$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/5CB841E69B1411EEA456FE83C4F9AE02.roa File: 5CB841E69B1411EEA456FE83C4F9AE02.roa (raw, json) Hash identifier: pLOgKyFyMkYkgWZ7IaxS8IlsIuIv5okTjVaTAgIeoac= Subject key identifier: 8A:C4:AC:6D:AC:7F:C8:55:46:38:78:DC:94:CA:CF:4F:6D:81:D0:99 Certificate issuer: /CN=A91C7AB9/serialNumber=59CA0ED6B96B70C29B3DD8E4EC598EA12E0DC2E6 Certificate serial: CF Authority key identifier: 59:CA:0E:D6:B9:6B:70:C2:9B:3D:D8:E4:EC:59:8E:A1:2E:0D:C2:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/5CB841E69B1411EEA456FE83C4F9AE02.roa Signing time: Sat 11 Jan 2025 04:07:30 +0000 ROA not before: Sat 11 Jan 2025 04:07:30 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 152179 IP address blocks: 36.50.130.0/23 maxlen: 24 2001:df3:49c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.crl rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7AB9 Validity Not Before: Jan 11 04:07:30 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6781ee82-7354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:22:9e:97:cb:37:d4:dd:b1:0f:f1:3d:63:4c: 50:c6:c6:2b:ad:3a:53:7b:9e:56:9b:1f:95:66:16: 50:b3:99:25:5c:6f:6e:91:2a:85:48:1c:69:a3:fa: 8b:9c:e5:54:ae:b5:da:c3:11:e8:a5:4b:95:78:be: 86:27:30:0a:31:c8:7c:bc:ff:91:ea:61:54:5b:73: a5:f1:54:e1:08:57:8f:c6:b3:3d:b6:31:e4:fe:b9: d3:46:12:5a:c9:e4:51:85:81:41:76:c6:82:fe:62: ae:fe:f6:d7:12:26:78:b6:bd:81:42:79:78:82:55: 49:69:03:9b:f4:78:92:5c:19:1a:61:61:c6:1b:2b: 20:82:72:24:6d:6e:ee:de:94:58:b9:8e:3f:45:17: ab:54:9b:2c:92:66:f9:76:71:99:76:ca:b9:69:95: 3a:76:e3:75:6b:bf:be:50:85:13:28:8d:df:ab:64: 10:95:39:f6:64:88:2b:97:e1:78:fd:9e:0a:77:ba: 1c:de:05:15:aa:0b:13:89:8c:29:ad:99:f4:63:59: 10:f7:af:cf:42:03:ec:1d:7e:79:59:ad:ee:e9:0b: d1:7b:d9:a1:0b:a4:0f:bb:84:de:be:25:c8:b6:a7: c3:ad:14:b2:47:fd:ef:21:06:8e:83:cf:2f:c0:cb: cd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:C4:AC:6D:AC:7F:C8:55:46:38:78:DC:94:CA:CF:4F:6D:81:D0:99 X509v3 Authority Key Identifier: keyid:59:CA:0E:D6:B9:6B:70:C2:9B:3D:D8:E4:EC:59:8E:A1:2E:0D:C2:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/5CB841E69B1411EEA456FE83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.130.0/23 IPv6: 2001:df3:49c0::/48 Signature Algorithm: sha256WithRSAEncryption 94:96:21:e7:2e:f0:23:e2:14:6b:45:d3:92:8a:75:a0:ab:6e: ed:44:a3:01:7d:a0:c1:2c:6e:7c:f3:e1:7d:e5:42:7f:f6:07: