$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/B364F656C0AD11EEACCA627AC4F9AE02.roa File: B364F656C0AD11EEACCA627AC4F9AE02.roa (raw, json) Hash identifier: JZu1c9oaB+RLLkfJxGcLzwwbwsqRlg3ky2bwUx14MD8= Subject key identifier: 3B:9E:17:C3:B6:25:E1:DB:4D:3D:E9:76:AC:FE:63:A8:54:F9:82:D2 Certificate issuer: /CN=A917576D/serialNumber=B1E84FACFACBC0B7838561EF21E28F2FACF5DFEC Certificate serial: 094F Authority key identifier: B1:E8:4F:AC:FA:CB:C0:B7:83:85:61:EF:21:E2:8F:2F:AC:F5:DF:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sehPrPrLwLeDhWHvIeKPL6z13-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/B364F656C0AD11EEACCA627AC4F9AE02.roa Signing time: Thu 01 Feb 2024 02:58:45 +0000 ROA not before: Thu 01 Feb 2024 02:58:45 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 64079 IP address blocks: 61.29.244.0/22 maxlen: 24 61.29.254.0/23 maxlen: 23 146.196.78.0/23 maxlen: 24 2400:9380:f200::/40 maxlen: 40 2400:9380:f300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/sehPrPrLwLeDhWHvIeKPL6z13-w.crl rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/sehPrPrLwLeDhWHvIeKPL6z13-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sehPrPrLwLeDhWHvIeKPL6z13-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 21:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2383 (0x94f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D/serialNumber=B1E84FACFACBC0B7838561EF21E28F2FACF5DFEC Validity Not Before: Feb 1 02:58:45 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65bb08e4-dfa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:61:4b:43:9f:8d:37:93:06:c3:7b:fd:b5:5a: d3:58:76:1d:5c:bf:5e:93:36:e1:56:f9:27:4e:c2: 0a:0a:0b:64:6b:5c:18:65:c7:90:dd:ec:46:94:cb: e5:4b:03:c1:34:26:16:36:9c:f6:1a:a8:08:02:fa: 06:c4:b1:04:e8:6e:9a:f3:6a:3b:ba:75:f2:d1:b4: 57:c4:ef:ab:c9:69:b7:01:b5:ac:8d:dd:15:c5:a3: 70:2c:f4:13:7b:51:22:6e:e1:59:70:56:c1:17:8e: f4:b5:b1:25:58:be:0f:12:71:fb:c3:6c:77:06:12: 5a:35:cb:d6:a9:f7:fe:66:1e:9a:79:b5:51:3b:03: 7a:95:84:a5:d7:fd:5a:25:28:3b:e3:91:54:21:b0: ba:52:4b:87:c2:de:3a:08:d6:d0:04:92:9f:4d:2b: ec:4a:2b:d8:33:9d:e6:1f:65:29:08:70:e0:03:6e: 94:5a:97:ba:ca:e1:90:67:37:1f:bb:79:74:48:c1: f3:d5:81:db:cd:e7:13:f4:89:fa:68:4e:ac:e2:5f: 09:5e:42:29:a0:26:55:94:97:d6:c9:51:e5:fa:f7: a6:51:6d:37:2b:e6:1b:93:ba:85:67:e6:11:8a:2b: 60:6f:af:bc:63:40:51:7c:6b:76:2f:47:39:eb:f3: 86:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:9E:17:C3:B6:25:E1:DB:4D:3D:E9:76:AC:FE:63:A8:54:F9:82:D2 X509v3 Authority Key Identifier: keyid:B1:E8:4F:AC:FA:CB:C0:B7:83:85:61:EF:21:E2:8F:2F:AC:F5:DF:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/sehPrPrLwLeDhWHvIeKPL6z13-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sehPrPrLwLeDhWHvIeKPL6z13-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/B364F656C0AD11EEACCA627AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.29.244.0/22 