$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/5CB841E69B1411EEA456FE83C4F9AE02.roa File: 5CB841E69B1411EEA456FE83C4F9AE02.roa (raw, json) Hash identifier: ZkuyjzQM5NywNPNPqesV9btZaP3Tg8fDuRFKbMiHyfA= Subject key identifier: 4A:61:70:44:EB:C5:D9:DD:C8:BA:74:9F:E0:55:86:27:B5:EC:91:69 Certificate issuer: /CN=A91C7AB9/serialNumber=59CA0ED6B96B70C29B3DD8E4EC598EA12E0DC2E6 Certificate serial: 02 Authority key identifier: 59:CA:0E:D6:B9:6B:70:C2:9B:3D:D8:E4:EC:59:8E:A1:2E:0D:C2:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/5CB841E69B1411EEA456FE83C4F9AE02.roa Signing time: Fri 15 Dec 2023 06:37:05 +0000 ROA not before: Fri 15 Dec 2023 06:37:05 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152179 IP address blocks: 36.50.130.0/23 maxlen: 24 2001:df3:49c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.crl rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7AB9/serialNumber=59CA0ED6B96B70C29B3DD8E4EC598EA12E0DC2E6 Validity Not Before: Dec 15 06:37:05 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=657bf411-099a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:32:d9:d4:87:60:6a:8e:25:8c:a1:e0:10:78: 9b:dc:f1:a0:57:38:6a:c9:e5:80:d9:c5:bd:3c:ec: a1:d3:be:cf:49:c1:42:2a:51:72:ff:9e:84:a2:6b: 69:8e:e4:88:02:65:4f:df:27:d9:8f:19:19:6d:6c: 7a:30:52:36:2b:16:81:15:42:d0:78:61:77:56:63: 1a:b4:86:db:6f:8e:05:49:18:28:99:7c:fd:41:ca: 11:04:e4:03:a7:37:7e:a3:1f:a8:72:55:73:be:07: c2:d7:58:62:d0:0f:de:a8:75:7c:05:13:6d:95:12: 87:fa:ed:90:c5:1b:4d:0a:71:ce:93:39:d5:5d:9c: 0a:97:07:30:22:43:02:7f:49:90:41:d6:9c:6f:f3: 68:09:02:98:ef:6c:5b:8c:5a:cf:e1:d1:75:28:8c: e8:67:37:77:4d:16:47:16:8a:43:25:35:5c:8c:a6: f4:d0:d3:5a:c6:9f:4b:e5:c8:b7:29:2e:51:67:b8: fa:d5:01:f7:24:c6:b5:f9:65:fe:d7:3a:b1:7a:07: d6:f8:f5:bd:f9:83:03:4c:0f:26:bc:61:5d:e4:79: 5a:35:a6:87:9e:9a:8d:4c:97:c5:91:36:07:26:a0: a6:ab:48:5a:d6:a1:e0:dc:64:1d:56:25:ec:6f:61: 7a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:61:70:44:EB:C5:D9:DD:C8:BA:74:9F:E0:55:86:27:B5:EC:91:69 X509v3 Authority Key Identifier: keyid:59:CA:0E:D6:B9:6B:70:C2:9B:3D:D8:E4:EC:59:8E:A1:2E:0D:C2:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/5CB841E69B1411EEA456FE83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.130.0/23 IPv6: 2001:df3:49c0::/48 Signature Algorithm: sha256WithRSAEncryption aa:80:3c:7f:57:87:53:e4:52:6f:bc:9c:f4:43:b3:cc:23:6f: