$ rpki-client -vvf rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/0F7A0CD4C72E11EEAA6B423BC4F9AE02.roa File: 0F7A0CD4C72E11EEAA6B423BC4F9AE02.roa (raw, json) Hash identifier: oVwB/HHeiiU1VHu0Ysfw/slOtiqIYDBQ11p50HFdi6E= Subject key identifier: 1D:5E:80:9C:EF:15:C4:FC:81:5F:9F:F6:19:FD:76:03:36:B1:A2:37 Certificate issuer: /CN=A917B1EE/serialNumber=6B3BE8F34CEA694B0D64BCF85785D917443695D4 Certificate serial: A1 Authority key identifier: 6B:3B:E8:F3:4C:EA:69:4B:0D:64:BC:F8:57:85:D9:17:44:36:95:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/azvo80zqaUsNZLz4V4XZF0Q2ldQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/0F7A0CD4C72E11EEAA6B423BC4F9AE02.roa Signing time: Tue 15 Oct 2024 08:31:22 +0000 ROA not before: Tue 15 Oct 2024 08:31:21 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152193 IP address blocks: 36.50.250.0/23 maxlen: 23 36.50.250.0/24 maxlen: 24 36.50.251.0/24 maxlen: 24 2401:5f60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/azvo80zqaUsNZLz4V4XZF0Q2ldQ.crl rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/azvo80zqaUsNZLz4V4XZF0Q2ldQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/azvo80zqaUsNZLz4V4XZF0Q2ldQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B1EE/serialNumber=6B3BE8F34CEA694B0D64BCF85785D917443695D4 Validity Not Before: Oct 15 08:31:21 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=670e2859-d0f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3b:7e:e8:82:9a:12:c3:6b:ad:eb:8a:99:68: e9:8d:ea:57:3a:f0:e4:4d:cf:ee:14:15:8b:af:dd: 36:a7:4d:4e:2e:5e:78:45:88:fb:15:d9:de:9d:a2: 1d:93:5f:5b:b0:e9:06:ae:1c:bc:47:be:ca:e5:7e: 1d:7e:9a:c6:39:08:ff:2e:9b:53:62:55:de:6e:f9: 40:97:94:7b:7c:71:51:20:fd:1d:d6:00:12:39:2f: 54:da:46:5f:ae:7a:09:78:79:ca:e2:38:03:09:96: 69:6e:f4:54:7d:0d:d0:87:93:d4:42:43:52:6c:e2: 53:f1:d7:9d:3a:60:24:36:e8:06:e6:5c:c4:09:8a: 08:60:28:e5:55:88:b0:80:c2:ec:9a:91:0c:69:82: d8:51:c0:60:bc:11:65:61:2e:a5:12:ab:d4:06:a4: 0c:b7:09:11:aa:c3:ae:75:ad:34:19:31:bb:4c:62: 75:f3:04:a6:6c:ff:cd:72:b0:de:58:88:a2:e5:89: b9:02:f4:a2:98:e8:e1:8b:53:97:8e:da:44:2e:7d: 0d:23:56:79:37:e5:71:2f:2e:87:ea:f2:59:41:4b: d3:91:e7:a4:df:1d:8e:c2:b7:b1:7e:d4:6c:73:58: 97:ed:fb:cc:8f:bf:18:fd:96:4e:04:95:03:1e:5f: ea:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:5E:80:9C:EF:15:C4:FC:81:5F:9F:F6:19:FD:76:03:36:B1:A2:37 X509v3 Authority Key Identifier: keyid:6B:3B:E8:F3:4C:EA:69:4B:0D:64:BC:F8:57:85:D9:17:44:36:95:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/azvo80zqaUsNZLz4V4XZF0Q2ldQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/azvo80zqaUsNZLz4V4XZF0Q2ldQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/0F7A0CD4C72E11EEAA6B423BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.250.0/23 