$ rpki-client -vvf rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/2D7DCF98BA1411EFBD0C393DC4F9AE02.roa File: 2D7DCF98BA1411EFBD0C393DC4F9AE02.roa (raw, json) Hash identifier: fg42UFyy2LFjnZK3Qasj9lnWcNe6AFnhvIhyePUvpAM= Subject key identifier: 46:5E:09:6C:A6:CB:B2:F8:AC:B0:18:EC:3A:33:49:8B:38:EA:60:72 Certificate issuer: /CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Certificate serial: DC Authority key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/2D7DCF98BA1411EFBD0C393DC4F9AE02.roa Signing time: Sat 14 Dec 2024 12:08:50 +0000 ROA not before: Sat 14 Dec 2024 12:08:50 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 7018 IP address blocks: 36.50.32.0/24 maxlen: 24 36.50.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917604B Validity Not Before: Dec 14 12:08:50 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675d7551-e5f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:02:7e:c2:00:59:be:9d:cc:ad:97:80:94:a3: 56:e2:c2:7e:0f:cd:09:3c:1f:d7:ba:0d:d9:03:90: be:59:27:bf:bc:97:58:37:6b:23:2a:3d:2e:f0:8a: 98:75:2f:b1:25:ba:ab:1e:f0:5c:65:4e:b8:f6:1f: 8e:ca:66:79:c5:a4:75:83:a2:f8:d4:92:52:4b:ba: 72:09:35:01:e1:f5:97:b9:16:14:dd:54:9d:c3:c4: 48:76:5f:f2:ca:28:6d:03:ec:64:0c:9f:85:f6:0c: b8:4b:e6:56:19:ba:10:9e:83:76:3c:83:ff:1b:c3: 95:c9:fa:d9:61:3d:66:fd:1b:4b:75:5f:01:c5:e2: bd:64:0a:38:69:5d:f0:d6:1d:5b:f3:ef:5a:8e:30: 9e:1d:2e:d8:fe:b4:a8:a6:80:d5:27:c2:94:81:c0: cf:a4:a4:f3:0c:38:05:0c:bb:c6:34:c4:50:7f:94: bd:1e:16:f5:96:7d:32:ca:88:28:86:1d:3b:53:25: 34:b8:ed:89:e6:a5:46:8e:82:7b:b6:c4:26:cc:c2: 70:0d:cc:4b:1a:00:34:72:ab:9d:fe:14:a0:ba:9a: 4c:3b:49:ae:7d:64:67:13:34:8f:f8:7b:0a:e7:17: 0d:fd:9f:c2:31:9d:89:0e:b3:d5:09:13:00:93:08: 12:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:5E:09:6C:A6:CB:B2:F8:AC:B0:18:EC:3A:33:49:8B:38:EA:60:72 X509v3 Authority Key Identifier: keyid:A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/2D7DCF98BA1411EFBD0C393DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.32.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:a4:36:a6:ce:d7:93:20:b9:41:b8:ff:d5:d7:19:de:2d:ee: 08:28:03:c7:44:7e:8c:8b:bb:aa:c8:14:83:6a:ab:ed:53:47: 8a:4b:6f:a0:01:6b:cd:ea:e0:6c:37:5a:95:e2:c1:a9:bc:0e: 95:df:ee:40:5a:58:71:08:44:3a:a8:b8:6c:c8:15:49:32:47: 39:c3:f3:ee:65:d6:c7:4d:7b:88:aa:b0:7a:e1:ed:90:65:29: eb:1d:e0:81:e3:af:75:60:06:04:bf:d0:32:01:ff:6a:1d:66: c7:c4:1b:95:d7:70:14:72:e2:bb:cd:d4:db:81:e3:65:97:d1: 77:84:c6:a8:a2:1d:41:6b:af:54:08:1e:0d:0e:51:3d:ee:a3: 90:80:d4:c3:d5:6c:08:f7:ea:14:e1:5b:a4:65:a7:88:9a:88: 35:79:11:97:b2:28:61:6d:52:4b:1f:a4:99:83:d7:2e:d7:08: a1:a3:3e:e9:75:20:cf:af:97:61:d3:95:8f:9f:09:fa:86:c7: 59:9d:f7:d7:6f:e6:46:82:ab:8f:4d:62:cb:eb:32:f6:c9:df: 2c:e9:e8:72:3a:22:d9:91:2e:e2:5b:60:c8:56:87:4e:f0:48: 26:99:f8:83:06:66:ee:b3:4c:31:11:74:83:6a:1f:b6:57:f9: 48:7f:74:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYwNEIxMTAvBgNVBAUTKEExNEJEQUEzMTU3NkE2MzY3QTBCNUMzQUNBQjkxQzRF OUYzMTE4RUYwHhcNMjQxMjE0MTIwODUwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVkNzU1MS1lNWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAJ+wgBZvp3MrZeAlKNW4sJ+D80JPB/Xug3ZA5C+WSe/vJdYN2sjKj0u8IqY dS+xJbqrHvBcZU649h+OymZ5xaR1g6L41JJSS7pyCTUB4fWXuRYU3VSdw8RIdl/y yihtA+xkDJ+F9gy4S+ZWGboQnoN2PIP/G8OVyfrZYT1m/RtLdV8BxeK9ZAo4aV3w 1h1b8+9ajjCeHS7Y/rSopoDVJ8KUgcDPpKTzDDgFDLvGNMRQf5S9Hhb1ln0yyogo hh07UyU0uO2J5qVGjoJ7tsQmzMJwDcxLGgA0cqud/hSguppMO0mufWRnEzSP+HsK 5xcN/Z/CMZ2JDrPVCRMAkwgSNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEZeCWym y7L4rLAY7DozSYs46mByMB8GA1UdIwQYMBaAFKFL2qMVdqY2egtcOsq5HE6fMRjv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjA0Qi80MUMwMTM1QzZE QUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBqWjZDMXc2eXJrY1RwOHhH TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29VdmFveFYycGpaNkMxdzZ5cmtjVHA4eEdPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzYwNEIvNDFDMDEzNUM2REFFMTFFRUE4MEQwNTc0QzRGOUFFMDIvMkQ3RENGOThC QTE0MTFFRkJEMEMzOTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEkMiAwDQYJKoZIhvcNAQELBQADggEBAFukNqbO15MguUG4 /9XXGd4t7ggoA8dEfoyLu6rIFINqq+1TR4pLb6ABa83q4Gw3WpXiwam8DpXf7kBa WHEIRDqouGzIFUkyRznD8+5l1sdNe4iqsHrh7ZBlKesd4IHjr3VgBgS/0DIB/2od ZsfEG5XXcBRy4rvN1NuB42WX0XeExqiiHUFrr1QIHg0OUT3uo5CA1MPVbAj36hTh W6Rlp4iaiDV5EZeyKGFtUksfpJmD1y7XCKGjPul1IM+vl2HTlY+fCfqGx1md99dv 5kaCq49NYsvrMvbJ3yzp6HI6ItmRLuJbYMhWh07wSCaZ+IMGZu6zTDERdINqH7ZX +Uh/dAc= -----END CERTIFICATE-----Generated at Fri Apr 4 18:16:00 2025 by rpki-client