$ rpki-client -vvf rpki.apnic.net/member_repository/A91474C3/6F8B52A01D7011E2BC11DAB408B02CD2/DE0EF67CB0F811E595E0F761C4F9AE02.roa File: DE0EF67CB0F811E595E0F761C4F9AE02.roa (raw, json) Hash identifier: gJW+TAeBH6/09GAAcj5GBSbWEG1hRAtGAZaYFpZwTIU= Subject key identifier: 3C:29:77:D6:75:4A:F2:73:28:4E:78:47:EE:2B:A9:85:7A:D8:85:4D Certificate issuer: /CN=A91474C3/serialNumber=F3FEF462A4D8E2F7FA0735A6AB645EE5635DA8F2 Certificate serial: 3422 Authority key identifier: F3:FE:F4:62:A4:D8:E2:F7:FA:07:35:A6:AB:64:5E:E5:63:5D:A8:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_70YqTY4vf6BzWmq2Re5WNdqPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91474C3/6F8B52A01D7011E2BC11DAB408B02CD2/DE0EF67CB0F811E595E0F761C4F9AE02.roa Signing time: Tue 02 Apr 2024 14:50:12 +0000 ROA not before: Tue 02 Apr 2024 14:50:12 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 9535 IP address blocks: 27.50.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91474C3/6F8B52A01D7011E2BC11DAB408B02CD2/8_70YqTY4vf6BzWmq2Re5WNdqPI.crl rsync://rpki.apnic.net/member_repository/A91474C3/6F8B52A01D7011E2BC11DAB408B02CD2/8_70YqTY4vf6BzWmq2Re5WNdqPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_70YqTY4vf6BzWmq2Re5WNdqPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:20:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13346 (0x3422) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91474C3/serialNumber=F3FEF462A4D8E2F7FA0735A6AB645EE5635DA8F2 Validity Not Before: Apr 2 14:50:12 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660c1b24-df5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ad:8b:4a:52:fd:6d:b9:a9:83:4f:27:33:19: 06:03:a4:4f:55:1d:91:fa:bc:3b:57:87:28:15:b1: 19:f8:7f:16:37:32:e9:bd:3c:d9:21:9d:da:c5:59: e7:4b:ae:ba:31:cd:7d:18:e1:d9:f8:84:bd:61:dc: 63:d6:d2:f8:cb:f6:f0:22:82:c4:f5:7f:38:66:11: da:41:3f:54:b1:7d:9b:5a:2b:01:83:d2:2c:91:c3: 01:61:9f:5e:4c:90:da:75:6f:95:70:32:6c:c4:56: 21:d3:58:98:c3:41:4d:22:34:b2:15:a9:1b:e7:3a: df:6f:30:97:bc:9c:e7:f0:a5:99:d0:39:21:13:cf: 85:6b:1b:ea:58:bb:2f:0a:06:54:4a:21:9e:39:3e: c0:55:0e:70:50:7c:aa:e0:47:03:61:26:bd:83:d5: b3:3b:e5:d8:4e:11:9c:85:b6:ad:f5:e8:a5:19:5e: 15:b9:cf:70:1c:7a:6a:82:25:89:66:9e:97:74:bf: fe:a7:76:9f:9f:f0:0b:f8:01:c4:7b:c0:ed:17:0d: 32:60:6e:cc:bb:43:2c:81:86:45:d8:b6:9a:c6:fd: f2:8b:f4:88:19:82:c8:78:59:32:f1:95:ef:b3:93: f5:5d:ff:d1:e3:93:db:77:0a:5f:6e:6f:9e:20:48: 11:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:29:77:D6:75:4A:F2:73:28:4E:78:47:EE:2B:A9:85:7A:D8:85:4D X509v3 Authority Key Identifier: keyid:F3:FE:F4:62:A4:D8:E2:F7:FA:07:35:A6:AB:64:5E:E5:63:5D:A8:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91474C3/6F8B52A01D7011E2BC11DAB408B02CD2/8_70YqTY4vf6BzWmq2Re5WNdqPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_70YqTY4vf6BzWmq2Re5WNdqPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91474C3/6F8B52A01D7011E2BC11DAB408B02CD2/DE0EF67CB0F811E595E0F761C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.50.36.