$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/36AA48F2D55E11EAB56B562AC4F9AE02.roa File: 36AA48F2D55E11EAB56B562AC4F9AE02.roa (raw, json) Hash identifier: hE/TQdpX0tgBsYUYcXxJnh1aVdWNloVjlM9ixPakN5I= Subject key identifier: B2:F7:AA:DC:B0:3C:78:A4:4A:01:0D:98:FF:19:8A:B1:BE:3D:4F:3D Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D1C Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/36AA48F2D55E11EAB56B562AC4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:12 +0000 ROA not before: Tue 02 Jan 2024 16:54:12 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 133775 IP address blocks: 125.77.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7452 (0x1d1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:12 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fb4-9f5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f6:a0:64:e4:f3:cb:62:e6:11:d7:2f:18:07: 28:51:14:c5:7f:25:83:17:72:e0:04:18:5a:78:b8: 75:e1:30:73:a9:9d:e8:a8:d8:62:d1:a0:e2:71:bd: 9d:f3:20:03:d9:16:ed:31:6b:d5:46:f4:8d:46:f4: 6d:b0:8b:8b:5b:a1:b7:a8:3b:e5:14:20:26:cd:15: f4:f3:bf:05:c6:8e:ef:9b:38:d9:93:e4:23:6f:7d: 17:cc:55:90:c5:38:cd:a5:be:31:78:7d:b8:5c:42: 93:fd:0d:ed:c3:58:5e:ba:bc:6c:58:91:05:46:48: be:72:fc:e2:ef:b7:1e:e8:44:ed:1f:0b:eb:8f:23: 26:96:6f:2f:f8:2b:00:03:b3:bf:aa:9f:16:c2:bb: a5:39:ec:d9:8b:00:8f:4f:b6:83:12:d4:fa:22:7d: ab:1f:71:3c:25:50:82:9d:0a:76:ff:3e:93:40:42: 7d:15:2c:07:b7:84:75:0d:aa:63:b9:a3:f6:34:82: 23:5f:80:fc:75:19:8c:13:9f:df:55:00:6e:98:14: 80:6b:6a:fa:02:38:99:61:f9:7b:df:da:a8:dd:23: 1f:fd:0d:1f:57:13:9a:47:4d:ba:16:f8:16:5d:29: 84:da:81:58:e5:70:28:bc:9a:a6:f3:69:60:a8:94: 0d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:F7:AA:DC:B0:3C:78:A4:4A:01:0D:98:FF:19:8A:B1:BE:3D:4F:3D X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/36AA48F2D55E11EAB56B562AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.77.192.0/21 Signature Algorithm: sha256WithRSAEncryption 08:b5:8e:c4:4a:63:d3:2d:eb:ac:4a:f8:9c:e8:3b:50:a0:22: e0:42:99:34:68:0e:1d:bc:f1:15:7b:98:5e:65:5e:6a:8f:ed: 1c:8b:db:c4:8f:40:d2:78:2a:d2:81:28:c8:b8:4e:d5:a2:d9: 65:7d:f8:64:52:5c:5e:86:63:f3:0b:54:55:39:57:f3:5e:0b: 35:14:a2:33:6f:5f:5a:d7:e3:7d:25:8c:5d:c9:db:79:ca:73: 05:2b:3d:6e:44:4f:eb:2a:85:d4:3f:c3:f2:cf:bd:4f:0f:09: 9f:7f:3e:f5:f5:0c:6b:43:e8:c1:dd:74:3e:f4:fc:f3:ef:b6: 45:e9:b6:de:36:2b:25:bf:c7:79:a3:54:e0:ec:ab:43:b7:25: 41:98:de:e7:d0:6a:d6:50:f1:b0:ae:be:9b:41:7a:8a:5c:ac: fc:69:a5:00:4a:dc:4c:48:83:2f:4a:a4:c9:35:28:7e:c2:dd: 01:a7:a0:56:28:43:5e:ca:f8:2a:f4:4b:22:b0:17:99:62:61: 59:43:35:de:e7:3b:67:c6:b6:d7:0e:c8:58:f3:ff:e2:0a:e3: 68:fa:b7:d2:4e:3a:39:5c:d5:39:b8:c4:34:18:8e:9a:96:2f: 6d:bc:a2:2c:a8:7f:87:f4:e0:03:77:78:f2:05:49:96:60:b8: 37:64:ab:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDEyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZiNC05ZjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvagZOTzy2LmEdcvGAcoURTFfyWDF3LgBBhaeLh14TBzqZ3oqNhi0aDicb2d 8yAD2RbtMWvVRvSNRvRtsIuLW6G3qDvlFCAmzRX0878Fxo7vmzjZk+Qjb30XzFWQ xTjNpb4xeH24XEKT/Q3tw1heurxsWJEFRki+cvzi77ce6ETtHwvrjyMmlm8v+CsA A7O/qp8WwrulOezZiwCPT7aDEtT6In2rH3E8JVCCnQp2/z6TQEJ9FSwHt4R1Dapj uaP2NIIjX4D8dRmME5/fVQBumBSAa2r6AjiZYfl739qo3SMf/Q0fVxOaR026FvgW XSmE2oFY5XAovJqm82lgqJQNYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLL3qtyw PHikSgENmP8ZirG+PU89MB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvMzZBQTQ4RjJE NTVFMTFFQUI1NkI1NjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN9TcAwDQYJKoZIhvcNAQELBQADggEBAAi1jsRKY9Mt66xK +JzoO1CgIuBCmTRoDh288RV7mF5lXmqP7RyL28SPQNJ4KtKBKMi4TtWi2WV9+GRS XF6GY/MLVFU5V/NeCzUUojNvX1rX430ljF3J23nKcwUrPW5ET+sqhdQ/w/LPvU8P CZ9/PvX1DGtD6MHddD70/PPvtkXptt42KyW/x3mjVODsq0O3JUGY3ufQatZQ8bCu vptBeopcrPxppQBK3ExIgy9KpMk1KH7C3QGnoFYoQ17K+Cr0SyKwF5liYVlDNd7n O2fGttcOyFjz/+IK42j6t9JOOjlc1Tm4xDQYjpqWL228oiyof4f04AN3ePIFSZZg uDdkqxU= -----END CERTIFICATE-----Generated at Thu May 16 17:51:20 2024 by rpki-client on console-ams.rpki-client.org