$ rpki-client -vvf rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/3536466A2EFC11EE9618725BC4F9AE02.roa File: 3536466A2EFC11EE9618725BC4F9AE02.roa (raw, json) Hash identifier: fzOQaTP5H3VIkhoR/i/DSmr4ZxxwK1UkfdQUyTzkYN0= Subject key identifier: E0:45:1B:69:38:E8:E7:14:3C:58:1C:7B:C4:08:8C:A0:5A:5B:7F:D2 Certificate issuer: /CN=A919B06C/serialNumber=C83493C0297CCB58D2837946D6063F14A7DEE986 Certificate serial: 0D64 Authority key identifier: C8:34:93:C0:29:7C:CB:58:D2:83:79:46:D6:06:3F:14:A7:DE:E9:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDSTwCl8y1jSg3lG1gY_FKfe6YY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/3536466A2EFC11EE9618725BC4F9AE02.roa Signing time: Mon 22 Apr 2024 18:26:02 +0000 ROA not before: Mon 22 Apr 2024 18:26:02 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 58945 IP address blocks: 59.152.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/yDSTwCl8y1jSg3lG1gY_FKfe6YY.crl rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/yDSTwCl8y1jSg3lG1gY_FKfe6YY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDSTwCl8y1jSg3lG1gY_FKfe6YY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 17:57:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3428 (0xd64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B06C/serialNumber=C83493C0297CCB58D2837946D6063F14A7DEE986 Validity Not Before: Apr 22 18:26:02 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6626abb9-2a91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d2:02:76:17:25:89:ce:a0:db:9b:c4:7f:05: ca:8d:5e:2d:ed:7d:ee:dc:1d:4e:c8:f9:a4:2a:be: 13:e9:01:a3:75:1b:fb:2e:bf:26:e2:19:d2:35:51: 66:a7:ff:2d:c2:c5:f6:88:6e:32:bf:5f:49:77:d7: 3b:f5:df:2e:82:37:eb:32:87:08:f8:d6:79:81:83: e1:d2:ec:6e:46:d1:a6:3c:bd:c8:cf:27:c5:60:00: 91:e3:8f:18:01:ea:3b:8e:3c:df:da:c5:c6:86:99: ac:7b:e6:d0:af:97:87:bc:10:7b:e6:96:fe:b4:96: 94:6b:2d:a2:4a:5e:ff:7d:f9:61:d3:80:91:f2:d4: 3e:37:12:8f:13:39:42:4e:9b:35:78:06:90:28:9f: 14:9f:b5:27:bb:97:e2:f2:ef:4b:c2:85:19:13:47: 22:91:7e:2b:92:81:cc:4d:0f:cc:b8:5c:b5:f0:53: e5:a7:82:37:c1:fd:43:3d:01:8d:0f:08:e0:c0:01: a4:05:f8:e8:07:bd:57:de:b0:c4:07:74:c0:40:cc: 32:eb:cd:6b:8e:ca:5f:71:1c:5f:37:72:1c:fe:40: 01:b2:f0:e5:ba:75:1b:f5:81:e2:79:89:60:c5:bf: 7e:b0:a0:e1:8b:ed:e2:d1:9e:02:78:0b:55:b0:7d: 93:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:45:1B:69:38:E8:E7:14:3C:58:1C:7B:C4:08:8C:A0:5A:5B:7F:D2 X509v3 Authority Key Identifier: keyid:C8:34:93:C0:29:7C:CB:58:D2:83:79:46:D6:06:3F:14:A7:DE:E9:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/yDSTwCl8y1jSg3lG1gY_FKfe6YY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDSTwCl8y1jSg3lG1gY_FKfe6YY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/3536466A2EFC11EE9618725BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.152.14.