$ rpki-client -vvf rpki.apnic.net/member_repository/A91196F9/F94940082A1D11EFA9E1F985C4F9AE02/CFD2FAA62A2811EF8313971CC4F9AE02.roa File: CFD2FAA62A2811EF8313971CC4F9AE02.roa (raw, json) Hash identifier: jL8Qld1nGy1S0e00Jq1twluniIVDhFlf+t43ZdzL/60= Subject key identifier: 07:A7:CE:6E:30:37:8A:47:27:6E:10:A8:2F:5A:16:FC:71:DC:71:15 Certificate issuer: /CN=A91196F9/serialNumber=82735B3F9C9EA975D4E02A94E2A1081BA4A8AB24 Certificate serial: 6D Authority key identifier: 82:73:5B:3F:9C:9E:A9:75:D4:E0:2A:94:E2:A1:08:1B:A4:A8:AB:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91196F9/F94940082A1D11EFA9E1F985C4F9AE02/CFD2FAA62A2811EF8313971CC4F9AE02.roa Signing time: Fri 03 Jan 2025 05:08:54 +0000 ROA not before: Fri 03 Jan 2025 05:08:54 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132583 IP address blocks: 36.50.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91196F9/F94940082A1D11EFA9E1F985C4F9AE02/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.crl rsync://rpki.apnic.net/member_repository/A91196F9/F94940082A1D11EFA9E1F985C4F9AE02/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 05:03:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91196F9, serialNumber=82735B3F9C9EA975D4E02A94E2A1081BA4A8AB24 Validity Not Before: Jan 3 05:08:54 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677770e6-812d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c4:84:3f:05:f1:79:2d:87:eb:1c:e7:2a:6c: 12:84:2d:dc:e5:72:a1:52:a7:f9:78:ba:ef:d3:82: 19:6e:58:76:a8:b7:38:c1:de:e7:2e:1a:d3:e8:c2: cb:de:dd:a2:cc:58:ba:9e:e8:9d:e3:57:7e:b3:86: 44:e1:e9:ef:8f:51:d7:d9:9f:12:54:15:9e:18:fa: d9:f4:24:f0:cb:10:6b:83:e3:71:56:ac:10:60:05: 48:43:c5:b3:08:80:91:21:64:8c:53:b8:e6:d3:ea: c9:b5:71:25:ed:16:dc:09:9b:b4:16:86:67:da:8e: 01:fd:3f:1f:82:1c:b1:b0:d2:fe:8e:30:d4:f6:a0: de:6a:58:ba:49:7d:c9:95:ee:aa:0b:0c:ad:d9:6e: 3f:8e:bf:13:04:8a:e7:8c:7b:05:44:82:5a:c9:2d: ba:3a:96:02:b2:31:03:46:5c:ea:d5:d4:cc:eb:b7: d4:39:33:41:33:90:2d:b9:60:77:3e:59:42:95:a4: d6:50:02:c3:7d:0e:d9:8c:48:82:41:36:70:c9:b0: 45:d1:30:24:3a:a1:09:1c:cb:4d:f1:93:2c:f4:d9: 69:9f:a9:31:aa:52:62:dc:fc:a9:e8:7e:d1:1a:63: df:63:4e:74:27:d9:e7:c7:3c:c5:6e:47:37:9e:65: e3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:A7:CE:6E:30:37:8A:47:27:6E:10:A8:2F:5A:16:FC:71:DC:71:15 X509v3 Authority Key Identifier: keyid:82:73:5B:3F:9C:9E:A9:75:D4:E0:2A:94:E2:A1:08:1B:A4:A8:AB:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91196F9/F94940082A1D11EFA9E1F985C4F9AE02/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnNbP5yeqXXU4CqU4qEIG6SoqyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91196F9/F94940082A1D11EFA9E1F985C4F9AE02/CFD2FAA62A2811EF8313971CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.206.0/23 