$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/DCCEA912A3EB11EE8049E335C4F9AE02.roa File: DCCEA912A3EB11EE8049E335C4F9AE02.roa (raw, json) Hash identifier: FIv9Q2CGo09cXVQt1+GL/sX7lFUzEShgd+XdbWhi1sg= Subject key identifier: D6:22:BD:D2:79:78:10:A3:57:B2:B5:2E:03:78:43:4B:1F:0D:AB:44 Certificate issuer: /CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Certificate serial: F0 Authority key identifier: 5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/DCCEA912A3EB11EE8049E335C4F9AE02.roa Signing time: Sat 01 Mar 2025 07:38:12 +0000 ROA not before: Sat 01 Mar 2025 07:38:12 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152189 IP address blocks: 36.50.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE972 Validity Not Before: Mar 1 07:38:12 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67c2b963-2b34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:08:7d:13:01:2b:d9:82:88:ad:98:a1:ad:ad: ae:73:c3:7a:24:11:dc:15:4c:04:3d:81:1f:b1:99: 57:57:1c:c5:27:67:e1:fb:73:83:f1:44:9a:28:f2: c5:19:cc:46:b7:fe:95:70:3c:a4:a0:57:98:93:08: dd:d4:ef:b9:7c:68:19:99:2e:90:90:d5:81:0f:61: 69:c1:00:89:8e:c6:b6:af:8a:57:9d:ef:e8:ce:b1: 53:68:f6:83:38:c5:94:1f:00:de:3e:b6:03:47:9b: 0f:a0:42:4b:ed:cc:97:40:1d:48:85:4c:e4:87:64: f1:39:bf:e9:6a:19:ac:7d:c5:fb:8f:02:13:f0:42: f9:63:2b:9f:79:81:c7:74:4b:72:90:5d:64:d1:cf: c1:21:12:87:41:9a:58:7d:93:0f:fc:02:df:c4:84: 70:09:86:62:2e:eb:2a:1c:c5:32:95:51:cc:39:de: 2e:67:62:bb:17:c6:c4:26:e4:c9:fe:83:dc:78:db: 6d:87:ef:99:16:ec:6f:7e:d8:b6:aa:31:11:00:bd: 33:1e:5d:14:c2:ca:58:ed:28:40:0c:e7:33:17:d3: 70:79:c5:27:c7:00:40:e6:8f:38:7d:76:90:6c:ce: 97:79:50:13:5e:a6:37:59:b3:c2:be:4e:7b:99:eb: 7a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:22:BD:D2:79:78:10:A3:57:B2:B5:2E:03:78:43:4B:1F:0D:AB:44 X509v3 Authority Key Identifier: keyid:5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/DCCEA912A3EB11EE8049E335C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.198.0/24 Signature Algorithm: sha256WithRSAEncryption 06:37:dc:0d:02:b7:85:8b:a5:da:e7:3e:79:2f:d6:88:e8:f2: b7:e2:a0:be:8e:ea:eb:6d:4f:d8:d3:0c:4a:3a:14:30:c5:7a: c5:a6:d7:92:54:3b:39:b8:e2:71:c7:85:5b:3a:c8:74:3a:73: 6d:33:31:47:e8:83:f8:76:29:ad:1f:95:f2:b9:26:5e:60:94: 2f:0e:ad:01:d1:75:75:08:b8:ba:b8:07:8c:a2:ed:e6:4e:7c: f3:f3:28:f1:f1:0a:70:ac:04:81:59:1f:db:df:48:d7:eb:d2: 2a:85:b5:40:da:c4:d6:42:79:b2:74:34:69:61:47:09:e5:10: 57:ff:38:9f:9c:7d:87:7a:22:24:3c:ea:93:40:16:f5:20:46: fe:50:ad:71:a5:12:70:43:6f:ac:01:4d:4b:15:bf:5a:26:40: 21:3e:26:68:b8:33:f4:6f:eb:e1:50:b6:d3:6e:ca:47:f8:7c: ef:d1:d0:75:f0:e4:aa:2a:bb:71:b2:0c:f3:7a:9f:ee:b3:6a: bf:04:7c:0f:45:79:00:65:87:66:75:2d:c2:ae:d7:89:1f:3c: a4:20:4f:d2:74:48:72:f5:ed:d5:2e:1b:23:56:4a:30:f5:41: 7a:3c:43:dd:f6:5d:34:56:c5:37:e2:3f:54:4e:74:2c:32:82: 3a:fb:bb:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5NzIxMTAvBgNVBAUTKDVEMTg1QjcxMkQ5MzA1NkJGMjc0QjhCN0E4OThDNjky NTRFQkI5ODMwHhcNMjUwMzAxMDczODEyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyYjk2My0yYjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwh9EwEr2YKIrZihra2uc8N6JBHcFUwEPYEfsZlXVxzFJ2fh+3OD8USaKPLF GcxGt/6VcDykoFeYkwjd1O+5fGgZmS6QkNWBD2FpwQCJjsa2r4pXne/ozrFTaPaD OMWUHwDePrYDR5sPoEJL7cyXQB1IhUzkh2TxOb/pahmsfcX7jwIT8EL5YyufeYHH dEtykF1k0c/BIRKHQZpYfZMP/ALfxIRwCYZiLusqHMUylVHMOd4uZ2K7F8bEJuTJ /oPceNtth++ZFuxvfti2qjERAL0zHl0UwspY7ShADOczF9NwecUnxwBA5o84fXaQ bM6XeVATXqY3WbPCvk57met6hQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNYivdJ5 eBCjV7K1LgN4Q0sfDatEMB8GA1UdIwQYMBaAFF0YW3EtkwVr8nS4t6iYxpJU67mD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTk3Mi8yNDVCM0REQ0Ez RTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJXdnlkTGkzcUpqR2tsVHJ1 WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hSaGJjUzJUQld2eWRMaTNxSmpHa2xUcnVZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUU5NzIvMjQ1QjNERENBM0U2MTFFRUFERjk0ODU1QzRGOUFFMDIvRENDRUE5MTJB M0VCMTFFRTgwNDlFMzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAkMsYwDQYJKoZIhvcNAQELBQADggEBAAY33A0Ct4WLpdrn Pnkv1ojo8rfioL6O6uttT9jTDEo6FDDFesWm15JUOzm44nHHhVs6yHQ6c20zMUfo g/h2Ka0flfK5Jl5glC8OrQHRdXUIuLq4B4yi7eZOfPPzKPHxCnCsBIFZH9vfSNfr 0iqFtUDaxNZCebJ0NGlhRwnlEFf/OJ+cfYd6IiQ86pNAFvUgRv5QrXGlEnBDb6wB TUsVv1omQCE+Jmi4M/Rv6+FQttNuykf4fO/R0HXw5Koqu3GyDPN6n+6zar8EfA9F eQBlh2Z1LcKu14kfPKQgT9J0SHL17dUuGyNWSjD1QXo8Q932XTRWxTfiP1ROdCwy gjr7uzc= -----END CERTIFICATE-----Generated at Sun Apr 6 16:19:27 2025 by rpki-client