$ rpki-client -vvf rpki.apnic.net/member_repository/A91320D4/0E3F0C66BC1611EEB9059C86C4F9AE02/BAB65090BD7811EEB634A117C4F9AE02.roa File: BAB65090BD7811EEB634A117C4F9AE02.roa (raw, json) Hash identifier: DFZxkNn6nNZHERWm5f3XteRUaBE12w803zvTM2ryGo4= Subject key identifier: 12:AE:E5:0B:40:9F:09:D2:70:C0:05:BD:2E:F4:D2:2F:7B:33:D2:CC Certificate issuer: /CN=A91320D4/serialNumber=B97A7F015A736074DF38445C98074378219D2995 Certificate serial: 04 Authority key identifier: B9:7A:7F:01:5A:73:60:74:DF:38:44:5C:98:07:43:78:21:9D:29:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uXp_AVpzYHTfOERcmAdDeCGdKZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91320D4/0E3F0C66BC1611EEB9059C86C4F9AE02/BAB65090BD7811EEB634A117C4F9AE02.roa Signing time: Sun 28 Jan 2024 01:01:12 +0000 ROA not before: Sun 28 Jan 2024 01:01:12 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 152133 IP address blocks: 36.50.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91320D4/0E3F0C66BC1611EEB9059C86C4F9AE02/uXp_AVpzYHTfOERcmAdDeCGdKZU.crl rsync://rpki.apnic.net/member_repository/A91320D4/0E3F0C66BC1611EEB9059C86C4F9AE02/uXp_AVpzYHTfOERcmAdDeCGdKZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uXp_AVpzYHTfOERcmAdDeCGdKZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91320D4/serialNumber=B97A7F015A736074DF38445C98074378219D2995 Validity Not Before: Jan 28 01:01:12 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65b5a758-3e45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d7:17:6e:03:e7:18:1a:9b:2d:3b:03:e2:8f: bc:e9:6a:fa:a0:95:64:e5:9e:d8:d5:5a:9f:17:5e: e3:6a:cb:0f:c6:84:56:11:9c:eb:30:b7:92:c9:7e: a0:ac:9a:e0:b6:a7:d1:48:82:a5:5b:89:81:21:7a: 82:43:ed:83:db:53:54:77:87:9b:97:dd:17:29:f2: fd:0f:6a:38:71:a2:b0:74:c9:01:8f:62:70:7b:5f: f3:7a:e9:43:1e:c0:9f:8f:bf:f3:da:73:a3:64:d8: c2:56:21:bb:17:c5:01:fc:17:e9:60:84:4e:a5:61: 49:7b:6d:41:0e:ef:70:27:76:d2:6b:7d:ca:7d:6e: 07:67:a2:8b:db:72:09:29:f6:8d:75:ca:bb:f6:42: 8d:84:c5:a3:cc:db:d7:ec:ea:e1:2e:bc:27:8b:bc: f4:23:94:32:ba:5a:d4:d1:8d:42:da:23:e5:40:de: 66:fe:c6:1a:1e:d5:b0:00:65:b8:8c:98:5b:c5:b5: 1e:31:2d:e5:d4:89:84:b6:0d:11:ec:d5:cc:60:5d: 5a:f1:ed:e0:61:4b:8b:2a:85:d3:40:da:b9:11:1a: ce:a0:7e:96:fb:52:df:cd:26:02:2d:0f:5d:86:29: 15:66:23:42:5d:a2:f1:13:27:e2:90:62:80:fb:67: 29:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:AE:E5:0B:40:9F:09:D2:70:C0:05:BD:2E:F4:D2:2F:7B:33:D2:CC X509v3 Authority Key Identifier: keyid:B9:7A:7F:01:5A:73:60:74:DF:38:44:5C:98:07:43:78:21:9D:29:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91320D4/0E3F0C66BC1611EEB9059C86C4F9AE02/uXp_AVpzYHTfOERcmAdDeCGdKZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uXp_AVpzYHTfOERcmAdDeCGdKZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91320D4/0E3F0C66BC1611EEB9059C86C4F9AE02/BAB65090BD7811EEB634A117C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.0.