$ rpki-client -vvf rpki.apnic.net/member_repository/A9168946/C4006A88B8C211EEB5F72B6DC4F9AE02/B36E0BFAB8C511EE9C927072C4F9AE02.roa File: B36E0BFAB8C511EE9C927072C4F9AE02.roa (raw, json) Hash identifier: m15NEWV6N4iOizBEIFnAzmMenEVArh+8Fks5/Usc4R8= Subject key identifier: 7A:9C:46:86:A1:0F:E4:40:55:98:A1:CD:BE:19:42:1A:BB:51:3B:35 Certificate issuer: /CN=A9168946/serialNumber=918CB67A0262238DEF78FF288A45D9281F95D2EB Certificate serial: 02 Authority key identifier: 91:8C:B6:7A:02:62:23:8D:EF:78:FF:28:8A:45:D9:28:1F:95:D2:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kYy2egJiI43veP8oikXZKB-V0us.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168946/C4006A88B8C211EEB5F72B6DC4F9AE02/B36E0BFAB8C511EE9C927072C4F9AE02.roa Signing time: Mon 22 Jan 2024 01:29:36 +0000 ROA not before: Mon 22 Jan 2024 01:29:36 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 131239 IP address blocks: 202.14.82.0/23 maxlen: 24 202.14.84.0/24 maxlen: 24 202.27.72.0/22 maxlen: 24 202.36.197.0/24 maxlen: 24 202.36.246.0/24 maxlen: 24 202.36.248.0/22 maxlen: 24 202.36.252.0/23 maxlen: 24 202.36.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168946/C4006A88B8C211EEB5F72B6DC4F9AE02/kYy2egJiI43veP8oikXZKB-V0us.crl rsync://rpki.apnic.net/member_repository/A9168946/C4006A88B8C211EEB5F72B6DC4F9AE02/kYy2egJiI43veP8oikXZKB-V0us.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kYy2egJiI43veP8oikXZKB-V0us.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:48:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168946/serialNumber=918CB67A0262238DEF78FF288A45D9281F95D2EB Validity Not Before: Jan 22 01:29:36 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65adc4ff-bc61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:dd:2a:75:0b:a7:0c:84:cd:c7:02:86:2a:b8: 21:61:22:a7:53:4b:5f:36:60:90:cd:20:d5:80:35: 3a:ca:c2:67:86:5a:4d:64:be:0d:bd:27:cf:98:01: 36:22:02:69:46:03:d8:5b:dc:bc:15:03:32:26:0a: 9d:e7:d1:ef:c2:5d:01:0f:7e:d4:8e:2b:8d:36:19: 89:e7:d9:90:e0:95:2e:c4:db:85:78:7f:52:01:b3: ef:96:76:01:84:f1:81:20:3d:1c:13:55:56:be:a8: ad:50:28:16:f4:79:3f:4e:74:91:cf:b6:ad:88:09: b5:fd:23:00:a0:73:f4:48:36:80:39:4c:4b:2f:b6: 1c:aa:27:ed:b9:08:3f:38:41:46:2e:b2:57:8f:e7: 0c:1c:17:37:92:58:05:e2:a4:3d:3a:f4:d6:1d:ac: 2d:17:a3:80:f9:cf:fa:fa:4b:2a:c1:b1:41:33:6d: 8c:d9:dc:20:7c:5d:dd:c9:6c:12:ce:63:1c:7b:ea: 47:fe:ea:3d:b5:f5:1b:ae:9b:87:ec:5a:d6:ed:80: c6:f1:3f:70:d8:3a:4a:9d:85:48:71:a4:ac:43:8a: 6f:82:1e:f3:41:f9:5a:52:81:87:3b:ca:a3:f5:dc: c6:d5:97:82:6f:6b:bc:12:c9:2b:e9:7b:5b:77:2f: d3:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:9C:46:86:A1:0F:E4:40:55:98:A1:CD:BE:19:42:1A:BB:51:3B:35 X509v3 Authority Key Identifier: keyid:91:8C:B6:7A:02:62:23:8D:EF:78:FF:28:8A:45:D9:28:1F:95:D2:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168946/C4006A88B8C211EEB5F72B6DC4F9AE02/kYy2egJiI43veP8oikXZKB-V0us.