$ rpki-client -vvf rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/0F7A0CD4C72E11EEAA6B423BC4F9AE02.roa File: 0F7A0CD4C72E11EEAA6B423BC4F9AE02.roa (raw, json) Hash identifier: Z6eIAw4+ZVpS3+rIFAXPpDa3a9OAI6I61Uyg5h9l7g4= Subject key identifier: 65:F8:A9:E2:F4:34:D3:0D:66:26:23:08:B2:B3:40:34:C6:BD:7E:5F Certificate issuer: /CN=A917B1EE/serialNumber=6B3BE8F34CEA694B0D64BCF85785D917443695D4 Certificate serial: 22 Authority key identifier: 6B:3B:E8:F3:4C:EA:69:4B:0D:64:BC:F8:57:85:D9:17:44:36:95:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/azvo80zqaUsNZLz4V4XZF0Q2ldQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/0F7A0CD4C72E11EEAA6B423BC4F9AE02.roa Signing time: Fri 09 Feb 2024 09:31:54 +0000 ROA not before: Fri 09 Feb 2024 09:31:54 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152193 IP address blocks: 36.50.250.0/24 maxlen: 24 36.50.251.0/24 maxlen: 24 2401:5f60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/azvo80zqaUsNZLz4V4XZF0Q2ldQ.crl rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/azvo80zqaUsNZLz4V4XZF0Q2ldQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/azvo80zqaUsNZLz4V4XZF0Q2ldQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 07:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B1EE/serialNumber=6B3BE8F34CEA694B0D64BCF85785D917443695D4 Validity Not Before: Feb 9 09:31:54 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65c5f109-756c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:13:91:2f:03:40:7d:f7:83:f9:d8:40:99:9c: 4e:59:57:af:04:4f:6e:a9:98:26:55:b1:c6:83:ef: ae:2a:cc:c7:37:5d:1d:60:54:2d:88:75:71:04:a4: 73:b7:e2:c1:7b:92:42:47:a7:da:99:47:31:39:67: d7:c4:e5:d7:b9:d4:d5:5b:c0:07:35:94:0b:60:a6: f8:68:6c:dd:68:a0:2b:c2:b8:f5:d5:1c:6c:d8:be: 62:23:b1:5f:b6:07:16:56:68:7e:06:8d:ec:fc:bf: bb:31:f1:89:90:ed:0c:29:c1:f7:00:7a:b8:e3:dd: 19:56:80:a6:2c:2a:c2:1b:18:4e:46:68:6a:89:5c: f0:72:dc:34:f2:d0:77:a1:3f:06:ee:2d:d2:1a:74: c4:db:63:c9:f5:c4:f8:52:75:ec:72:89:bb:54:ab: 93:c0:e7:0d:c0:8e:fe:26:34:09:35:bc:4d:eb:cc: 71:5c:14:32:f1:52:2a:8e:f1:c2:3c:0d:9a:ea:66: 98:20:98:63:c0:ec:51:b6:0e:bc:05:8e:ef:49:15: f3:d3:01:77:97:e3:8f:21:ad:7e:49:72:d7:e9:bb: 09:f4:6a:da:b8:b7:d4:e4:ee:55:7b:42:b6:d6:1c: e1:0e:bf:ad:ab:b9:e9:a8:b5:3f:5f:a1:e4:e8:c5: 61:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F8:A9:E2:F4:34:D3:0D:66:26:23:08:B2:B3:40:34:C6:BD:7E:5F X509v3 Authority Key Identifier: keyid:6B:3B:E8:F3:4C:EA:69:4B:0D:64:BC:F8:57:85:D9:17:44:36:95:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/azvo80zqaUsNZLz4V4XZF0Q2ldQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/azvo80zqaUsNZLz4V4XZF0Q2ldQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/0F7A0CD4C72E11EEAA6B423BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.250.0/23 