$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2E37/4AC69388AA3D11EE9B839632C4F9AE02/B4B20B56AA3D11EEA301A133C4F9AE02.roa File: B4B20B56AA3D11EEA301A133C4F9AE02.roa (raw, json) Hash identifier: oX6yDKyGjQSKL7FAgquC6lBKBFIcxcy0N73rX6AdzUk= Subject key identifier: DB:E7:07:1E:F7:18:59:96:91:3F:84:0A:BB:EF:68:64:5C:60:D9:A3 Certificate issuer: /CN=A91E2E37/serialNumber=33BEF164AED3FD13D69AEB51E5A0CCF399F94144 Certificate serial: 02 Authority key identifier: 33:BE:F1:64:AE:D3:FD:13:D6:9A:EB:51:E5:A0:CC:F3:99:F9:41:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M77xZK7T_RPWmutR5aDM85n5QUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2E37/4AC69388AA3D11EE9B839632C4F9AE02/B4B20B56AA3D11EEA301A133C4F9AE02.roa Signing time: Wed 03 Jan 2024 13:40:50 +0000 ROA not before: Wed 03 Jan 2024 13:40:50 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 136749 IP address blocks: 36.50.230.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2E37/4AC69388AA3D11EE9B839632C4F9AE02/M77xZK7T_RPWmutR5aDM85n5QUQ.crl rsync://rpki.apnic.net/member_repository/A91E2E37/4AC69388AA3D11EE9B839632C4F9AE02/M77xZK7T_RPWmutR5aDM85n5QUQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M77xZK7T_RPWmutR5aDM85n5QUQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Dec 2024 04:22:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2E37/serialNumber=33BEF164AED3FD13D69AEB51E5A0CCF399F94144 Validity Not Before: Jan 3 13:40:50 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659563e1-ca38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:58:14:ed:c7:2f:97:b4:fb:cb:ea:7e:0e:36: bd:7a:73:a2:60:1e:a8:38:e5:72:f7:ae:97:26:9b: 24:e7:51:1a:e7:e3:20:fb:9f:0f:51:6e:6a:3d:5d: bb:ed:f7:b7:e7:d3:5f:c7:1f:ef:34:c0:b2:e9:2a: af:2c:6f:63:d0:d7:4a:7b:48:27:37:75:5c:24:cd: 52:25:9f:6f:81:34:0e:6e:91:82:5e:eb:a3:90:2f: 27:ae:3d:1d:7d:d7:09:c8:6b:f0:55:ce:52:5e:b1: 2a:8e:cd:d4:99:1c:70:3b:23:9e:f7:88:6c:8d:ed: bf:94:5b:af:c6:cd:ee:20:b1:2e:81:b5:0e:6c:67: cd:77:fd:aa:ab:9f:37:a6:39:d9:5e:ca:7f:9c:bb: a7:42:9c:39:49:c6:bd:b6:f4:ce:6a:06:8e:ab:88: 57:77:11:45:83:20:b7:73:65:a6:2a:e1:d5:06:d8: af:17:4c:41:a1:e1:3d:c0:ab:38:01:13:8a:22:c9: c2:b0:e5:37:04:e7:0b:26:08:23:82:67:32:77:81: e0:05:19:ff:1e:ec:11:da:e8:32:cb:b9:38:95:31: 37:b5:cd:12:4d:94:b2:83:d3:90:7c:23:49:9a:f2: d4:bd:7a:ab:b3:d3:cc:59:6f:17:51:52:ae:e8:03: 5e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E7:07:1E:F7:18:59:96:91:3F:84:0A:BB:EF:68:64:5C:60:D9:A3 X509v3 Authority Key Identifier: keyid:33:BE:F1:64:AE:D3:FD:13:D6:9A:EB:51:E5:A0:CC:F3:99:F9:41:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2E37/4AC69388AA3D11EE9B839632C4F9AE02/M77xZK7T_RPWmutR5aDM85n5QUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M77xZK7T_RPWmutR5aDM85n5QUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2E37/4AC69388AA3D11EE9B839632C4F9AE02/B4B20B56AA3D11EEA301A133C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.230.0/23 