$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8E3BABCAA3C711EEA0C5AB69C4F9AE02.roa File: 8E3BABCAA3C711EEA0C5AB69C4F9AE02.roa (raw, json) Hash identifier: 8GZmzkom4we09xNzDpYMQr3qMiwqO+5ookY4ZJui3tI= Subject key identifier: 88:56:2E:5D:BD:DA:7E:D7:7D:2B:73:74:46:7C:16:D6:08:36:1E:8F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8CBA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8E3BABCAA3C711EEA0C5AB69C4F9AE02.roa Signing time: Thu 30 May 2024 16:12:35 +0000 ROA not before: Thu 30 May 2024 16:12:35 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 140124 IP address blocks: 36.50.204.0/24 maxlen: 24 2001:df3:4f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36026 (0x8cba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:12:35 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a572-6a15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5c:fa:94:3c:d8:33:63:ff:cd:dd:72:4b:a9: 0c:50:17:91:0d:bc:f0:55:7c:64:21:45:8c:59:85: ad:fd:9b:7f:b6:74:f5:e9:a9:07:89:71:38:31:e4: 45:d6:12:19:a3:40:4e:58:78:0d:3e:f2:4a:df:60: 57:d6:b2:c1:f5:f4:61:85:4b:42:0a:97:64:b9:cf: b4:24:68:ef:07:1c:11:4a:17:68:cc:e5:c0:db:a7: ba:41:25:22:ec:13:9c:56:44:24:09:d2:c4:b1:9c: 57:69:52:0a:76:d1:0b:c2:9b:01:ff:2f:e2:b3:b7: 51:08:0b:b3:bb:58:2a:1a:11:f0:9d:b9:9f:56:f8: f6:fd:33:74:17:87:5c:8b:d2:b3:be:83:5b:c4:2d: c3:ba:ab:4a:b7:b7:97:24:ed:76:c3:05:2e:73:da: 90:09:f9:94:a7:94:25:b2:b9:d3:55:eb:a5:77:75: 58:73:65:83:7b:9e:ad:ff:95:b1:a4:96:af:ef:9c: 74:69:26:61:2e:fa:b2:aa:ab:6a:5b:27:ec:82:95: f9:53:9b:bb:6d:7a:f5:bd:79:28:18:f8:a6:c5:a3: a9:8f:67:06:a0:0a:0c:41:0e:ac:11:96:60:77:91: b4:6e:ce:56:4d:9a:5b:ee:0a:47:a1:17:1a:64:c1: 89:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:56:2E:5D:BD:DA:7E:D7:7D:2B:73:74:46:7C:16:D6:08:36:1E:8F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8E3BABCAA3C711EEA0C5AB69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.204.0/24 IPv6: 2001:df3:4f40::/48 Signature Algorithm: sha256WithRSAEncryption 39:de:37:69:d8:2e:47:b2:5b:9b:93:a8:82:e3:99:ae:23:59: fd:a2:de:a0:71:33:7a:01:b7:f6:6c:d1:4b:71:45:a0:f8:1e: e7:b7:7b:a1:7e:20:a3:14:80:17:e9:2a:d3:b7:e0:87:b1:26: 31:d0:05:4a:74:eb:03:1f:28:f7:3a:dd:91:f4:2e:df:db:eb: d2:63:3a:62:64:69:af:8c:11:1b:d9:ac:67:87:61:3b:79:38: e7:10:7e:76:81:2b:16:2f:9f:ef:e5:be:11:62:10:0f:17:7b: 96:73:99:32:52:d1:8b:96:93:dc:3a:8b:33:7e:5b:36:78:01: 08:ea:42:e0:c4:63:6b:d2:0a:2e:86:9c:4b:8b:ec:50:50:81: 71:f5:a5:f0:b3:4f:a6:ba:2b:79:86:1e:e9:5b:da:4d:62:88: 67:8a:98:8c:ca:cf:2a:67:22:b5:9f:c7:ed:ae:7a:69:6d:ad: 43:44:20:35:52:f2:9d:6e:1c:ea:91:ae:dc:59:fe:11:4d:03: 10:4c:36:5f:ee:ef:d7:0b:3d:99:bf:82:97:5b:cf:39:2b:df: ee:8e:55:1b:32:ef:6d:4f:2f:6f:a4:ff:29:58:e4:98:ca:bb: 14:a8:a0:1a:ac:42:95:31:d6:f1:d6:54:09:ce:71:67:31:40: a1:b3:b2:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIy6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTIzNVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE1NzItNmExNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMJc+pQ82DNj/83dckupDFAXkQ288FV8ZCFFjFmFrf2bf7Z09empB4lxODHk RdYSGaNATlh4DT7ySt9gV9aywfX0YYVLQgqXZLnPtCRo7wccEUoXaMzlwNunukEl IuwTnFZEJAnSxLGcV2lSCnbRC8KbAf8v4rO3UQgLs7tYKhoR8J25n1b49v0zdBeH XIvSs76DW8Qtw7qrSre3lyTtdsMFLnPakAn5lKeUJbK501XrpXd1WHNlg3uerf+V saSWr++cdGkmYS76sqqralsn7IKV+VObu2169b15KBj4psWjqY9nBqAKDEEOrBGW YHeRtG7OVk2aW+4KR6EXGmTBiT0CAwEAAaOCAqYwggKiMB0GA1UdDgQWBBSIVi5d vdp+130rc3RGfBbWCDYejzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhFM0JBQkNB QTNDNzExRUVBMEM1QUI2OUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQAJDLMMA8EAgACMAkDBwAgAQ3zT0AwDQYJKoZIhvcNAQEL BQADggEBADneN2nYLkeyW5uTqILjma4jWf2i3qBxM3oBt/Zs0UtxRaD4Hue3e6F+ IKMUgBfpKtO34IexJjHQBUp06wMfKPc63ZH0Lt/b69JjOmJkaa+MERvZrGeHYTt5 OOcQfnaBKxYvn+/lvhFiEA8Xe5ZzmTJS0YuWk9w6izN+WzZ4AQjqQuDEY2vSCi6G nEuL7FBQgXH1pfCzT6a6K3mGHulb2k1iiGeKmIzKzypnIrWfx+2uemltrUNEIDVS 8p1uHOqRrtxZ/hFNAxBMNl/u79cLPZm/gpdbzzkr3+6OVRsy721PL2+k/ylY5JjK uxSooBqsQpUx1vHWVAnOcWcxQKGzsrg= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:19 2024 by rpki-client on console-ams.rpki-client.org