$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/36D3DC38AA9311ECB5C88036C4F9AE02.roa File: 36D3DC38AA9311ECB5C88036C4F9AE02.roa (raw, json) Hash identifier: 6AyDnzx5A4AjZFDON1usGiiqlcfarAtQyPrblWg9aSI= Subject key identifier: 61:B0:D7:68:8E:4A:90:4F:F3:32:E6:E5:41:F7:C6:48:EF:4A:69:77 Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Certificate serial: 1E70 Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/36D3DC38AA9311ECB5C88036C4F9AE02.roa Signing time: Wed 18 Dec 2024 16:43:39 +0000 ROA not before: Wed 18 Dec 2024 16:43:39 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 147019 IP address blocks: 43.92.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 16:05:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7792 (0x1e70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198 Validity Not Before: Dec 18 16:43:39 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6762fbba-a681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8d:14:29:f7:97:cc:76:8e:11:f7:90:77:83: b2:ac:3b:c0:1c:8e:55:78:c2:9d:02:be:ef:c5:56: 56:d3:39:84:fa:f9:25:ed:f0:0f:43:94:cf:79:31: cc:a6:3e:c4:70:ad:69:38:0d:58:37:51:b5:ba:e8: 90:83:30:ed:c0:dc:19:0b:d7:51:30:42:bf:87:9b: 90:3c:d0:7e:22:d7:11:19:46:a4:21:39:c3:79:44: e8:e2:a8:35:6c:1e:20:1a:fc:7e:1d:27:5c:0a:08: 8c:b1:ae:33:ac:78:f6:a1:17:f5:32:e5:df:a5:4a: 35:64:13:77:ff:89:7e:fc:83:a6:83:39:c2:da:ed: 8e:3f:a3:05:8d:20:37:af:ee:32:70:e3:05:7a:96: 58:6a:f3:3e:ab:45:c0:d6:14:34:ca:3a:fc:a8:e7: 54:c4:ef:28:4e:92:66:3c:b7:d0:bc:fc:14:7f:d3: 35:34:bc:e7:3b:19:3a:f6:4a:a5:a5:5f:4c:1e:37: ab:3d:93:6a:b8:38:9c:22:19:9e:a9:1d:93:b6:08: d7:d3:e5:d9:26:38:2d:12:27:87:46:0b:95:01:87: ad:ab:d0:de:fd:e1:dc:bb:c1:95:b3:06:c0:cb:5b: 98:09:65:78:11:c6:ba:06:40:93:7d:a0:a9:8d:ae: 7c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:B0:D7:68:8E:4A:90:4F:F3:32:E6:E5:41:F7:C6:48:EF:4A:69:77 X509v3 Authority Key Identifier: keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/36D3DC38AA9311ECB5C88036C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.92.224.0/19 Signature Algorithm: sha256WithRSAEncryption 91:33:06:8d:ba:d6:ea:69:c8:65:0c:c8:6a:19:24:a4:d6:9b: 41:13:da:0f:32:51:ab:a1:2b:da:8f:ad:a7:2f:82:f8:0a:31: a6:ae:2e:38:c0:96:27:f1:5d:31:1e:dd:33:d1:0d:de:a5:ec: 1d:e0:5e:18:46:3f:fb:c1:c1:65:fc:6a:a1:ba:53:51:5d:76: 0c:da:d3:3c:9c:20:b8:fe:ba:64:84:89:27:91:42:c6:4a:aa: 36:bf:42:9c:75:49:96:3f:e3:3b:fb:03:31:ef:34:1e:6d:a4: 9c:67:9b:0a:22:ca:02:6b:50:70:94:2b:40:13:79:5b:2b:85: 0e:2c:07:3e:8b:6e:b0:d6:09:78:9f:77:58:16:9f:3f:b9:a8: 8a:11:84:a8:50:aa:ab:13:2b:73:2b:c4:40:f6:f1:f0:28:5b: 67:b2:f7:85:69:b4:c9:15:fe:5d:17:d1:b7:64:34:08:78:b6: db:19:ae:67:1e:46:c4:29:e9:5c:d2:66:6e:da:eb:ad:74:a5: 6d:57:7b:4d:ea:2c:94:09:48:40:7b:22:8a:d0:69:04:2d:63: 30:19:7b:8a:2d:d9:62:3d:7f:64:c3:de:b5:86:f0:35:16:ab: a7:7b:06:f1:ca:1a:30:89:47:22:73:b1:67:27:76:f4:ea:75: 16:c7:8c:c3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDlFMUMzNTMxRDAwNDVFQTM4OUI2OENGRjkyODZBMDhG QkNCQkQ4QkQwHhcNMjQxMjE4MTY0MzM5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYyZmJiYS1hNjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA340UKfeXzHaOEfeQd4OyrDvAHI5VeMKdAr7vxVZW0zmE+vkl7fAPQ5TPeTHM pj7EcK1pOA1YN1G1uuiQgzDtwNwZC9dRMEK/h5uQPNB+ItcRGUakITnDeUTo4qg1 bB4gGvx+HSdcCgiMsa4zrHj2oRf1MuXfpUo1ZBN3/4l+/IOmgznC2u2OP6MFjSA3 r+4ycOMFepZYavM+q0XA1hQ0yjr8qOdUxO8oTpJmPLfQvPwUf9M1NLznOxk69kql pV9MHjerPZNquDicIhmeqR2TtgjX0+XZJjgtEieHRguVAYetq9De/eHcu8GVswbA y1uYCWV4Eca6BkCTfaCpja58PQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGGw12iO SpBP8zLm5UH3xkjvSml3MB8GA1UdIwQYMBaAFJ4cNTHQBF6jibaM/5KGoI+8u9i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC85OTNGMjA5MEFC QzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhxT0p0b3pfa29hZ2o3eTcy TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odzFNZEFFWHFPSnRvel9rb2Fnajd5NzJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExOTgvOTkzRjIwOTBBQkM0MTFFNkJENkJFRDE0QzRGOUFFMDIvMzZEM0RDMzhB QTkzMTFFQ0I1Qzg4MDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAUrXOAwDQYJKoZIhvcNAQELBQADggEBAJEzBo261uppyGUM yGoZJKTWm0ET2g8yUauhK9qPracvgvgKMaauLjjAlifxXTEe3TPRDd6l7B3gXhhG P/vBwWX8aqG6U1Fddgza0zycILj+umSEiSeRQsZKqja/Qpx1SZY/4zv7AzHvNB5t pJxnmwoiygJrUHCUK0ATeVsrhQ4sBz6LbrDWCXifd1gWnz+5qIoRhKhQqqsTK3Mr xED28fAoW2ey94VptMkV/l0X0bdkNAh4ttsZrmceRsQp6VzSZm7a6610pW1Xe03q LJQJSEB7IorQaQQtYzAZe4ot2WI9f2TD3rWG8DUWq6d7BvHKGjCJRyJzsWcndvTq dRbHjMM= -----END CERTIFICATE-----Generated at Mon Apr 7 01:39:05 2025 by rpki-client