$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/361777766E2F11EE9F5DEF32C4F9AE02.roa File: 361777766E2F11EE9F5DEF32C4F9AE02.roa (raw, json) Hash identifier: wLIv2CUnu/H9syGldsXh3/b3aDnFK9VWU8J3766MXj0= Subject key identifier: 1D:8C:44:07:E2:55:E0:E3:FA:2C:55:D2:86:17:8A:0C:D4:DE:13:EA Certificate issuer: /CN=A91DB7E9/serialNumber=DF51470B15E8C141AF2FA846A28C03B38591BAB4 Certificate serial: 5F Authority key identifier: DF:51:47:0B:15:E8:C1:41:AF:2F:A8:46:A2:8C:03:B3:85:91:BA:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/361777766E2F11EE9F5DEF32C4F9AE02.roa Signing time: Tue 19 Mar 2024 07:19:03 +0000 ROA not before: Tue 19 Mar 2024 07:19:03 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 135889 IP address blocks: 202.36.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9/serialNumber=DF51470B15E8C141AF2FA846A28C03B38591BAB4 Validity Not Before: Mar 19 07:19:03 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65f93c67-5b5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:59:2c:97:bb:b4:bd:d5:4d:91:8a:7d:8a:2d: 81:f8:cd:cd:05:5d:f3:f2:5d:89:25:cc:84:bd:9d: fa:e2:6c:6b:1b:38:b2:66:38:24:d3:57:30:b7:fa: 75:06:93:d3:b9:77:85:37:96:91:53:04:a9:81:8f: 80:c7:83:34:33:9b:08:0c:f3:ce:1e:0a:67:5e:24: a0:0e:62:60:f7:4d:9e:60:6e:87:61:3b:3b:fa:0e: f7:7b:03:d4:6a:96:6a:f4:31:d6:1f:0c:d0:b6:f8: 92:f9:61:31:d7:69:97:f3:75:ad:52:71:5f:04:20: d9:2b:08:3e:19:50:fc:45:1b:54:f2:46:2c:06:6f: 30:88:0e:91:81:e2:c5:64:f3:0a:0b:4a:6e:b0:63: 21:a3:2e:5a:b1:d2:68:4c:93:19:74:66:01:04:80: 82:1e:d0:0a:ca:d5:28:09:37:82:c6:6c:2f:8c:bf: af:89:a7:d4:6f:22:a0:39:ed:21:90:97:e7:36:cf: 41:23:33:2b:e7:1d:06:9d:7c:e2:f9:f6:8a:a4:d5: 3c:ff:72:8b:33:12:a8:23:1e:13:27:ac:13:db:3a: ea:d5:7c:cd:73:7e:2d:11:46:01:c5:8b:e1:62:30: 24:f5:30:ca:25:b2:39:eb:b1:1d:4e:b3:77:55:23: de:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:8C:44:07:E2:55:E0:E3:FA:2C:55:D2:86:17:8A:0C:D4:DE:13:EA X509v3 Authority Key Identifier: keyid:DF:51:47:0B:15:E8:C1:41:AF:2F:A8:46:A2:8C:03:B3:85:91:BA:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/361777766E2F11EE9F5DEF32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.224.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:85:aa:b4:71:04:ec:57:e6:0d:a3:1e:33:b7:71:db:d9:fd: 14:31:4c:a5:b8:a8:8a:b0:08:06:65:23:45:f1:38:4a:99:01: a1:e2:20:6c:dc:fa:e8:f0:36:18:0f:36:28:80:8f:c2:db:e7: 47:83:c2:5f:0c:1a:c7:82:f7:ee:cf:d9:3b:6f:b7:d6:96:80: 9f:de:8b:ca:95:ef:bd:4c:e4:d8:3c:58:39:8b:ed:2c:f3:65: 83:0d:f0:ed:0d:6b:17:35:7d:6a:75:07:29:c3:64:8a:6b:a2: 67:0f:18:bc:bc:04:c9:da:70:5c:1c:c4:44:9f:25:5e:6d:f0: 40:ec:8a:7d:17:71:f9:6e:db:60:18:f4:61:2b:81:73:90:07: a0:f0:f1:52:73:f5:aa:70:84:d8:aa:0a:e1:ad:a8:2a:51:2c: f5:12:20:c3:dd:14:9e:84:33:59:f7:ed:bc:06:b8:a6:e6:3f: 3b:8e:20:3d:ff:ad:13:cb:94:b0:23:5b:26:6e:84:b0:a3:5b: b3:04:95:d0:21:18:af:de:fc:74:c5:cc:1d:3e:fb:80:63:4f: 8d:f5:91:94:fd:24:7e:95:94:1a:94:db:c9:10:17:5b:7a:2a: be:71:ea:5b:5d:27:26:8a:10:93:96:95:2d:c1:65:e0:23:68: 27:4a:d0:2e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QjdFOTExMC8GA1UEBRMoREY1MTQ3MEIxNUU4QzE0MUFGMkZBODQ2QTI4QzAzQjM4 NTkxQkFCNDAeFw0yNDAzMTkwNzE5MDNaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjkzYzY3LTViNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCWSyXu7S91U2Rin2KLYH4zc0FXfPyXYklzIS9nfribGsbOLJmOCTTVzC3+nUG k9O5d4U3lpFTBKmBj4DHgzQzmwgM884eCmdeJKAOYmD3TZ5gbodhOzv6Dvd7A9Rq lmr0MdYfDNC2+JL5YTHXaZfzda1ScV8EINkrCD4ZUPxFG1TyRiwGbzCIDpGB4sVk 8woLSm6wYyGjLlqx0mhMkxl0ZgEEgIIe0ArK1SgJN4LGbC+Mv6+Jp9RvIqA57SGQ l+c2z0EjMyvnHQadfOL59oqk1Tz/coszEqgjHhMnrBPbOurVfM1zfi0RRgHFi+Fi MCT1MMolsjnrsR1Os3dVI961AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHYxEB+JV 4OP6LFXShheKDNTeE+owHwYDVR0jBBgwFoAU31FHCxXowUGvL6hGoowDs4WRurQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCN0U5L0U5OUU3RjUyNkUy RTExRUU4NUQ5MkQzMkM0RjlBRTAyLzMxRkhDeFhvd1VHdkw2aEdvb3dEczRXUnVy US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMzFGSEN4WG93VUd2TDZoR29vd0RzNFdSdXJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdFOS9FOTlFN0Y1MjZFMkUxMUVFODVEOTJEMzJDNEY5QUUwMi8zNjE3Nzc3NjZF MkYxMUVFOUY1REVGMzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcok4DANBgkqhkiG9w0BAQsFAAOCAQEAmoWqtHEE7FfmDaMe M7dx29n9FDFMpbioirAIBmUjRfE4SpkBoeIgbNz66PA2GA82KICPwtvnR4PCXwwa x4L37s/ZO2+31paAn96LypXvvUzk2DxYOYvtLPNlgw3w7Q1rFzV9anUHKcNkimui Zw8YvLwEydpwXBzERJ8lXm3wQOyKfRdx+W7bYBj0YSuBc5AHoPDxUnP1qnCE2KoK 4a2oKlEs9RIgw90UnoQzWfftvAa4puY/O44gPf+tE8uUsCNbJm6EsKNbswSV0CEY r978dMXMHT77gGNPjfWRlP0kfpWUGpTbyRAXW3oqvnHqW10nJooQk5aVLcFl4CNo J0rQLg== -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:06 2024 by rpki-client on console-fra.rpki-client.org