$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2E37/4AC69388AA3D11EE9B839632C4F9AE02/B4B20B56AA3D11EEA301A133C4F9AE02.roa File: B4B20B56AA3D11EEA301A133C4F9AE02.roa (raw, json) Hash identifier: 9jZY1z+VdOX3EbpblEw/cnzGPIt1FRo4e67BiqUONWg= Subject key identifier: AB:96:57:D5:D4:1F:09:8F:97:1C:27:3F:EA:1A:E0:FE:33:11:D0:45 Certificate issuer: /CN=A91E2E37/serialNumber=33BEF164AED3FD13D69AEB51E5A0CCF399F94144 Certificate serial: C2 Authority key identifier: 33:BE:F1:64:AE:D3:FD:13:D6:9A:EB:51:E5:A0:CC:F3:99:F9:41:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M77xZK7T_RPWmutR5aDM85n5QUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2E37/4AC69388AA3D11EE9B839632C4F9AE02/B4B20B56AA3D11EEA301A133C4F9AE02.roa Signing time: Sat 11 Jan 2025 04:07:39 +0000 ROA not before: Sat 11 Jan 2025 04:07:39 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 136749 IP address blocks: 36.50.230.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2E37/4AC69388AA3D11EE9B839632C4F9AE02/M77xZK7T_RPWmutR5aDM85n5QUQ.crl rsync://rpki.apnic.net/member_repository/A91E2E37/4AC69388AA3D11EE9B839632C4F9AE02/M77xZK7T_RPWmutR5aDM85n5QUQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M77xZK7T_RPWmutR5aDM85n5QUQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2E37 Validity Not Before: Jan 11 04:07:39 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6781ee8a-bbde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:69:e7:22:a0:5a:3a:6a:53:08:8d:ca:25:da: 4b:de:5b:6f:02:ec:1c:31:77:ce:5b:34:3f:56:75: 01:68:1e:84:91:a1:13:66:b4:3d:c1:ee:8b:f2:ec: d0:70:b5:9e:fd:8c:a0:e8:39:f0:b9:6b:29:3b:a0: 86:a4:70:9c:4a:0b:f2:5b:7f:5d:08:25:c7:a6:fe: 93:e5:a7:bd:0f:2f:72:68:e8:66:e5:aa:b6:03:a7: 93:a6:76:ef:00:20:19:4e:91:78:76:34:98:9d:ab: b0:b5:af:7c:8d:a1:44:94:74:1f:42:8a:45:ca:bc: 98:4e:8d:1c:ec:08:11:f5:e5:cc:3d:c2:f4:d3:78: c1:31:40:27:55:e9:e9:c3:03:f5:07:55:e3:23:95: d6:5e:0a:3a:84:37:9a:d7:d3:09:cc:8e:eb:13:22: ac:90:73:16:bb:87:df:76:e0:31:43:61:3a:60:35: 59:34:dd:22:17:52:8c:12:5b:c4:f2:63:86:1c:4b: 36:d8:48:55:fd:5f:ba:cc:c4:11:dd:58:8f:0b:b8: 17:4b:e2:08:93:87:2e:63:35:e7:46:83:15:fb:f9: 26:7e:15:62:16:7f:5c:a8:ac:62:33:39:82:e2:35: ce:df:d4:d9:d4:46:78:54:b9:2e:d1:f7:6a:0b:7d: e1:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:96:57:D5:D4:1F:09:8F:97:1C:27:3F:EA:1A:E0:FE:33:11:D0:45 X509v3 Authority Key Identifier: keyid:33:BE:F1:64:AE:D3:FD:13:D6:9A:EB:51:E5:A0:CC:F3:99:F9:41:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2E37/4AC69388AA3D11EE9B839632C4F9AE02/M77xZK7T_RPWmutR5aDM85n5QUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M77xZK7T_RPWmutR5aDM85n5QUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2E37/4AC69388AA3D11EE9B839632C4F9AE02/B4B20B56AA3D11EEA301A133C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.230.