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:a0:5f:6a:13:51:bd:e1:a2:a7:c5:a3:61:3f:b2:43:f7:2b: e3:6f:64:da:d4:4b:70:9e:d0:04:1f:1d:cd:05:f6:aa:c3:50: 26:7d:97:51:df:5d:2c:c8:4c:67:93:30:5a:9c:11:65:cf:77: 10:a5:3e:f4:d3:12:af:08:d7:fc:71:d3:b2:98:80:d9:da:d1: 57:38:ff:2d:23:7b:06:67:14:a4:10:72:7e:08:ca:51:1b:fa: 61:74:5d:f0:3e:75:2b:25:26:29:f9:f4:4f:82:4c:92:96:51: 74:99:c8:85:09:19:a9:3b:b1:8f:6d:b2:22:41:d1:f6:43:6b: 14:d6:9c:3c:65:dd:cf:9b:e9:ad:35:d1:b3:f0:d1:12:d9:5c: f5:ab:7f:10:d9:8e:85:90:29:bb:38:12:81:4f:08:8b:03:2c: 7b:ed:b6:ff:71:a0:f9:e2:86:41:bf:48:c4:f8:d0:e8:7e:f7: 5a:b8:a9:d9:57:35:4f:4e:9f:d4:7b:78:7b:e9:1f:3a:41:bc: 95:fa:c9:c4:3e:5a:09:15:52:81:a7:dd:59:44:6e:02:93:9f: 7f:54:c3:33:34:a8:58:20:e4:1b:0b:2d:a7:2d:66:31:3d:a8: b7:a9:16:e4:fd:8d:aa:9e:28:1c:c9:2c:0e:d6:7f:e6:ce:e9: e8:e3:e9:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIwNkMxMTAvBgNVBAUTKEM4MzQ5M0MwMjk3Q0NCNThEMjgzNzk0NkQ2MDYzRjE0 QTdERUU5ODYwHhcNMjQwNDIyMTgyNjAyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjI2YWJiOS0yYTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApNICdhclic6g25vEfwXKjV4t7X3u3B1OyPmkKr4T6QGjdRv7Lr8m4hnSNVFm p/8twsX2iG4yv19Jd9c79d8ugjfrMocI+NZ5gYPh0uxuRtGmPL3IzyfFYACR448Y Aeo7jjzf2sXGhpmse+bQr5eHvBB75pb+tJaUay2iSl7/fflh04CR8tQ+NxKPEzlC Tps1eAaQKJ8Un7Unu5fi8u9LwoUZE0cikX4rkoHMTQ/MuFy18FPlp4I3wf1DPQGN DwjgwAGkBfjoB71X3rDEB3TAQMwy681rjspfcRxfN3Ic/kABsvDlunUb9YHieYlg xb9+sKDhi+3i0Z4CeAtVsH2T0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOBFG2k4 6OcUPFgce8QIjKBaW3/SMB8GA1UdIwQYMBaAFMg0k8ApfMtY0oN5RtYGPxSn3umG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjA2Qy9FOUQ2MkU3NEZF QUUxMUU4OTEwRDRENjZDNEY5QUUwMi95RFNUd0NsOHkxalNnM2xHMWdZX0ZLZmU2 WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lEU1R3Q2w4eTFqU2czbEcxZ1lfRktmZTZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUIwNkMvRTlENjJFNzRGRUFFMTFFODkxMEQ0RDY2QzRGOUFFMDIvMzUzNjQ2NkEy RUZDMTFFRTk2MTg3MjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA7mA4wDQYJKoZIhvcNAQELBQADggEBAGqgX2oTUb3hoqfF o2E/skP3K+NvZNrUS3Ce0AQfHc0F9qrDUCZ9l1HfXSzITGeTMFqcEWXPdxClPvTT Eq8I1/xx07KYgNna0Vc4/y0jewZnFKQQcn4IylEb+mF0XfA+dSslJin59E+CTJKW UXSZyIUJGak7sY9tsiJB0fZDaxTWnDxl3c+b6a010bPw0RLZXPWrfxDZjoWQKbs4 EoFPCIsDLHvttv9xoPnihkG/SMT40Oh+91q4qdlXNU9On9R7eHvpHzpBvJX6ycQ+ WgkVUoGn3VlEbgKTn39UwzM0qFgg5BsLLactZjE9qLepFuT9jaqeKBzJLA7Wf+bO 6ejj6Z4= -----END CERTIFICATE-----Generated at Sun May 26 19:58:55 2024 by rpki-client on console-fra.rpki-client.org