IPv6: 2401:5f60::/32 Signature Algorithm: sha256WithRSAEncryption a9:2c:67:45:79:9f:37:24:35:5e:1f:f5:03:59:de:55:63:09: e2:d2:dc:a2:15:fd:18:e6:bd:1f:bc:35:fb:f9:e5:88:1d:a7: 94:41:56:3f:68:47:d7:f0:a3:a2:38:a1:18:0d:bc:ee:5b:b9: 74:87:8d:e4:81:96:8c:42:c9:57:3b:78:12:ea:0c:ae:77:99: 3f:eb:dc:fb:b7:0d:60:38:10:13:9a:93:2e:88:15:9e:56:3e: 6b:a7:eb:8b:db:3e:52:56:7f:7e:ed:fa:16:91:81:ce:29:4c: 82:48:32:c1:fb:fe:e8:0c:03:25:59:09:0e:4e:5f:44:59:cd: 0d:10:b9:d6:29:0e:5d:de:58:b2:aa:cd:62:45:6d:cd:ce:52: 88:30:10:4c:3b:96:95:88:78:ab:4b:57:f5:41:bc:d7:45:66: 3a:75:68:f7:50:d7:a2:16:40:69:d0:ba:f5:68:97:6f:bf:bd: 68:7d:88:ee:e5:af:cf:75:dd:6c:4c:98:52:fc:84:46:7b:e3: 78:c3:9b:7d:ff:80:98:97:8f:5b:c0:c2:6e:cd:58:fd:91:a4: 2d:19:8e:74:3f:3b:87:cf:50:a0:f3:15:8f:94:21:ed:b3:5b: 04:74:0e:9d:b2:4e:ba:4e:7a:54:8b:9b:59:b3:3c:ab:50:5d: c9:00:ad:ed -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxRUUxMTAvBgNVBAUTKDZCM0JFOEYzNENFQTY5NEIwRDY0QkNGODU3ODVEOTE3 NDQzNjk1RDQwHhcNMjQxMDE1MDgzMTIxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBlMjg1OS1kMGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszt+6IKaEsNrreuKmWjpjepXOvDkTc/uFBWLr902p01OLl54RYj7FdnenaId k19bsOkGrhy8R77K5X4dfprGOQj/LptTYlXebvlAl5R7fHFRIP0d1gASOS9U2kZf rnoJeHnK4jgDCZZpbvRUfQ3Qh5PUQkNSbOJT8dedOmAkNugG5lzECYoIYCjlVYiw gMLsmpEMaYLYUcBgvBFlYS6lEqvUBqQMtwkRqsOuda00GTG7TGJ18wSmbP/NcrDe WIii5Ym5AvSimOjhi1OXjtpELn0NI1Z5N+VxLy6H6vJZQUvTkeek3x2OwrexftRs c1iX7fvMj78Y/ZZOBJUDHl/qAwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFB1egJzv FcT8gV+f9hn9dgM2saI3MB8GA1UdIwQYMBaAFGs76PNM6mlLDWS8+FeF2RdENpXU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjFFRS9ERTZBNjEzMEE1 NUQxMUVFQjhFOUNFMTBDNEY5QUUwMi9henZvODB6cWFVc05aTHo0VjRYWkYwUTJs ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F6dm84MHpxYVVzTlpMejRWNFhaRjBRMmxkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0IxRUUvREU2QTYxMzBBNTVEMTFFRUI4RTlDRTEwQzRGOUFFMDIvMEY3QTBDRDRD NzJFMTFFRUFBNkI0MjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAEkMvowDQQCAAIwBwMFACQBX2AwDQYJKoZIhvcNAQELBQAD ggEBAKksZ0V5nzckNV4f9QNZ3lVjCeLS3KIV/RjmvR+8Nfv55Ygdp5RBVj9oR9fw o6I4oRgNvO5buXSHjeSBloxCyVc7eBLqDK53mT/r3Pu3DWA4EBOaky6IFZ5WPmun 64vbPlJWf37t+haRgc4pTIJIMsH7/ugMAyVZCQ5OX0RZzQ0QudYpDl3eWLKqzWJF bc3OUogwEEw7lpWIeKtLV/VBvNdFZjp1aPdQ16IWQGnQuvVol2+/vWh9iO7lr891 3WxMmFL8hEZ743jDm33/gJiXj1vAwm7NWP2RpC0ZjnQ/O4fPUKDzFY+UIe2zWwR0 Dp2yTrpOelSLm1mzPKtQXckAre0= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:10 2024 by rpki-client on console-ams.rpki-client.org