$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/48DF5EAE072D11EAAE8E1D56C4F9AE02.roa File: 48DF5EAE072D11EAAE8E1D56C4F9AE02.roa (raw, json) Hash identifier: BsCVVmp0q57BnB/YoL9MKz36p2dLDMqWx/srRTUug5Y= Subject key identifier: 86:C9:46:DF:3A:AD:7D:A9:F3:EC:B3:44:CF:8C:7D:8F:B3:05:70:DF Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0EA4 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/48DF5EAE072D11EAAE8E1D56C4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:14 +0000 ROA not before: Thu 29 Feb 2024 19:38:14 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397231 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 19:27:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3748 (0xea4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:14 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd25-11f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:94:5a:a7:02:b0:8e:4a:70:6a:1b:95:04:a6: 29:5b:31:90:93:35:da:d5:d4:50:b5:a1:c9:3a:45: ad:7e:68:a6:f1:d2:e9:bd:ce:c4:5b:4d:b7:ee:4f: 41:13:9d:cb:1a:55:0d:0d:3d:74:c5:37:27:f8:9e: 64:2c:f3:f9:af:a9:96:76:1c:d3:b4:bc:22:be:bd: 26:d5:a9:1d:5f:ad:82:a5:2a:b5:ee:bf:df:ea:2b: ea:e9:89:d7:67:5e:72:78:5d:2d:3c:a5:f8:a5:c6: 2b:1a:a9:3a:52:e3:f2:ee:1e:7a:d0:11:d8:53:41: d2:4f:8a:1e:a0:c5:9f:66:9e:10:92:f7:51:3e:30: da:3c:d6:8c:0a:3b:e3:46:0c:98:ba:41:1b:33:2b: 32:6e:11:4d:9a:0b:6b:86:b2:05:9d:d7:be:a2:19: ad:33:49:41:ac:53:d2:34:f2:8e:74:53:e4:e4:c7: fb:b0:7b:b6:3c:3f:50:ca:8e:4b:3b:88:3e:aa:b9: fd:a9:42:77:67:a3:ba:a4:60:cd:a0:26:4d:0f:58: c7:5d:79:21:c6:c7:ec:e0:9c:9b:c9:cf:06:e5:f2: b1:2a:97:a0:4e:ea:57:dc:5e:85:b7:7d:72:81:33: 3c:98:a7:eb:54:ca:e5:60:21:00:64:bd:ab:47:fe: 7a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:C9:46:DF:3A:AD:7D:A9:F3:EC:B3:44:CF:8C:7D:8F:B3:05:70:DF X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/48DF5EAE072D11EAAE8E1D56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 6a:12:be:24:dd:71:47:54:28:e3:05:1c:d6:d4:13:94:fe:96: 10:66:25:8d:cc:49:1d:3b:d4:4a:16:52:6b:ef:87:43:67:bb: 65:df:93:2e:e5:c2:1d:54:55:99:25:31:55:ec:28:ed:64:dc: 29:69:ed:24:aa:da:4a:0f:fe:6a:15:f1:1b:19:0f:be:aa:56: 98:b3:b7:87:4a:d1:a2:b4:1e:b5:df:1a:3e:db:cd:33:0e:ab: 8c:f8:d1:d2:35:9f:ff:91:8a:e9:75:84:59:d6:a8:59:d2:4f: d6:80:0d:2c:8a:ef:7b:33:10:41:26:5c:f4:ed:4b:4e:64:c2: 85:f8:ab:8a:01:96:94:99:08:fa:0d:2a:e3:b9:be:3a:68:46: d4:4a:a7:91:19:f7:cd:63:31:51:9d:ba:1b:4a:77:fd:33:d4: aa:9b:c5:e9:57:ed:a5:4a:8e:90:4d:0c:6a:8c:69:1d:d1:f5: 29:44:12:ef:f0:c2:4f:b7:97:da:6b:30:e4:19:a2:6c:cb:c2: fc:51:01:46:ac:cf:ca:04:d8:48:a1:c9:b5:63:74:9d:a4:d9: 74:f6:97:c2:a9:a0:9b:4a:be:57:24:f1:f0:dd:9e:f0:8b:e3: d3:22:98:f6:9d:37:ef:7e:d8:ff:8c:5f:79:7f:4d:4c:e2:4f: 1d:6e:a6:d6 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODE0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQyNS0xMWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpRapwKwjkpwahuVBKYpWzGQkzXa1dRQtaHJOkWtfmim8dLpvc7EW0237k9B E53LGlUNDT10xTcn+J5kLPP5r6mWdhzTtLwivr0m1akdX62CpSq17r/f6ivq6YnX Z15yeF0tPKX4pcYrGqk6UuPy7h560BHYU0HST4oeoMWfZp4QkvdRPjDaPNaMCjvj RgyYukEbMysybhFNmgtrhrIFnde+ohmtM0lBrFPSNPKOdFPk5Mf7sHu2PD9Qyo5L O4g+qrn9qUJ3Z6O6pGDNoCZND1jHXXkhxsfs4Jybyc8G5fKxKpegTupX3F6Ft31y gTM8mKfrVMrlYCEAZL2rR/562QIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFIbJRt86 rX2p8+yzRM+MfY+zBXDfMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNDhERjVFQUUw NzJEMTFFQUFFOEUxRDU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAGoSviTdcUdU KOMFHNbUE5T+lhBmJY3MSR071EoWUmvvh0Nnu2Xfky7lwh1UVZklMVXsKO1k3Clp 7SSq2koP/moV8RsZD76qVpizt4dK0aK0HrXfGj7bzTMOq4z40dI1n/+Riul1hFnW qFnST9aADSyK73szEEEmXPTtS05kwoX4q4oBlpSZCPoNKuO5vjpoRtRKp5EZ981j MVGduhtKd/0z1KqbxelX7aVKjpBNDGqMaR3R9SlEEu/wwk+3l9prMOQZomzLwvxR AUasz8oE2EihybVjdJ2k2XT2l8KpoJtKvlck8fDdnvCL49MimPadN+9+2P+MX3l/ TUziTx1uptY= -----END CERTIFICATE-----Generated at Tue May 14 21:48:42 2024 by rpki-client on console-ams.rpki-client.org