$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/585353A08EAA11EE9A7ED963C4F9AE02.roa File: 585353A08EAA11EE9A7ED963C4F9AE02.roa (raw, json) Hash identifier: zeHjV/hJUN+mvKVzRQUm40dO9kdXd3K42EW7Pe5XQzQ= Subject key identifier: ED:DE:B1:98:0E:3B:71:5D:D0:4F:E9:B3:16:75:5F:EF:23:1E:49:FB Certificate issuer: /CN=A9194C67/serialNumber=22D021488AE1317FC95C74A38825254AB7926137 Certificate serial: 2E Authority key identifier: 22:D0:21:48:8A:E1:31:7F:C9:5C:74:A3:88:25:25:4A:B7:92:61:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItAhSIrhMX_JXHSjiCUlSreSYTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/585353A08EAA11EE9A7ED963C4F9AE02.roa Signing time: Wed 20 Dec 2023 14:49:20 +0000 ROA not before: Wed 20 Dec 2023 14:49:20 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 149311 IP address blocks: 36.50.12.0/23 maxlen: 23 2001:df3:2fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/ItAhSIrhMX_JXHSjiCUlSreSYTc.crl rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/ItAhSIrhMX_JXHSjiCUlSreSYTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItAhSIrhMX_JXHSjiCUlSreSYTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C67/serialNumber=22D021488AE1317FC95C74A38825254AB7926137 Validity Not Before: Dec 20 14:49:20 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6582feef-8ead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:41:dc:b6:e3:6b:dc:4d:f5:76:bd:0e:14:9e: da:e0:b8:77:0b:c2:43:93:5b:75:53:b8:d7:68:ee: dc:3c:53:49:a5:f4:f2:1c:7c:11:bb:c5:80:21:e1: 75:6f:20:99:c5:91:80:f5:f2:87:8d:c6:84:2c:6c: 80:1c:1b:48:74:8d:76:ef:b9:b3:66:df:e3:4f:f6: 25:23:70:0f:fb:0c:2e:56:78:66:1d:79:f7:af:d1: f4:28:9f:ab:a5:18:81:a6:84:8b:3b:cb:39:a9:04: 4d:8f:a2:50:a3:25:fa:7e:aa:ec:a4:e9:d6:f0:21: 47:e2:87:82:58:1c:5d:6a:bf:31:a0:3c:e1:b1:74: bd:16:2a:1c:f9:61:8a:ab:a3:29:ff:39:ea:11:d1: 88:cb:5f:a4:ea:77:9b:7e:a6:3b:0a:be:a6:aa:bc: ac:db:16:e7:fb:43:3b:e4:cf:e8:f6:56:ac:ea:92: f9:e1:f0:ae:9f:c3:e2:bc:9d:75:8f:14:aa:2a:bd: ed:21:02:db:e8:52:be:1a:51:b0:7c:b5:ee:97:05: cc:85:5f:a8:91:91:9b:66:76:4b:a6:10:3a:b2:9d: 1d:21:a2:60:02:af:f8:af:06:90:5e:ae:65:9a:ac: 66:07:0f:0f:12:22:90:52:b0:ae:60:0c:ce:15:b7: 7e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:DE:B1:98:0E:3B:71:5D:D0:4F:E9:B3:16:75:5F:EF:23:1E:49:FB X509v3 Authority Key Identifier: keyid:22:D0:21:48:8A:E1:31:7F:C9:5C:74:A3:88:25:25:4A:B7:92:61:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/ItAhSIrhMX_JXHSjiCUlSreSYTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItAhSIrhMX_JXHSjiCUlSreSYTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/585353A08EAA11EE9A7ED963C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.12.0/23 