$ rpki-client -vvf rpki.apnic.net/member_repository/A912E80C/9AD8B554FBFA11EEAEE5FE1EC4F9AE02/00A86A6CFBFD11EE9D83BD5AC4F9AE02.roa File: 00A86A6CFBFD11EE9D83BD5AC4F9AE02.roa (raw, json) Hash identifier: BiLzgqh1b2wzfZ0A9uXIsrplPF10Zq40y4XUi97+Tqc= Subject key identifier: 4F:93:24:33:86:D8:21:68:69:6C:00:01:51:31:EF:E5:8A:6B:AB:D2 Certificate issuer: /CN=A912E80C/serialNumber=FEBB4276675A04754A5353D5707E57921CDF4392 Certificate serial: 03 Authority key identifier: FE:BB:42:76:67:5A:04:75:4A:53:53:D5:70:7E:57:92:1C:DF:43:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_rtCdmdaBHVKU1PVcH5XkhzfQ5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E80C/9AD8B554FBFA11EEAEE5FE1EC4F9AE02/00A86A6CFBFD11EE9D83BD5AC4F9AE02.roa Signing time: Tue 16 Apr 2024 14:24:15 +0000 ROA not before: Tue 16 Apr 2024 14:24:15 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 131471 IP address blocks: 36.50.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E80C/9AD8B554FBFA11EEAEE5FE1EC4F9AE02/_rtCdmdaBHVKU1PVcH5XkhzfQ5I.crl rsync://rpki.apnic.net/member_repository/A912E80C/9AD8B554FBFA11EEAEE5FE1EC4F9AE02/_rtCdmdaBHVKU1PVcH5XkhzfQ5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_rtCdmdaBHVKU1PVcH5XkhzfQ5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E80C/serialNumber=FEBB4276675A04754A5353D5707E57921CDF4392 Validity Not Before: Apr 16 14:24:15 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=661e8a0f-e9b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b2:24:c4:70:c8:af:ef:62:b5:35:69:02:7e: cb:11:42:28:6f:4b:f6:61:1d:e6:77:25:eb:90:a1: fa:d1:9e:8c:24:3b:a7:78:a8:fd:36:8a:ea:a8:92: ef:03:33:37:3f:e7:b8:41:6f:b8:f1:ea:51:3a:79: c0:32:2e:bf:d4:24:f3:95:f3:f7:34:e1:5a:2f:fa: d8:1f:44:0d:a5:1e:98:e2:17:d1:69:55:bc:ad:cf: 14:f4:11:a4:bb:80:5d:59:82:6f:5c:05:6a:64:5e: 5d:63:a2:b8:53:06:f1:15:1c:81:63:ef:44:58:74: 42:67:29:31:29:b4:c9:9e:c6:d7:aa:ed:87:8e:db: 2b:51:49:6d:58:e4:41:1e:bf:ed:a0:19:81:9d:7e: c4:cd:4b:fe:40:91:b5:84:9b:27:c0:3d:30:42:c8: b8:84:0c:e6:01:2a:c5:dd:bc:af:8f:42:b0:6c:b2: 35:77:5b:33:88:3e:04:13:44:b2:5b:c8:f0:78:f2: f4:bf:b1:e7:20:c8:de:b0:17:b4:f5:90:fb:a0:1e: b9:36:21:ed:88:ca:32:86:75:ff:79:4d:bf:8d:2f: 93:76:3c:09:a0:40:b9:70:8e:3b:86:33:fe:a5:f2: 8f:44:9f:05:47:44:11:16:a4:c8:bb:b1:ab:7b:e8: c2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:93:24:33:86:D8:21:68:69:6C:00:01:51:31:EF:E5:8A:6B:AB:D2 X509v3 Authority Key Identifier: keyid:FE:BB:42:76:67:5A:04:75:4A:53:53:D5:70:7E:57:92:1C:DF:43:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E80C/9AD8B554FBFA11EEAEE5FE1EC4F9AE02/_rtCdmdaBHVKU1PVcH5XkhzfQ5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_rtCdmdaBHVKU1PVcH5XkhzfQ5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E80C/9AD8B554FBFA11EEAEE5FE1EC4F9AE02/00A86A6CFBFD11EE9D83BD5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.72.0/24 