$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/36D3DC38AA9311ECB5C88036C4F9AE02.roa File: 36D3DC38AA9311ECB5C88036C4F9AE02.roa (raw, json) Hash identifier: 8qTsqRmO80AHFfBUyqSAVB8YDABzwuoAca88nBKF+bs= Subject key identifier: 3D:E3:AE:1D:7E:DA:AB:6C:E9:9A:46:0D:24:F6:89:F7:3D:CE:96:96 Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Certificate serial: 1D70 Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/36D3DC38AA9311ECB5C88036C4F9AE02.roa Signing time: Thu 28 Sep 2023 16:33:37 +0000 ROA not before: Thu 28 Sep 2023 16:33:37 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 147019 IP address blocks: 43.92.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 16:35:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7536 (0x1d70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Validity Not Before: Sep 28 16:33:37 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6515aae1-4c7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:dc:2e:37:08:29:3e:0c:30:35:f3:ec:3f:7f: 33:af:3f:b3:c1:ad:59:f6:21:44:f8:7d:e4:28:7b: 0d:be:6a:5b:9e:41:0a:b9:da:d0:3f:9a:1b:e2:16: e7:b2:31:6d:a7:13:04:80:9b:34:ab:74:97:6e:df: 64:fa:c6:c4:f4:18:e7:b7:d8:28:9f:4c:e7:33:3f: ef:5d:87:8d:9b:47:47:ae:66:34:66:f0:4a:45:07: 2f:21:75:30:4e:c4:d2:a2:67:a4:02:15:2e:d2:42: ed:e9:09:97:a9:99:bf:7a:48:6f:a9:f8:0f:97:c9: e8:b8:cd:b2:b0:b4:0c:2e:16:44:49:6b:16:a0:f0: c5:b2:9e:1c:37:0e:ab:e5:6f:b3:db:44:d6:6e:2a: ac:5b:7c:ad:b8:aa:8c:10:51:74:a0:fd:f9:85:c0: 04:c2:b8:5a:14:30:37:bd:5b:a5:02:71:fd:c2:20: 26:80:7d:4f:38:ad:b6:cb:b8:be:07:de:26:55:dd: 6e:42:21:35:cf:ce:b5:db:c6:b3:28:55:7a:a1:ce: 3c:61:1c:ef:b4:f1:cb:e7:20:9c:1a:90:fe:67:bc: 17:df:bb:6e:59:0f:9a:26:8a:69:64:fe:3d:3a:8e: 43:49:21:27:7f:d5:e1:8b:3f:48:1a:cf:09:83:34: 47:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:E3:AE:1D:7E:DA:AB:6C:E9:9A:46:0D:24:F6:89:F7:3D:CE:96:96 X509v3 Authority Key Identifier: keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/36D3DC38AA9311ECB5C88036C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.92.224.0/19 Signature Algorithm: sha256WithRSAEncryption 94:5f:8d:62:b9:a2:a8:f1:e7:f1:e9:8f:16:3b:81:09:db:76: 16:93:e3:5a:79:0e:f5:d2:32:08:e4:d6:f3:a0:69:4f:98:67: 70:78:55:0c:d3:60:e9:91:3f:4f:3c:8c:77:d0:7a:73:be:75: 94:77:c7:85:1b:12:27:8e:00:13:2d:46:ae:5e:ea:17:9a:78: 48:ae:e5:ae:30:d0:80:2b:e5:f5:81:5b:07:f2:83:70:ac:46: 69:54:ae:6c:98:5b:22:33:46:80:5b:a0:ab:51:8d:79:4d:7b: 16:fe:99:f5:02:2d:9e:47:5f:6a:28:77:da:53:b6:f4:e5:18: bf:b3:be:69:89:8a:c5:c6:07:56:b1:2d:18:d7:f0:bd:81:a6: 01:95:6d:fb:a9:e6:e5:9d:ce:74:94:37:b1:e8:ea:12:8f:2b: 40:d5:dd:94:46:f3:97:d1:f3:88:cb:bc:3f:61:4c:0b:7e:c2: c0:11:c6:31:7f:d8:27:04:8d:9e:ba:87:35:d5:a9:c5:c3:58: fe:ba:5c:8b:49:ba:d9:2d:da:96:4f:4f:cc:48:9c:60:c1:e4: 79:29:ab:ed:02:b0:e5:e7:6f:c6:2b:f0:7e:74:1a:d3:c5:a6: 1f:71:18:f9:72:7a:6a:e6:db:65:51:4d:ea:19:18:9d:7a:cd: 1e:90:a9:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDlFMUMzNTMxRDAwNDVFQTM4OUI2OENGRjkyODZBMDhG QkNCQkQ4QkQwHhcNMjMwOTI4MTYzMzM3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE1YWFlMS00YzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0twuNwgpPgwwNfPsP38zrz+zwa1Z9iFE+H3kKHsNvmpbnkEKudrQP5ob4hbn sjFtpxMEgJs0q3SXbt9k+sbE9Bjnt9gon0znMz/vXYeNm0dHrmY0ZvBKRQcvIXUw TsTSomekAhUu0kLt6QmXqZm/ekhvqfgPl8nouM2ysLQMLhZESWsWoPDFsp4cNw6r 5W+z20TWbiqsW3ytuKqMEFF0oP35hcAEwrhaFDA3vVulAnH9wiAmgH1POK22y7i+ B94mVd1uQiE1z86128azKFV6oc48YRzvtPHL5yCcGpD+Z7wX37tuWQ+aJoppZP49 Oo5DSSEnf9Xhiz9IGs8JgzRH6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFD3jrh1+ 2qts6ZpGDST2ifc9zpaWMB8GA1UdIwQYMBaAFJ4cNTHQBF6jibaM/5KGoI+8u9i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC85OTNGMjA5MEFC QzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhxT0p0b3pfa29hZ2o3eTcy TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odzFNZEFFWHFPSnRvel9rb2Fnajd5NzJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExOTgvOTkzRjIwOTBBQkM0MTFFNkJENkJFRDE0QzRGOUFFMDIvMzZEM0RDMzhB QTkzMTFFQ0I1Qzg4MDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAUrXOAwDQYJKoZIhvcNAQELBQADggEBAJRfjWK5oqjx5/Hp jxY7gQnbdhaT41p5DvXSMgjk1vOgaU+YZ3B4VQzTYOmRP088jHfQenO+dZR3x4Ub EieOABMtRq5e6heaeEiu5a4w0IAr5fWBWwfyg3CsRmlUrmyYWyIzRoBboKtRjXlN exb+mfUCLZ5HX2ood9pTtvTlGL+zvmmJisXGB1axLRjX8L2BpgGVbfup5uWdznSU N7Ho6hKPK0DV3ZRG85fR84jLvD9hTAt+wsARxjF/2CcEjZ66hzXVqcXDWP66XItJ utkt2pZPT8xInGDB5Hkpq+0CsOXnb8Yr8H50GtPFph9xGPlyemrm22VRTeoZGJ16 zR6QqaM= -----END CERTIFICATE-----Generated at Fri May 24 17:57:01 2024 by rpki-client on console-fra.rpki-client.org