$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/F007DD9AD14B11EEAB2B5281C4F9AE02.roa File: F007DD9AD14B11EEAB2B5281C4F9AE02.roa (raw, json) Hash identifier: wd14w0lW4XH6kG1+QNgR8vCyKObixV7tjrATg+oVgqg= Subject key identifier: B9:61:51:4B:FC:37:13:1D:A7:93:83:BB:33:6D:5E:40:75:E0:2C:9E Certificate issuer: /CN=A91B7292/serialNumber=C2FC6448564EC6526B91B2FE23B4FD58342D20F4 Certificate serial: 02 Authority key identifier: C2:FC:64:48:56:4E:C6:52:6B:91:B2:FE:23:B4:FD:58:34:2D:20:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/F007DD9AD14B11EEAB2B5281C4F9AE02.roa Signing time: Thu 22 Feb 2024 06:30:58 +0000 ROA not before: Thu 22 Feb 2024 06:30:58 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 131164 IP address blocks: 123.108.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.crl rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7292/serialNumber=C2FC6448564EC6526B91B2FE23B4FD58342D20F4 Validity Not Before: Feb 22 06:30:58 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65d6ea21-0131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:83:a7:c8:a6:1f:a0:db:10:40:c9:f3:6a:30: 35:c8:b4:4d:7d:26:cb:f1:e7:e8:52:11:99:35:5e: cd:c0:ae:15:ec:e4:36:89:f7:de:3d:44:a1:31:ed: b2:e2:8e:77:6f:a7:bc:3b:42:db:ac:27:3b:4f:70: f3:6d:20:47:65:50:fe:80:a1:1e:8d:c2:bf:8b:b1: d2:58:b2:08:20:9f:de:0d:e4:e6:dc:ba:d4:93:07: 14:40:e7:99:12:bf:2d:8a:ea:ef:59:d7:10:60:af: 38:fb:4d:02:a4:83:08:f9:31:4b:c0:7c:f1:6a:23: 33:b1:60:d6:65:46:70:c6:76:6e:df:8e:1f:d0:da: d8:66:b8:44:f3:88:49:ac:11:f5:89:15:c2:c0:10: 08:84:35:62:81:a7:32:34:9c:6a:a6:b9:02:23:e5: 22:87:87:89:80:a7:84:97:2e:93:1c:10:bc:04:18: 47:90:aa:86:3c:e0:2d:90:3a:c3:28:08:0d:4c:f7: 63:29:81:21:29:63:b4:0e:8f:ec:16:8d:4b:42:07: 56:af:c9:80:44:11:bb:1a:af:02:01:73:2f:82:08: 53:2f:34:44:4f:b7:20:75:3e:d2:8c:ef:0e:9b:2d: 26:e6:b2:8c:5c:0f:e9:d8:e5:26:f6:cf:fc:af:81: 93:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:61:51:4B:FC:37:13:1D:A7:93:83:BB:33:6D:5E:40:75:E0:2C:9E X509v3 Authority Key Identifier: keyid:C2:FC:64:48:56:4E:C6:52:6B:91:B2:FE:23:B4:FD:58:34:2D:20:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/F007DD9AD14B11EEAB2B5281C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.108.126.0/24 Signature Algorithm: sha256WithRSAEncryption e5:64:51:e8:ae:b1:d7:25:10:d7:8d:f3:75:26:30:7b:47:a2: a2:97:3a:d7:fc:1a:a0:ba:59:4f:73:e6:6d:63:d1:52:5e:bf: 