$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/F6EB41429F2811EE91032D2AC4F9AE02.roa File: F6EB41429F2811EE91032D2AC4F9AE02.roa (raw, json) Hash identifier: d49MtU0S9f+TUTMSwTs+38XP2OZF6kxjsb+UUnfBjhQ= Subject key identifier: 71:42:27:DA:35:F8:13:82:45:64:C6:43:A2:AE:F9:A2:2F:B5:4C:04 Certificate issuer: /CN=A9175F54/serialNumber=5DB57ED386039EA664D1EFF7570736D6F9F04C44 Certificate serial: B2 Authority key identifier: 5D:B5:7E:D3:86:03:9E:A6:64:D1:EF:F7:57:07:36:D6:F9:F0:4C:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XbV-04YDnqZk0e_3Vwc21vnwTEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/F6EB41429F2811EE91032D2AC4F9AE02.roa Signing time: Thu 21 Nov 2024 04:38:11 +0000 ROA not before: Thu 21 Nov 2024 04:38:11 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139672 IP address blocks: 36.50.8.0/23 maxlen: 23 36.50.8.0/24 maxlen: 24 36.50.9.0/24 maxlen: 24 2401:52a0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/XbV-04YDnqZk0e_3Vwc21vnwTEQ.crl rsync://rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/XbV-04YDnqZk0e_3Vwc21vnwTEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XbV-04YDnqZk0e_3Vwc21vnwTEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F54/serialNumber=5DB57ED386039EA664D1EFF7570736D6F9F04C44 Validity Not Before: Nov 21 04:38:11 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=673eb933-1a47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:be:6e:24:21:e5:ed:76:8f:4a:6a:a4:52:48: 9d:c5:e1:b2:23:95:57:98:3d:6f:16:54:d1:00:8c: 2e:3e:e2:dd:58:ea:71:34:0f:d6:ec:a2:39:a9:29: a7:06:06:f9:3c:fe:08:e2:ad:5f:68:65:10:39:0b: 33:e9:b3:6d:df:c2:74:1b:c1:7a:58:f9:e8:57:01: 70:c6:b4:42:7e:cd:55:47:af:22:61:ae:6f:65:77: f3:eb:ae:9b:a0:67:6b:90:8c:09:22:6d:5b:97:3c: 20:ed:76:19:1f:18:e0:c1:eb:0d:fa:5e:3e:4c:e9: 17:c2:b9:30:76:78:e4:c2:63:c3:58:b2:f1:02:cf: f5:3c:c2:15:44:c3:80:2a:c4:0b:44:7b:a5:0e:54: 20:55:47:16:84:09:e6:98:97:01:c2:9a:0c:98:58: 1c:27:aa:9d:d6:58:4c:d5:34:0e:8e:49:d6:0d:e1: 70:4e:4e:c6:3c:47:bf:02:4e:23:ba:42:5c:12:96: 45:61:0a:bc:67:30:2e:90:11:fd:bd:e5:7b:ee:f9: f9:0f:83:44:8c:24:e6:1d:bf:38:cc:c9:de:b7:fa: b2:0e:26:75:1c:16:97:6f:9f:c4:e5:9f:db:50:81: a9:78:a0:c6:7f:bb:8c:ef:b7:2e:13:9b:73:c5:d8: b2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:42:27:DA:35:F8:13:82:45:64:C6:43:A2:AE:F9:A2:2F:B5:4C:04 X509v3 Authority Key Identifier: keyid:5D:B5:7E:D3:86:03:9E:A6:64:D1:EF:F7:57:07:36:D6:F9:F0:4C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/XbV-04YDnqZk0e_3Vwc21vnwTEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XbV-04YDnqZk0e_3Vwc21vnwTEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/F6EB41429F2811EE91032D2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.8.0/23 