$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/36C31E00637111EEA51CA05EC4F9AE02.roa File: 36C31E00637111EEA51CA05EC4F9AE02.roa (raw, json) Hash identifier: sjgBLf9SLqbISelLTOqTns78IkbjGpGwxYtWqcJPGfs= Subject key identifier: 9A:C7:93:4F:F3:FA:99:45:93:69:97:7F:82:72:79:36:83:69:07:C2 Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 28 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/36C31E00637111EEA51CA05EC4F9AE02.roa Signing time: Mon 09 Oct 2023 01:39:38 +0000 ROA not before: Mon 09 Oct 2023 01:39:38 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 18220 IP address blocks: 202.12.69.0/24 maxlen: 24 203.6.96.0/22 maxlen: 22 203.6.100.0/22 maxlen: 22 203.6.104.0/22 maxlen: 22 203.6.114.0/24 maxlen: 24 203.10.114.0/24 maxlen: 24 203.10.234.0/24 maxlen: 24 2401:6bfd::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Oct 9 01:39:38 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=652359da-1be8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f5:59:1a:df:e1:14:d7:d1:89:69:c6:63:10: 68:f4:3e:d3:88:2a:3d:3c:df:57:c2:8d:fc:6a:f7: b1:26:c3:23:59:4e:8d:8c:65:db:6a:81:40:8b:74: c3:64:99:38:79:b6:34:97:b9:1c:ac:9a:08:b8:a1: b1:f8:66:7a:09:49:5f:d0:08:fa:e6:b3:fd:f5:d5: 1c:0d:e1:ad:9b:14:23:53:96:b2:73:a1:fc:a3:22: ee:87:1b:14:5c:ee:af:28:e5:e9:b0:a9:99:eb:ca: 4f:96:28:ea:44:dc:49:00:0b:25:25:f8:74:58:8b: 31:ff:fb:2b:b7:d8:4a:ac:42:33:31:44:da:c2:b7: 8e:9b:09:2c:68:55:2c:cb:8c:5b:3e:6d:fb:99:79: c7:18:4f:a6:29:b4:1c:55:42:9e:f8:0f:98:81:91: b4:a2:fc:26:fc:32:99:cb:15:a8:6d:3c:0a:1c:41: 81:25:23:2d:b4:4c:31:99:69:be:41:bd:03:02:b0: 77:70:62:2a:69:f6:db:b7:0d:ec:08:1d:82:59:d4: 23:68:f7:74:f2:e6:6b:21:c5:fd:e6:36:de:7d:16: 11:ec:71:75:41:1e:71:22:93:b3:6d:56:31:a9:97: df:2d:85:5b:f0:45:cc:6f:41:4a:96:79:a0:49:a0: 3b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C7:93:4F:F3:FA:99:45:93:69:97:7F:82:72:79:36:83:69:07:C2 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/36C31E00637111EEA51CA05EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.12.69.0/24 203.6.96.0-203.6.107.255 203.6.114.0/24 203.10.114.0/24 203.10.234.0/24 IPv6: 2401:6bfd::/32 Signature Algorithm: sha256WithRSAEncryption 2e:33:ab:65:28:22:ee:09:90:72:2a:ee:a3:3c:9b:47:fc:2c: fe:43:0a:07:d5:c7:e3:2f:b0:b1:99:52:a2:19:7c:a5:7f:b2: dd:f6:29:ee:d8:f4:d6:5a:80:01:2f:f7:db:cb:25:76:0f:64: 60:b5:69:b9:08:5f:d7:e4:45:03:90:84:ee:aa:e0:4a:ea:c6: bd:4d:66:4a:22:d3:6d:bc:83:7f:3d:7f:96:5a:8b:01:85:ac: 1d:4e:ab:53:d6:b4:c5:6c:33:d5:5c:42:da:58:ce:43:07:1f: cb:ee:9d:2b:d7:be:5f:9b:80:99:23:77:23:5a:76:56:4d:c8: 84:54:26:62:4f:0f:cd:f7:16:38:94:9f:ef:62:1e:c2:45:88: d0:23:a5:e9:18:10:6d:63:27:6e:36:bb:68:82:e6:ac:81:34: 8b:2d:af:6a:8b:92:62:7f:4c:b3:c5:4a:5b:d8:99:4e:03:69: 0c:20:b1:8d:92:bf:80:e8:b9:b5:a3:cc:41:a4:dc:d9:76:20: ef:3c:ce:78:01:a4:d3:5c:fe:fd:7e:8a:08:3e:92:a4:2b:e9: f2:15:8c:47:88:fa:26:55:9e:ce:47:1f:93:60:04:c1:09:03: ec:d6:e9:f7:74:c2:58:3f:b0:24:a9:b1:78:ff:23:b1:2b:36: 32:8f:54:26 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUU4MjExMC8GA1UEBRMoNUU3MkFBN0Q1QjFENTYzMkU1RDMzRkVDNzJGQTc0MzNG NDlDRTI5QTAeFw0yMzEwMDkwMTM5MzhaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MjM1OWRhLTFiZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC39Vka3+EU19GJacZjEGj0PtOIKj0831fCjfxq97EmwyNZTo2MZdtqgUCLdMNk mTh5tjSXuRysmgi4obH4ZnoJSV/QCPrms/311RwN4a2bFCNTlrJzofyjIu6HGxRc 7q8o5emwqZnryk+WKOpE3EkACyUl+HRYizH/+yu32EqsQjMxRNrCt46bCSxoVSzL jFs+bfuZeccYT6YptBxVQp74D5iBkbSi/Cb8MpnLFahtPAocQYElIy20TDGZab5B vQMCsHdwYipp9tu3DewIHYJZ1CNo93Ty5mshxf3mNt59FhHscXVBHnEik7NtVjGp l98thVvwRcxvQUqWeaBJoDu5AgMBAAGjggLEMIICwDAdBgNVHQ4EFgQUmseTT/P6 mUWTaZd/gnJ5NoNpB8IwHwYDVR0jBBgwFoAUXnKqfVsdVjLl0z/scvp0M/Sc4pow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5RTgyL0VBN0U1RkE2NjM2 RjExRUU5N0M3NEI1Q0M0RjlBRTAyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRw by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWG5LcWZWc2RWakxsMHpfc2N2cDBNX1NjNHBvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi8zNkMzMUUwMDYz NzExMUVFQTUxQ0EwNUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBOBggrBgEFBQcBBwEB/wQ/ MD0wLAQCAAEwJgMEAMoMRTAMAwQFywZgAwQCywZoAwQAywZyAwQAywpyAwQAywrq MA0EAgACMAcDBQAkAWv9MA0GCSqGSIb3DQEBCwUAA4IBAQAuM6tlKCLuCZByKu6j PJtH/Cz+QwoH1cfjL7CxmVKiGXylf7Ld9inu2PTWWoABL/fbyyV2D2RgtWm5CF/X 5EUDkITuquBK6sa9TWZKItNtvIN/PX+WWosBhawdTqtT1rTFbDPVXELaWM5DBx/L 7p0r175fm4CZI3cjWnZWTciEVCZiTw/N9xY4lJ/vYh7CRYjQI6XpGBBtYyduNrto guasgTSLLa9qi5Jif0yzxUpb2JlOA2kMILGNkr+A6Lm1o8xBpNzZdiDvPM54AaTT XP79fooIPpKkK+nyFYxHiPomVZ7ORx+TYATBCQPs1un3dMJYP7AkqbF4/yOxKzYy j1Qm -----END CERTIFICATE-----Generated at Fri May 31 10:42:51 2024 by rpki-client on console-fra.rpki-client.org