$ rpki-client -vvf rpki.apnic.net/member_repository/A91F34BF/4F033D849CF511EE9E4C331FC4F9AE02/D4F8CEB8FE4211EF958ABE3BC4F9AE02.roa File: D4F8CEB8FE4211EF958ABE3BC4F9AE02.roa (raw, json) Hash identifier: e+itOOHa2GS7haggfAySbnRHvgH3I9TscI3l9ZgslXk= Subject key identifier: 6A:38:7E:87:8B:0E:29:5D:81:B2:67:54:21:3C:C9:A6:88:28:95:EB Certificate issuer: /CN=A91F34BF/serialNumber=73BDB2A02BCBEC3C9000F65F705C96E8080E9730 Certificate serial: F4 Authority key identifier: 73:BD:B2:A0:2B:CB:EC:3C:90:00:F6:5F:70:5C:96:E8:08:0E:97:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c72yoCvL7DyQAPZfcFyW6AgOlzA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F34BF/4F033D849CF511EE9E4C331FC4F9AE02/D4F8CEB8FE4211EF958ABE3BC4F9AE02.roa Signing time: Tue 11 Mar 2025 06:34:07 +0000 ROA not before: Tue 11 Mar 2025 06:34:07 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 141452 IP address blocks: 36.50.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F34BF/4F033D849CF511EE9E4C331FC4F9AE02/c72yoCvL7DyQAPZfcFyW6AgOlzA.crl rsync://rpki.apnic.net/member_repository/A91F34BF/4F033D849CF511EE9E4C331FC4F9AE02/c72yoCvL7DyQAPZfcFyW6AgOlzA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c72yoCvL7DyQAPZfcFyW6AgOlzA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:35:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F34BF Validity Not Before: Mar 11 06:34:07 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67cfd95e-fc5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:cb:24:0c:73:cf:64:97:03:71:5a:48:e9:7b: 53:1e:d8:66:01:20:dc:68:6f:68:74:fa:f3:3b:34: 63:f2:ca:54:54:40:05:e0:34:4f:b8:63:08:a3:29: d9:97:38:44:23:3c:35:37:e8:6e:02:15:a3:5c:82: 7d:8b:fe:0c:a0:2d:4e:bf:62:0b:3b:15:05:f5:79: bc:67:fd:b1:44:fb:9a:35:32:34:4e:2f:b3:ab:60: 4d:b5:1e:f6:fa:1f:56:ea:f8:81:b0:ec:54:e1:34: a9:04:02:1a:f6:25:c0:2a:8d:ba:62:14:a3:3b:59: a9:61:22:63:dd:80:90:e2:39:b4:92:0d:77:52:70: c8:43:34:ae:8f:be:22:f8:10:0b:3d:eb:92:43:cf: 83:c2:7f:07:b2:b7:e8:a9:be:e9:7c:ab:7a:e3:90: ca:f8:cb:38:62:33:f4:d6:f4:e5:92:d7:69:a3:d6: bf:86:6a:e4:ff:e3:88:4a:5d:d7:d1:1a:4a:d1:2a: a5:bc:70:61:22:f8:3f:66:de:3b:5c:17:91:f6:bf: 78:df:f6:aa:04:95:4b:53:f6:a7:89:12:e1:70:4e: 98:47:67:f0:ba:b7:50:3c:4a:1b:04:cc:3d:53:cb: ea:a1:cf:99:5d:37:74:c6:e3:c4:ec:d5:b3:9b:ca: 95:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:38:7E:87:8B:0E:29:5D:81:B2:67:54:21:3C:C9:A6:88:28:95:EB X509v3 Authority Key Identifier: keyid:73:BD:B2:A0:2B:CB:EC:3C:90:00:F6:5F:70:5C:96:E8:08:0E:97:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F34BF/4F033D849CF511EE9E4C331FC4F9AE02/c72yoCvL7DyQAPZfcFyW6AgOlzA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c72yoCvL7DyQAPZfcFyW6AgOlzA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F34BF/4F033D849CF511EE9E4C331FC4F9AE02/D4F8CEB8FE4211EF958ABE3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.117.0/24 