b6:98:f2:38:47:60:31:8b:fd:44:3c:bc:6e:fb:9c:5e:c4:48: e5:1f:d1:ad:87:80:5f:c4:8c:fa:86:71:fc:a5:a8:a4:0a:8c: af:28:f2:b6:d3:a7:fa:d5:40:4f:ff:6b:7c:4e:87:70:6c:54: 9a:ab:25:4e:bb:29:45:bc:42:d9:c0:8a:03:44:fa:36:c7:2e: df:38:0b:a4:09:af:eb:21:b5:36:1e:93:62:6a:32:cb:cd:17: b1:65:46:a3:be:4b:e1:87:b3:24:fb:3e:26:02:72:6b:21:9a: 82:12:a7:54:45:e8:a5:35:0c:94:31:72:09:90:a0:23:f9:c0: 73:ae:b7:38:51:07:36:6d:f5:24:fe:13:5f:99:29:ea:c5:9f: 09:3a:e3:6f:5f:49:1a:46:87:82:76:f6:d1:77:5b:da:dd:0c: cf:0d:df:fc:47:3a:7b:4a:ef:a9:68:49:e1:43:1f:07:61:32: 1f:38:ba:e0:62:33:4b:ce:2e:a4:2f:14:3e:3c:74:5a:00:dc: f3:79:8e:2f:22:59:ab:6c:9a:8a:52:32:b1:bd:0d:4c:ac:09: 27:89:15:73 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdBQjkxMTAvBgNVBAUTKDU5Q0EwRUQ2Qjk2QjcwQzI5QjNERDhFNEVDNTk4RUEx MkUwREMyRTYwHhcNMjUwMTExMDQwNzMwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzgxZWU4Mi03MzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1iKel8s31N2xD/E9Y0xQxsYrrTpTe55Wmx+VZhZQs5klXG9ukSqFSBxpo/qL nOVUrrXawxHopUuVeL6GJzAKMch8vP+R6mFUW3Ol8VThCFePxrM9tjHk/rnTRhJa yeRRhYFBdsaC/mKu/vbXEiZ4tr2BQnl4glVJaQOb9HiSXBkaYWHGGysggnIkbW7u 3pRYuY4/RRerVJsskmb5dnGZdsq5aZU6duN1a7++UIUTKI3fq2QQlTn2ZIgrl+F4 /Z4Kd7oc3gUVqgsTiYwprZn0Y1kQ96/PQgPsHX55Wa3u6QvRe9mhC6QPu4TeviXI tqfDrRSyR/3vIQaOg88vwMvNhQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIrErG2s f8hVRjh43JTKz09tgdCZMB8GA1UdIwQYMBaAFFnKDta5a3DCmz3Y5OxZjqEuDcLm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0FCOS9BQjU3NTMwNjlC MTMxMUVFQUFBQTM5ODJDNEY5QUUwMi9XY29PMXJscmNNS2JQZGprN0ZtT29TNE53 dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1djb08xcmxyY01LYlBkams3Rm1Pb1M0Tnd1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzdBQjkvQUI1NzUzMDY5QjEzMTFFRUFBQUEzOTgyQzRGOUFFMDIvNUNCODQxRTY5 QjE0MTFFRUE0NTZGRTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAEkMoIwDwQCAAIwCQMHACABDfNJwDANBgkqhkiG9w0BAQsF AAOCAQEAlJYh5y7wI+IUa0XTkop1oKtu7USjAX2gwSxufPPhfeVCf/YHtpjyOEdg MYv9RDy8bvucXsRI5R/RrYeAX8SM+oZx/KWopAqMryjyttOn+tVAT/9rfE6HcGxU mqslTrspRbxC2cCKA0T6Nscu3zgLpAmv6yG1Nh6TYmoyy80XsWVGo75L4YezJPs+ JgJyayGaghKnVEXopTUMlDFyCZCgI/nAc663OFEHNm31JP4TX5kp6sWfCTrjb19J GkaHgnb20Xdb2t0Mzw3f/Ec6e0rvqWhJ4UMfB2EyHzi64GIzS84upC8UPjx0WgDc 83mOLyJZq2yailIysb0NTKwJJ4kVcw== -----END CERTIFICATE-----Generated at Sat Apr 5 02:02:46 2025 by rpki-client