$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/B74BF7F018BF11EFB54AFB20C4F9AE02.roa File: B74BF7F018BF11EFB54AFB20C4F9AE02.roa (raw, json) Hash identifier: AxkYcRwZSnao8zH0VaeL2puNq47Z8ulmK+DHFGZowcU= Subject key identifier: CE:DF:49:E8:79:14:52:12:26:B5:A3:AF:F2:75:16:9B:B4:75:30:5F Certificate issuer: /CN=A91CE403/serialNumber=D78F30904E75DF94CEB75966AF838E763EA89762 Certificate serial: 02 Authority key identifier: D7:8F:30:90:4E:75:DF:94:CE:B7:59:66:AF:83:8E:76:3E:A8:97:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/B74BF7F018BF11EFB54AFB20C4F9AE02.roa Signing time: Thu 23 May 2024 04:48:36 +0000 ROA not before: Thu 23 May 2024 04:48:36 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152175 IP address blocks: 36.50.98.0/23 maxlen: 24 2401:5a60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.crl rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE403/serialNumber=D78F30904E75DF94CEB75966AF838E763EA89762 Validity Not Before: May 23 04:48:36 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=664ecaa4-105b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fd:22:08:77:88:92:58:c6:38:85:9b:57:f0: 14:6e:1a:7c:c8:90:a4:20:b1:64:38:c7:ef:80:89: 9a:70:ad:e8:bf:2c:91:39:ad:3f:dc:d0:df:28:63: 1d:b5:99:81:b7:f3:91:a1:ef:03:01:4f:9b:37:57: e0:1a:99:86:ca:81:4a:0d:4f:b1:ec:56:62:c6:cc: 3f:bc:01:02:8d:41:bb:a6:e1:57:4f:22:13:f0:04: f4:47:69:68:4e:b7:7b:d5:f6:e5:75:23:46:8a:78: 96:22:a7:58:a8:7e:6f:47:ea:8b:9b:27:23:9a:37: 24:f7:95:78:59:f7:69:1d:7d:d6:f2:a1:88:c9:3c: f3:2d:77:83:ad:d4:06:62:62:80:dd:71:dc:18:2f: 46:62:1e:d0:8b:d6:14:13:da:b6:ad:e9:c2:85:c4: 82:85:56:64:26:d7:57:bc:b2:42:0f:9c:3b:b6:7d: f6:e1:cd:40:58:67:00:cf:c6:b5:8c:46:7f:31:eb: 10:1d:9f:8a:81:0d:94:0d:52:96:6d:ab:5a:ec:19: 1d:bf:0d:1e:4d:fe:7b:05:4e:00:2f:81:d2:a8:cf: 95:a6:73:87:93:6e:4b:05:4a:1a:0e:bd:8b:d2:34: e2:02:ac:a2:e8:4f:4b:df:a5:b4:67:c8:75:39:dc: 87:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:DF:49:E8:79:14:52:12:26:B5:A3:AF:F2:75:16:9B:B4:75:30:5F X509v3 Authority Key Identifier: keyid:D7:8F:30:90:4E:75:DF:94:CE:B7:59:66:AF:83:8E:76:3E:A8:97:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/B74BF7F018BF11EFB54AFB20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.98.0/23 IPv6: 2401:5a60::/32 Signature Algorithm: sha256WithRSAEncryption b9:60:b5:e1:c0:e1:03:18:99:31:a5:20:bf:f6:61:e5:de:cf: 