$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/350E08F41F1C11ECAD024E53C4F9AE02.roa File: 350E08F41F1C11ECAD024E53C4F9AE02.roa (raw, json) Hash identifier: 2KquaHf2QQT/V5i4i4IX4aVhysVuoIWkFQOIgboR6HA= Subject key identifier: D1:83:8D:5B:F9:18:0C:E8:50:C6:2B:A1:82:E8:7A:F4:D5:2F:39:6B Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 05AE Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/350E08F41F1C11ECAD024E53C4F9AE02.roa Signing time: Wed 04 Oct 2023 23:41:21 +0000 ROA not before: Wed 04 Oct 2023 23:41:21 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 131196 IP address blocks: 202.36.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:18:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1454 (0x5ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Validity Not Before: Oct 4 23:41:21 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651df821-87aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3d:c4:ab:cf:e1:29:cc:34:7d:ef:4e:50:4b: b8:14:e8:4d:84:63:7d:b7:63:da:77:50:f3:30:9e: 1b:33:df:77:c1:30:44:08:db:a3:7a:83:0a:08:73: 67:4d:70:fc:54:67:1b:8a:e2:12:30:ba:7e:48:01: c0:28:17:be:38:86:98:7e:30:66:ec:b4:05:51:4e: 70:c5:c9:ff:27:57:98:5e:47:8c:b5:42:01:76:80: c8:18:39:e9:c4:61:5a:23:b2:9a:62:38:48:63:bf: 7f:06:48:dc:08:c4:03:06:69:1b:41:48:47:58:23: ee:f1:9f:50:e1:a8:6f:0a:ad:50:59:43:cf:4b:57: c3:05:88:0f:76:59:4a:32:54:c9:68:3d:1c:86:93: e0:5b:c0:d4:e0:0e:94:ba:e5:2c:cf:cd:62:44:a0: 77:3e:5e:bf:6a:0f:53:56:bf:81:73:06:b7:21:c9: e3:db:9f:f6:77:0b:c0:6c:36:a8:28:54:e1:89:12: 97:68:bd:c1:e9:f7:34:31:d8:c2:ad:54:14:db:d8: 16:2d:b4:21:ce:ab:2b:83:0a:35:c4:5e:10:e4:86: d8:a4:64:73:10:37:27:cf:7f:f2:8d:9a:4a:f4:0e: 62:da:8f:bb:b5:01:37:37:ad:95:7b:ac:30:64:b0: ee:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:83:8D:5B:F9:18:0C:E8:50:C6:2B:A1:82:E8:7A:F4:D5:2F:39:6B X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/350E08F41F1C11ECAD024E53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.221.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:77:26:17:7d:67:14:05:2c:43:20:07:ea:b8:7c:dc:52:30: bc:a8:4c:fc:dc:d6:65:9b:92:a2:92:98:5a:c1:db:2d:63:7d: 54:8f:0a:df:75:5b:ba:8d:ad:98:7f:9b:33:a7:1b:47:f9:e2: a5:3f:73:4c:98:3e:9d:86:4d:c9:ba:f8:15:e0:8b:d4:f4:cc: 2b:df:b7:6b:98:07:75:1c:f1:3c:ca:c1:39:16:a5:08:46:63: a8:78:84:de:25:ac:08:01:12:ba:c5:22:33:ba:25:a4:ba:0f: d7:4a:e7:c0:8d:7a:31:20:26:47:c0:a4:74:6e:9a:11:43:a0: d7:77:07:76:c8:0c:b0:e8:f7:4a:16:0f:0b:69:80:22:b9:04: 0d:15:c4:89:64:ef:93:e7:e7:eb:92:7e:ee:e0:75:3f:b9:c9: 2b:dd:0d:ec:f1:ad:a8:9a:ea:ac:60:0a:6d:5d:5f:04:b7:cb: e9:f4:95:b5:a1:33:da:23:1f:1d:a7:e0:f4:ee:6e:23:80:82: 9f:66:db:fb:1f:55:f1:0a:f7:f5:17:b4:72:69:11:1e:34:7b: 5a:79:91:41:4e:0c:bb:f2:62:d0:ab:e5:9c:81:10:8f:b6:32: f9:71:4e:00:db:64:33:85:b9:19:f2:a5:77:fa:4d:2d:bf:80: 16:ad:60:8e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjMxMDA0MjM0MTIxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkZjgyMS04N2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0D3Eq8/hKcw0fe9OUEu4FOhNhGN9t2Pad1DzMJ4bM993wTBECNujeoMKCHNn TXD8VGcbiuISMLp+SAHAKBe+OIaYfjBm7LQFUU5wxcn/J1eYXkeMtUIBdoDIGDnp xGFaI7KaYjhIY79/BkjcCMQDBmkbQUhHWCPu8Z9Q4ahvCq1QWUPPS1fDBYgPdllK MlTJaD0chpPgW8DU4A6UuuUsz81iRKB3Pl6/ag9TVr+Bcwa3Icnj25/2dwvAbDao KFThiRKXaL3B6fc0MdjCrVQU29gWLbQhzqsrgwo1xF4Q5IbYpGRzEDcnz3/yjZpK 9A5i2o+7tQE3N62Ve6wwZLDuOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNGDjVv5 GAzoUMYroYLoevTVLzlrMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvMzUwRTA4RjQx RjFDMTFFQ0FEMDI0RTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJN0wDQYJKoZIhvcNAQELBQADggEBAC53Jhd9ZxQFLEMg B+q4fNxSMLyoTPzc1mWbkqKSmFrB2y1jfVSPCt91W7qNrZh/mzOnG0f54qU/c0yY Pp2GTcm6+BXgi9T0zCvft2uYB3Uc8TzKwTkWpQhGY6h4hN4lrAgBErrFIjO6JaS6 D9dK58CNejEgJkfApHRumhFDoNd3B3bIDLDo90oWDwtpgCK5BA0VxIlk75Pn5+uS fu7gdT+5ySvdDezxraia6qxgCm1dXwS3y+n0lbWhM9ojHx2n4PTubiOAgp9m2/sf VfEK9/UXtHJpER40e1p5kUFODLvyYtCr5ZyBEI+2MvlxTgDbZDOFuRnypXf6TS2/ gBatYI4= -----END CERTIFICATE-----Generated at Sat Jun 1 02:55:15 2024 by rpki-client on console-fra.rpki-client.org