$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/7C7AF8E6E67011EEB76DCB76C4F9AE02.roa File: 7C7AF8E6E67011EEB76DCB76C4F9AE02.roa (raw, json) Hash identifier: B4/k+AmD/CD5R2XokvVTIdBSD+64BjRA2SWX9Rfb1Sk= Subject key identifier: A3:3A:35:BF:9E:3C:1D:33:DD:EC:9E:48:AF:56:4B:76:BE:BC:28:ED Certificate issuer: /CN=A913F0DF/serialNumber=9D08BF38A0D38B8CAB7CFD88F5D8C4ED66778CC1 Certificate serial: 38 Authority key identifier: 9D:08:BF:38:A0:D3:8B:8C:AB:7C:FD:88:F5:D8:C4:ED:66:77:8C:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/7C7AF8E6E67011EEB76DCB76C4F9AE02.roa Signing time: Wed 20 Mar 2024 04:15:29 +0000 ROA not before: Wed 20 Mar 2024 04:15:29 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152155 IP address blocks: 36.50.76.0/24 maxlen: 24 2001:df3:4440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.crl rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0DF/serialNumber=9D08BF38A0D38B8CAB7CFD88F5D8C4ED66778CC1 Validity Not Before: Mar 20 04:15:29 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65fa62e1-193b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8e:7b:9a:98:e1:a0:e4:9a:01:4d:79:91:95: 82:21:05:f4:14:25:50:31:43:d4:a3:6c:cb:67:a1: a6:93:e2:bb:34:71:3c:cd:06:ed:d9:3c:2a:8b:85: 32:97:68:d5:70:87:97:22:45:90:be:e4:30:58:e1: ac:02:fb:c3:41:ae:35:38:2b:99:ea:a2:b9:13:e8: 60:1f:c5:0c:a2:13:c8:91:96:6a:5d:07:c8:8b:9e: 05:2f:37:15:5b:63:71:fb:32:88:50:f5:d1:f9:75: 9e:3a:fb:b9:e1:e7:84:70:95:ed:f5:a2:3a:73:21: a0:11:ac:30:bf:19:f0:7d:4b:d0:bc:5d:7c:86:0f: e4:0b:d6:95:96:2c:60:fd:f1:97:49:9e:4e:00:12: 1f:e1:bc:70:71:d9:24:6e:6b:2f:2e:a9:34:c1:44: 2c:fb:cf:9d:6e:42:34:eb:de:cb:6d:35:c2:5f:8b: 72:88:73:e6:21:2b:b7:ab:57:6a:bb:92:6a:d9:db: f5:42:39:5f:ad:8e:60:55:16:b8:f4:24:99:64:05: cd:d7:dd:6d:87:c1:d8:38:25:20:2c:b0:8d:bf:e9: 6c:16:6c:b2:0e:e5:7d:4a:aa:e1:a1:f4:9a:be:8b: 84:c1:03:67:d9:66:67:4d:73:62:1b:75:c1:cd:f0: b6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:3A:35:BF:9E:3C:1D:33:DD:EC:9E:48:AF:56:4B:76:BE:BC:28:ED X509v3 Authority Key Identifier: keyid:9D:08:BF:38:A0:D3:8B:8C:AB:7C:FD:88:F5:D8:C4:ED:66:77:8C:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/7C7AF8E6E67011EEB76DCB76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.76.0/24 IPv6: 2001:df3:4440::/48 Signature Algorithm: sha256WithRSAEncryption 3a:d9:78:0a:bf:74:76:63:34:a7:65:ac:da:bc:c5:d1:2b:bc: ee:fa:8f:e3:79:82:83:f8:bb:6a:8b:a5:b8:14:d3:c6:da:67: 9e:dd:d7:c1:78:7b:1b:e1:a2:8d:90:00:61:7f:25:fb:be:61: e9:ce:d6:2b:f3:e6:e9:83:c3:75:fe:bc:52:04:98:56:55:b7: ed:e2:45:08:ba:da:2b:6b:95:50:f2:72:07:6d:2f:a3:91:2c: 0a:ef:05:1a:64:53:e7:64:7e:a3:b3:f0:56:b4:7a:71:58:14: e4:ec:65:77:ba:c3:40:7f:a0:78:a7:f9:3d:16:ae:a7:16:dc: c7:6e:71:bc:b1:be:8d:89:b0:d3:be:6b:2b:49:3d:c2:1c:59: 6d:14:36:72:41:ab:36:c9:f1:03:4a:a0:28:ca:16:f6:4e:98: d5:00:34:68:0e:80:55:14:0f:f0:11:da:01:1c:6b:1f:61:77: 19:72:31:a1:ff:da:1f:5f:be:40:7e:44:58:49:94:a6:62:bf: a5:d9:b4:5c:c8:8c:d2:91:1e:68:cd:19:84:5b:f8:30:0d:02: 78:33:99:df:56:08:8f:bf:2d:96:04:82:73:12:ba:56:5d:42: c9:17:de:c2:1a:15:db:56:d6:4e:28:4a:51:d0:e0:f6:26:4d: b2:57:c3:ed -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RjBERjExMC8GA1UEBRMoOUQwOEJGMzhBMEQzOEI4Q0FCN0NGRDg4RjVEOEM0RUQ2 Njc3OENDMTAeFw0yNDAzMjAwNDE1MjlaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZmE2MmUxLTE5M2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2jnuamOGg5JoBTXmRlYIhBfQUJVAxQ9SjbMtnoaaT4rs0cTzNBu3ZPCqLhTKX aNVwh5ciRZC+5DBY4awC+8NBrjU4K5nqorkT6GAfxQyiE8iRlmpdB8iLngUvNxVb Y3H7MohQ9dH5dZ46+7nh54Rwle31ojpzIaARrDC/GfB9S9C8XXyGD+QL1pWWLGD9 8ZdJnk4AEh/hvHBx2SRuay8uqTTBRCz7z51uQjTr3sttNcJfi3KIc+YhK7erV2q7 kmrZ2/VCOV+tjmBVFrj0JJlkBc3X3W2Hwdg4JSAssI2/6WwWbLIO5X1KquGh9Jq+ i4TBA2fZZmdNc2IbdcHN8LY3AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUozo1v548 HTPd7J5Ir1ZLdr68KO0wHwYDVR0jBBgwFoAUnQi/OKDTi4yrfP2I9djE7WZ3jMEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNGMERGL0U1MDgzNjQ4OTky ODExRUVCQkNBRTg3QUM0RjlBRTAyL25RaV9PS0RUaTR5cmZQMkk5ZGpFN1daM2pN RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvblFpX09LRFRpNHlyZlAySTlkakU3V1ozak1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjBERi9FNTA4MzY0ODk5MjgxMUVFQkJDQUU4N0FDNEY5QUUwMi83QzdBRjhFNkU2 NzAxMUVFQjc2RENCNzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEACQyTDAPBAIAAjAJAwcAIAEN80RAMA0GCSqGSIb3DQEBCwUA A4IBAQA62XgKv3R2YzSnZazavMXRK7zu+o/jeYKD+Ltqi6W4FNPG2mee3dfBeHsb 4aKNkABhfyX7vmHpztYr8+bpg8N1/rxSBJhWVbft4kUIutora5VQ8nIHbS+jkSwK 7wUaZFPnZH6js/BWtHpxWBTk7GV3usNAf6B4p/k9Fq6nFtzHbnG8sb6NibDTvmsr ST3CHFltFDZyQas2yfEDSqAoyhb2TpjVADRoDoBVFA/wEdoBHGsfYXcZcjGh/9of X75AfkRYSZSmYr+l2bRcyIzSkR5ozRmEW/gwDQJ4M5nfVgiPvy2WBIJzErpWXULJ F97CGhXbVtZOKEpR0OD2Jk2yV8Pt -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:11 2024 by rpki-client on console-ams.rpki-client.org