$ rpki-client -vvf rpki.apnic.net/member_repository/A911DFB8/85A5D90E453D11EBB55A6225C4F9AE02/B6E44C08454211EBAE62CF6BC4F9AE02.roa File: B6E44C08454211EBAE62CF6BC4F9AE02.roa (raw, json) Hash identifier: RAa+unvmdsK2PyYl4pynpJE6TQPmGO1kti+QgYnWhD4= Subject key identifier: 64:E3:FE:54:AA:0F:BD:25:4E:D0:34:FE:7B:39:C7:2E:72:43:4F:B2 Certificate issuer: /CN=A911DFB8/serialNumber=0F80F40D3286852C9B9F6E345BE1D5BD2F954832 Certificate serial: 055C Authority key identifier: 0F:80:F4:0D:32:86:85:2C:9B:9F:6E:34:5B:E1:D5:BD:2F:95:48:32 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D4D0DTKGhSybn240W-HVvS-VSDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DFB8/85A5D90E453D11EBB55A6225C4F9AE02/B6E44C08454211EBAE62CF6BC4F9AE02.roa Signing time: Fri 03 Mar 2023 00:50:51 +0000 ROA not before: Fri 03 Mar 2023 00:50:51 +0000 ROA not after: Wed 29 May 2024 00:00:00 +0000 asID: 138995 IP address blocks: 185.203.36.0/24 maxlen: 24 185.203.37.0/24 maxlen: 24 185.203.38.0/24 maxlen: 24 185.203.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DFB8/85A5D90E453D11EBB55A6225C4F9AE02/D4D0DTKGhSybn240W-HVvS-VSDI.crl rsync://rpki.apnic.net/member_repository/A911DFB8/85A5D90E453D11EBB55A6225C4F9AE02/D4D0DTKGhSybn240W-HVvS-VSDI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D4D0DTKGhSybn240W-HVvS-VSDI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Mar 2023 00:40:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1372 (0x55c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DFB8/serialNumber=0F80F40D3286852C9B9F6E345BE1D5BD2F954832 Validity Not Before: Mar 3 00:50:51 2023 GMT Not After : May 29 00:00:00 2024 GMT Subject: CN=6401446b-47ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bc:c5:78:e3:d6:e2:05:8c:5c:16:10:98:d8: 66:cb:b9:3b:a5:e2:07:e0:a7:71:21:9b:b7:ab:f7: a2:cc:c5:2b:fe:f8:d8:29:df:b9:84:26:05:00:f3: ac:9d:c9:89:c4:d2:10:63:58:91:cc:44:06:b4:b7: d1:03:01:84:ca:c7:ef:e7:f0:61:b5:06:05:48:46: 89:e5:bb:d9:f9:3b:e2:a1:82:0c:f6:b4:14:0c:f1: 7c:50:b8:c0:7c:94:8b:74:27:f5:10:ab:50:df:a8: f2:6e:1d:33:21:3b:c1:fa:e3:68:83:f8:cd:7f:8c: c2:e2:6b:b5:6a:a7:7a:4b:aa:be:f3:01:2a:93:df: ea:40:cb:73:18:63:f5:b0:76:5f:d0:5b:b9:60:fb: de:e1:47:bb:51:22:c5:31:f9:e6:f0:a0:17:62:b2: fc:9e:7d:0c:d9:54:26:5f:f9:b2:28:dc:09:5a:b9: b1:77:30:b9:c8:e2:37:02:f7:8a:91:36:72:94:50: 9c:b9:7c:08:97:db:c6:90:4d:b2:60:aa:a1:92:f1: dd:0e:c8:12:e6:02:93:56:27:01:81:0c:2a:67:02: 27:26:5e:12:8e:f5:ac:b5:6b:c7:5b:d4:62:c8:9d: 42:44:5f:23:8f:79:96:55:7a:54:f6:b0:cf:33:88: f0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:E3:FE:54:AA:0F:BD:25:4E:D0:34:FE:7B:39:C7:2E:72:43:4F:B2 X509v3 Authority Key Identifier: keyid:0F:80:F4:0D:32:86:85:2C:9B:9F:6E:34:5B:E1:D5:BD:2F:95:48:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DFB8/85A5D90E453D11EBB55A6225C4F9AE02/D4D0DTKGhSybn240W-HVvS-VSDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D4D0DTKGhSybn240W-HVvS-VSDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DFB8/85A5D90E453D11EBB55A6225C4F9AE02/B6E44C08454211EBAE62CF6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.203.36.0/22 Signature Algorithm: sha256WithRSAEncryption 01:74:1d:4e:7b:55:40:e6:f8:0b:d6:8a:1e:a4:b2:cc:a2:e9: ea:7a:90:91:ba:71:4d:a6:85:21:a9:27:89:f6:2e:49:2e:97: 3d:5a:74:36:cc:e1:44:8e:e5:f4:19:0d:ae:02:1b:6b:4b:27: 7c:fc:f6:2b:22:be:d4:72:39:ed:79:0f:65:26:d2:fc:db:6e: a1:eb:a4:f7:de:0b:de:ef:cd:fb:ca:f6:64:5a:5f:a4:fb:0e: 96:4c:ab:7d:c8:57:29:e9:c6:cd:1a:8c:bf:51:3b:42:dd:28: 21:fc:ec:89:01:62:b3:86:02:8b:bf:fb:c7:ea:16:a8:54:fa: 4a:fd:2c:51:88:1f:87:d9:c8:7f:71:4a:ec:46:9c:ae:b2:a5: a4:04:cc:c8:52:7c:b3:53:ab:51:fb:57:7e:1f:66:8b:6d:1f: 00:8f:e6:82:34:ec:a9:d4:be:17:80:a2:10:f0:4a:dd:cb:dc: e0:79:4d:07:ab:0b:e2:97:7f:d8:86:df:8b:fc:be:b5:d7:22: 69:17:b5:46:7c:70:73:22:13:ef:c8:77:15:10:c3:54:bf:4f: 4f:7d:8d:0e:b3:16:7d:dc:55:a9:3d:9b:ac:71:16:0d:ae:ea: 8b:c9:19:a1:32:11:55:4d:d0:a7:65:39:3c:86:73:9c:1d:36: 8f:97:50:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGQjgxMTAvBgNVBAUTKDBGODBGNDBEMzI4Njg1MkM5QjlGNkUzNDVCRTFENUJE MkY5NTQ4MzIwHhcNMjMwMzAzMDA1MDUxWhcNMjQwNTI5MDAwMDAwWjAYMRYwFAYD VQQDEw02NDAxNDQ2Yi00N2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbzFeOPW4gWMXBYQmNhmy7k7peIH4KdxIZu3q/eizMUr/vjYKd+5hCYFAPOs ncmJxNIQY1iRzEQGtLfRAwGEysfv5/BhtQYFSEaJ5bvZ+TvioYIM9rQUDPF8ULjA fJSLdCf1EKtQ36jybh0zITvB+uNog/jNf4zC4mu1aqd6S6q+8wEqk9/qQMtzGGP1 sHZf0Fu5YPve4Ue7USLFMfnm8KAXYrL8nn0M2VQmX/myKNwJWrmxdzC5yOI3AveK kTZylFCcuXwIl9vGkE2yYKqhkvHdDsgS5gKTVicBgQwqZwInJl4SjvWstWvHW9Ri yJ1CRF8jj3mWVXpU9rDPM4jwaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGTj/lSq D70lTtA0/ns5xy5yQ0+yMB8GA1UdIwQYMBaAFA+A9A0yhoUsm59uNFvh1b0vlUgy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREZCOC84NUE1RDkwRTQ1 M0QxMUVCQjU1QTYyMjVDNEY5QUUwMi9ENEQwRFRLR2hTeWJuMjQwVy1IVnZTLVZT REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q0RDBEVEtHaFN5Ym4yNDBXLUhWdlMtVlNESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGQjgvODVBNUQ5MEU0NTNEMTFFQkI1NUE2MjI1QzRGOUFFMDIvQjZFNDRDMDg0 NTQyMTFFQkFFNjJDRjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK5yyQwDQYJKoZIhvcNAQELBQADggEBAAF0HU57VUDm+AvW ih6kssyi6ep6kJG6cU2mhSGpJ4n2Lkkulz1adDbM4USO5fQZDa4CG2tLJ3z89isi vtRyOe15D2Um0vzbbqHrpPfeC97vzfvK9mRaX6T7DpZMq33IVynpxs0ajL9RO0Ld KCH87IkBYrOGAou/+8fqFqhU+kr9LFGIH4fZyH9xSuxGnK6ypaQEzMhSfLNTq1H7 V34fZottHwCP5oI07KnUvheAohDwSt3L3OB5TQerC+KXf9iG34v8vrXXImkXtUZ8 cHMiE+/IdxUQw1S/T099jQ6zFn3cVak9m6xxFg2u6ovJGaEyEVVN0KdlOTyGc5wd No+XUHo= -----END CERTIFICATE-----Generated at Wed Mar 15 11:53:12 2023 by rpki-client on console-fra.rpki-client.org