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:c5:8e:53:3e:c5:89:58:fa:5f:18:19:86:9f:f9:24:83:0f: ef:45:d1:ec:b6:9d:90:79:27:aa:1b:64:df:44:e3:49:cf:6e: d4:2a:14:56:4b:19:12:16:c4:f9:83:45:31:02:e2:a1:bd:c8: 0b:da:dd:be:32:79:2a:5f:e9:ae:e5:64:19:09:92:69:ac:ec: 6b:f8:f2:b2:29:75:06:99:92:a8:10:b7:e7:6f:5d:4d:7d:f2: c9:95:ef:fb:61:60:e7:ad:0a:12:00:d8:b3:29:0a:a5:73:c0: be:81:09:d3:49:82:d4:85:d2:1e:09:43:bf:77:e5:13:96:f4: 7d:77:44:87:e5:4c:3a:05:d1:91:97:15:2a:da:35:18:3e:3f: 78:ef:a7:cc:67:d8:27:17:0d:46:00:f9:6e:e8:2d:4b:63:e9: ff:da:74:a6:04:d1:88:a0:c6:bb:6f:7e:ec:71:c3:4d:74:54: 0b:ac:4f:74:76:cb:b0:ea:d9:08:e7:3d:9f:9c:68:21:b5:6f: 8b:95:23:fb:de:7b:bd:63:ae:ce:ec:d4:b9:92:0f:6f:b0:0a: 53:ae:29:6c:f3:c4:47:32:f2:be:a8:15:5d:c3:d3:5b:e6:df: 93:00:97:a1:f4:38:ee:2c:72:8e:47:b6:97:a6:bc:84:1f:b4: 44:14:55:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFMzcxMTAvBgNVBAUTKDMzQkVGMTY0QUVEM0ZEMTNENjlBRUI1MUU1QTBDQ0Yz OTlGOTQxNDQwHhcNMjUwMTExMDQwNzM5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzgxZWU4YS1iYmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymnnIqBaOmpTCI3KJdpL3ltvAuwcMXfOWzQ/VnUBaB6EkaETZrQ9we6L8uzQ cLWe/Yyg6DnwuWspO6CGpHCcSgvyW39dCCXHpv6T5ae9Dy9yaOhm5aq2A6eTpnbv ACAZTpF4djSYnauwta98jaFElHQfQopFyryYTo0c7AgR9eXMPcL003jBMUAnVenp wwP1B1XjI5XWXgo6hDea19MJzI7rEyKskHMWu4ffduAxQ2E6YDVZNN0iF1KMElvE 8mOGHEs22EhV/V+6zMQR3ViPC7gXS+IIk4cuYzXnRoMV+/kmfhViFn9cqKxiMzmC 4jXO39TZ1EZ4VLku0fdqC33h7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKuWV9XU HwmPlxwnP+oa4P4zEdBFMB8GA1UdIwQYMBaAFDO+8WSu0/0T1prrUeWgzPOZ+UFE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkUzNy80QUM2OTM4OEFB M0QxMUVFOUI4Mzk2MzJDNEY5QUUwMi9NNzd4Wks3VF9SUFdtdXRSNWFETTg1bjVR VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL003N3haSzdUX1JQV211dFI1YURNODVuNVFVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJFMzcvNEFDNjkzODhBQTNEMTFFRTlCODM5NjMyQzRGOUFFMDIvQjRCMjBCNTZB QTNEMTFFRUEzMDFBMTMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEkMuYwDQYJKoZIhvcNAQELBQADggEBAI3FjlM+xYlY+l8Y GYaf+SSDD+9F0ey2nZB5J6obZN9E40nPbtQqFFZLGRIWxPmDRTEC4qG9yAva3b4y eSpf6a7lZBkJkmms7Gv48rIpdQaZkqgQt+dvXU198smV7/thYOetChIA2LMpCqVz wL6BCdNJgtSF0h4JQ7935ROW9H13RIflTDoF0ZGXFSraNRg+P3jvp8xn2CcXDUYA +W7oLUtj6f/adKYE0Yigxrtvfuxxw010VAusT3R2y7Dq2QjnPZ+caCG1b4uVI/ve e71jrs7s1LmSD2+wClOuKWzzxEcy8r6oFV3D01vm35MAl6H0OO4sco5HtpemvIQf tEQUVcw= -----END CERTIFICATE-----Generated at Sat Apr 5 06:15:28 2025 by rpki-client