Signature Algorithm: sha256WithRSAEncryption 21:8a:5e:1f:86:18:43:d3:51:c6:66:29:f2:99:55:0a:ea:0e: 4d:77:d4:bd:94:77:10:97:a7:1d:32:34:8c:ae:8e:5b:86:5a: 8f:fd:90:f3:74:b7:cb:61:16:09:40:ad:21:99:a4:26:b4:c3: 1c:ca:94:19:fe:66:f3:3e:bf:33:26:da:38:7f:7b:1e:52:34: 92:76:ea:8c:b7:ef:52:fc:03:02:24:fb:26:8f:ed:fb:95:0c: 59:6f:0c:18:1c:2f:31:4a:57:2f:a6:98:06:19:84:aa:20:07: 79:4c:fb:f2:b4:13:cc:48:a2:88:2f:ca:b8:cd:54:1e:07:33: b2:21:0e:88:d9:b2:74:00:47:6e:e8:c0:2b:46:80:df:a2:93: e8:5f:71:31:60:c1:9f:97:6b:8c:b0:05:df:17:ce:7d:cd:91: 2e:4b:8b:e9:fc:e2:1a:3d:fc:32:df:25:e1:fe:1d:c3:aa:41: b0:a0:a0:c7:b9:05:70:d6:34:dd:37:b8:d7:4b:1d:fe:20:83: 6f:1e:29:7d:df:00:d5:2f:42:8a:2d:e9:c3:ba:6a:98:da:69: 56:02:8d:ea:79:06:b2:95:59:54:09:91:34:a0:d1:ba:54:fe: da:52:8b:da:ba:38:11:1d:a2:e0:5e:a5:b1:dc:c7:d5:41:91: 3a:31:41:45 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM0QkYxMTAvBgNVBAUTKDczQkRCMkEwMkJDQkVDM0M5MDAwRjY1RjcwNUM5NkU4 MDgwRTk3MzAwHhcNMjUwMzExMDYzNDA3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmZDk1ZS1mYzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcskDHPPZJcDcVpI6XtTHthmASDcaG9odPrzOzRj8spUVEAF4DRPuGMIoynZ lzhEIzw1N+huAhWjXIJ9i/4MoC1Ov2ILOxUF9Xm8Z/2xRPuaNTI0Ti+zq2BNtR72 +h9W6viBsOxU4TSpBAIa9iXAKo26YhSjO1mpYSJj3YCQ4jm0kg13UnDIQzSuj74i +BALPeuSQ8+Dwn8Hsrfoqb7pfKt645DK+Ms4YjP01vTlktdpo9a/hmrk/+OISl3X 0RpK0SqlvHBhIvg/Zt47XBeR9r943/aqBJVLU/aniRLhcE6YR2fwurdQPEobBMw9 U8vqoc+ZXTd0xuPE7NWzm8qV2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGo4foeL DildgbJnVCE8yaaIKJXrMB8GA1UdIwQYMBaAFHO9sqAry+w8kAD2X3BclugIDpcw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzRCRi80RjAzM0Q4NDlD RjUxMUVFOUU0QzMzMUZDNEY5QUUwMi9jNzJ5b0N2TDdEeVFBUFpmY0Z5VzZBZ09s ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M3MnlvQ3ZMN0R5UUFQWmZjRnlXNkFnT2x6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjM0QkYvNEYwMzNEODQ5Q0Y1MTFFRTlFNEMzMzFGQzRGOUFFMDIvRDRGOENFQjhG RTQyMTFFRjk1OEFCRTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAkMnUwDQYJKoZIhvcNAQELBQADggEBACGKXh+GGEPTUcZm KfKZVQrqDk131L2UdxCXpx0yNIyujluGWo/9kPN0t8thFglArSGZpCa0wxzKlBn+ ZvM+vzMm2jh/ex5SNJJ26oy371L8AwIk+yaP7fuVDFlvDBgcLzFKVy+mmAYZhKog B3lM+/K0E8xIoogvyrjNVB4HM7IhDojZsnQAR27owCtGgN+ik+hfcTFgwZ+Xa4yw Bd8Xzn3NkS5Li+n84ho9/DLfJeH+HcOqQbCgoMe5BXDWNN03uNdLHf4gg28eKX3f ANUvQoot6cO6apjaaVYCjep5BrKVWVQJkTSg0bpU/tpSi9q6OBEdouBepbHcx9VB kToxQUU= -----END CERTIFICATE-----Generated at Sun Apr 6 00:23:11 2025 by rpki-client