da:d4:5b:c3:c7:b7:84:fe:68:aa:65:93:f4:2a:00:c1:8e:69: 3c:c7:19:2e:26:a2:c4:4a:22:59:4a:42:1c:8b:87:ff:f0:fa: 22:6d:1d:c2:2e:c0:22:dc:54:c5:19:9e:97:10:92:3e:4e:48: 18:54:c4:f3:64:87:37:4e:fe:86:b7:69:0a:66:15:3a:3d:01: a7:ff:70:11:2a:48:65:91:4d:7b:3d:94:b2:35:c5:44:fc:2c: bc:b7:eb:3b:56:54:65:32:d6:bc:33:da:28:4b:4f:7c:c0:66: 72:aa:d3:2d:33:1c:21:51:ae:0b:fa:9f:50:d0:80:c5:c4:d8: 97:7d:e7:05:6d:79:e4:68:d3:e6:dc:d0:73:8c:fd:c5:41:58: 4d:e0:d1:a7:83:4f:04:48:20:c1:2d:7a:97:f8:e8:9a:b3:12: b9:ac:2c:89:bd:56:db:ad:0c:25:a4:43:af:1e:61:41:bc:8e: c7:51:d8:17:ea:de:ec:3a:fc:fc:84:c7:1b:b2:5c:0d:6f:08: 5d:4f:46:9f:45:9f:a2:fc:15:8e:b7:bb:d9:fc:94:13:bf:4b: bb:a9:d7:b4:10:ea:8f:d4:55:62:69:d5:dd:d1:c3:e0:6d:45: 2c:5b:4c:58 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD N0FCOTExMC8GA1UEBRMoNTlDQTBFRDZCOTZCNzBDMjlCM0REOEU0RUM1OThFQTEy RTBEQzJFNjAeFw0yMzEyMTUwNjM3MDVaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1N2JmNDExLTA5OWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD1MtnUh2BqjiWMoeAQeJvc8aBXOGrJ5YDZxb087KHTvs9JwUIqUXL/noSia2mO 5IgCZU/fJ9mPGRltbHowUjYrFoEVQtB4YXdWYxq0httvjgVJGCiZfP1ByhEE5AOn N36jH6hyVXO+B8LXWGLQD96odXwFE22VEof67ZDFG00Kcc6TOdVdnAqXBzAiQwJ/ SZBB1pxv82gJApjvbFuMWs/h0XUojOhnN3dNFkcWikMlNVyMpvTQ01rGn0vlyLcp LlFnuPrVAfckxrX5Zf7XOrF6B9b49b35gwNMDya8YV3keVo1poeemo1Ml8WRNgcm oKarSFrWoeDcZB1WJexvYXrFAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUSmFwROvF 2d3IunSf4FWGJ7XskWkwHwYDVR0jBBgwFoAUWcoO1rlrcMKbPdjk7FmOoS4NwuYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3QUI5L0FCNTc1MzA2OUIx MzExRUVBQUFBMzk4MkM0RjlBRTAyL1djb08xcmxyY01LYlBkams3Rm1Pb1M0Tnd1 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV2NvTzFybHJjTUtiUGRqazdGbU9vUzROd3VZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0FCOS9BQjU3NTMwNjlCMTMxMUVFQUFBQTM5ODJDNEY5QUUwMi81Q0I4NDFFNjlC MTQxMUVFQTQ1NkZFODNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEASQygjAPBAIAAjAJAwcAIAEN80nAMA0GCSqGSIb3DQEBCwUA A4IBAQCqgDx/V4dT5FJvvJz0Q7PMI2/a1FvDx7eE/miqZZP0KgDBjmk8xxkuJqLE SiJZSkIci4f/8PoibR3CLsAi3FTFGZ6XEJI+TkgYVMTzZIc3Tv6Gt2kKZhU6PQGn /3ARKkhlkU17PZSyNcVE/Cy8t+s7VlRlMta8M9ooS098wGZyqtMtMxwhUa4L+p9Q 0IDFxNiXfecFbXnkaNPm3NBzjP3FQVhN4NGng08ESCDBLXqX+OiasxK5rCyJvVbb rQwlpEOvHmFBvI7HUdgX6t7sOvz8hMcbslwNbwhdT0afRZ+i/BWOt7vZ/JQTv0u7 qde0EOqP1FViadXd0cPgbUUsW0xY -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:32 2024 by rpki-client on console-ams.rpki-client.org