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:ca:58:49:db:fe:50:53:23:fc:63:12:5b:28:5c:29:fc:49: 7f:51:44:60:19:6e:d3:47:f1:1a:8b:da:ff:e8:77:6d:69:4d: 22:fa:02:0a:dd:e2:08:8f:01:e8:a8:b7:6d:5d:99:27:f7:ac: 5d:da:11:3a:89:df:73:3e:a3:0a:13:e5:d5:66:22:bf:44:7d: ce:25:8c:f0:9f:b5:0b:3c:b8:73:40:84:4c:54:53:cb:db:0f: 18:96:1f:f5:4a:04:b6:a8:61:8e:99:97:a7:63:3a:89:a6:4c: 9f:47:04:1b:60:b2:37:d0:73:e9:7c:4a:10:8e:78:f0:a2:b5: 25:1e:65:40:5a:ee:20:c3:6e:dc:e5:7f:cc:a7:d6:95:1e:26: be:57:ff:85:48:1f:5e:75:88:d6:a3:4b:e6:39:a4:f2:15:2b: b8:bf:59:e8:c9:9d:b2:23:ad:e3:6f:4d:38:c7:af:c8:89:25: c3:9d:f6:c6:f8:67:c6:2b:da:b5:70:ec:de:8e:de:94:88:d8: 52:a1:b0:81:d3:92:30:4e:0e:07:38:6e:61:0a:5e:14:09:f0: 87:6e:51:4c:75:61:d8:27:4b:30:ac:c4:65:f8:a1:42:58:c3: 30:69:eb:db:54:09:f2:0b:63:d4:3f:44:12:f9:b4:1f:6d:80: 90:66:ff:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc0QzMxMTAvBgNVBAUTKEYzRkVGNDYyQTREOEUyRjdGQTA3MzVBNkFCNjQ1RUU1 NjM1REE4RjIwHhcNMjQwNDAyMTQ1MDEyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjMWIyNC1kZjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApK2LSlL9bbmpg08nMxkGA6RPVR2R+rw7V4coFbEZ+H8WNzLpvTzZIZ3axVnn S666Mc19GOHZ+IS9Ydxj1tL4y/bwIoLE9X84ZhHaQT9UsX2bWisBg9IskcMBYZ9e TJDadW+VcDJsxFYh01iYw0FNIjSyFakb5zrfbzCXvJzn8KWZ0DkhE8+FaxvqWLsv CgZUSiGeOT7AVQ5wUHyq4EcDYSa9g9WzO+XYThGchbat9eilGV4Vuc9wHHpqgiWJ Zp6XdL/+p3afn/AL+AHEe8DtFw0yYG7Mu0MsgYZF2Laaxv3yi/SIGYLIeFky8ZXv s5P1Xf/R45Pbdwpfbm+eIEgRlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDwpd9Z1 SvJzKE54R+4rqYV62IVNMB8GA1UdIwQYMBaAFPP+9GKk2OL3+gc1pqtkXuVjXajy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzRDMy82RjhCNTJBMDFE NzAxMUUyQkMxMURBQjQwOEIwMkNEMi84XzcwWXFUWTR2ZjZCeldtcTJSZTVXTmRx UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhfNzBZcVRZNHZmNkJ6V21xMlJlNVdOZHFQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc0QzMvNkY4QjUyQTAxRDcwMTFFMkJDMTFEQUI0MDhCMDJDRDIvREUwRUY2N0NC MEY4MTFFNTk1RTBGNzYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAbMiQwDQYJKoZIhvcNAQELBQADggEBABzKWEnb/lBTI/xj ElsoXCn8SX9RRGAZbtNH8RqL2v/od21pTSL6Agrd4giPAeiot21dmSf3rF3aETqJ 33M+owoT5dVmIr9Efc4ljPCftQs8uHNAhExUU8vbDxiWH/VKBLaoYY6Zl6djOomm TJ9HBBtgsjfQc+l8ShCOePCitSUeZUBa7iDDbtzlf8yn1pUeJr5X/4VIH151iNaj S+Y5pPIVK7i/WejJnbIjreNvTTjHr8iJJcOd9sb4Z8Yr2rVw7N6O3pSI2FKhsIHT kjBODgc4bmEKXhQJ8IduUUx1YdgnSzCsxGX4oUJYwzBp69tUCfILY9Q/RBL5tB9t gJBm/3U= -----END CERTIFICATE-----Generated at Thu May 16 16:14:31 2024 by rpki-client on console-fra.rpki-client.org