$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/B36EA83C70B111E98CFFF710C4F9AE02.roa File: B36EA83C70B111E98CFFF710C4F9AE02.roa (raw, json) Hash identifier: 7w8TQDuZrmu3C3e/zIooJnVlX1I5qMx17mzAe3kTVb0= Subject key identifier: 08:CD:AF:E9:7B:3E:05:7F:FA:48:62:F8:18:3F:A0:62:74:79:C9:BB Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 34C5 Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/B36EA83C70B111E98CFFF710C4F9AE02.roa Signing time: Wed 28 Feb 2024 14:50:24 +0000 ROA not before: Wed 28 Feb 2024 14:50:24 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 132215 IP address blocks: 59.144.191.0/24 maxlen: 24 61.246.118.0/24 maxlen: 24 125.16.228.0/24 maxlen: 24 125.22.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13509 (0x34c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: Feb 28 14:50:24 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65df4830-8766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c6:6e:ae:9d:4e:d0:9d:2f:c4:4b:d2:5f:59: 25:75:12:76:de:0b:34:14:9c:6d:c9:59:c7:36:7c: 65:05:6d:a0:4a:b1:8a:7b:d4:0e:e1:29:aa:83:49: 8b:a6:31:63:a5:b2:7d:3b:3a:ce:bd:25:b6:92:e5: 59:6e:8a:e3:b7:9f:f2:fe:65:0e:87:a8:36:3f:00: 7c:68:72:23:3a:da:73:33:6f:e3:c5:f8:cc:e5:0f: 8a:e3:3e:07:92:d3:f8:a5:ee:ed:43:a0:e0:8b:25: fc:86:e5:16:df:1c:12:b7:b4:d4:c3:14:8d:33:37: 49:62:b1:8a:a2:ca:62:d8:98:c9:a2:19:52:c6:90: bc:09:5a:9b:12:e3:dc:4b:fc:c5:3c:3a:88:ff:27: fc:92:5c:21:12:39:2f:df:9c:ef:65:3b:28:94:0f: de:dc:b0:96:3e:6a:49:48:72:e6:cc:81:56:2d:10: 54:d4:5f:b1:dd:ac:c1:c6:cf:e4:a6:d4:65:a6:64: a1:cf:ec:6e:5a:7c:e9:09:0a:11:32:80:6c:9b:40: 40:f3:e9:a9:70:a6:50:00:79:2c:6f:39:cf:ff:00: 47:bd:ba:81:b7:a2:dc:29:50:d1:6b:a2:c2:9a:a0: da:87:2c:9f:1f:d5:99:52:25:aa:02:a3:4a:3c:4c: 28:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:CD:AF:E9:7B:3E:05:7F:FA:48:62:F8:18:3F:A0:62:74:79:C9:BB X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/B36EA83C70B111E98CFFF710C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.144.191.0/24 61.246.118.0/24 125.16.228.0/24 125.22.50.0/24 Signature Algorithm: sha256WithRSAEncryption 51:b4:dc:1d:ad:30:18:dd:e1:b2:10:1e:1f:12:b7:f7:6a:13: 98:49:ec:16:ef:25:49:d4:0b:f0:85:04:86:30:0e:07:1d:14: 0b:40:cf:ee:eb:79:78:7a:66:c6:00:7a:94:40:10:ba:41:70: b6:a7:77:87:49:93:a5:b2:87:4a:65:67:83:2f:ae:d1:fb:bc: 57:e6:b9:23:ce:9d:8c:a7:36:00:93:54:2d:ee:0e:3e:1b:5a: 70:dc:78:80:78:d8:f3:4b:a6:de:e2:61:7b:78:54:58:16:38: 56:24:5c:98:51:5f:6b:3f:3f:7c:94:dc:0b:82:77:06:2b:92: fc:a0:9e:26:ed:4a:46:61:b2:34:3f:5a:42:86:09:b1:53:39: 32:91:21:0d:a7:fb:ae:8b:6c:da:e0:35:31:c6:76:63:5e:54: 26:11:51:48:36:de:11:78:43:69:2b:55:4b:91:9e:8c:af:30: b9:ed:b9:fe:91:98:25:17:c3:f4:5a:33:70:e8:b9:c2:37:8d: 52:c9:42:dd:e8:5b:bd:60:57:58:4d:be:d8:cd:6a:86:31:26: 5a:ed:43:82:59:91:55:64:d0:bf:f0:c7:2a:68:94:7b:0d:b4: 9c:03:55:fe:e3:4b:e4:e7:c5:9d:df:04:51:4d:99:1e:75:79: 5c:a8:2d:cd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICNMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjQwMjI4MTQ1MDI0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmNDgzMC04NzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsZurp1O0J0vxEvSX1kldRJ23gs0FJxtyVnHNnxlBW2gSrGKe9QO4Smqg0mL pjFjpbJ9OzrOvSW2kuVZborjt5/y/mUOh6g2PwB8aHIjOtpzM2/jxfjM5Q+K4z4H ktP4pe7tQ6DgiyX8huUW3xwSt7TUwxSNMzdJYrGKospi2JjJohlSxpC8CVqbEuPc S/zFPDqI/yf8klwhEjkv35zvZTsolA/e3LCWPmpJSHLmzIFWLRBU1F+x3azBxs/k ptRlpmShz+xuWnzpCQoRMoBsm0BA8+mpcKZQAHksbznP/wBHvbqBt6LcKVDRa6LC mqDahyyfH9WZUiWqAqNKPEwoTQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFAjNr+l7 PgV/+khi+Bg/oGJ0ecm7MB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0QjMvRTY1ODUxMTIxRDg0MTFFMkExQkEzMERCMDhCMDJDRDIvQjM2RUE4M0M3 MEIxMTFFOThDRkZGNzEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAA7kL8DBAA99nYDBAB9EOQDBAB9FjIwDQYJKoZIhvcNAQEL BQADggEBAFG03B2tMBjd4bIQHh8St/dqE5hJ7BbvJUnUC/CFBIYwDgcdFAtAz+7r eXh6ZsYAepRAELpBcLand4dJk6Wyh0plZ4MvrtH7vFfmuSPOnYynNgCTVC3uDj4b WnDceIB42PNLpt7iYXt4VFgWOFYkXJhRX2s/P3yU3AuCdwYrkvygnibtSkZhsjQ/ WkKGCbFTOTKRIQ2n+66LbNrgNTHGdmNeVCYRUUg23hF4Q2krVUuRnoyvMLntuf6R mCUXw/RaM3DoucI3jVLJQt3oW71gV1hNvtjNaoYxJlrtQ4JZkVVk0L/wxypolHsN tJwDVf7jS+TnxZ3fBFFNmR51eVyoLc0= -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:38 2024 by rpki-client on console-fra.rpki-client.org