$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/553596D65DB511EE841C151FC4F9AE02.roa File: 553596D65DB511EE841C151FC4F9AE02.roa (raw, json) Hash identifier: v7Dt+vDpE5l+seUqJNghMo9p/KJYaK9+kV/JnepJsag= Subject key identifier: FD:6C:6D:D3:B9:CB:38:02:93:AD:28:96:32:A2:5F:4A:58:3E:25:23 Certificate issuer: /CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Certificate serial: 54 Authority key identifier: 3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/553596D65DB511EE841C151FC4F9AE02.roa Signing time: Thu 01 Feb 2024 07:49:45 +0000 ROA not before: Thu 01 Feb 2024 07:49:45 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 133915 IP address blocks: 202.50.140.0/24 maxlen: 24 202.50.141.0/24 maxlen: 24 202.50.142.0/24 maxlen: 24 202.50.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Validity Not Before: Feb 1 07:49:45 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65bb4d18-4e1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6d:3f:58:57:2b:c4:c6:e8:78:64:38:1d:f4: 9d:e6:30:1d:c8:17:a9:d1:93:4b:68:80:86:f9:ee: 4f:42:f5:9d:62:6a:2b:d3:96:ce:19:b5:63:9b:bc: ee:ba:b6:2b:fa:b1:d2:c8:d5:97:49:e6:d4:32:bf: f9:be:08:3c:f0:dd:80:f0:e5:3c:71:9a:ac:26:b5: 35:a1:96:ab:3e:46:fb:86:18:f2:ad:2c:7c:f5:27: 90:a0:3d:8e:a6:3e:96:b0:b8:73:93:f6:8b:e4:a7: bf:2a:15:98:47:1d:c4:e4:02:5b:a5:cf:60:41:62: 89:9e:e0:94:93:b7:a2:5e:36:d7:83:80:c0:c9:ff: e9:0b:a5:15:8e:b2:91:87:53:04:02:6f:9c:bb:e4: 20:d7:16:c2:43:2d:b0:91:d4:8f:2f:9b:1d:3c:29: b6:a5:09:7c:e0:8e:e5:e9:78:15:b8:6c:ed:50:04: 38:a1:19:8e:ea:74:69:a8:84:20:8d:cc:1a:0d:a8: d1:1f:76:ef:c6:df:1e:a6:1b:8c:6c:3d:ff:de:98: d1:24:60:32:7f:ef:ce:b1:a5:bc:6b:88:fe:65:9b: 68:f0:9e:89:73:12:fe:ad:dc:ba:e9:d4:97:50:be: 28:d3:42:4b:15:02:4c:ac:fe:01:ff:68:78:8e:4b: 70:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:6C:6D:D3:B9:CB:38:02:93:AD:28:96:32:A2:5F:4A:58:3E:25:23 X509v3 Authority Key Identifier: keyid:3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/553596D65DB511EE841C151FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.50.140.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:73:8e:cd:1a:e2:90:97:6c:e6:a9:19:b1:86:00:a0:bb:57: 59:19:f3:2f:73:23:10:48:e5:4d:36:0b:61:df:84:4d:4f:18: a5:0d:bb:94:8f:05:6e:d7:00:d8:90:4e:6a:c4:14:39:85:10: 11:95:bb:7d:eb:33:b8:3b:cf:d9:f9:6e:51:26:c0:51:98:83: 6b:a3:99:46:aa:06:78:53:cd:8b:e9:c8:85:7d:bd:79:b7:be: 0a:b1:b3:72:32:61:34:6c:ad:39:76:6b:37:d5:6c:10:2c:da: 2c:f8:07:45:1e:3d:3d:5c:31:2c:cc:41:2d:65:22:aa:68:1a: 3c:21:e7:10:59:ba:5d:cd:5a:e5:87:ad:5d:5e:1e:93:f2:c4: ea:86:91:a2:c2:c0:f7:98:6b:98:9e:38:e1:2f:94:f0:a7:14: 86:d0:82:7c:43:2f:30:31:0d:bb:c3:d9:df:53:76:f0:50:f8: 0e:f6:c4:bb:19:74:2f:1d:b4:86:29:77:7b:74:80:c1:fe:37: dc:3b:0c:c9:a0:46:c5:f2:24:02:ab:22:ae:4c:12:d5:48:c7: 89:5b:49:05:11:96:b0:a2:1a:33:b5:e0:a8:c4:29:17:cf:a0: f6:c0:61:05:8c:0c:e6:a5:07:82:ed:72:a5:d2:16:a1:a8:d3: 2b:7d:92:21 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MzM5OTExMC8GA1UEBRMoM0RCREQ3RUQ0MTI0ODBFOTM1NUMyN0YzQzExM0I1NjQw RDMxODZCMzAeFw0yNDAyMDEwNzQ5NDVaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YmI0ZDE4LTRlMWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMbT9YVyvExuh4ZDgd9J3mMB3IF6nRk0togIb57k9C9Z1iaivTls4ZtWObvO66 tiv6sdLI1ZdJ5tQyv/m+CDzw3YDw5TxxmqwmtTWhlqs+RvuGGPKtLHz1J5CgPY6m PpawuHOT9ovkp78qFZhHHcTkAlulz2BBYome4JSTt6JeNteDgMDJ/+kLpRWOspGH UwQCb5y75CDXFsJDLbCR1I8vmx08KbalCXzgjuXpeBW4bO1QBDihGY7qdGmohCCN zBoNqNEfdu/G3x6mG4xsPf/emNEkYDJ/786xpbxriP5lm2jwnolzEv6t3Lrp1JdQ vijTQksVAkys/gH/aHiOS3CvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/Wxt07nL OAKTrSiWMqJfSlg+JSMwHwYDVR0jBBgwFoAUPb3X7UEkgOk1XCfzwRO1ZA0xhrMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzMzk5L0JBNjhDMzI4NUNC ODExRUU4NTIzQkM3QUM0RjlBRTAyL1BiM1g3VUVrZ09rMVhDZnp3Uk8xWkEweGhy TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUGIzWDdVRWtnT2sxWENmendSTzFaQTB4aHJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzM5OS9CQTY4QzMyODVDQjgxMUVFODUyM0JDN0FDNEY5QUUwMi81NTM1OTZENjVE QjUxMUVFODQxQzE1MUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAsoyjDANBgkqhkiG9w0BAQsFAAOCAQEAi3OOzRrikJds5qkZ sYYAoLtXWRnzL3MjEEjlTTYLYd+ETU8YpQ27lI8FbtcA2JBOasQUOYUQEZW7fesz uDvP2fluUSbAUZiDa6OZRqoGeFPNi+nIhX29ebe+CrGzcjJhNGytOXZrN9VsECza LPgHRR49PVwxLMxBLWUiqmgaPCHnEFm6Xc1a5YetXV4ek/LE6oaRosLA95hrmJ44 4S+U8KcUhtCCfEMvMDENu8PZ31N28FD4DvbEuxl0Lx20hil3e3SAwf433DsMyaBG xfIkAqsirkwS1UjHiVtJBRGWsKIaM7XgqMQpF8+g9sBhBYwM5qUHgu1ypdIWoajT K32SIQ== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:54 2024 by rpki-client on console-fra.rpki-client.org