$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/B36EA83C70B111E98CFFF710C4F9AE02.roa File: B36EA83C70B111E98CFFF710C4F9AE02.roa (raw, json) Hash identifier: YPxJgAFP2pm+e64iG82yJRkFHNHfja4F2rH7VSVuFpA= Subject key identifier: 37:D5:61:CB:EC:9A:89:A6:79:C6:2A:CB:B3:DE:E4:15:05:ED:10:71 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 35C8 Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/B36EA83C70B111E98CFFF710C4F9AE02.roa Signing time: Mon 30 Dec 2024 14:26:42 +0000 ROA not before: Mon 30 Dec 2024 14:26:42 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132215 IP address blocks: 59.144.191.0/24 maxlen: 24 61.246.118.0/24 maxlen: 24 125.16.228.0/24 maxlen: 24 125.22.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 14:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13768 (0x35c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3 Validity Not Before: Dec 30 14:26:42 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6772ada2-bc92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e1:02:28:cd:57:63:e0:56:62:96:3c:cf:95: 8a:15:9f:b3:44:8c:bc:14:8d:7d:52:2a:3e:a8:ba: 9d:f0:48:0c:21:85:bb:b7:65:6e:e9:c0:6a:14:9a: 0e:11:e0:d4:18:3f:a8:0d:10:42:e0:9d:f7:e3:ee: aa:f9:00:d0:54:b5:7f:ed:66:d0:d3:ef:d5:2b:d3: ef:b2:75:10:33:38:6b:28:8a:18:00:71:7d:29:1d: f9:f2:4f:1b:c6:25:bc:23:b6:74:6e:2b:47:74:44: e9:10:c4:f6:28:4a:81:d5:3d:30:09:81:5b:b5:37: a0:ea:51:a6:59:aa:51:04:3f:e2:06:3c:e3:f5:95: f3:d3:cb:07:a2:7e:05:a1:f4:ed:97:f4:9c:90:84: af:1e:7b:7d:09:ae:1d:ab:2b:21:bf:18:c7:31:00: 05:03:1f:a1:1f:3f:92:c8:4c:52:7f:b2:12:af:38: 97:57:cc:6d:c5:f4:47:76:4d:44:58:c5:1b:01:d8: 51:cc:c6:29:2f:b0:9d:c8:ec:94:36:a3:f8:8d:58: bd:48:76:91:81:61:18:9e:04:02:3b:3f:d2:3e:e2: 70:3a:cd:73:7e:95:a3:37:fa:6a:95:34:5e:3d:fb: 01:41:bd:26:03:f6:bb:93:13:b0:a7:12:56:98:ea: cf:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:D5:61:CB:EC:9A:89:A6:79:C6:2A:CB:B3:DE:E4:15:05:ED:10:71 X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/B36EA83C70B111E98CFFF710C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.144.191.0/24 61.246.118.0/24 125.16.228.0/24 125.22.50.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:7e:f2:86:32:dd:1b:e5:8b:dd:b0:c6:cb:9b:79:5b:2f:5a: 76:12:3f:66:bd:2b:52:3a:b4:f5:fa:b2:09:8a:74:37:9e:df: f2:c0:d5:dc:a5:21:33:80:df:74:47:60:1e:7d:22:14:ed:d7: a9:45:53:8f:3a:38:6d:6e:44:34:ab:e4:a8:bc:f2:73:ad:c2: c4:f6:e1:4d:4a:74:25:2a:1e:fb:e8:77:40:84:5c:c4:93:34: 31:8e:e5:32:17:a8:d0:f6:39:0e:1f:ba:43:e1:11:fe:57:2e: 86:6b:64:8a:53:24:90:a5:75:85:1b:db:f3:54:f9:ca:d5:56: 4b:79:cb:70:6f:bb:9c:8b:0a:77:c3:7e:9c:33:bd:bd:01:c8: 4a:f5:34:01:3d:b8:87:93:37:70:ed:4f:b7:ad:bd:03:4d:0e: 62:1d:b5:57:f2:a1:91:ff:e0:27:ed:07:0a:15:a0:1c:d4:d1: d2:09:e4:84:c0:19:4e:18:02:f9:b7:a7:81:12:8c:0c:57:5e: 1a:e3:18:ab:ff:b2:88:08:7d:09:2c:b0:2b:d3:15:9c:d9:2d: f2:58:fc:7a:47:c5:91:86:eb:24:3b:53:de:12:55:68:93:ba: 63:04:54:f7:0b:db:43:fd:a5:2c:f6:24:24:6a:a1:90:84:a9: 09:c5:ce:d0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICNcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjQxMjMwMTQyNjQyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcyYWRhMi1iYzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvuECKM1XY+BWYpY8z5WKFZ+zRIy8FI19Uio+qLqd8EgMIYW7t2Vu6cBqFJoO EeDUGD+oDRBC4J334+6q+QDQVLV/7WbQ0+/VK9PvsnUQMzhrKIoYAHF9KR358k8b xiW8I7Z0bitHdETpEMT2KEqB1T0wCYFbtTeg6lGmWapRBD/iBjzj9ZXz08sHon4F ofTtl/SckISvHnt9Ca4dqyshvxjHMQAFAx+hHz+SyExSf7ISrziXV8xtxfRHdk1E WMUbAdhRzMYpL7CdyOyUNqP4jVi9SHaRgWEYngQCOz/SPuJwOs1zfpWjN/pqlTRe PfsBQb0mA/a7kxOwpxJWmOrPLQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFDfVYcvs mommecYqy7Pe5BUF7RBxMB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0QjMvRTY1ODUxMTIxRDg0MTFFMkExQkEzMERCMDhCMDJDRDIvQjM2RUE4M0M3 MEIxMTFFOThDRkZGNzEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAA7kL8DBAA99nYDBAB9EOQDBAB9FjIwDQYJKoZIhvcNAQEL BQADggEBAD5+8oYy3Rvli92wxsubeVsvWnYSP2a9K1I6tPX6sgmKdDee3/LA1dyl ITOA33RHYB59IhTt16lFU486OG1uRDSr5Ki88nOtwsT24U1KdCUqHvvod0CEXMST NDGO5TIXqND2OQ4fukPhEf5XLoZrZIpTJJCldYUb2/NU+crVVkt5y3Bvu5yLCnfD fpwzvb0ByEr1NAE9uIeTN3DtT7etvQNNDmIdtVfyoZH/4CftBwoVoBzU0dIJ5ITA GU4YAvm3p4ESjAxXXhrjGKv/sogIfQkssCvTFZzZLfJY/HpHxZGG6yQ7U94SVWiT umMEVPcL20P9pSz2JCRqoZCEqQnFztA= -----END CERTIFICATE-----Generated at Fri Apr 11 17:32:30 2025 by rpki-client