Signature Algorithm: sha256WithRSAEncryption 78:09:f1:fa:26:57:fd:06:21:c1:ee:2b:a7:52:8f:3c:d9:23: 3b:c6:22:ad:55:18:ad:72:24:7c:bf:97:12:07:79:9a:10:7f: 5a:48:91:b0:1e:5f:7f:06:e2:ef:3e:44:f4:9e:15:2d:b5:42: 62:a4:9d:41:fb:f0:0c:91:7c:e5:fe:f9:b1:3a:d2:d4:ea:bb: 69:98:3e:57:68:03:4d:e7:d7:17:46:0b:c6:32:c5:aa:b0:c1: ea:be:40:05:2d:7f:14:f1:49:fd:c3:d6:70:a7:72:da:1a:10: 41:cf:ec:47:c5:6a:72:b6:0d:c4:23:2e:11:7a:10:4c:10:a1: 18:83:66:0b:76:fb:9f:be:69:86:0b:68:8d:db:9e:db:3d:71: a9:81:4d:a2:8d:bd:80:04:94:f6:55:29:d4:f1:49:d9:a2:9d: ae:14:88:52:94:d5:ae:d0:0d:a2:9b:cc:ed:33:c3:eb:38:f1: b1:a1:b2:5e:57:f0:a9:22:fe:df:78:68:e7:17:d9:6c:6a:bd: 4f:97:b4:a4:6f:47:41:1d:81:34:c3:b3:1b:f8:f7:52:43:9b: 4c:f1:dc:bd:98:c1:2c:1c:66:28:cc:60:92:b0:10:91:a5:9c: 82:c4:c3:2e:da:0f:93:70:53:b8:ab:39:0a:a5:f2:67:05:1d: d5:f8:78:7c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkUzNzExMC8GA1UEBRMoMzNCRUYxNjRBRUQzRkQxM0Q2OUFFQjUxRTVBMENDRjM5 OUY5NDE0NDAeFw0yNDAxMDMxMzQwNTBaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OTU2M2UxLWNhMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGWBTtxy+XtPvL6n4ONr16c6JgHqg45XL3rpcmmyTnURrn4yD7nw9Rbmo9Xbvt 97fn01/HH+80wLLpKq8sb2PQ10p7SCc3dVwkzVIln2+BNA5ukYJe66OQLyeuPR19 1wnIa/BVzlJesSqOzdSZHHA7I573iGyN7b+UW6/Gze4gsS6BtQ5sZ813/aqrnzem Odleyn+cu6dCnDlJxr229M5qBo6riFd3EUWDILdzZaYq4dUG2K8XTEGh4T3AqzgB E4oiycKw5TcE5wsmCCOCZzJ3geAFGf8e7BHa6DLLuTiVMTe1zRJNlLKD05B8I0ma 8tS9equz08xZbxdRUq7oA15rAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU2+cHHvcY WZaRP4QKu+9oZFxg2aMwHwYDVR0jBBgwFoAUM77xZK7T/RPWmutR5aDM85n5QUQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRTM3LzRBQzY5Mzg4QUEz RDExRUU5QjgzOTYzMkM0RjlBRTAyL003N3haSzdUX1JQV211dFI1YURNODVuNVFV US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTTc3eFpLN1RfUlBXbXV0UjVhRE04NW41UVVRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkUzNy80QUM2OTM4OEFBM0QxMUVFOUI4Mzk2MzJDNEY5QUUwMi9CNEIyMEI1NkFB M0QxMUVFQTMwMUExMzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEASQy5jANBgkqhkiG9w0BAQsFAAOCAQEAeAnx+iZX/QYhwe4r p1KPPNkjO8YirVUYrXIkfL+XEgd5mhB/WkiRsB5ffwbi7z5E9J4VLbVCYqSdQfvw DJF85f75sTrS1Oq7aZg+V2gDTefXF0YLxjLFqrDB6r5ABS1/FPFJ/cPWcKdy2hoQ Qc/sR8VqcrYNxCMuEXoQTBChGINmC3b7n75phgtojdue2z1xqYFNoo29gASU9lUp 1PFJ2aKdrhSIUpTVrtANopvM7TPD6zjxsaGyXlfwqSL+33ho5xfZbGq9T5e0pG9H QR2BNMOzG/j3UkObTPHcvZjBLBxmKMxgkrAQkaWcgsTDLtoPk3BTuKs5CqXyZwUd 1fh4fA== -----END CERTIFICATE-----Generated at Wed Nov 27 05:56:37 2024 by rpki-client on console-fra.rpki-client.org