Signature Algorithm: sha256WithRSAEncryption a7:6a:82:42:95:11:95:50:1a:bd:51:6b:b5:78:12:ea:28:06: 35:7d:04:fd:31:bf:af:8f:09:fa:e2:18:f1:73:de:f9:be:a0: c6:03:b0:b6:bc:f6:45:1a:af:54:56:92:71:0d:25:35:8b:80: 0a:25:93:6c:10:38:17:ea:ee:b7:25:47:38:6a:e3:6c:36:1c: 3f:d5:15:66:4c:ee:f1:3b:74:3c:a8:33:cf:6b:ff:a6:fe:07: fa:65:97:c8:e6:da:84:2d:18:63:14:4b:9b:76:f4:c1:bb:fc: 03:c9:74:ae:56:c6:86:82:6f:77:c4:af:fc:95:ac:5e:e9:f3: 0c:58:00:c4:a8:7a:75:86:3a:62:6d:14:ad:53:f5:80:76:89: 41:bc:5e:08:72:b4:eb:8e:1c:64:2b:a3:07:34:90:ae:30:19: b1:e2:c9:66:19:10:d7:61:74:cc:89:e1:2f:90:38:9a:d5:3b: d6:9d:82:87:2e:e9:99:de:15:bb:03:28:64:bd:3b:2f:f6:a5: e9:b4:fe:a5:3a:d8:57:cb:30:d7:85:9b:f4:c8:28:27:67:f7: 54:1e:3d:e9:12:54:c1:57:f2:07:f4:91:71:72:c5:03:5d:df: 0a:72:33:30:6b:6b:7e:12:13:09:29:a2:97:99:b3:35:08:a8: da:b6:8b:48 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTgwQzExMC8GA1UEBRMoRkVCQjQyNzY2NzVBMDQ3NTRBNTM1M0Q1NzA3RTU3OTIx Q0RGNDM5MjAeFw0yNDA0MTYxNDI0MTVaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MWU4YTBmLWU5YjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFsiTEcMiv72K1NWkCfssRQihvS/ZhHeZ3JeuQofrRnowkO6d4qP02iuqoku8D Mzc/57hBb7jx6lE6ecAyLr/UJPOV8/c04Vov+tgfRA2lHpjiF9FpVbytzxT0EaS7 gF1Zgm9cBWpkXl1jorhTBvEVHIFj70RYdEJnKTEptMmexteq7YeO2ytRSW1Y5EEe v+2gGYGdfsTNS/5AkbWEmyfAPTBCyLiEDOYBKsXdvK+PQrBssjV3WzOIPgQTRLJb yPB48vS/secgyN6wF7T1kPugHrk2Ie2IyjKGdf95Tb+NL5N2PAmgQLlwjjuGM/6l 8o9EnwVHRBEWpMi7sat76MKrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUT5MkM4bY IWhpbAABUTHv5Yprq9IwHwYDVR0jBBgwFoAU/rtCdmdaBHVKU1PVcH5XkhzfQ5Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFODBDLzlBRDhCNTU0RkJG QTExRUVBRUU1RkUxRUM0RjlBRTAyL19ydENkbWRhQkhWS1UxUFZjSDVYa2h6ZlE1 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX3J0Q2RtZGFCSFZLVTFQVmNINVhraHpmUTVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTgwQy85QUQ4QjU1NEZCRkExMUVFQUVFNUZFMUVDNEY5QUUwMi8wMEE4NkE2Q0ZC RkQxMUVFOUQ4M0JENUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEACQySDANBgkqhkiG9w0BAQsFAAOCAQEAp2qCQpURlVAavVFr tXgS6igGNX0E/TG/r48J+uIY8XPe+b6gxgOwtrz2RRqvVFaScQ0lNYuACiWTbBA4 F+rutyVHOGrjbDYcP9UVZkzu8Tt0PKgzz2v/pv4H+mWXyObahC0YYxRLm3b0wbv8 A8l0rlbGhoJvd8Sv/JWsXunzDFgAxKh6dYY6Ym0UrVP1gHaJQbxeCHK0644cZCuj BzSQrjAZseLJZhkQ12F0zInhL5A4mtU71p2Chy7pmd4VuwMoZL07L/al6bT+pTrY V8sw14Wb9MgoJ2f3VB496RJUwVfyB/SRcXLFA13fCnIzMGtrfhITCSmil5mzNQio 2raLSA== -----END CERTIFICATE-----Generated at Sat May 11 10:09:27 2024 by rpki-client on console-ams.rpki-client.org