$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/97C7ABEE8EAA11EEA8406C67C4F9AE02.roa File: 97C7ABEE8EAA11EEA8406C67C4F9AE02.roa (raw, json) Hash identifier: jRBgJs6DI4i4pasvCnzJ41rbhiID46DLi5eJcSDKXRg= Subject key identifier: 2E:41:B7:D3:4F:4F:A1:F8:D3:22:AD:FC:6E:23:28:75:F2:92:A2:E1 Certificate issuer: /CN=A9194C67/serialNumber=22D021488AE1317FC95C74A38825254AB7926137 Certificate serial: 21 Authority key identifier: 22:D0:21:48:8A:E1:31:7F:C9:5C:74:A3:88:25:25:4A:B7:92:61:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItAhSIrhMX_JXHSjiCUlSreSYTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/97C7ABEE8EAA11EEA8406C67C4F9AE02.roa Signing time: Wed 29 Nov 2023 11:34:21 +0000 ROA not before: Wed 29 Nov 2023 11:34:21 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 135407 IP address blocks: 36.50.12.0/24 maxlen: 24 36.50.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/ItAhSIrhMX_JXHSjiCUlSreSYTc.crl rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/ItAhSIrhMX_JXHSjiCUlSreSYTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItAhSIrhMX_JXHSjiCUlSreSYTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C67/serialNumber=22D021488AE1317FC95C74A38825254AB7926137 Validity Not Before: Nov 29 11:34:21 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656721bd-d419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:db:a0:da:5d:e7:a2:f6:9c:6a:86:ff:d4:a9: 78:02:45:cd:87:7f:f9:40:e5:aa:84:5e:d6:d8:93: 49:b5:7d:98:2e:c2:82:81:ae:d5:55:7c:e8:ab:af: 44:c7:86:96:0f:ab:12:11:e8:c8:a7:65:9e:bc:04: 3e:6b:e9:53:a7:2b:8d:64:85:3d:36:2d:15:7b:02: de:54:05:d0:cc:ed:57:0b:02:68:a2:46:0b:f2:e5: dd:b0:04:70:46:bb:ce:85:3b:de:29:23:fc:e6:bf: 1d:64:38:92:10:13:c9:f0:6e:f7:5e:21:4c:67:1a: 85:18:d9:e4:12:c5:d1:28:9b:b9:f1:4d:3a:be:35: 2d:8c:05:d7:12:d8:16:8c:35:3e:ce:d0:22:5b:a5: 6e:8a:50:f0:09:57:61:c3:6e:03:e8:b1:2d:26:e6: 34:ab:2e:cb:7f:7a:c6:92:65:b0:53:fa:e4:1c:f6: 9a:cf:e3:2f:8a:7b:9f:39:5a:f3:5c:5c:b4:1d:eb: 1f:a2:f8:2b:67:e4:ad:23:39:eb:55:6a:9e:c6:fe: 75:6c:a7:86:cc:7b:0e:9d:7a:3d:25:a7:f5:bc:e1: 20:e1:7c:91:43:da:06:3b:0b:09:7f:6d:06:9d:d8: aa:9c:ef:84:ea:55:b6:92:84:3a:9b:77:ab:9b:db: 9e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:41:B7:D3:4F:4F:A1:F8:D3:22:AD:FC:6E:23:28:75:F2:92:A2:E1 X509v3 Authority Key Identifier: keyid:22:D0:21:48:8A:E1:31:7F:C9:5C:74:A3:88:25:25:4A:B7:92:61:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/ItAhSIrhMX_JXHSjiCUlSreSYTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItAhSIrhMX_JXHSjiCUlSreSYTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/97C7ABEE8EAA11EEA8406C67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.12.