Signature Algorithm: sha256WithRSAEncryption 03:6c:07:69:32:29:80:de:7f:64:0d:41:fa:26:83:87:4e:c7: 98:95:c8:9d:0d:96:34:e5:6b:4e:31:54:22:a6:06:81:ba:5d: 9f:63:bc:e2:1e:88:13:dd:95:1f:e7:c0:43:03:ee:eb:e8:b6: b4:ef:1a:1a:54:dc:a1:53:f1:fb:a4:79:ea:f0:73:b1:20:4a: 59:4e:a0:53:73:0b:c0:40:cc:37:0d:7f:2d:87:5a:cd:9a:0b: e3:69:9f:3a:fb:a6:81:72:4c:ad:ee:0b:19:22:fe:84:a6:68: a3:f5:3e:39:54:17:2e:c5:03:68:8e:15:0e:1c:fd:6e:ec:14: d1:8c:b3:ad:1f:9a:1e:37:fc:1e:c8:dc:07:3c:84:47:1d:6d: e3:77:a0:7a:a1:be:e3:cd:44:8d:e2:57:4a:3d:ad:76:3a:cd: 9b:a4:45:4a:a2:74:d3:f4:e7:20:2d:88:34:2d:e9:13:6b:fa: 75:28:6e:3b:ee:9b:7a:c4:79:24:67:e1:40:38:3e:1c:8b:44: 44:27:19:ee:de:6f:33:15:23:01:7b:2f:66:c0:8d:d1:69:38: ea:de:96:75:17:bd:a9:5c:45:82:2b:91:37:93:72:b2:df:c7: f7:1e:6e:1e:e5:91:e4:31:b9:7d:af:8b:f6:c9:de:da:82:c1: 0d:81:62:80 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OTZGOTExMC8GA1UEBRMoODI3MzVCM0Y5QzlFQTk3NUQ0RTAyQTk0RTJBMTA4MUJB NEE4QUIyNDAeFw0yNTAxMDMwNTA4NTRaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Nzc3MGU2LTgxMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwxIQ/BfF5LYfrHOcqbBKELdzlcqFSp/l4uu/TghluWHaotzjB3ucuGtPowsve 3aLMWLqe6J3jV36zhkTh6e+PUdfZnxJUFZ4Y+tn0JPDLEGuD43FWrBBgBUhDxbMI gJEhZIxTuObT6sm1cSXtFtwJm7QWhmfajgH9Px+CHLGw0v6OMNT2oN5qWLpJfcmV 7qoLDK3Zbj+OvxMEiueMewVEglrJLbo6lgKyMQNGXOrV1Mzrt9Q5M0EzkC25YHc+ WUKVpNZQAsN9DtmMSIJBNnDJsEXRMCQ6oQkcy03xkyz02WmfqTGqUmLc/KnoftEa Y99jTnQn2efHPMVuRzeeZeMFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUB6fObjA3 ikcnbhCoL1oW/HHccRUwHwYDVR0jBBgwFoAUgnNbP5yeqXXU4CqU4qEIG6SoqyQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5NkY5L0Y5NDk0MDA4MkEx RDExRUZBOUUxRjk4NUM0RjlBRTAyL2duTmJQNXllcVhYVTRDcVU0cUVJRzZTb3F5 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ25OYlA1eWVxWFhVNENxVTRxRUlHNlNvcXlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTZGOS9GOTQ5NDAwODJBMUQxMUVGQTlFMUY5ODVDNEY5QUUwMi9DRkQyRkFBNjJB MjgxMUVGODMxMzk3MUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEASQyzjANBgkqhkiG9w0BAQsFAAOCAQEAA2wHaTIpgN5/ZA1B +iaDh07HmJXInQ2WNOVrTjFUIqYGgbpdn2O84h6IE92VH+fAQwPu6+i2tO8aGlTc oVPx+6R56vBzsSBKWU6gU3MLwEDMNw1/LYdazZoL42mfOvumgXJMre4LGSL+hKZo o/U+OVQXLsUDaI4VDhz9buwU0YyzrR+aHjf8HsjcBzyERx1t43egeqG+481EjeJX Sj2tdjrNm6RFSqJ00/TnIC2INC3pE2v6dShuO+6besR5JGfhQDg+HItERCcZ7t5v MxUjAXsvZsCN0Wk46t6WdRe9qVxFgiuRN5Nyst/H9x5uHuWR5DG5fa+L9sne2oLB DYFigA== -----END CERTIFICATE-----Generated at Tue Apr 22 16:20:16 2025 by rpki-client