IPv6: 2001:df3:2fc0::/48 Signature Algorithm: sha256WithRSAEncryption 58:ee:0e:b2:54:64:9f:eb:46:b8:00:0c:86:a6:ac:15:a1:63: bf:ca:c7:88:50:ed:a7:11:ee:eb:0e:31:2a:0b:d7:ec:22:58: fd:3e:7f:d3:7f:2a:bb:cb:98:a9:42:ec:b1:6e:89:8d:1f:be: 4d:33:cd:05:09:4f:4e:38:ba:0a:51:56:a1:1f:72:91:04:c1: 36:40:97:45:6b:2d:e6:28:24:4b:b8:72:04:3b:aa:02:b0:4f: f1:4c:8a:65:f5:85:9d:d0:6c:ed:19:4b:4d:ba:c6:66:b0:7b: 50:fa:e0:4d:e2:a8:29:54:95:f8:45:95:85:09:72:89:77:6a: 40:55:93:b8:8c:09:09:ee:30:31:ed:14:96:a2:d2:ce:c6:57: 3f:ce:fd:66:ee:97:80:6f:47:90:a8:d8:8d:b6:b9:87:01:d1: 1f:a3:4c:ff:15:84:37:97:f4:44:99:d4:a6:9e:50:fc:12:d0: 8b:22:ae:73:7e:a0:d1:d0:35:2f:33:20:fb:cf:3f:15:84:21: 93:d2:00:94:db:f7:7a:57:7b:ef:af:38:d0:e5:24:93:bb:de: e1:dd:36:ed:24:df:a5:7f:de:3d:83:12:54:29:ef:75:b3:3f: 83:50:a7:43:ff:1d:3c:80:d5:18:46:54:02:3e:ba:78:d1:16: 68:39:d0:ee -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NEM2NzExMC8GA1UEBRMoMjJEMDIxNDg4QUUxMzE3RkM5NUM3NEEzODgyNTI1NEFC NzkyNjEzNzAeFw0yMzEyMjAxNDQ5MjBaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ODJmZWVmLThlYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuQdy242vcTfV2vQ4UntrguHcLwkOTW3VTuNdo7tw8U0ml9PIcfBG7xYAh4XVv IJnFkYD18oeNxoQsbIAcG0h0jXbvubNm3+NP9iUjcA/7DC5WeGYdefev0fQon6ul GIGmhIs7yzmpBE2PolCjJfp+quyk6dbwIUfih4JYHF1qvzGgPOGxdL0WKhz5YYqr oyn/OeoR0YjLX6Tqd5t+pjsKvqaqvKzbFuf7Qzvkz+j2Vqzqkvnh8K6fw+K8nXWP FKoqve0hAtvoUr4aUbB8te6XBcyFX6iRkZtmdkumEDqynR0homACr/ivBpBermWa rGYHDw8SIpBSsK5gDM4Vt35vAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU7d6xmA47 cV3QT+mzFnVf7yMeSfswHwYDVR0jBBgwFoAUItAhSIrhMX/JXHSjiCUlSreSYTcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk0QzY3L0MyQTc2MTkwOEU4 OTExRUVCQzI4NjM1OEM0RjlBRTAyL0l0QWhTSXJoTVhfSlhIU2ppQ1VsU3JlU1lU Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSXRBaFNJcmhNWF9KWEhTamlDVWxTcmVTWVRjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEM2Ny9DMkE3NjE5MDhFODkxMUVFQkMyODYzNThDNEY5QUUwMi81ODUzNTNBMDhF QUExMUVFOUE3RUQ5NjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEASQyDDAPBAIAAjAJAwcAIAEN8y/AMA0GCSqGSIb3DQEBCwUA A4IBAQBY7g6yVGSf60a4AAyGpqwVoWO/yseIUO2nEe7rDjEqC9fsIlj9Pn/Tfyq7 y5ipQuyxbomNH75NM80FCU9OOLoKUVahH3KRBME2QJdFay3mKCRLuHIEO6oCsE/x TIpl9YWd0GztGUtNusZmsHtQ+uBN4qgpVJX4RZWFCXKJd2pAVZO4jAkJ7jAx7RSW otLOxlc/zv1m7peAb0eQqNiNtrmHAdEfo0z/FYQ3l/REmdSmnlD8EtCLIq5zfqDR 0DUvMyD7zz8VhCGT0gCU2/d6V3vvrzjQ5SSTu97h3TbtJN+lf949gxJUKe91sz+D UKdD/x08gNUYRlQCPrp40RZoOdDu -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:29 2024 by rpki-client on console-fra.rpki-client.org