$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/795DEE70073111EA993EC663C4F9AE02.roa File: 795DEE70073111EA993EC663C4F9AE02.roa (raw, json) Hash identifier: Ej7YMgenIUCQWW4OuoVEXOtE3nBBeIBDoBOcs5rBB0Y= Subject key identifier: 91:89:54:93:B3:27:3D:42:7C:A5:A3:3E:A0:1F:A0:BC:7B:59:B8:31 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0E97 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/795DEE70073111EA993EC663C4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:00 +0000 ROA not before: Thu 29 Feb 2024 19:38:00 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397218 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 19:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3735 (0xe97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:00 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd18-7b0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:12:7e:14:a7:48:0b:b8:8a:76:d3:cf:70:06: ee:97:e5:fe:2f:44:d2:da:64:5d:2a:de:c6:7a:5b: 18:4b:e5:65:2f:c8:59:76:37:fe:77:bc:71:a5:47: 50:08:9c:98:1e:42:2d:1b:f7:c6:f8:05:bd:08:91: 81:e4:72:82:00:20:9a:2a:b5:bf:42:62:1b:72:9e: 7e:06:70:68:dd:9d:46:e8:60:ee:61:ba:c6:29:26: 3c:b7:5c:da:f1:7c:36:5d:0f:31:da:c6:da:7a:fa: bb:4c:75:5d:d5:b9:94:dd:da:79:b8:c9:3c:24:1d: 41:34:8f:69:d3:0d:b9:c5:b3:09:5d:7b:13:53:b5: 03:ef:26:cf:49:b6:c5:cc:5f:21:31:6f:98:66:c1: fb:6d:f1:5d:b1:b4:e3:70:b7:29:11:fe:55:ab:33: e0:a9:47:29:5b:82:c6:fb:c1:ae:d2:f4:0f:63:44: c3:6b:b0:cb:7f:fc:78:5b:44:aa:8c:2e:5a:5e:55: b4:d4:14:17:2f:ae:a8:25:a7:f9:59:35:d4:8e:07: 9a:1b:08:af:d1:4f:61:3f:d3:04:bf:5d:67:ac:ba: f1:a0:71:53:3e:ef:a9:ed:40:a1:47:49:e8:1b:16: d4:5c:14:de:2d:d3:3e:85:60:0e:b6:ac:15:77:8c: c2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:89:54:93:B3:27:3D:42:7C:A5:A3:3E:A0:1F:A0:BC:7B:59:B8:31 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/795DEE70073111EA993EC663C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 5b:f8:80:e6:d6:62:41:ba:bf:14:74:46:19:6f:56:24:ab:cc: cb:ba:3a:94:d3:b6:f9:82:45:4c:f1:bc:a9:b4:b3:23:18:77: f5:52:c4:16:4a:3a:88:71:1d:4d:41:af:2a:8e:0a:b5:eb:79: 76:24:7f:72:0f:7e:76:64:d5:6b:b8:c9:fe:68:89:e2:b2:64: c2:99:86:6d:9d:1b:a1:b4:eb:2c:4d:b8:16:60:7e:8b:b1:1d: 8f:41:30:be:65:74:12:7f:af:e0:5d:b9:33:a1:64:fe:f2:d6: 01:b7:48:e2:8f:0a:1c:89:b2:22:46:d5:45:e7:1e:63:30:19: fb:89:06:d8:13:98:62:9f:67:5f:db:08:47:9c:5c:83:66:ab: be:6b:cc:b1:07:5e:b4:38:17:43:6a:5e:11:8d:18:78:79:5b: 48:9b:3d:b1:2c:81:7d:c0:2f:07:54:2f:8a:e6:14:e9:c8:12: 1d:82:fb:b5:cf:cd:4e:4c:22:90:39:81:81:e8:18:88:40:16: 42:58:5a:4d:90:31:20:e9:c7:67:fe:61:41:2b:07:3f:2d:e4: f2:33:37:44:1e:77:21:e2:cb:93:de:c6:44:46:85:c1:97:e1: 92:15:47:5f:01:18:6c:e8:c3:f5:48:e4:a1:e5:72:8b:b4:74: 8c:1f:31:65 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODAwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQxOC03YjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBJ+FKdIC7iKdtPPcAbul+X+L0TS2mRdKt7GelsYS+VlL8hZdjf+d7xxpUdQ CJyYHkItG/fG+AW9CJGB5HKCACCaKrW/QmIbcp5+BnBo3Z1G6GDuYbrGKSY8t1za 8Xw2XQ8x2sbaevq7THVd1bmU3dp5uMk8JB1BNI9p0w25xbMJXXsTU7UD7ybPSbbF zF8hMW+YZsH7bfFdsbTjcLcpEf5VqzPgqUcpW4LG+8Gu0vQPY0TDa7DLf/x4W0Sq jC5aXlW01BQXL66oJaf5WTXUjgeaGwiv0U9hP9MEv11nrLrxoHFTPu+p7UChR0no GxbUXBTeLdM+hWAOtqwVd4zCHwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFJGJVJOz Jz1CfKWjPqAfoLx7WbgxMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNzk1REVFNzAw NzMxMTFFQTk5M0VDNjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAFv4gObWYkG6 vxR0RhlvViSrzMu6OpTTtvmCRUzxvKm0syMYd/VSxBZKOohxHU1BryqOCrXreXYk f3IPfnZk1Wu4yf5oieKyZMKZhm2dG6G06yxNuBZgfouxHY9BML5ldBJ/r+BduTOh ZP7y1gG3SOKPChyJsiJG1UXnHmMwGfuJBtgTmGKfZ1/bCEecXINmq75rzLEHXrQ4 F0NqXhGNGHh5W0ibPbEsgX3ALwdUL4rmFOnIEh2C+7XPzU5MIpA5gYHoGIhAFkJY Wk2QMSDpx2f+YUErBz8t5PIzN0QedyHiy5PexkRGhcGX4ZIVR18BGGzow/VI5KHl cou0dIwfMWU= -----END CERTIFICATE-----Generated at Tue May 14 20:52:15 2024 by rpki-client on console-fra.rpki-client.org