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:c9:d0:9f:5c:22:b4:14:ee:9f:2e:04:78:ef:c8:12:59:74: a8:b7:f4:2c:f7:3d:48:f4:b9:95:c2:de:e9:81:9d:2d:b4:d6: e2:14:d1:59:ed:b9:75:be:e3:25:6a:91:f5:81:dd:d1:87:d5: 5b:e6:57:ec:80:82:b7:de:fb:4e:ca:22:98:cb:67:da:26:28: 8d:72:e2:1b:54:30:68:57:4b:e5:12:54:a4:54:6e:9d:d7:41: 7a:70:6a:f4:31:6d:38:56:db:3f:e1:dd:13:fc:e4:41:3c:14: 33:b3:4d:6e:c0:32:a9:ab:db:f0:ce:8a:75:0f:14:4d:b3:9c: 03:62:18:7b:a3:63:73:70:60:65:f8:c6:06:1e:6d:89:d0:ad: 35:d5:20:63:2f:ad:50:0a:75:fa:db:79:20:3e:ce:88:50:9b: 73:9b:99:b7:1c:71:89:ed:f2:78:cf:92:a8:5c:ca:9c:2c:ee: 2c:d4:f4:a9:d1:eb:f2:ed:e8:46:51:32:f9:3e:1c:11:84:d3: 9b:73:85:5b:0e:d5:9d:95:80:53:5b:a9:98:9e:c0:51:3c:81: ca:0b:83:95:d2:7d:63:c5:00:85:be:42:2d:52:66:0f:5b:6d: b1:b0:41:9d:a7:83:0e:6c:a6:60:12:fc:0c:0a:3d:22:6c:5c: 89:06:82:44 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MjBENDExMC8GA1UEBRMoQjk3QTdGMDE1QTczNjA3NERGMzg0NDVDOTgwNzQzNzgy MTlEMjk5NTAeFw0yNDAxMjgwMTAxMTJaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YjVhNzU4LTNlNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+1xduA+cYGpstOwPij7zpavqglWTlntjVWp8XXuNqyw/GhFYRnOswt5LJfqCs muC2p9FIgqVbiYEheoJD7YPbU1R3h5uX3Rcp8v0PajhxorB0yQGPYnB7X/N66UMe wJ+Pv/Pac6Nk2MJWIbsXxQH8F+lghE6lYUl7bUEO73AndtJrfcp9bgdnoovbcgkp 9o11yrv2Qo2ExaPM29fs6uEuvCeLvPQjlDK6WtTRjULaI+VA3mb+xhoe1bAAZbiM mFvFtR4xLeXUiYS2DRHs1cxgXVrx7eBhS4sqhdNA2rkRGs6gfpb7Ut/NJgItD12G KRVmI0JdovETJ+KQYoD7Zyn3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUEq7lC0Cf CdJwwAW9LvTSL3sz0swwHwYDVR0jBBgwFoAUuXp/AVpzYHTfOERcmAdDeCGdKZUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyMEQ0LzBFM0YwQzY2QkMx NjExRUVCOTA1OUM4NkM0RjlBRTAyL3VYcF9BVnB6WUhUZk9FUmNtQWREZUNHZEta VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdVhwX0FWcHpZSFRmT0VSY21BZERlQ0dkS1pVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjBENC8wRTNGMEM2NkJDMTYxMUVFQjkwNTlDODZDNEY5QUUwMi9CQUI2NTA5MEJE NzgxMUVFQjYzNEExMTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEASQyADANBgkqhkiG9w0BAQsFAAOCAQEAS8nQn1witBTuny4E eO/IEll0qLf0LPc9SPS5lcLe6YGdLbTW4hTRWe25db7jJWqR9YHd0YfVW+ZX7ICC t977TsoimMtn2iYojXLiG1QwaFdL5RJUpFRunddBenBq9DFtOFbbP+HdE/zkQTwU M7NNbsAyqavb8M6KdQ8UTbOcA2IYe6Njc3BgZfjGBh5tidCtNdUgYy+tUAp1+tt5 ID7OiFCbc5uZtxxxie3yeM+SqFzKnCzuLNT0qdHr8u3oRlEy+T4cEYTTm3OFWw7V nZWAU1upmJ7AUTyByguDldJ9Y8UAhb5CLVJmD1ttsbBBnaeDDmymYBL8DAo9Imxc iQaCRA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:10 2024 by rpki-client on console-ams.rpki-client.org