$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/D36F0B6ECF4411ECB6B61825C4F9AE02.roa File: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (raw, json) Hash identifier: ozCsjqAuq1SouBvB98Jf4Yq1iuHvv/bdbzijdLA64Oc= Subject key identifier: 1C:B7:43:28:F3:23:BC:47:3B:57:F6:33:6D:E9:46:62:96:46:80:10 Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 0343 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/D36F0B6ECF4411ECB6B61825C4F9AE02.roa Signing time: Fri 08 Dec 2023 17:45:06 +0000 ROA not before: Fri 08 Dec 2023 17:45:05 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 48266 IP address blocks: 45.129.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 835 (0x343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Dec 8 17:45:05 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65735621-8cfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:44:6e:79:90:18:3b:f8:31:96:af:02:d9:80: d1:4f:d4:61:12:e5:e5:3e:b1:62:44:eb:67:64:be: 88:bd:3b:3a:05:b6:27:33:31:f1:97:6f:3b:ee:ec: 9f:0e:a5:97:11:e3:cb:5c:b1:11:d6:36:42:f1:47: a3:a2:e9:8e:8c:64:60:51:ba:0e:1f:8b:bd:a7:e5: 0d:e3:9c:32:dc:25:a8:2a:d8:56:b3:9f:8f:1c:cf: aa:27:73:60:b6:40:5c:16:c3:b2:c0:fb:1b:af:5e: 54:58:72:bb:fb:c2:6c:f5:a2:82:7e:f2:e8:de:4a: 59:06:13:80:9f:51:bd:4d:88:12:e7:db:21:86:2b: c6:33:e7:4f:fd:e1:bb:e3:b1:19:c3:e8:51:70:75: 30:ee:32:4d:97:33:d1:8d:04:8f:64:e8:34:1c:af: b8:b1:25:70:89:7e:38:89:0a:5d:8d:42:64:b3:14: be:95:eb:f2:54:80:9d:9e:56:67:5a:c0:31:cd:58: 2e:32:5b:3a:2c:8a:76:b9:99:00:ef:8f:e7:9c:c5: fa:37:cc:ad:a3:9c:a8:d3:b7:e0:45:7a:d8:60:b6: 4f:f5:93:1a:62:ee:1e:fe:a2:6a:c9:6e:2f:31:78: ca:aa:e4:cf:9f:a1:f6:95:83:63:a4:88:7b:6f:07: 27:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:B7:43:28:F3:23:BC:47:3B:57:F6:33:6D:E9:46:62:96:46:80:10 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/D36F0B6ECF4411ECB6B61825C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.129.228.0/24 Signature Algorithm: sha256WithRSAEncryption 13:b6:84:22:58:90:3f:31:ff:50:ac:ba:e1:8b:2f:0a:f7:fc: c5:08:90:96:bd:0f:b2:49:ff:b3:a7:10:28:20:c2:9f:2c:2a: 2d:71:fd:4e:35:2c:13:61:d6:6b:05:69:a0:ac:4e:72:db:59: 9b:ac:14:79:c3:ba:e7:84:16:25:e3:61:ca:f1:6d:f0:e9:f2: 43:eb:1c:d5:68:7e:80:06:91:87:d3:91:d1:3f:9f:25:b0:91: 09:b3:84:6b:a4:93:df:ad:9c:11:b1:0f:12:9f:23:0f:e7:ff: 9c:17:99:55:39:9b:16:83:04:d5:a1:53:3f:d1:ee:9d:f6:c6: 38:dc:e5:37:1e:1a:11:9a:35:69:80:a6:69:1b:05:bc:fa:ce: b1:42:3d:0f:f7:79:dc:64:7c:67:cd:be:e6:24:0d:6d:0e:f2: de:27:4f:bd:fa:d6:cf:21:24:56:c5:80:ef:c2:af:21:26:5f: 5b:b1:e4:47:33:25:67:b8:2f:6e:87:2e:0e:bf:ab:21:73:bc: f7:70:b5:8b:ad:36:53:78:05:45:83:20:86:8e:84:da:4c:cd: 08:52:00:00:ec:a5:61:6c:5b:3f:ef:a9:1c:a1:d6:10:64:1c: 59:6b:12:32:99:2e:3f:90:ba:22:a8:dc:8c:68:13:f8:18:51: 91:27:8e:68 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjMxMjA4MTc0NTA1WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczNTYyMS04Y2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30RueZAYO/gxlq8C2YDRT9RhEuXlPrFiROtnZL6IvTs6BbYnMzHxl2877uyf DqWXEePLXLER1jZC8UejoumOjGRgUboOH4u9p+UN45wy3CWoKthWs5+PHM+qJ3Ng tkBcFsOywPsbr15UWHK7+8Js9aKCfvLo3kpZBhOAn1G9TYgS59shhivGM+dP/eG7 47EZw+hRcHUw7jJNlzPRjQSPZOg0HK+4sSVwiX44iQpdjUJksxS+levyVICdnlZn WsAxzVguMls6LIp2uZkA74/nnMX6N8yto5yo07fgRXrYYLZP9ZMaYu4e/qJqyW4v MXjKquTPn6H2lYNjpIh7bwcniQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBy3Qyjz I7xHO1f2M23pRmKWRoAQMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNUI0QzRFMzY1OTY5MTFFQzk0QTNFNzcwQzRGOUFFMDIvRDM2RjBCNkVD RjQ0MTFFQ0I2QjYxODI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtgeQwDQYJKoZIhvcNAQELBQADggEBABO2hCJYkD8x/1Cs uuGLLwr3/MUIkJa9D7JJ/7OnECggwp8sKi1x/U41LBNh1msFaaCsTnLbWZusFHnD uueEFiXjYcrxbfDp8kPrHNVofoAGkYfTkdE/nyWwkQmzhGukk9+tnBGxDxKfIw/n /5wXmVU5mxaDBNWhUz/R7p32xjjc5TceGhGaNWmApmkbBbz6zrFCPQ/3edxkfGfN vuYkDW0O8t4nT7361s8hJFbFgO/CryEmX1ux5EczJWe4L26HLg6/qyFzvPdwtYut NlN4BUWDIIaOhNpMzQhSAADspWFsWz/vqRyh1hBkHFlrEjKZLj+QuiKo3IxoE/gY UZEnjmg= -----END CERTIFICATE-----Generated at Wed May 22 18:46:45 2024 by rpki-client on console-fra.rpki-client.org