAAjAJAwcAIAEN8zFAMA0GCSqGSIb3DQEBCwUA A4IBAQDU+fdloS5j+VdoPh7Mkxd+3Ix2s/xcMVWVkZwmpWecwFnrS9ZYIyQck5Aa rfKJqV+ii7LztQAqRTwpTb19JtfEVIiaNyXTPzNhpiwfsOWwj/rL4IXIxYbFzswt QdkxqAoMndXIi8HLjuR14jYq5jXau15FVCu6k93G9k4pn9CuP39Fz67tiWPJZR7c H2BKs6qi8dTUuWPCZRr3H8YW690VxEMnaNb5ZNoNKpUUK02uWhnQG04HLMCvCKoM mbW4H12B5a5+dR8JyXZ6einbJXJz7PeEBHnynV1k4lORFuZPASTB9WWwZlo6toxq ep1r2uCqPQgjpqIncO2Jseygg7/2 -----END CERTIFICATE-----Generated at Sat Apr 5 02:18:18 2025 by rpki-client