IPv6: 2401:5f60::/32 Signature Algorithm: sha256WithRSAEncryption 35:9d:b3:8c:ca:e6:19:ac:06:21:4e:fe:58:9d:11:d1:50:17: 81:91:d7:50:d5:d1:e9:fe:8c:03:c8:17:c7:38:71:5b:56:46: 4b:82:eb:37:8f:eb:86:36:e0:45:81:51:79:91:7a:d1:f5:5a: d7:02:56:4f:29:aa:cd:ed:82:bc:da:5a:57:86:b6:54:61:63: 0e:6f:50:84:cf:a8:e5:6c:f6:da:c3:97:e8:4b:32:46:96:f6: 75:9a:ee:aa:18:35:6b:08:75:9c:56:59:67:33:0e:d9:9f:93: b2:84:db:64:b3:50:1d:85:66:eb:81:c4:fb:bf:64:bf:58:cc: e0:c8:24:51:a8:4c:62:93:94:7c:02:21:15:8f:f0:49:33:c4: c6:3e:6b:5b:7c:08:dc:5d:35:16:18:b2:37:3b:37:c8:3b:2e: d5:0c:03:28:c2:b2:f7:de:f1:b0:c9:2e:fc:72:cc:f6:d7:df: 41:fc:e7:fb:1e:dc:ee:f8:4f:01:cd:66:0c:6c:c2:66:5a:12: 0a:27:02:d8:97:f3:24:10:e2:5d:c1:24:42:3f:4b:ea:ff:43: 06:ce:fb:96:fe:30:db:73:31:55:8f:31:39:62:10:e1:71:8d: e5:29:12:8d:cf:5b:4c:b7:f9:14:05:e5:1c:19:d2:98:89:bc: fa:fd:32:95 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjFFRTExMC8GA1UEBRMoNkIzQkU4RjM0Q0VBNjk0QjBENjRCQ0Y4NTc4NUQ5MTc0 NDM2OTVENDAeFw0yNDAyMDkwOTMxNTRaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YzVmMTA5LTc1NmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOE5EvA0B994P52ECZnE5ZV68ET26pmCZVscaD764qzMc3XR1gVC2IdXEEpHO3 4sF7kkJHp9qZRzE5Z9fE5de51NVbwAc1lAtgpvhobN1ooCvCuPXVHGzYvmIjsV+2 BxZWaH4Gjez8v7sx8YmQ7QwpwfcAerjj3RlWgKYsKsIbGE5GaGqJXPBy3DTy0Heh PwbuLdIadMTbY8n1xPhSdexyibtUq5PA5w3Ajv4mNAk1vE3rzHFcFDLxUiqO8cI8 DZrqZpggmGPA7FG2DrwFju9JFfPTAXeX448hrX5Jctfpuwn0atq4t9Tk7lV7QrbW HOEOv62ruemotT9foeToxWFbAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUZfip4vQ0 0w1mJiMIsrNANMa9fl8wHwYDVR0jBBgwFoAUazvo80zqaUsNZLz4V4XZF0Q2ldQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCMUVFL0RFNkE2MTMwQTU1 RDExRUVCOEU5Q0UxMEM0RjlBRTAyL2F6dm84MHpxYVVzTlpMejRWNFhaRjBRMmxk US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXp2bzgwenFhVXNOWkx6NFY0WFpGMFEybGRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjFFRS9ERTZBNjEzMEE1NUQxMUVFQjhFOUNFMTBDNEY5QUUwMi8wRjdBMENENEM3 MkUxMUVFQUE2QjQyM0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEASQy+jANBAIAAjAHAwUAJAFfYDANBgkqhkiG9w0BAQsFAAOC AQEANZ2zjMrmGawGIU7+WJ0R0VAXgZHXUNXR6f6MA8gXxzhxW1ZGS4LrN4/rhjbg RYFReZF60fVa1wJWTymqze2CvNpaV4a2VGFjDm9QhM+o5Wz22sOX6EsyRpb2dZru qhg1awh1nFZZZzMO2Z+TsoTbZLNQHYVm64HE+79kv1jM4MgkUahMYpOUfAIhFY/w STPExj5rW3wI3F01FhiyNzs3yDsu1QwDKMKy997xsMku/HLM9tffQfzn+x7c7vhP Ac1mDGzCZloSCicC2JfzJBDiXcEkQj9L6v9DBs77lv4w23MxVY8xOWIQ4XGN5SkS jc9bTLf5FAXlHBnSmIm8+v0ylQ== -----END CERTIFICATE-----Generated at Thu Jun 13 10:58:44 2024 by rpki-client on console-ams.rpki-client.org