85:fb:8c:b4:5a:f4:32:37:1b:40:28:62:d1:3c:b9:5b:c3:20: 58:26:06:24:ba:0e:62:16:7a:c2:d6:8b:f0:59:a4:50:3d:68: 79:aa:e4:8c:94:ad:9b:20:bc:64:ee:91:23:31:13:1b:9e:7b: b7:d3:59:c8:96:b3:d3:6d:d1:d8:05:0d:1a:bc:38:52:4b:ad: ae:51:6b:30:34:3c:5b:6a:ed:02:b7:c7:92:b0:1a:ea:72:9d: 5b:ce:0b:28:c8:63:c6:6a:9d:81:18:18:35:af:c5:88:09:c7: 6b:d4:c4:1c:eb:e0:8f:f2:ca:ef:ee:c4:cf:27:8b:55:c1:8d: 6c:8a:ad:1d:e7:58:d5:92:3f:1e:0d:19:b3:87:51:aa:3d:e1: 5c:23:b4:4a:0b:2d:ac:94:4e:f6:47:aa:63:6a:17:17:1d:8d: 2c:44:4b:cb:81:55:77:b5:d9:22:6d:df:15:03:a8:5c:f2:7d: b3:80:0a:0e:c4:95:d4:38:eb:47:61:c1:f9:69:94:a7:3b:cb: 5f:a0:66:32:0c:ad:d5:65:de:e2:db:3e:e3:5a:1a:17:a3:b1: b3:f5:9c:46 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzI5MjExMC8GA1UEBRMoQzJGQzY0NDg1NjRFQzY1MjZCOTFCMkZFMjNCNEZENTgz NDJEMjBGNDAeFw0yNDAyMjIwNjMwNThaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDZlYTIxLTAxMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyg6fIph+g2xBAyfNqMDXItE19Jsvx5+hSEZk1Xs3ArhXs5DaJ9949RKEx7bLi jndvp7w7QtusJztPcPNtIEdlUP6AoR6Nwr+LsdJYsgggn94N5ObcutSTBxRA55kS vy2K6u9Z1xBgrzj7TQKkgwj5MUvAfPFqIzOxYNZlRnDGdm7fjh/Q2thmuETziEms EfWJFcLAEAiENWKBpzI0nGqmuQIj5SKHh4mAp4SXLpMcELwEGEeQqoY84C2QOsMo CA1M92MpgSEpY7QOj+wWjUtCB1avyYBEEbsarwIBcy+CCFMvNERPtyB1PtKM7w6b LSbmsoxcD+nY5Sb2z/yvgZOTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUuWFRS/w3 Ex2nk4O7M21eQHXgLJ4wHwYDVR0jBBgwFoAUwvxkSFZOxlJrkbL+I7T9WDQtIPQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3MjkyLzAzQjg4QURBRDE0 QTExRUU5OURFMkI1MkM0RjlBRTAyL3d2eGtTRlpPeGxKcmtiTC1JN1Q5V0RRdElQ US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd3Z4a1NGWk94bEpya2JMLUk3VDlXRFF0SVBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzI5Mi8wM0I4OEFEQUQxNEExMUVFOTlERTJCNTJDNEY5QUUwMi9GMDA3REQ5QUQx NEIxMUVFQUIyQjUyODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAHtsfjANBgkqhkiG9w0BAQsFAAOCAQEA5WRR6K6x1yUQ143z dSYwe0eiopc61/waoLpZT3PmbWPRUl6/hfuMtFr0MjcbQChi0Ty5W8MgWCYGJLoO YhZ6wtaL8FmkUD1oearkjJStmyC8ZO6RIzETG557t9NZyJaz023R2AUNGrw4Ukut rlFrMDQ8W2rtArfHkrAa6nKdW84LKMhjxmqdgRgYNa/FiAnHa9TEHOvgj/LK7+7E zyeLVcGNbIqtHedY1ZI/Hg0Zs4dRqj3hXCO0SgstrJRO9keqY2oXFx2NLERLy4FV d7XZIm3fFQOoXPJ9s4AKDsSV1DjrR2HB+WmUpzvLX6BmMgyt1WXe4ts+41oaF6Ox s/WcRg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:30 2024 by rpki-client on console-ams.rpki-client.org