$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/DCCEA912A3EB11EE8049E335C4F9AE02.roa File: DCCEA912A3EB11EE8049E335C4F9AE02.roa (raw, json) Hash identifier: n/QHjH1nEODvbvzFyy3xLe3FzdFcDXtcGXLBP+1lw5E= Subject key identifier: A6:E0:64:4B:7D:3C:76:6F:D9:8E:A6:41:0E:1F:C6:C2:AF:AE:80:7F Certificate issuer: /CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Certificate serial: 09 Authority key identifier: 5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/DCCEA912A3EB11EE8049E335C4F9AE02.roa Signing time: Tue 26 Dec 2023 12:39:51 +0000 ROA not before: Tue 26 Dec 2023 12:39:51 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152189 IP address blocks: 36.50.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Validity Not Before: Dec 26 12:39:51 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=658ac997-606f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:eb:ba:87:f4:1d:3a:65:9a:51:28:2c:97:17: 85:34:73:7e:0b:cd:4e:32:c0:5d:87:0a:35:5d:ea: 53:23:20:dd:52:4b:1e:df:14:f2:4f:9c:24:e4:9b: 58:05:10:b0:1e:f3:35:da:db:07:8b:f3:e9:af:84: be:a4:66:d8:6a:06:e7:73:44:62:a2:e0:13:ad:f0: 75:dd:b1:78:c4:a6:65:d5:78:b2:53:14:6b:1b:73: 1a:05:8b:3b:1c:33:2e:f8:0c:b6:6f:e9:bf:37:a5: 14:cf:96:78:8e:5a:57:be:75:e6:16:63:aa:a4:e3: 5a:e1:a0:a0:60:ad:ca:af:88:1e:18:d9:32:2e:20: a5:ee:7b:18:20:b9:33:6d:aa:1b:f2:71:98:6c:4f: 70:2b:bf:d8:63:f9:7f:87:92:ce:89:20:69:b8:7d: 5a:1e:50:83:e4:23:65:a8:c4:b9:c0:e1:10:a5:60: d1:e1:c7:d8:9d:b1:6c:30:5d:d1:13:55:d6:ff:88: c6:c8:c4:0e:98:d2:64:d3:23:aa:7f:74:84:c7:e8: ce:1e:2b:a2:f0:36:32:e7:18:e7:2c:ee:41:cf:c5: dc:59:52:12:8d:21:d4:d3:d7:ba:c5:83:2a:2a:47: 58:2b:e8:45:5e:d5:85:84:7b:ee:ac:74:32:b3:6c: 22:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E0:64:4B:7D:3C:76:6F:D9:8E:A6:41:0E:1F:C6:C2:AF:AE:80:7F X509v3 Authority Key Identifier: keyid:5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/DCCEA912A3EB11EE8049E335C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.198.0/24 Signature Algorithm: sha256WithRSAEncryption 45:34:f1:37:5e:7b:6c:d3:e2:4a:7f:9e:5e:ce:db:61:ba:c6: 09:88:1f:e6:57:0e:b0:6a:5b:e7:e2:60:00:69:02:a3:4a:46: 82:a9:53:67:1f:a6:01:ff:fe:b3:a5:9f:ac:ad:55:e8:25:50: 30:97:45:c0:d2:93:57:ba:11:1f:49:d5:b1:dc:fa:60:d2:4a: 01:99:1b:5b:7e:fe:ba:ae:50:68:1b:7e:1a:b9:20:dd:ea:89: f9:36:19:57:74:93:aa:8c:5d:3b:48:3a:c1:2a:00:a9:58:dc: 32:ef:dd:ea:ab:e3:6f:12:41:fe:2c:6c:89:79:cd:8b:d8:fe: 8b:51:78:7d:6b:fe:04:c1:f4:74:25:2a:cd:8b:70:61:f7:4a: 1c:3e:2f:99:8d:c0:93:e5:44:9f:3c:a8:f8:c7:45:6a:77:e7: 19:1c:ec:34:99:08:c5:4e:bb:b8:84:40:57:f1:e7:7e:34:9b: ff:77:28:a8:05:41:98:1b:58:d0:3b:1e:a4:4f:dc:1b:37:d3: 4d:23:e3:31:8e:5d:72:c0:1e:cc:5c:b7:c1:70:f4:b7:82:2f: 83:ba:c5:80:8f:be:93:3b:f5:98:7c:8f:f0:e1:80:34:24:5c: 62:58:65:b7:f1:8e:6c:07:77:d8:cc:79:7a:c8:95:45:86:79: 99:cf:a7:88 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RTk3MjExMC8GA1UEBRMoNUQxODVCNzEyRDkzMDU2QkYyNzRCOEI3QTg5OEM2OTI1 NEVCQjk4MzAeFw0yMzEyMjYxMjM5NTFaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OGFjOTk3LTYwNmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDB67qH9B06ZZpRKCyXF4U0c34LzU4ywF2HCjVd6lMjIN1SSx7fFPJPnCTkm1gF ELAe8zXa2weL8+mvhL6kZthqBudzRGKi4BOt8HXdsXjEpmXVeLJTFGsbcxoFizsc My74DLZv6b83pRTPlniOWle+deYWY6qk41rhoKBgrcqviB4Y2TIuIKXuexgguTNt qhvycZhsT3Arv9hj+X+Hks6JIGm4fVoeUIPkI2WoxLnA4RClYNHhx9idsWwwXdET Vdb/iMbIxA6Y0mTTI6p/dITH6M4eK6LwNjLnGOcs7kHPxdxZUhKNIdTT17rFgyoq R1gr6EVe1YWEe+6sdDKzbCLdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUpuBkS308 dm/ZjqZBDh/Gwq+ugH8wHwYDVR0jBBgwFoAUXRhbcS2TBWvydLi3qJjGklTruYMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFFOTcyLzI0NUIzRERDQTNF NjExRUVBREY5NDg1NUM0RjlBRTAyL1hSaGJjUzJUQld2eWRMaTNxSmpHa2xUcnVZ TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWFJoYmNTMlRCV3Z5ZExpM3FKakdrbFRydVlNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTk3Mi8yNDVCM0REQ0EzRTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9EQ0NFQTkxMkEz RUIxMUVFODA0OUUzMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEACQyxjANBgkqhkiG9w0BAQsFAAOCAQEARTTxN157bNPiSn+e Xs7bYbrGCYgf5lcOsGpb5+JgAGkCo0pGgqlTZx+mAf/+s6WfrK1V6CVQMJdFwNKT V7oRH0nVsdz6YNJKAZkbW37+uq5QaBt+Grkg3eqJ+TYZV3STqoxdO0g6wSoAqVjc Mu/d6qvjbxJB/ixsiXnNi9j+i1F4fWv+BMH0dCUqzYtwYfdKHD4vmY3Ak+VEnzyo +MdFanfnGRzsNJkIxU67uIRAV/HnfjSb/3coqAVBmBtY0DsepE/cGzfTTSPjMY5d csAezFy3wXD0t4Ivg7rFgI++kzv1mHyP8OGANCRcYlhlt/GObAd32Mx5esiVRYZ5 mc+niA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:30 2024 by rpki-client on console-fra.rpki-client.org