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kYy2egJiI43veP8oikXZKB-V0us.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168946/C4006A88B8C211EEB5F72B6DC4F9AE02/B36E0BFAB8C511EE9C927072C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.14.82.0-202.14.84.255 202.27.72.0/22 202.36.197.0/24 202.36.246.0/24 202.36.248.0-202.36.254.255 Signature Algorithm: sha256WithRSAEncryption 5f:8d:13:39:c3:28:49:1c:a1:7a:32:71:f3:28:1f:32:7f:07: cb:4e:f9:1f:e7:bb:33:8f:7a:ad:4e:e9:22:07:47:89:11:72: a8:1e:ca:9b:4b:3b:ed:e1:14:05:1c:23:ce:90:4a:e8:f2:da: a4:9c:31:7f:75:ca:2d:f1:f0:09:1a:0d:a9:dc:c6:a7:37:5b: 9e:a5:90:82:1e:f1:77:e9:20:e9:b6:6a:48:62:fb:25:3c:0a: 5a:48:15:7a:30:c7:99:8f:e9:c0:81:91:d7:3b:ee:76:71:19: ba:41:35:40:c5:c4:7a:39:3e:2a:7e:9c:af:c5:b8:53:d3:d4: d4:c9:87:f8:74:a2:ba:6c:e3:b5:78:ae:f2:11:3a:a8:61:89: 1e:7d:6d:5d:47:29:13:d3:9f:ee:13:03:dd:8b:7e:3c:49:fc: 4b:ff:b9:fe:de:03:e5:4f:43:83:be:19:17:26:1b:ea:42:d1: 8b:64:da:c7:31:9f:5c:06:56:94:34:c9:a1:44:d0:1b:e7:a8: 38:c5:99:9e:e7:fe:0e:8c:7b:34:e5:e5:32:de:4d:c7:e0:a9: 47:10:41:7c:47:eb:8b:32:41:dc:8f:04:19:e9:72:d2:89:3e: 61:cb:83:b1:d8:64:f1:b4:e7:75:77:fd:e3:25:d7:a2:2a:8d: 0e:9f:e0:76 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODk0NjExMC8GA1UEBRMoOTE4Q0I2N0EwMjYyMjM4REVGNzhGRjI4OEE0NUQ5Mjgx Rjk1RDJFQjAeFw0yNDAxMjIwMTI5MzZaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YWRjNGZmLWJjNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDN3Sp1C6cMhM3HAoYquCFhIqdTS182YJDNINWANTrKwmeGWk1kvg29J8+YATYi AmlGA9hb3LwVAzImCp3n0e/CXQEPftSOK402GYnn2ZDglS7E24V4f1IBs++WdgGE 8YEgPRwTVVa+qK1QKBb0eT9OdJHPtq2ICbX9IwCgc/RINoA5TEsvthyqJ+25CD84 QUYusleP5wwcFzeSWAXipD069NYdrC0Xo4D5z/r6SyrBsUEzbYzZ3CB8Xd3JbBLO Yxx76kf+6j219Ruum4fsWtbtgMbxP3DYOkqdhUhxpKxDim+CHvNB+VpSgYc7yqP1 3MbVl4Jva7wSySvpe1t3L9OBAgMBAAGjggK9MIICuTAdBgNVHQ4EFgQUepxGhqEP 5EBVmKHNvhlCGrtROzUwHwYDVR0jBBgwFoAUkYy2egJiI43veP8oikXZKB+V0usw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4OTQ2L0M0MDA2QTg4QjhD MjExRUVCNUY3MkI2REM0RjlBRTAyL2tZeTJlZ0ppSTQzdmVQOG9pa1haS0ItVjB1 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1l5MmVnSmlJNDN2ZVA4b2lrWFpLQi1WMHVzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODk0Ni9DNDAwNkE4OEI4QzIxMUVFQjVGNzJCNkRDNEY5QUUwMi9CMzZFMEJGQUI4 QzUxMUVFOUM5MjcwNzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBHBggrBgEFBQcBBwEB/wQ4 MDYwNAQCAAEwLjAMAwQByg5SAwQAyg5UAwQCyhtIAwQAyiTFAwQAyiT2MAwDBAPK JPgDBADKJP4wDQYJKoZIhvcNAQELBQADggEBAF+NEznDKEkcoXoycfMoHzJ/B8tO +R/nuzOPeq1O6SIHR4kRcqgeyptLO+3hFAUcI86QSujy2qScMX91yi3x8AkaDanc xqc3W56lkIIe8XfpIOm2akhi+yU8ClpIFXowx5mP6cCBkdc77nZxGbpBNUDFxHo5 Pip+nK/FuFPT1NTJh/h0orps47V4rvIROqhhiR59bV1HKRPTn+4TA92LfjxJ/Ev/ uf7eA+VPQ4O+GRcmG+pC0Ytk2scxn1wGVpQ0yaFE0BvnqDjFmZ7n/g6MezTl5TLe TcfgqUcQQXxH64syQdyPBBnpctKJPmHLg7HYZPG053V3/eMl16IqjQ6f4HY= -----END CERTIFICATE-----Generated at Wed May 29 10:43:11 2024 by rpki-client on console-ams.rpki-client.org