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:b9:31:b6:d6:d6:fc:25:14:5b:18:d9:09:a8:09:66:2e:f3: f1:b3:18:4f:a5:3a:54:6a:73:73:de:7d:e1:77:09:d9:95:39: 7c:97:4d:65:5b:ed:ee:d3:be:ac:f2:48:a4:c0:2d:71:d8:89: a5:b1:9f:63:87:aa:2c:29:58:be:d4:19:06:e5:2f:b9:f7:5b: 5d:d7:98:d2:89:2c:43:4b:a3:d1:1c:78:c9:9c:0e:40:eb:50: f1:70:a5:82:c5:dd:98:45:ea:d2:97:aa:0b:4f:c2:bc:9d:fc: e4:d8:4e:e3:fd:0a:54:c7:b9:26:fe:41:fd:ec:b7:36:23:06: 2a:ea:75:fc:12:8f:ae:94:12:ee:cc:c6:a5:47:3a:46:53:e2: 09:1b:4b:d7:ad:5f:7e:83:52:04:44:ec:5c:3f:a3:17:b4:8c: 79:fb:5e:3a:3b:99:54:8a:ed:88:f2:f0:9e:cd:69:c3:f3:d2: 54:e0:9d:6f:63:6c:86:45:11:9d:bb:a0:73:a8:f0:fb:2c:75: 61:07:60:81:52:67:7c:e0:32:7e:37:81:c8:7a:81:8d:23:21: 1f:f0:55:c9:4a:14:97:59:9e:f2:64:06:a1:49:a2:cd:ea:4c: bf:2f:31:e1:5f:78:55:42:49:c1:ca:18:f3:70:d7:5b:3a:9e: 0c:00:2f:4c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NEM2NzExMC8GA1UEBRMoMjJEMDIxNDg4QUUxMzE3RkM5NUM3NEEzODgyNTI1NEFC NzkyNjEzNzAeFw0yMzExMjkxMTM0MjFaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NjcyMWJkLWQ0MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/26DaXeei9pxqhv/UqXgCRc2Hf/lA5aqEXtbYk0m1fZguwoKBrtVVfOirr0TH hpYPqxIR6MinZZ68BD5r6VOnK41khT02LRV7At5UBdDM7VcLAmiiRgvy5d2wBHBG u86FO94pI/zmvx1kOJIQE8nwbvdeIUxnGoUY2eQSxdEom7nxTTq+NS2MBdcS2BaM NT7O0CJbpW6KUPAJV2HDbgPosS0m5jSrLst/esaSZbBT+uQc9prP4y+Ke585WvNc XLQd6x+i+Ctn5K0jOetVap7G/nVsp4bMew6dej0lp/W84SDhfJFD2gY7Cwl/bQad 2Kqc74TqVbaShDqbd6ub255RAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQULkG3009P ofjTIq38biModfKSouEwHwYDVR0jBBgwFoAUItAhSIrhMX/JXHSjiCUlSreSYTcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk0QzY3L0MyQTc2MTkwOEU4 OTExRUVCQzI4NjM1OEM0RjlBRTAyL0l0QWhTSXJoTVhfSlhIU2ppQ1VsU3JlU1lU Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSXRBaFNJcmhNWF9KWEhTamlDVWxTcmVTWVRjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEM2Ny9DMkE3NjE5MDhFODkxMUVFQkMyODYzNThDNEY5QUUwMi85N0M3QUJFRThF QUExMUVFQTg0MDZDNjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEASQyDDANBgkqhkiG9w0BAQsFAAOCAQEAG7kxttbW/CUUWxjZ CagJZi7z8bMYT6U6VGpzc9594XcJ2ZU5fJdNZVvt7tO+rPJIpMAtcdiJpbGfY4eq LClYvtQZBuUvufdbXdeY0oksQ0uj0Rx4yZwOQOtQ8XClgsXdmEXq0peqC0/CvJ38 5NhO4/0KVMe5Jv5B/ey3NiMGKup1/BKPrpQS7szGpUc6RlPiCRtL161ffoNSBETs XD+jF7SMefteOjuZVIrtiPLwns1pw/PSVOCdb2NshkURnbugc6jw+yx1YQdggVJn fOAyfjeByHqBjSMhH/BVyUoUl1me8mQGoUmizepMvy8x4V94VUJJwcoY83DXWzqe DAAvTA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org