$ rpki-client -vvf rpki.apnic.net/member_repository/A9127E8D/64B16A98BF4611EEB1B3D764C4F9AE02/D13703C6BF4611EE9ECAAC65C4F9AE02.roa File: D13703C6BF4611EE9ECAAC65C4F9AE02.roa (raw, json) Hash identifier: qTZhpHJCRQ13DNUyXqIoDQjBjuUIgvaF3XVdmuG/v/Q= Subject key identifier: C7:F8:D2:F9:60:00:02:2A:71:BD:4C:40:38:60:7F:5D:35:04:70:53 Certificate issuer: /CN=A9127E8D/serialNumber=FCE030EB30203A510CDBCF9C7C3A43003BBDFA62 Certificate serial: 02 Authority key identifier: FC:E0:30:EB:30:20:3A:51:0C:DB:CF:9C:7C:3A:43:00:3B:BD:FA:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_OAw6zAgOlEM28-cfDpDADu9-mI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127E8D/64B16A98BF4611EEB1B3D764C4F9AE02/D13703C6BF4611EE9ECAAC65C4F9AE02.roa Signing time: Tue 30 Jan 2024 08:08:57 +0000 ROA not before: Tue 30 Jan 2024 08:08:57 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 152160 IP address blocks: 36.50.80.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127E8D/64B16A98BF4611EEB1B3D764C4F9AE02/_OAw6zAgOlEM28-cfDpDADu9-mI.crl rsync://rpki.apnic.net/member_repository/A9127E8D/64B16A98BF4611EEB1B3D764C4F9AE02/_OAw6zAgOlEM28-cfDpDADu9-mI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_OAw6zAgOlEM28-cfDpDADu9-mI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127E8D/serialNumber=FCE030EB30203A510CDBCF9C7C3A43003BBDFA62 Validity Not Before: Jan 30 08:08:57 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65b8ae99-2c21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:da:cc:81:14:f0:0e:6e:84:73:d0:3c:76:2d: 4a:b3:80:ac:2d:ee:72:da:01:1c:59:0a:f3:03:38: 17:22:02:28:45:d5:3e:73:f4:3d:ff:7e:2f:4a:8e: d2:13:4b:c0:7d:7a:5b:c2:d5:cb:6a:69:fa:24:6f: 45:81:37:b2:95:f8:fa:2e:ea:a8:3a:21:13:f5:bd: b5:06:0d:c0:f0:45:ce:d6:03:ba:ce:03:33:3f:7a: 8e:d8:e4:3f:c9:7d:95:85:2f:4a:63:92:27:f7:35: ee:f2:30:23:c0:ba:53:dd:44:e1:81:9a:2f:66:49: a4:09:84:8c:d5:2d:20:dc:17:5f:98:a8:dd:64:dc: 27:05:19:6e:06:0a:61:70:07:76:36:95:17:7b:30: 38:91:99:c4:e9:2e:ed:e7:44:90:66:8f:03:3e:99: aa:c2:1d:41:d7:f5:8f:73:67:31:8d:f9:3e:cc:a3: 2a:58:ff:48:99:43:e6:72:74:a7:7e:76:e0:96:65: cd:2b:dc:ff:95:99:71:40:b5:26:30:0b:06:98:17: db:3f:3e:0e:ce:78:ff:8e:28:62:36:1a:6b:f4:a1: 5b:9e:e9:29:1d:7d:02:e6:b6:08:63:34:7a:3a:0f: f9:d4:2c:ce:b1:b1:f8:f2:62:7a:30:fb:c7:f1:8f: eb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:F8:D2:F9:60:00:02:2A:71:BD:4C:40:38:60:7F:5D:35:04:70:53 X509v3 Authority Key Identifier: keyid:FC:E0:30:EB:30:20:3A:51:0C:DB:CF:9C:7C:3A:43:00:3B:BD:FA:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127E8D/64B16A98BF4611EEB1B3D764C4F9AE02/_OAw6zAgOlEM28-cfDpDADu9-mI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_OAw6zAgOlEM28-cfDpDADu9-mI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127E8D/64B16A98BF4611EEB1B3D764C4F9AE02/D13703C6BF4611EE9ECAAC65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.80.0/23 