$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F28/F57FD0B88D5611EE9787E783C4F9AE02/6DAB109E8DF111EEA5BB4A1BC4F9AE02.roa File: 6DAB109E8DF111EEA5BB4A1BC4F9AE02.roa (raw, json) Hash identifier: P51d+Bkf7r+1HRm8wiTQGVSP6FQQzYCf10d/cp8/V38= Subject key identifier: F7:AF:08:9E:39:1A:22:F5:15:E1:15:FB:94:24:05:78:92:23:B5:35 Certificate issuer: /CN=A91C4F28/serialNumber=F170F57B4ECA1296A4221D707A64E429893B87D4 Certificate serial: 04 Authority key identifier: F1:70:F5:7B:4E:CA:12:96:A4:22:1D:70:7A:64:E4:29:89:3B:87:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XD1e07KEpakIh1wemTkKYk7h9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F28/F57FD0B88D5611EE9787E783C4F9AE02/6DAB109E8DF111EEA5BB4A1BC4F9AE02.roa Signing time: Tue 28 Nov 2023 13:24:16 +0000 ROA not before: Tue 28 Nov 2023 13:24:16 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 20473 IP address blocks: 36.50.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F28/F57FD0B88D5611EE9787E783C4F9AE02/8XD1e07KEpakIh1wemTkKYk7h9Q.crl rsync://rpki.apnic.net/member_repository/A91C4F28/F57FD0B88D5611EE9787E783C4F9AE02/8XD1e07KEpakIh1wemTkKYk7h9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XD1e07KEpakIh1wemTkKYk7h9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F28/serialNumber=F170F57B4ECA1296A4221D707A64E429893B87D4 Validity Not Before: Nov 28 13:24:16 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6565ea00-73ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0e:48:50:9e:70:9b:69:72:14:0a:bc:27:6d: fb:59:4b:b9:dc:ec:05:6b:a4:97:5d:5e:e4:94:37: 8c:93:06:c9:86:b4:6f:ed:0d:93:00:d4:b6:41:84: fd:54:de:40:9d:40:18:d7:bc:9b:f7:5a:17:da:64: fe:61:a9:84:72:cf:84:63:14:cb:56:44:8e:3f:a7: 9d:44:25:44:5d:d9:35:10:ca:24:e3:1f:52:74:04: 0d:c9:6b:67:0b:34:8a:31:de:7b:7c:cc:00:ee:91: 59:64:5c:36:77:2d:06:e8:8f:ef:68:4b:7e:f3:96: a0:0a:cb:a4:a2:87:de:87:04:ed:af:b6:49:d2:df: 2e:21:93:c8:a3:b9:45:95:1d:13:cc:a4:e7:a7:5c: a0:fd:28:da:e2:70:25:88:1b:ee:fc:24:5b:2d:23: 8c:6f:fc:76:5d:79:d0:d1:a7:9c:18:dc:33:53:14: 6f:e8:b8:29:f3:43:14:23:0e:31:08:9d:4a:b5:80: 0f:00:87:63:d9:4e:17:fa:8b:98:7e:65:f9:91:f6: 98:ee:7a:57:5f:36:d8:bc:93:85:fc:07:21:68:2c: 70:64:7a:ba:e2:43:c7:09:25:55:a5:6a:32:23:be: bd:0b:e4:6e:1c:d4:56:d5:e8:c8:0f:f4:35:c9:be: db:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:AF:08:9E:39:1A:22:F5:15:E1:15:FB:94:24:05:78:92:23:B5:35 X509v3 Authority Key Identifier: keyid:F1:70:F5:7B:4E:CA:12:96:A4:22:1D:70:7A:64:E4:29:89:3B:87:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F28/F57FD0B88D5611EE9787E783C4F9AE02/8XD1e07KEpakIh1wemTkKYk7h9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XD1e07KEpakIh1wemTkKYk7h9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F28/F57FD0B88D5611EE9787E783C4F9AE02/6DAB109E8DF111EEA5BB4A1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.2.