$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/7FB5CBF097DB11EE8E67BA41C4F9AE02.roa File: 7FB5CBF097DB11EE8E67BA41C4F9AE02.roa (raw, json) Hash identifier: ZWPK2ab0Ef3qAN+iabKfnFGe44+77H2KgSLOA0dY0EQ= Subject key identifier: 41:1D:BD:BE:ED:07:BF:0C:69:AE:BF:40:92:01:D2:F5:8A:83:45:08 Certificate issuer: /CN=A9163EDF/serialNumber=7723D856E5208224F2BC89A3809777F5283312FC Certificate serial: B8 Authority key identifier: 77:23:D8:56:E5:20:82:24:F2:BC:89:A3:80:97:77:F5:28:33:12:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/7FB5CBF097DB11EE8E67BA41C4F9AE02.roa Signing time: Wed 27 Nov 2024 04:38:57 +0000 ROA not before: Wed 27 Nov 2024 04:38:57 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152126 IP address blocks: 36.50.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.crl rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:32:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EDF Validity Not Before: Nov 27 04:38:57 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6746a261-b34e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9b:3e:a1:bc:41:25:28:ce:44:e8:8e:58:71: 3f:bf:a3:58:41:ca:f5:03:b4:36:8c:b7:d2:6f:4c: e6:23:f7:7a:c5:8f:d6:83:16:76:ee:b9:cf:2d:99: e9:08:b0:8c:fa:aa:7e:f9:d9:5f:b3:61:30:a8:64: 3b:3e:7c:cb:50:33:72:1b:d2:96:6e:2e:84:2f:d3: dc:9f:fa:1c:6e:75:3c:d2:ab:3f:de:33:35:43:2c: ff:63:ad:1e:d6:77:6f:8f:c7:17:0b:83:ab:2d:f7: b6:9d:f1:8d:05:c6:2c:43:e2:88:ee:a5:e6:e4:ef: 52:92:97:56:38:7f:81:3e:07:7b:c6:53:e8:a7:a6: f6:63:a5:98:51:69:1e:9e:2e:11:86:ea:eb:59:9b: eb:3d:ee:c6:d7:2a:c1:0d:f7:84:db:20:31:4a:b8: e2:e1:2d:c1:a6:f2:b6:b9:57:d7:5f:f1:20:cc:6d: a5:12:8b:a6:58:1e:50:da:14:41:5e:97:62:68:f9: fe:d5:45:d2:4d:04:fc:00:bb:69:8a:8a:6a:96:1f: e3:ba:09:61:24:25:ec:fd:dc:4d:b6:f6:ed:d4:26: bc:82:62:c1:75:6a:a2:70:54:9b:af:5e:5e:77:c9: a9:55:eb:79:2e:92:df:7d:d6:48:7a:67:fc:03:00: 2c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:1D:BD:BE:ED:07:BF:0C:69:AE:BF:40:92:01:D2:F5:8A:83:45:08 X509v3 Authority Key Identifier: keyid:77:23:D8:56:E5:20:82:24:F2:BC:89:A3:80:97:77:F5:28:33:12:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/7FB5CBF097DB11EE8E67BA41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.20.0/24 Signature Algorithm: sha256WithRSAEncryption 74:03:b8:ea:08:69:20:72:b2:c1:4d:3e:30:8d:f5:72:05:51: 00:52:f6:dd:ba:ac:b9:e2:bd:5b:f6:34:78:d9:dd:d0:dd:ab: 86:05:5e:e2:c6:98:1d:7d:8c:cb:0e:d7:ec:41:11:34:72:42: 1c:25:29:9c:7c:f8:42:ef:28:8d:23:dd:16:bb:67:14:73:54: dd:56:59:59:05:56:fe:f0:df:c2:57:46:e7:a2:a3:40:01:bc: ab:db:7d:c3:58:32:31:1d:7b:ea:10:52:13:5e:a5:9b:60:fb: ec:39:de:47:19:c1:67:39:12:2d:1a:28:50:8f:8b:89:37:24: 45:36:b1:07:81:1d:60:7b:86:8c:ce:3d:b0:69:a7:21:f6:0c: 4c:c4:1c:7a:72:27:cc:df:45:16:82:36:84:82:d6:ee:4d:4a: 2d:70:d5:f6:ff:96:90:4c:78:aa:97:37:35:57:e2:ce:2d:f1: cd:5e:2e:4f:9f:fd:69:67:e9:56:8e:73:23:bc:60:4e:ba:18: 1e:eb:c1:e5:ed:4e:35:93:6c:35:19:59:51:36:ea:ba:a7:cd: 2b:08:61:6d:59:9c:73:17:4d:f8:e2:bf:5d:c3:2c:09:80:2f: 66:18:f6:48:03:ea:c9:8b:2e:9d:b2:6a:50:c7:66:4c:b5:61: a6:40:5a:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNFREYxMTAvBgNVBAUTKDc3MjNEODU2RTUyMDgyMjRGMkJDODlBMzgwOTc3N0Y1 MjgzMzEyRkMwHhcNMjQxMTI3MDQzODU3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ2YTI2MS1iMzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJs+obxBJSjOROiOWHE/v6NYQcr1A7Q2jLfSb0zmI/d6xY/WgxZ27rnPLZnp CLCM+qp++dlfs2EwqGQ7PnzLUDNyG9KWbi6EL9Pcn/ocbnU80qs/3jM1Qyz/Y60e 1ndvj8cXC4OrLfe2nfGNBcYsQ+KI7qXm5O9SkpdWOH+BPgd7xlPop6b2Y6WYUWke ni4RhurrWZvrPe7G1yrBDfeE2yAxSrji4S3BpvK2uVfXX/EgzG2lEoumWB5Q2hRB XpdiaPn+1UXSTQT8ALtpiopqlh/juglhJCXs/dxNtvbt1Ca8gmLBdWqicFSbr15e d8mpVet5LpLffdZIemf8AwAsowIDAQABo4IClTCCApEwHQYDVR0OBBYEFEEdvb7t B78Maa6/QJIB0vWKg0UIMB8GA1UdIwQYMBaAFHcj2FblIIIk8ryJo4CXd/UoMxL8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0VERi9EOEE3QzczNjk3 MjIxMUVFOTlBQzMzN0VDNEY5QUUwMi9keVBZVnVVZ2dpVHl2SW1qZ0pkMzlTZ3pF dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R5UFlWdVVnZ2lUeXZJbWpnSmQzOVNnekV2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjNFREYvRDhBN0M3MzY5NzIyMTFFRTk5QUMzMzdFQzRGOUFFMDIvN0ZCNUNCRjA5 N0RCMTFFRThFNjdCQTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAkMhQwDQYJKoZIhvcNAQELBQADggEBAHQDuOoIaSByssFN PjCN9XIFUQBS9t26rLnivVv2NHjZ3dDdq4YFXuLGmB19jMsO1+xBETRyQhwlKZx8 +ELvKI0j3Ra7ZxRzVN1WWVkFVv7w38JXRueio0ABvKvbfcNYMjEde+oQUhNepZtg ++w53kcZwWc5Ei0aKFCPi4k3JEU2sQeBHWB7hozOPbBppyH2DEzEHHpyJ8zfRRaC NoSC1u5NSi1w1fb/lpBMeKqXNzVX4s4t8c1eLk+f/Wln6VaOcyO8YE66GB7rweXt TjWTbDUZWVE26rqnzSsIYW1ZnHMXTfjiv13DLAmAL2YY9kgD6smLLp2yalDHZky1 YaZAWlk= -----END CERTIFICATE-----Generated at Sat Apr 5 07:17:13 2025 by rpki-client