2d:3b:1a:63:f9:59:5c:c7:44:37:7c:5c:59:22:68:c8:f3:3e: bf:90:9f:b4:5e:00:7f:c4:97:5a:b5:82:dd:69:9b:a7:d2:a2: e4:fc:16:8a:cc:e0:98:76:77:ea:d0:16:37:42:ec:4b:b6:f7: a4:c5:97:cc:e4:89:d3:9e:8c:b4:ae:c3:16:2b:21:3e:80:20: ed:6e:33:fc:e9:15:b8:52:f1:93:1d:a9:94:4e:91:82:3b:24: 09:8e:a2:f1:4e:c8:85:b0:d1:db:67:43:91:ba:18:38:78:2d: 5b:35:8e:ff:6e:d9:e7:cf:f1:a8:29:b7:6a:e5:bc:d7:c7:79: 29:67:fa:d6:ea:9c:c7:7b:0e:38:d0:f5:6a:0f:ae:e9:34:77: 23:99:33:0e:73:ab:5d:80:74:e5:49:e3:d9:ad:a1:59:6d:e5: d6:e9:84:2c:df:38:d3:32:f5:4a:5c:19:a1:d7:a4:3f:bc:4c: 2f:1d:43:e2:61:5f:eb:c4:fc:29:69:fb:ad:b2:97:b2:53:18: 7c:25:6d:1c:ab:71:8d:db:98:fc:b0:15:16:5c:b4:75:e2:10: bf:c2:9a:22:48:67:5c:82:a4:20:99:c2:c3:fe:8f:7a:15:42: 6c:89:44:8f -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTQwMzExMC8GA1UEBRMoRDc4RjMwOTA0RTc1REY5NENFQjc1OTY2QUY4MzhFNzYz RUE4OTc2MjAeFw0yNDA1MjMwNDQ4MzZaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NGVjYWE0LTEwNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDE/SIId4iSWMY4hZtX8BRuGnzIkKQgsWQ4x++AiZpwrei/LJE5rT/c0N8oYx21 mYG385Gh7wMBT5s3V+AamYbKgUoNT7HsVmLGzD+8AQKNQbum4VdPIhPwBPRHaWhO t3vV9uV1I0aKeJYip1iofm9H6oubJyOaNyT3lXhZ92kdfdbyoYjJPPMtd4Ot1AZi YoDdcdwYL0ZiHtCL1hQT2rat6cKFxIKFVmQm11e8skIPnDu2ffbhzUBYZwDPxrWM Rn8x6xAdn4qBDZQNUpZtq1rsGR2/DR5N/nsFTgAvgdKoz5Wmc4eTbksFShoOvYvS NOICrKLoT0vfpbRnyHU53IcZAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUzt9J6HkU UhImtaOv8nUWm7R1MF8wHwYDVR0jBBgwFoAU148wkE5135TOt1lmr4OOdj6ol2Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFNDAzLzgwMjA3MkU4MThC RTExRUZBREE3RTUxREM0RjlBRTAyLzE0OHdrRTUxMzVUT3QxbG1yNE9PZGo2b2wy SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMTQ4d2tFNTEzNVRPdDFsbXI0T09kajZvbDJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTQwMy84MDIwNzJFODE4QkUxMUVGQURBN0U1MURDNEY5QUUwMi9CNzRCRjdGMDE4 QkYxMUVGQjU0QUZCMjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEASQyYjANBAIAAjAHAwUAJAFaYDANBgkqhkiG9w0BAQsFAAOC AQEAuWC14cDhAxiZMaUgv/Zh5d7PLTsaY/lZXMdEN3xcWSJoyPM+v5CftF4Af8SX WrWC3Wmbp9Ki5PwWiszgmHZ36tAWN0LsS7b3pMWXzOSJ056MtK7DFishPoAg7W4z /OkVuFLxkx2plE6RgjskCY6i8U7IhbDR22dDkboYOHgtWzWO/27Z58/xqCm3auW8 18d5KWf61uqcx3sOOND1ag+u6TR3I5kzDnOrXYB05Unj2a2hWW3l1umELN840zL1 SlwZodekP7xMLx1D4mFf68T8KWn7rbKXslMYfCVtHKtxjduY/LAVFly0deIQv8Ka IkhnXIKkIJnCw/6PehVCbIlEjw== -----END CERTIFICATE-----Generated at Tue Sep 17 08:12:29 2024 by rpki-client on console-ams.rpki-client.org