$ rpki-client -vvf rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/872F5E22835A11EE9FFEC146C4F9AE02.roa File: 872F5E22835A11EE9FFEC146C4F9AE02.roa (raw, json) Hash identifier: MIl/OMgyucN0EutmGHMH29cPoxdMejUcwQsKGNX20nw= Subject key identifier: 59:C2:2D:50:F2:20:AE:DF:C6:AF:94:C7:6E:9E:6C:DD:82:68:81:F1 Certificate issuer: /CN=A91C24C5/serialNumber=8A621BC77A3DD4170CB9103FF8788BC9090082D1 Certificate serial: CB Authority key identifier: 8A:62:1B:C7:7A:3D:D4:17:0C:B9:10:3F:F8:78:8B:C9:09:00:82:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/872F5E22835A11EE9FFEC146C4F9AE02.roa Signing time: Sat 07 Dec 2024 04:18:11 +0000 ROA not before: Sat 07 Dec 2024 04:18:11 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 55435 IP address blocks: 202.134.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.crl rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C24C5 Validity Not Before: Dec 7 04:18:11 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6753cc83-9277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:fe:ec:3d:47:00:ea:c1:7c:ec:f7:ca:03:ca: f6:c1:96:14:ba:68:63:fa:c9:b6:0c:56:27:92:52: 12:f6:33:05:d3:ba:07:0d:2a:9c:a1:8f:84:0a:d3: 6c:97:45:48:db:0e:de:86:f4:0e:d8:99:cb:85:e9: ea:29:f5:70:4c:ca:2b:66:90:1b:a6:65:7f:19:fa: 69:e1:cc:ef:78:be:03:86:95:2c:f9:d4:5c:48:88: ce:b6:f6:d3:46:0b:97:69:c9:b5:66:80:1b:55:0b: cd:2f:8a:d5:ea:df:dc:49:13:a8:48:88:15:f7:27: 1a:c4:68:90:d1:03:e3:f4:73:7e:ea:d3:fb:c9:b9: a3:c9:60:7e:8d:38:ba:0e:83:ac:61:6e:a4:35:02: c8:f8:0c:3e:79:31:4d:1e:91:fb:18:41:da:f4:5f: 58:76:48:6b:d9:68:9f:3c:d6:bb:55:8e:4f:b7:38: 73:b2:45:f7:48:85:b1:b2:e7:c9:31:c7:9f:23:30: e2:61:02:b9:56:d0:84:7a:59:dc:fe:d3:2d:eb:a7: 4e:15:7f:de:98:b7:e2:a7:0a:04:60:36:b3:16:6f: 16:c3:be:11:3c:47:89:32:d4:10:7d:72:96:87:75: 81:8b:62:7f:f8:0e:14:f3:03:15:c3:52:f4:28:25: c8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:C2:2D:50:F2:20:AE:DF:C6:AF:94:C7:6E:9E:6C:DD:82:68:81:F1 X509v3 Authority Key Identifier: keyid:8A:62:1B:C7:7A:3D:D4:17:0C:B9:10:3F:F8:78:8B:C9:09:00:82:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/872F5E22835A11EE9FFEC146C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.53.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:b7:fc:80:92:e4:c7:01:51:35:d0:d4:ec:ca:bb:07:6f:16: 58:b1:c3:e1:9f:ff:de:3a:4f:42:b7:56:35:7b:24:3e:00:7e: 50:4a:49:ed:07:c5:bc:9a:50:fc:96:fe:92:89:77:ea:24:23: 21:cf:e1:ce:4b:b6:bd:f3:89:dc:6e:f0:4b:1d:f5:93:f8:f9: 39:4a:eb:85:fd:69:b6:e8:64:5e:2f:19:69:61:e6:dc:67:61: 64:64:1d:81:8f:c5:9a:d7:e1:ac:4b:56:9d:d7:f7:3d:a4:d5: 9b:80:e7:66:aa:07:16:40:c7:9e:3c:6f:07:53:64:16:dc:e1: 6e:b1:d5:5d:d6:76:16:24:6a:47:33:2e:31:45:94:a0:e9:ea: 4a:5c:75:c6:de:75:1c:52:47:b4:6a:c6:0c:f5:00:33:ff:20: 9a:37:4d:2a:e9:eb:68:d4:19:e2:cf:9e:92:9a:b8:3d:aa:89: e4:cf:6c:c1:54:05:74:8d:0e:da:d0:e2:71:5f:4d:d6:2b:27: 75:84:3d:37:20:c3:16:37:91:c4:f8:10:7a:fe:e5:96:d2:50: e7:6a:57:bf:f2:84:2f:df:07:14:e3:ac:0e:1c:da:43:bc:87: c2:4c:26:c8:6f:2e:a0:e2:14:73:fe:14:f9:de:85:42:61:f9: 11:6b:c1:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI0QzUxMTAvBgNVBAUTKDhBNjIxQkM3N0EzREQ0MTcwQ0I5MTAzRkY4Nzg4QkM5 MDkwMDgyRDEwHhcNMjQxMjA3MDQxODExWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUzY2M4My05Mjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/7sPUcA6sF87PfKA8r2wZYUumhj+sm2DFYnklIS9jMF07oHDSqcoY+ECtNs l0VI2w7ehvQO2JnLhenqKfVwTMorZpAbpmV/Gfpp4czveL4DhpUs+dRcSIjOtvbT RguXacm1ZoAbVQvNL4rV6t/cSROoSIgV9ycaxGiQ0QPj9HN+6tP7ybmjyWB+jTi6 DoOsYW6kNQLI+Aw+eTFNHpH7GEHa9F9Ydkhr2WifPNa7VY5PtzhzskX3SIWxsufJ McefIzDiYQK5VtCEelnc/tMt66dOFX/emLfipwoEYDazFm8Ww74RPEeJMtQQfXKW h3WBi2J/+A4U8wMVw1L0KCXIQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFnCLVDy IK7fxq+Ux26ebN2CaIHxMB8GA1UdIwQYMBaAFIpiG8d6PdQXDLkQP/h4i8kJAILR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjRDNS9EMUUyRDk2ODgz NTkxMUVFQjI1Q0YxNDRDNEY5QUUwMi9pbUlieDNvOTFCY011UkFfLUhpTHlRa0Fn dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltSWJ4M285MUJjTXVSQV8tSGlMeVFrQWd0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI0QzUvRDFFMkQ5Njg4MzU5MTFFRUIyNUNGMTQ0QzRGOUFFMDIvODcyRjVFMjI4 MzVBMTFFRTlGRkVDMTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKhjUwDQYJKoZIhvcNAQELBQADggEBAC63/ICS5McBUTXQ 1OzKuwdvFlixw+Gf/946T0K3VjV7JD4AflBKSe0HxbyaUPyW/pKJd+okIyHP4c5L tr3zidxu8Esd9ZP4+TlK64X9abboZF4vGWlh5txnYWRkHYGPxZrX4axLVp3X9z2k 1ZuA52aqBxZAx548bwdTZBbc4W6x1V3WdhYkakczLjFFlKDp6kpcdcbedRxSR7Rq xgz1ADP/IJo3TSrp62jUGeLPnpKauD2qieTPbMFUBXSNDtrQ4nFfTdYrJ3WEPTcg wxY3kcT4EHr+5ZbSUOdqV7/yhC/fBxTjrA4c2kO8h8JMJshvLqDiFHP+FPnehUJh +RFrwdE= -----END CERTIFICATE-----Generated at Sat Apr 5 00:15:54 2025 by rpki-client