IPv6: 2401:52a0::/32 Signature Algorithm: sha256WithRSAEncryption d1:ce:1f:80:17:99:4d:b5:4c:80:66:de:98:7e:29:2a:84:10: 1e:49:56:dd:91:80:c7:c1:03:52:e3:aa:bc:7b:c7:3b:2f:e6: d7:71:78:dd:87:91:40:18:9b:b2:00:d0:90:e1:2b:52:e1:14: b5:fc:59:e4:b3:3c:fb:db:b4:8a:9c:9f:36:c0:44:b1:16:f7: 65:26:63:c4:b2:d9:cd:2f:ef:77:50:27:ba:e0:a6:c6:96:6a: ae:01:1b:da:fc:a7:d3:6d:56:c9:83:dd:76:4a:38:9a:c6:89: cf:82:37:a8:85:b5:ea:c7:27:0d:e3:03:94:01:17:27:5e:d2: 41:97:ed:17:82:a6:80:8d:9e:37:db:99:d1:65:f6:91:e3:6c: 4d:d0:4d:69:e1:d0:5f:08:3a:14:a0:50:a5:19:6a:13:13:72: b2:4a:42:78:8e:1e:61:a2:d9:69:0c:40:24:4c:93:01:bc:4d: 92:2b:76:b3:60:b2:57:ee:cb:77:c5:1f:81:23:b2:1c:20:c9: 6c:13:b0:1a:be:c2:bb:66:89:5f:bc:27:86:ed:34:67:79:64: 6b:e5:7a:8a:44:47:29:e6:2e:96:ed:ae:06:4e:d3:c1:ba:b5: f7:32:f0:be:93:99:c2:58:58:df:c6:1c:d3:95:b1:c0:c2:95: 7e:1a:56:2a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVGNTQxMTAvBgNVBAUTKDVEQjU3RUQzODYwMzlFQTY2NEQxRUZGNzU3MDczNkQ2 RjlGMDRDNDQwHhcNMjQxMTIxMDQzODExWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlYjkzMy0xYTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv75uJCHl7XaPSmqkUkidxeGyI5VXmD1vFlTRAIwuPuLdWOpxNA/W7KI5qSmn Bgb5PP4I4q1faGUQOQsz6bNt38J0G8F6WPnoVwFwxrRCfs1VR68iYa5vZXfz666b oGdrkIwJIm1blzwg7XYZHxjgwesN+l4+TOkXwrkwdnjkwmPDWLLxAs/1PMIVRMOA KsQLRHulDlQgVUcWhAnmmJcBwpoMmFgcJ6qd1lhM1TQOjknWDeFwTk7GPEe/Ak4j ukJcEpZFYQq8ZzAukBH9veV77vn5D4NEjCTmHb84zMnet/qyDiZ1HBaXb5/E5Z/b UIGpeKDGf7uM77cuE5tzxdiy0wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHFCJ9o1 +BOCRWTGQ6Ku+aIvtUwEMB8GA1UdIwQYMBaAFF21ftOGA56mZNHv91cHNtb58ExE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUY1NC81MUI2RUNFNDlG MjgxMUVFQTk5NUQzMjhDNEY5QUUwMi9YYlYtMDRZRG5xWmswZV8zVndjMjF2bndU RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hiVi0wNFlEbnFaazBlXzNWd2MyMXZud1RFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVGNTQvNTFCNkVDRTQ5RjI4MTFFRUE5OTVEMzI4QzRGOUFFMDIvRjZFQjQxNDI5 RjI4MTFFRTkxMDMyRDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAEkMggwDQQCAAIwBwMFACQBUqAwDQYJKoZIhvcNAQELBQAD ggEBANHOH4AXmU21TIBm3ph+KSqEEB5JVt2RgMfBA1Ljqrx7xzsv5tdxeN2HkUAY m7IA0JDhK1LhFLX8WeSzPPvbtIqcnzbARLEW92UmY8Sy2c0v73dQJ7rgpsaWaq4B G9r8p9NtVsmD3XZKOJrGic+CN6iFterHJw3jA5QBFyde0kGX7ReCpoCNnjfbmdFl 9pHjbE3QTWnh0F8IOhSgUKUZahMTcrJKQniOHmGi2WkMQCRMkwG8TZIrdrNgslfu y3fFH4EjshwgyWwTsBq+wrtmiV+8J4btNGd5ZGvleopERynmLpbtrgZO08G6tfcy 8L6TmcJYWN/GHNOVscDClX4aVio= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org