61.29.254.0/23 146.196.78.0/23 IPv6: 2400:9380:f200::/39 Signature Algorithm: sha256WithRSAEncryption 25:ec:e4:a0:46:60:34:31:69:95:5e:5c:a0:53:be:a4:3b:11: df:0a:85:97:ca:dc:65:3d:66:fe:d6:9f:36:43:bc:cb:54:71: d9:e5:99:29:b0:32:af:d2:a1:39:fc:99:5e:33:23:ca:96:6c: b7:78:dc:a8:24:02:77:04:19:cb:21:22:00:66:79:08:48:57: 84:1b:57:fa:77:a4:c2:26:68:47:68:6f:25:51:ab:9f:e1:83: cd:3c:32:c4:c0:18:54:b6:00:a1:aa:60:6b:8f:80:77:ed:8b: 63:34:fa:03:94:07:07:b5:c8:35:a4:43:08:be:29:6e:7e:a5: b3:b9:44:6f:be:c6:64:97:3a:49:96:ae:38:38:33:d5:95:9e: f2:00:c5:70:cd:7e:e9:15:30:a8:a5:49:55:7d:8f:90:57:5c: aa:b4:13:68:b3:0c:b1:5f:ad:8c:ad:95:8a:57:69:04:86:a7: c4:03:19:bd:82:61:65:2d:89:9c:87:dd:6e:ec:cb:d8:da:f9: b0:e0:a9:81:a5:3c:37:81:c9:9b:c3:16:1b:36:27:dc:30:23: 1e:2b:40:0c:8d:a5:56:50:a8:49:c7:91:d5:b8:15:5b:ee:5b: 98:9e:dc:cc:66:ea:9b:7d:35:ad:fb:77:48:a5:2f:59:8f:9c: 02:2a:60:74 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICCU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEIxRTg0RkFDRkFDQkMwQjc4Mzg1NjFFRjIxRTI4RjJG QUNGNURGRUMwHhcNMjQwMjAxMDI1ODQ1WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJiMDhlNC1kZmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2FLQ5+NN5MGw3v9tVrTWHYdXL9ekzbhVvknTsIKCgtka1wYZceQ3exGlMvl SwPBNCYWNpz2GqgIAvoGxLEE6G6a82o7unXy0bRXxO+ryWm3AbWsjd0VxaNwLPQT e1EibuFZcFbBF470tbElWL4PEnH7w2x3BhJaNcvWqff+Zh6aebVROwN6lYSl1/1a JSg745FUIbC6UkuHwt46CNbQBJKfTSvsSivYM53mH2UpCHDgA26UWpe6yuGQZzcf u3l0SMHz1YHbzecT9In6aE6s4l8JXkIpoCZVlJfWyVHl+vemUW03K+Ybk7qFZ+YR iitgb6+8Y0BRfGt2L0c56/OGoQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFDueF8O2 JeHbTT3pdqz+Y6hU+YLSMB8GA1UdIwQYMBaAFLHoT6z6y8C3g4Vh7yHijy+s9d/s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8zNjg3MkE1RTgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi9zZWhQclByTHdMZURoV0h2SWVLUEw2ejEz LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NlaFByUHJMd0xlRGhXSHZJZUtQTDZ6MTMtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU3NkQvMzY4NzJBNUU4MkNEMTFFQTg5NUM3QjVDQzRGOUFFMDIvQjM2NEY2NTZD MEFEMTFFRUFDQ0E2MjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMBgEAgABMBIDBAI9HfQDBAE9Hf4DBAGSxE4wDgQCAAIwCAMGASQAk4DyMA0G CSqGSIb3DQEBCwUAA4IBAQAl7OSgRmA0MWmVXlygU76kOxHfCoWXytxlPWb+1p82 Q7zLVHHZ5ZkpsDKv0qE5/JleMyPKlmy3eNyoJAJ3BBnLISIAZnkISFeEG1f6d6TC JmhHaG8lUauf4YPNPDLEwBhUtgChqmBrj4B37YtjNPoDlAcHtcg1pEMIvilufqWz uURvvsZklzpJlq44ODPVlZ7yAMVwzX7pFTCopUlVfY+QV1yqtBNoswyxX62MrZWK V2kEhqfEAxm9gmFlLYmch91u7MvY2vmw4KmBpTw3gcmbwxYbNifcMCMeK0AMjaVW UKhJx5HVuBVb7luYntzMZuqbfTWt+3dIpS9Zj5wCKmB0 -----END CERTIFICATE-----Generated at Mon May 6 23:05:42 2024 by rpki-client on console-fra.rpki-client.org