$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/9C79DBD23E7911EBBFFAC96BC4F9AE02.roa File: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (raw, json) Hash identifier: t1jhjHFqwru5Gpy8gjqkI5v0BDrYWL1hn2TMHHYltLw= Subject key identifier: 56:4B:60:52:68:71:83:F4:0F:EF:0A:D2:D3:B9:DA:06:CF:E4:16:CC Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 14B2 Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/9C79DBD23E7911EBBFFAC96BC4F9AE02.roa Signing time: Mon 26 Jun 2023 17:46:15 +0000 ROA not before: Mon 26 Jun 2023 17:46:15 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 0 IP address blocks: 36.255.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 17:20:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5298 (0x14b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Jun 26 17:46:15 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6499cee7-d0f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:50:10:33:69:e5:6c:30:59:3f:07:14:63:e9: d1:c2:b0:dc:a8:d1:f5:06:c2:7f:49:00:8e:b4:d2: 81:14:f2:58:30:3f:a3:f3:df:d3:04:8b:af:22:ee: 4e:2d:5a:80:9c:26:6b:1b:e5:81:78:be:7d:02:4a: 18:32:f5:65:fd:8a:08:c5:60:bd:9b:a7:eb:65:68: 98:06:44:2f:f4:b2:53:f6:5b:e3:34:bb:af:28:d5: 88:1b:1f:eb:41:ff:b7:cd:ab:64:af:6c:4f:d6:42: 72:cc:97:0d:eb:98:ce:0e:58:8b:0a:f4:16:b9:fb: 4e:46:5f:d4:17:56:eb:4a:4e:df:77:17:15:fc:80: df:28:7c:70:1d:f7:73:66:95:c7:18:e8:9f:a5:4a: d8:8d:5e:aa:50:7d:7c:31:a2:67:b3:0e:42:96:f2: e9:2b:ad:2b:47:f0:d4:f0:e2:40:a1:59:3f:a2:b6: c6:1f:06:ab:c8:df:05:ac:2b:a6:a0:55:40:94:6d: dc:91:88:a7:e6:c7:68:0d:f5:34:b9:03:03:d4:7f: ef:a3:06:4c:52:76:7f:9c:8c:cb:5d:e1:ec:98:b0: f2:d7:c7:e8:6f:3b:47:e6:e5:f6:bb:ee:2e:97:d7: 27:02:ff:5d:41:df:11:03:94:cb:2b:4c:89:8c:be: f5:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:4B:60:52:68:71:83:F4:0F:EF:0A:D2:D3:B9:DA:06:CF:E4:16:CC X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/9C79DBD23E7911EBBFFAC96BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.56.0/22 Signature Algorithm: sha256WithRSAEncryption 45:9a:01:9f:ed:38:fa:6a:72:58:1e:01:e9:09:18:d1:cb:e8: 56:c9:95:63:67:d5:a0:9e:5d:75:1f:97:38:6d:69:69:bc:c5: 20:73:f4:b3:1e:aa:94:68:17:23:45:0a:3a:32:3e:1c:04:ab: 5c:8f:1a:b1:b6:6a:80:5e:d4:d9:0c:a6:1b:2f:49:b2:16:22: f9:e3:0d:90:0c:4f:2c:a3:36:2a:b4:5e:29:ab:f0:e5:42:a7: 85:64:ee:b5:c6:ca:39:e7:26:da:16:14:86:39:9c:52:c3:b0: a7:b2:e4:98:61:1c:c2:7e:36:4f:25:47:1d:a4:6b:fa:22:11: 03:a5:4e:4f:82:4a:f2:5a:f8:47:5d:10:55:4a:1e:84:1d:3c: 2a:7f:41:63:63:71:67:e7:3f:dd:59:50:67:1b:d1:26:f9:3f: 0b:d1:18:d0:61:88:0e:c0:04:51:4b:7a:ee:76:f3:1d:fb:1b: 98:3a:84:dc:80:53:9e:66:2c:d4:f2:f1:36:2d:9a:61:67:b0: 63:ba:d4:48:34:41:5c:1f:78:b6:14:a9:d1:47:48:5c:89:4d: 71:26:91:14:69:9a:1d:78:22:50:50:a8:89:21:06:85:29:e0: d0:b4:28:88:e2:5e:7f:d3:79:85:7b:e3:cd:40:50:a8:87:0c: db:ac:04:90 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjMwNjI2MTc0NjE1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk5Y2VlNy1kMGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01AQM2nlbDBZPwcUY+nRwrDcqNH1BsJ/SQCOtNKBFPJYMD+j89/TBIuvIu5O LVqAnCZrG+WBeL59AkoYMvVl/YoIxWC9m6frZWiYBkQv9LJT9lvjNLuvKNWIGx/r Qf+3zatkr2xP1kJyzJcN65jODliLCvQWuftORl/UF1brSk7fdxcV/IDfKHxwHfdz ZpXHGOifpUrYjV6qUH18MaJnsw5ClvLpK60rR/DU8OJAoVk/orbGHwaryN8FrCum oFVAlG3ckYin5sdoDfU0uQMD1H/vowZMUnZ/nIzLXeHsmLDy18fobztH5uX2u+4u l9cnAv9dQd8RA5TLK0yJjL71LwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFZLYFJo cYP0D+8K0tO52gbP5BbMMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJEOTEvRUE2NzJBNUMxOUU3MTFFOEIyNDNENTdDQzRGOUFFMDIvOUM3OURCRDIz RTc5MTFFQkJGRkFDOTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIk/zgwDQYJKoZIhvcNAQELBQADggEBAEWaAZ/tOPpqclge AekJGNHL6FbJlWNn1aCeXXUflzhtaWm8xSBz9LMeqpRoFyNFCjoyPhwEq1yPGrG2 aoBe1NkMphsvSbIWIvnjDZAMTyyjNiq0Ximr8OVCp4Vk7rXGyjnnJtoWFIY5nFLD sKey5JhhHMJ+Nk8lRx2ka/oiEQOlTk+CSvJa+EddEFVKHoQdPCp/QWNjcWfnP91Z UGcb0Sb5PwvRGNBhiA7ABFFLeu528x37G5g6hNyAU55mLNTy8TYtmmFnsGO61Eg0 QVwfeLYUqdFHSFyJTXEmkRRpmh14IlBQqIkhBoUp4NC0KIjiXn/TeYV7481AUKiH DNusBJA= -----END CERTIFICATE-----Generated at Thu Apr 18 18:16:05 2024 by rpki-client on console-fra.rpki-client.org