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:95:be:f2:05:f8:f4:ce:99:df:a3:36:c2:48:41:8d:6a:4f: 86:f4:17:13:32:97:e9:16:0a:1a:97:d6:4f:9f:b0:dc:92:cf: 0f:96:41:78:a1:fb:ce:b6:45:cf:01:ef:9f:28:7a:61:a8:4f: 01:65:74:9c:38:6e:28:74:ac:a5:85:08:f4:47:ef:3d:78:af: 04:04:c8:b0:c5:ff:b5:04:7b:2d:74:e4:aa:29:53:17:5c:66: b9:51:8e:c8:d9:c4:38:12:5e:10:25:99:1c:97:12:24:31:af: 56:89:a5:e5:52:06:e0:c2:9d:9e:ec:36:24:73:54:2d:80:99: 28:fc:2e:a9:64:ab:b9:c6:3c:be:68:83:78:f4:81:3c:67:66: 13:14:b7:19:8b:9b:8c:74:d8:64:27:d5:04:ea:23:d2:4d:fc: ba:68:55:44:dc:76:7d:93:b6:2f:34:4d:e1:45:be:3e:77:ca: 5f:50:71:f4:bf:d0:4d:ad:e7:fa:06:87:85:5d:6c:a1:58:92: a8:58:99:64:f1:6a:cb:8d:8f:fc:e3:4a:00:64:0b:4f:69:0f: c9:14:a6:28:e0:02:33:78:df:36:99:93:ad:75:55:99:c0:fe: fa:83:80:d1:5a:55:8a:44:b6:f4:92:a9:59:a6:af:10:57:aa: 06:03:49:a2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NEYyODExMC8GA1UEBRMoRjE3MEY1N0I0RUNBMTI5NkE0MjIxRDcwN0E2NEU0Mjk4 OTNCODdENDAeFw0yMzExMjgxMzI0MTZaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NjVlYTAwLTczZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEDkhQnnCbaXIUCrwnbftZS7nc7AVrpJddXuSUN4yTBsmGtG/tDZMA1LZBhP1U 3kCdQBjXvJv3WhfaZP5hqYRyz4RjFMtWRI4/p51EJURd2TUQyiTjH1J0BA3Ja2cL NIox3nt8zADukVlkXDZ3LQboj+9oS37zlqAKy6Sih96HBO2vtknS3y4hk8ijuUWV HRPMpOenXKD9KNricCWIG+78JFstI4xv/HZdedDRp5wY3DNTFG/ouCnzQxQjDjEI nUq1gA8Ah2PZThf6i5h+ZfmR9pjueldfNti8k4X8ByFoLHBkerriQ8cJJVWlajIj vr0L5G4c1FbV6MgP9DXJvtudAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU968Injka IvUV4RX7lCQFeJIjtTUwHwYDVR0jBBgwFoAU8XD1e07KEpakIh1wemTkKYk7h9Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0RjI4L0Y1N0ZEMEI4OEQ1 NjExRUU5Nzg3RTc4M0M0RjlBRTAyLzhYRDFlMDdLRXBha0loMXdlbVRrS1lrN2g5 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOFhEMWUwN0tFcGFrSWgxd2VtVGtLWWs3aDlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYyOC9GNTdGRDBCODhENTYxMUVFOTc4N0U3ODNDNEY5QUUwMi82REFCMTA5RThE RjExMUVFQTVCQjRBMUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEACQyAjANBgkqhkiG9w0BAQsFAAOCAQEAXpW+8gX49M6Z36M2 wkhBjWpPhvQXEzKX6RYKGpfWT5+w3JLPD5ZBeKH7zrZFzwHvnyh6YahPAWV0nDhu KHSspYUI9EfvPXivBATIsMX/tQR7LXTkqilTF1xmuVGOyNnEOBJeECWZHJcSJDGv Voml5VIG4MKdnuw2JHNULYCZKPwuqWSrucY8vmiDePSBPGdmExS3GYubjHTYZCfV BOoj0k38umhVRNx2fZO2LzRN4UW+PnfKX1Bx9L/QTa3n+gaHhV1soViSqFiZZPFq y42P/ONKAGQLT2kPyRSmKOACM3jfNpmTrXVVmcD++oOA0VpVikS29JKpWaavEFeq BgNJog== -----END CERTIFICATE-----Generated at Sun May 5 08:39:12 2024 by rpki-client on console-fra.rpki-client.org