$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/7FB5CBF097DB11EE8E67BA41C4F9AE02.roa File: 7FB5CBF097DB11EE8E67BA41C4F9AE02.roa (raw, json) Hash identifier: lfkx7Gg1VhdE+TUcHWrPNfc+039nZrYRsXfPQ5IPMKU= Subject key identifier: 72:7A:5C:59:4C:8D:B6:8A:81:85:EF:46:E6:CA:7D:77:09:4E:61:4F Certificate issuer: /CN=A9163EDF/serialNumber=7723D856E5208224F2BC89A3809777F5283312FC Certificate serial: 03 Authority key identifier: 77:23:D8:56:E5:20:82:24:F2:BC:89:A3:80:97:77:F5:28:33:12:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/7FB5CBF097DB11EE8E67BA41C4F9AE02.roa Signing time: Mon 11 Dec 2023 04:12:29 +0000 ROA not before: Mon 11 Dec 2023 04:12:29 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 152126 IP address blocks: 36.50.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.crl rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EDF/serialNumber=7723D856E5208224F2BC89A3809777F5283312FC Validity Not Before: Dec 11 04:12:29 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65768c2d-4eae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:02:32:f6:14:93:67:9e:f7:0f:74:3b:07:9f: f5:43:b1:49:93:05:f6:ae:3e:97:3b:c1:cf:ae:8e: 33:e9:9a:a8:92:78:5d:c6:e2:9f:e3:06:46:51:d9: ea:d3:e9:a8:d2:cd:f6:f4:11:50:97:c5:59:63:9f: 26:1a:00:e0:0e:6c:67:86:f0:ae:6e:91:19:2a:ba: d6:5c:fa:2a:ad:6c:dc:e2:cd:dd:e5:10:74:a5:ac: 00:ec:d6:62:56:10:16:58:21:15:5a:cf:e5:f9:fc: e8:1e:80:bf:e3:c8:1e:65:d2:2f:c1:e0:ba:78:8c: a4:d0:62:41:30:d4:0e:cf:5a:62:e6:1d:39:0c:bf: 8c:f7:80:f1:5a:72:09:4f:3e:15:5a:1c:0e:97:ff: 6b:1c:e9:52:af:77:48:19:01:df:ef:8a:d9:bc:7c: dc:9a:09:57:df:37:71:74:0d:d6:8d:af:5b:86:c1: 62:30:16:95:db:d9:6a:c1:0b:53:15:24:b9:50:30: c2:16:14:6a:29:de:a8:c8:4b:f2:70:64:33:82:b1: 24:a0:4f:29:9d:9a:0a:36:75:b9:75:3d:1a:f3:0e: 7e:a3:0a:df:63:e2:a0:d7:5e:66:fa:ff:a3:5e:96: 1f:c0:41:44:f7:a9:65:7c:20:07:0c:44:e3:f2:75: 8c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:7A:5C:59:4C:8D:B6:8A:81:85:EF:46:E6:CA:7D:77:09:4E:61:4F X509v3 Authority Key Identifier: keyid:77:23:D8:56:E5:20:82:24:F2:BC:89:A3:80:97:77:F5:28:33:12:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/7FB5CBF097DB11EE8E67BA41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.20.0/24 Signature Algorithm: sha256WithRSAEncryption b4:19:ba:2c:93:45:34:b6:09:a5:9f:13:94:55:6c:66:9d:0c: d0:9c:28:03:4c:1d:9b:c8:a5:b8:bb:8d:40:66:2b:06:cc:95: af:f1:e3:91:30:df:32:d5:54:53:34:f5:20:1a:5a:bf:65:7c: 5c:ff:a9:e6:86:52:06:5e:67:b3:48:c6:c8:a1:69:95:67:be: 4b:5d:41:ef:01:7e:1f:51:42:db:54:6f:94:c1:f0:b6:30:5d: 55:ae:5b:b0:0b:30:12:1e:63:ed:0d:fd:e1:4a:fd:e7:be:50: 7b:20:8e:87:22:78:0f:a4:a1:da:fe:03:6a:38:64:e2:84:bb: da:b6:60:70:99:76:e2:27:a8:d6:a3:cb:73:5a:0c:8a:da:0d: 36:a2:75:3c:77:6a:11:2a:a4:ba:2b:f9:e4:16:42:0a:bc:b6: a5:98:da:2b:d5:7f:50:3a:a0:66:71:d6:06:cb:e4:71:31:77: 77:d4:c0:5f:83:d2:22:0a:2a:94:65:f6:c6:c8:40:28:12:2e: d5:83:be:cd:b0:c8:80:68:1d:0f:0a:87:34:66:9e:33:00:a9: 48:62:63:68:5a:68:91:04:9c:2e:8a:54:bc:f1:22:65:c9:6b: 50:6c:a8:71:fb:0e:b9:1d:a8:b9:02:ed:ce:47:c0:c8:9f:8f: 5b:32:e0:a6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 M0VERjExMC8GA1UEBRMoNzcyM0Q4NTZFNTIwODIyNEYyQkM4OUEzODA5Nzc3RjUy ODMzMTJGQzAeFw0yMzEyMTEwNDEyMjlaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NzY4YzJkLTRlYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRAjL2FJNnnvcPdDsHn/VDsUmTBfauPpc7wc+ujjPpmqiSeF3G4p/jBkZR2erT 6ajSzfb0EVCXxVljnyYaAOAObGeG8K5ukRkqutZc+iqtbNzizd3lEHSlrADs1mJW EBZYIRVaz+X5/OgegL/jyB5l0i/B4Lp4jKTQYkEw1A7PWmLmHTkMv4z3gPFacglP PhVaHA6X/2sc6VKvd0gZAd/vitm8fNyaCVffN3F0DdaNr1uGwWIwFpXb2WrBC1MV JLlQMMIWFGop3qjIS/JwZDOCsSSgTymdmgo2dbl1PRrzDn6jCt9j4qDXXmb6/6Ne lh/AQUT3qWV8IAcMROPydYxvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUcnpcWUyN toqBhe9G5sp9dwlOYU8wHwYDVR0jBBgwFoAUdyPYVuUggiTyvImjgJd39SgzEvww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYzRURGL0Q4QTdDNzM2OTcy MjExRUU5OUFDMzM3RUM0RjlBRTAyL2R5UFlWdVVnZ2lUeXZJbWpnSmQzOVNnekV2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZHlQWVZ1VWdnaVR5dkltamdKZDM5U2d6RXZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0VERi9EOEE3QzczNjk3MjIxMUVFOTlBQzMzN0VDNEY5QUUwMi83RkI1Q0JGMDk3 REIxMUVFOEU2N0JBNDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEACQyFDANBgkqhkiG9w0BAQsFAAOCAQEAtBm6LJNFNLYJpZ8T lFVsZp0M0JwoA0wdm8iluLuNQGYrBsyVr/HjkTDfMtVUUzT1IBpav2V8XP+p5oZS Bl5ns0jGyKFplWe+S11B7wF+H1FC21RvlMHwtjBdVa5bsAswEh5j7Q394Ur9575Q eyCOhyJ4D6Sh2v4Dajhk4oS72rZgcJl24ieo1qPLc1oMitoNNqJ1PHdqESqkuiv5 5BZCCry2pZjaK9V/UDqgZnHWBsvkcTF3d9TAX4PSIgoqlGX2xshAKBIu1YO+zbDI gGgdDwqHNGaeMwCpSGJjaFpokQScLopUvPEiZclrUGyocfsOuR2ouQLtzkfAyJ+P WzLgpg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:28 2024 by rpki-client on console-fra.rpki-client.org