$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/52685F222E9111E999636910C4F9AE02.roa File: 52685F222E9111E999636910C4F9AE02.roa (raw, json) Hash identifier: syk5eLA6QE1f9vtOv8vWj023d03Vzooyr78RlQmdrWU= Subject key identifier: 3F:F8:DC:96:B5:D7:FC:10:E0:01:21:D4:ED:76:A7:5E:19:CF:22:BA Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 102E Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/52685F222E9111E999636910C4F9AE02.roa Signing time: Tue 30 Apr 2024 18:26:31 +0000 ROA not before: Tue 30 Apr 2024 18:26:31 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 24081 IP address blocks: 121.97.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4142 (0x102e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC Validity Not Before: Apr 30 18:26:31 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663137d7-4199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7d:95:dc:f1:22:86:d7:48:2f:41:96:b7:b9: 1b:4e:40:8b:43:06:b9:45:05:74:8b:a2:a8:07:6a: 43:97:45:a4:93:24:25:62:fe:b7:fa:62:ef:68:40: 5a:aa:06:ec:05:28:35:ae:4c:b6:d1:3f:1f:18:77: 41:a4:7d:e1:ed:11:fa:a5:5c:08:9a:fc:67:d5:8c: a5:b5:9d:7f:87:d9:e6:44:83:b9:d6:97:c9:fe:cf: 1b:ee:7f:93:e3:01:13:d2:a7:57:dc:ef:3e:3c:b0: d9:05:9b:8e:7c:50:ec:f7:d9:74:09:80:fb:da:b0: be:a4:e0:b9:23:42:c1:47:11:a3:7e:ca:de:39:71: 2b:b9:ee:d0:ed:9c:10:85:74:e5:5b:7d:dc:e1:bb: 25:ec:f4:8b:12:8a:cd:d7:7d:cb:c4:8e:0f:15:92: c1:2a:42:0d:de:97:3c:a9:76:cb:8a:e0:f4:09:a4: 23:a0:18:e7:61:f9:ac:7a:9f:83:98:52:7e:66:7a: 02:cb:e6:7d:40:30:c9:47:d2:73:ed:88:14:d2:27: 64:05:ca:37:30:16:0e:5a:14:4a:3e:a5:79:a1:cb: 7c:c0:39:27:85:95:eb:8f:bd:18:27:38:54:b0:0c: 71:2a:eb:5e:48:da:38:2e:cc:56:0b:4f:41:c0:8e: c9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F8:DC:96:B5:D7:FC:10:E0:01:21:D4:ED:76:A7:5E:19:CF:22:BA X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/52685F222E9111E999636910C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.97.32.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:06:8d:09:bb:c1:07:dd:b7:9c:54:dd:fc:2a:13:30:fe:44: cc:da:b2:32:29:11:47:12:1e:30:14:69:1c:24:7a:94:15:25: 6f:46:27:e3:f9:e7:2c:9c:69:b1:ae:64:23:63:46:5a:56:ba: 82:0d:65:8a:e8:3b:55:74:38:9d:ee:c1:13:4f:ad:de:75:05: 34:30:cc:b0:cf:e2:e8:24:52:a6:6d:8b:90:98:fa:9a:7a:a4: 32:6b:6b:96:bc:90:4a:f5:64:5b:1a:b3:b9:00:0c:a1:cd:6f: 64:cd:45:ec:2f:e4:89:74:d1:84:cd:ec:87:1b:7c:d1:8e:f5: ad:df:fe:69:0b:ff:c3:e8:90:a9:71:5e:5c:4c:c8:61:c1:2c: 0d:d8:38:02:07:4f:dc:ce:9a:ab:97:0b:e0:49:62:a0:6a:7d: 38:3f:11:d6:c0:21:8f:ae:04:d2:5d:b2:20:e4:18:ac:aa:1e: 90:f5:4c:82:0b:df:2e:51:55:36:80:e2:a7:01:6f:02:c7:c0: 20:d7:18:1e:94:ed:6f:4e:13:89:a3:2a:26:96:5e:10:b9:78: 5b:d4:67:f4:c4:9b:28:9c:53:41:c9:04:57:df:80:5a:b6:de: 75:35:e6:18:b5:ad:2d:67:e4:e2:0a:98:0f:40:43:6e:1d:aa: 02:c0:04:cf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjQwNDMwMTgyNjMxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMzdkNy00MTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1X2V3PEihtdIL0GWt7kbTkCLQwa5RQV0i6KoB2pDl0WkkyQlYv63+mLvaEBa qgbsBSg1rky20T8fGHdBpH3h7RH6pVwImvxn1YyltZ1/h9nmRIO51pfJ/s8b7n+T 4wET0qdX3O8+PLDZBZuOfFDs99l0CYD72rC+pOC5I0LBRxGjfsreOXErue7Q7ZwQ hXTlW33c4bsl7PSLEorN133LxI4PFZLBKkIN3pc8qXbLiuD0CaQjoBjnYfmsep+D mFJ+ZnoCy+Z9QDDJR9Jz7YgU0idkBco3MBYOWhRKPqV5oct8wDknhZXrj70YJzhU sAxxKuteSNo4LsxWC09BwI7JRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD/43Ja1 1/wQ4AEh1O12p14ZzyK6MB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvNTI2ODVGMjIy RTkxMTFFOTk5NjM2OTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB5YSAwDQYJKoZIhvcNAQELBQADggEBAJsGjQm7wQfdt5xU 3fwqEzD+RMzasjIpEUcSHjAUaRwkepQVJW9GJ+P55yycabGuZCNjRlpWuoINZYro O1V0OJ3uwRNPrd51BTQwzLDP4ugkUqZti5CY+pp6pDJra5a8kEr1ZFsas7kADKHN b2TNRewv5Il00YTN7IcbfNGO9a3f/mkL/8PokKlxXlxMyGHBLA3YOAIHT9zOmquX C+BJYqBqfTg/EdbAIY+uBNJdsiDkGKyqHpD1TIIL3y5RVTaA4qcBbwLHwCDXGB6U 7W9OE4mjKiaWXhC5eFvUZ/TEmyicU0HJBFffgFq23nU15hi1rS1n5OIKmA9AQ24d qgLABM8= -----END CERTIFICATE-----Generated at Sat Apr 5 07:22:32 2025 by rpki-client