Signature Algorithm: sha256WithRSAEncryption 58:7e:9b:f7:71:1a:72:cf:10:d8:f4:e1:4e:bb:12:3f:10:f3: f3:9b:5c:62:48:da:0c:a9:d6:c5:e1:79:69:db:3d:ad:e3:82: 6c:83:d9:ac:95:57:83:0e:4c:79:c5:e8:2f:8a:2c:7f:37:b7: 6d:d9:40:a7:c7:a7:f0:2a:ad:2d:26:c3:ee:5e:05:cd:f3:7d: ba:5e:2a:8c:54:73:f1:e0:a8:21:56:78:79:3e:a8:be:6c:1f: c2:ea:10:f7:de:c9:b4:1f:22:ca:ac:cc:47:39:66:ba:01:c8: 0f:0c:cd:9a:1a:26:43:cc:d3:c9:e5:4a:96:ef:d8:aa:9b:55: 36:2f:22:f3:a8:77:97:c5:83:06:a8:a4:e4:67:3b:09:2c:62: f0:6a:d5:4b:19:ee:ed:b0:71:f0:37:7d:41:47:8d:48:c8:ed: e8:1e:d6:8a:dd:a9:66:6a:a3:bc:f8:9a:64:32:e1:b0:b8:e1: 6a:51:82:63:d6:68:75:da:ec:04:7f:78:2b:14:79:7f:46:35: 71:5b:10:53:9c:33:86:dd:d2:19:5e:3d:9d:10:73:91:2c:35: 3a:72:e7:17:f1:41:fc:9d:84:df:dd:fc:f7:16:fd:e8:9c:9f: 7b:6d:dc:84:a6:c5:ae:6b:5d:e9:ed:31:01:40:0d:45:d1:85: ea:09:f4:a2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy N0U4RDExMC8GA1UEBRMoRkNFMDMwRUIzMDIwM0E1MTBDREJDRjlDN0MzQTQzMDAz QkJERkE2MjAeFw0yNDAxMzAwODA4NTdaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YjhhZTk5LTJjMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCe2syBFPAOboRz0Dx2LUqzgKwt7nLaARxZCvMDOBciAihF1T5z9D3/fi9KjtIT S8B9elvC1ctqafokb0WBN7KV+Pou6qg6IRP1vbUGDcDwRc7WA7rOAzM/eo7Y5D/J fZWFL0pjkif3Ne7yMCPAulPdROGBmi9mSaQJhIzVLSDcF1+YqN1k3CcFGW4GCmFw B3Y2lRd7MDiRmcTpLu3nRJBmjwM+marCHUHX9Y9zZzGN+T7MoypY/0iZQ+ZydKd+ duCWZc0r3P+VmXFAtSYwCwaYF9s/Pg7OeP+OKGI2Gmv0oVue6SkdfQLmtghjNHo6 D/nULM6xsfjyYnow+8fxj+sHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUx/jS+WAA AipxvUxAOGB/XTUEcFMwHwYDVR0jBBgwFoAU/OAw6zAgOlEM28+cfDpDADu9+mIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3RThELzY0QjE2QTk4QkY0 NjExRUVCMUIzRDc2NEM0RjlBRTAyL19PQXc2ekFnT2xFTTI4LWNmRHBEQUR1OS1t SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX09BdzZ6QWdPbEVNMjgtY2ZEcERBRHU5LW1JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0U4RC82NEIxNkE5OEJGNDYxMUVFQjFCM0Q3NjRDNEY5QUUwMi9EMTM3MDNDNkJG NDYxMUVFOUVDQUFDNjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEASQyUDANBgkqhkiG9w0BAQsFAAOCAQEAWH6b93Eacs8Q2PTh TrsSPxDz85tcYkjaDKnWxeF5ads9reOCbIPZrJVXgw5MecXoL4osfze3bdlAp8en 8CqtLSbD7l4FzfN9ul4qjFRz8eCoIVZ4eT6ovmwfwuoQ997JtB8iyqzMRzlmugHI DwzNmhomQ8zTyeVKlu/YqptVNi8i86h3l8WDBqik5Gc7CSxi8GrVSxnu7bBx8Dd9 QUeNSMjt6B7Wit2pZmqjvPiaZDLhsLjhalGCY9ZoddrsBH94KxR5f0Y1cVsQU5wz ht3SGV49nRBzkSw1OnLnF/FB/J2E39389xb96Jyfe23chKbFrmtd6e0xAUANRdGF 6gn0og== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:26 2024 by rpki-client on console-fra.rpki-client.org