$ rpki-client -vvf rpki.apnic.net/member_repository/A9127E8D/64B16A98BF4611EEB1B3D764C4F9AE02/D13703C6BF4611EE9ECAAC65C4F9AE02.roa File: D13703C6BF4611EE9ECAAC65C4F9AE02.roa (raw, json) Hash identifier: 9XQ8E57rDZy0hs4By4P58wDNjTR7DCt1F2KaYrqVcoc= Subject key identifier: 48:82:12:7F:29:38:0D:A1:29:95:99:EA:58:27:22:F6:94:AA:CE:2A Certificate issuer: /CN=A9127E8D/serialNumber=FCE030EB30203A510CDBCF9C7C3A43003BBDFA62 Certificate serial: A1 Authority key identifier: FC:E0:30:EB:30:20:3A:51:0C:DB:CF:9C:7C:3A:43:00:3B:BD:FA:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_OAw6zAgOlEM28-cfDpDADu9-mI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127E8D/64B16A98BF4611EEB1B3D764C4F9AE02/D13703C6BF4611EE9ECAAC65C4F9AE02.roa Signing time: Tue 03 Dec 2024 05:09:00 +0000 ROA not before: Tue 03 Dec 2024 05:09:00 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152160 IP address blocks: 36.50.80.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127E8D/64B16A98BF4611EEB1B3D764C4F9AE02/_OAw6zAgOlEM28-cfDpDADu9-mI.crl rsync://rpki.apnic.net/member_repository/A9127E8D/64B16A98BF4611EEB1B3D764C4F9AE02/_OAw6zAgOlEM28-cfDpDADu9-mI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_OAw6zAgOlEM28-cfDpDADu9-mI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127E8D Validity Not Before: Dec 3 05:09:00 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674e926c-b26d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a1:09:71:fb:07:14:2f:66:bd:76:5a:85:75: 9c:4f:9d:73:59:29:25:40:31:06:63:58:88:ef:fb: 4b:f1:96:8f:e4:ba:48:30:e3:11:b1:eb:09:3d:95: 27:e6:11:36:18:0c:79:66:84:ed:a9:65:69:a4:3c: e7:97:44:9a:d3:52:8e:c2:b4:50:a1:5b:40:5b:40: 01:a2:f2:49:72:0b:5a:4e:86:e9:b6:47:73:9e:ee: fa:16:82:12:5b:d3:40:c8:48:db:71:ee:25:7f:e6: 84:e7:2a:0a:ec:d5:cf:cc:1c:56:cd:14:69:ea:fc: 86:e5:ec:db:64:1a:cd:7e:91:ee:1a:36:f1:88:fb: 92:02:b7:fd:f6:28:ba:e0:61:c5:12:88:c5:b1:92: 18:74:01:fd:4d:97:ae:34:47:d1:f8:04:82:b0:0e: 2d:a7:df:a2:97:f5:b4:87:b7:f3:2c:fe:15:b6:90: 15:6c:f7:1f:c8:7f:20:8b:bc:26:8e:d4:27:86:95: cb:05:8a:01:cf:dc:34:58:20:1a:7a:a9:3e:db:5c: b1:49:37:dc:c2:a2:b5:b2:75:6d:82:09:6c:4d:4f: 60:1c:6b:34:da:48:86:a0:aa:92:53:44:87:7d:09: 50:8d:c6:0b:1f:04:80:ca:b9:c4:a3:6a:4f:e8:d8: cd:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:82:12:7F:29:38:0D:A1:29:95:99:EA:58:27:22:F6:94:AA:CE:2A X509v3 Authority Key Identifier: keyid:FC:E0:30:EB:30:20:3A:51:0C:DB:CF:9C:7C:3A:43:00:3B:BD:FA:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127E8D/64B16A98BF4611EEB1B3D764C4F9AE02/_OAw6zAgOlEM28-cfDpDADu9-mI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_OAw6zAgOlEM28-cfDpDADu9-mI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127E8D/64B16A98BF4611EEB1B3D764C4F9AE02/D13703C6BF4611EE9ECAAC65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.80.