$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8E3BABCAA3C711EEA0C5AB69C4F9AE02.roa File: 8E3BABCAA3C711EEA0C5AB69C4F9AE02.roa (raw, json) Hash identifier: 0BVQS3xckh60/mBifPaDI8ivL8SWeLoWbFEI8wwZF7Y= Subject key identifier: DF:45:DB:FD:9A:3A:0C:85:41:BE:3B:F2:66:47:BE:03:9B:E6:64:0D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 80A3 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8E3BABCAA3C711EEA0C5AB69C4F9AE02.roa Signing time: Tue 26 Dec 2023 08:25:44 +0000 ROA not before: Tue 26 Dec 2023 08:25:44 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 140124 IP address blocks: 36.50.204.0/24 maxlen: 24 2001:df3:4f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32931 (0x80a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Dec 26 08:25:44 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=658a8e08-418c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e6:d9:ec:67:8c:46:10:e1:07:26:e2:b3:6e: 98:83:b9:68:4c:5c:33:75:7a:6e:94:58:9e:c7:5d: 40:3b:2a:86:43:c6:ed:48:e0:d1:ea:b5:14:08:c7: a1:06:07:5d:95:3d:5f:d4:87:d7:45:b4:c6:d0:7a: a7:c9:68:9f:a8:85:75:66:11:84:bd:c5:14:80:ee: c2:6c:2c:72:a7:0f:82:30:c7:00:cd:27:f3:2a:db: 75:1c:92:d6:04:41:fb:21:b7:a0:89:70:35:7b:d1: 2a:9c:98:37:32:c6:2d:98:1d:d8:49:a9:f6:b4:ab: 7e:69:b2:77:dd:ba:b5:6c:7e:6f:6d:57:86:a1:dc: e3:cd:93:d8:f9:11:12:80:65:ca:5d:51:d0:5c:33: 04:67:f5:45:2d:87:fc:61:a4:5c:dd:64:7d:1f:d7: 69:0a:b4:20:ea:b6:6c:4e:3c:eb:93:d2:d4:68:71: c3:7c:b8:ff:6d:0d:09:d7:a6:53:4c:2c:d5:da:4d: a3:ca:47:2b:3f:ba:1b:99:48:af:03:3b:21:a2:b1: 84:60:ae:e5:26:e5:2d:65:a8:6f:bf:c7:c2:1f:60: 95:99:96:6a:25:2c:75:4a:c8:ec:f6:af:4a:0a:0b: a3:2f:0b:02:89:49:b2:15:85:2a:48:9b:aa:e0:d4: dd:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:45:DB:FD:9A:3A:0C:85:41:BE:3B:F2:66:47:BE:03:9B:E6:64:0D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8E3BABCAA3C711EEA0C5AB69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.204.0/24 IPv6: 2001:df3:4f40::/48 Signature Algorithm: sha256WithRSAEncryption 8a:d4:9f:85:86:0b:b1:7d:70:83:03:6c:fa:06:40:6a:2d:5b: 1f:c8:35:c7:00:59:43:57:a5:4f:8a:60:fb:f6:8d:55:39:16: 90:76:00:e4:52:84:e9:a9:3f:20:56:64:af:9a:3c:a9:be:64: ae:95:63:90:f0:06:4f:03:fa:01:26:68:c0:b5:ee:17:53:74: a0:0d:5c:76:bf:d6:eb:b8:a4:aa:dc:4c:4f:78:8d:4b:27:75: d2:62:70:7c:59:43:ac:49:51:21:9d:54:44:a6:9f:26:cc:25: 8b:99:09:a0:b7:74:a7:9f:7a:8a:b4:b9:f0:11:bd:a8:ec:a9: 0f:d8:8d:b4:d1:7c:66:6a:23:07:18:bb:b8:ff:98:bc:30:af: 45:23:5f:bb:8b:71:02:43:19:b3:fa:a8:f9:c1:35:8c:26:64: a5:72:96:1c:a4:06:f9:61:1e:e6:e5:ad:c4:97:e4:22:c5:3f: e1:a8:68:43:e7:a9:e9:b4:85:48:00:41:53:86:88:99:63:11: 4a:db:34:b0:24:39:5d:9c:75:59:3c:05:22:5e:89:b0:5f:11: 1f:ef:e3:20:f7:27:44:d2:b4:71:8f:ef:bd:28:49:ec:b1:69: b2:b1:00:e0:f5:0c:bb:b0:ca:b2:b0:cf:d5:93:6b:f2:36:11: de:94:ea:b9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAICjMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTIzMTIyNjA4MjU0NFoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjU4YThlMDgtNDE4YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMbm2exnjEYQ4Qcm4rNumIO5aExcM3V6bpRYnsddQDsqhkPG7Ujg0eq1FAjH oQYHXZU9X9SH10W0xtB6p8lon6iFdWYRhL3FFIDuwmwscqcPgjDHAM0n8yrbdRyS 1gRB+yG3oIlwNXvRKpyYNzLGLZgd2Emp9rSrfmmyd926tWx+b21XhqHc482T2PkR EoBlyl1R0FwzBGf1RS2H/GGkXN1kfR/XaQq0IOq2bE4865PS1Ghxw3y4/20NCdem U0ws1dpNo8pHKz+6G5lIrwM7IaKxhGCu5SblLWWob7/Hwh9glZmWaiUsdUrI7Pav SgoLoy8LAolJshWFKkibquDU3TMCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBTfRdv9 mjoMhUG+O/JmR74Dm+ZkDTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhFM0JBQkNB QTNDNzExRUVBMEM1QUI2OUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQAJDLMMA8EAgACMAkDBwAgAQ3zT0AwDQYJKoZIhvcNAQEL BQADggEBAIrUn4WGC7F9cIMDbPoGQGotWx/INccAWUNXpU+KYPv2jVU5FpB2AORS hOmpPyBWZK+aPKm+ZK6VY5DwBk8D+gEmaMC17hdTdKANXHa/1uu4pKrcTE94jUsn ddJicHxZQ6xJUSGdVESmnybMJYuZCaC3dKefeoq0ufARvajsqQ/YjbTRfGZqIwcY u7j/mLwwr0UjX7uLcQJDGbP6qPnBNYwmZKVylhykBvlhHublrcSX5CLFP+GoaEPn qem0hUgAQVOGiJljEUrbNLAkOV2cdVk8BSJeibBfER/v4yD3J0TStHGP770oSeyx abKxAOD1DLuwyrKwz9WTa/I2Ed6U6rk= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:39 2024 by rpki-client on console-ams.rpki-client.org