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:cd:cf:5c:43:d4:2b:1e:50:c1:1c:e6:60:ba:d4:1c:53:e8: db:0b:8c:57:88:6c:d6:d7:4f:11:65:60:b9:6f:d8:5b:d9:18: 26:03:61:ad:bb:c3:45:d2:bf:ac:2b:8b:d8:ef:cd:b5:04:e7: fd:f3:4f:e0:50:aa:c4:02:db:9e:1a:db:2d:ee:37:1a:09:16: 04:9e:c6:4e:af:1b:8b:4c:a1:9f:2f:f0:41:87:89:c3:be:a5: 0b:f6:95:d1:e6:2d:fd:8b:ed:e4:2d:01:93:aa:df:ec:dc:fc: c4:18:a9:0d:58:3a:09:1b:38:82:84:a0:b1:93:84:7d:c5:57: 96:fd:5f:e8:62:bb:aa:cd:33:68:9b:8a:fc:6d:df:76:6e:b1: c7:0a:6f:9b:b9:5c:fa:4c:dd:25:da:fe:13:25:87:f7:1a:25: 31:63:7f:fa:a9:51:22:e7:9d:c6:51:74:3e:16:e8:a3:0c:d2: ea:ca:3c:ed:aa:38:d2:7a:1b:7b:95:00:62:a3:09:f6:67:40: 46:8d:03:ce:68:db:6f:22:21:b0:e9:af:d3:49:80:69:f2:5d: 87:64:72:1a:14:13:b4:a3:87:36:98:d2:69:61:c2:7c:d0:62: 31:d9:61:47:db:0d:f2:b0:46:5d:26:ef:2f:e5:ea:10:49:7b: 38:ff:74:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdFOEQxMTAvBgNVBAUTKEZDRTAzMEVCMzAyMDNBNTEwQ0RCQ0Y5QzdDM0E0MzAw M0JCREZBNjIwHhcNMjQxMjAzMDUwOTAwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRlOTI2Yy1iMjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqEJcfsHFC9mvXZahXWcT51zWSklQDEGY1iI7/tL8ZaP5LpIMOMRsesJPZUn 5hE2GAx5ZoTtqWVppDznl0Sa01KOwrRQoVtAW0ABovJJcgtaTobptkdznu76FoIS W9NAyEjbce4lf+aE5yoK7NXPzBxWzRRp6vyG5ezbZBrNfpHuGjbxiPuSArf99ii6 4GHFEojFsZIYdAH9TZeuNEfR+ASCsA4tp9+il/W0h7fzLP4VtpAVbPcfyH8gi7wm jtQnhpXLBYoBz9w0WCAaeqk+21yxSTfcwqK1snVtgglsTU9gHGs02kiGoKqSU0SH fQlQjcYLHwSAyrnEo2pP6NjNSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEiCEn8p OA2hKZWZ6lgnIvaUqs4qMB8GA1UdIwQYMBaAFPzgMOswIDpRDNvPnHw6QwA7vfpi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0U4RC82NEIxNkE5OEJG NDYxMUVFQjFCM0Q3NjRDNEY5QUUwMi9fT0F3NnpBZ09sRU0yOC1jZkRwREFEdTkt bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PQXc2ekFnT2xFTTI4LWNmRHBEQUR1OS1tSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjdFOEQvNjRCMTZBOThCRjQ2MTFFRUIxQjNENzY0QzRGOUFFMDIvRDEzNzAzQzZC RjQ2MTFFRTlFQ0FBQzY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEkMlAwDQYJKoZIhvcNAQELBQADggEBAC7Nz1xD1CseUMEc 5mC61BxT6NsLjFeIbNbXTxFlYLlv2FvZGCYDYa27w0XSv6wri9jvzbUE5/3zT+BQ qsQC254a2y3uNxoJFgSexk6vG4tMoZ8v8EGHicO+pQv2ldHmLf2L7eQtAZOq3+zc /MQYqQ1YOgkbOIKEoLGThH3FV5b9X+hiu6rNM2ibivxt33ZusccKb5u5XPpM3SXa /hMlh/caJTFjf/qpUSLnncZRdD4W6KMM0urKPO2qONJ6G3uVAGKjCfZnQEaNA85o 228iIbDpr9NJgGnyXYdkchoUE7SjhzaY0mlhwnzQYjHZYUfbDfKwRl0m7y/l6hBJ ezj/dIU= -----END CERTIFICATE-----Generated at Sun Apr 6 01:46:45 2025 by rpki-client