$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/AD17704445F611EE97DF317CC4F9AE02.roa File: AD17704445F611EE97DF317CC4F9AE02.roa (raw, json) Hash identifier: z1yiyQwN0DqJrBGmQfoo/wLic8yaS6jpAe3MuePiWjE= Subject key identifier: 3B:82:FE:E5:02:D8:B5:12:30:47:63:26:1D:65:44:B8:39:B0:7E:25 Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 028B Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/AD17704445F611EE97DF317CC4F9AE02.roa Signing time: Tue 05 Dec 2023 03:13:48 +0000 ROA not before: Tue 05 Dec 2023 03:13:48 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 137549 IP address blocks: 125.254.120.0/21 maxlen: 21 125.254.120.0/22 maxlen: 22 125.254.124.0/22 maxlen: 22 202.169.16.0/21 maxlen: 21 202.169.16.0/22 maxlen: 22 202.169.16.0/23 maxlen: 23 202.169.18.0/23 maxlen: 23 202.169.20.0/23 maxlen: 23 202.169.20.0/24 maxlen: 24 202.169.21.0/24 maxlen: 24 202.169.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: Dec 5 03:13:48 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656e956c-4be5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0e:a0:e4:c1:18:4f:9a:7e:ae:2e:f4:37:91: 10:46:e6:49:51:61:42:34:3f:81:c5:37:94:01:32: a4:27:fb:7d:c2:30:59:4d:57:06:1b:d3:b6:ac:15: c9:0e:64:2a:99:84:f0:93:b1:5a:60:fc:a8:7b:5f: 66:c5:24:98:78:c1:0d:96:90:ad:f0:3e:68:56:80: 12:c8:32:52:b4:53:98:c8:e9:52:40:0f:68:e3:78: 29:94:2f:a2:11:63:4e:df:2b:09:7f:b3:7d:43:3a: 97:3c:62:df:7c:61:11:46:1d:01:c7:66:03:f0:9d: 76:31:02:e4:3d:bc:2e:af:ae:d1:69:74:08:c8:a8: a0:3b:ba:81:02:6c:d9:cd:7d:39:27:7a:21:d4:85: f1:cb:54:6a:6c:95:64:bc:cb:c7:6a:11:4f:7d:e2: fa:23:c0:76:a8:16:a9:29:8b:de:45:5c:c7:88:0b: 1b:af:02:3e:47:5e:66:85:66:d4:0c:96:ad:6a:30: f3:59:c2:5b:e8:be:51:d8:e2:f9:6d:de:85:6c:03: ed:b6:41:d4:70:a4:13:2d:41:24:da:f8:08:ae:9c: f5:30:8f:19:db:45:d5:21:f7:df:3e:1e:8d:83:32: 78:6f:cc:11:0c:0c:fc:ec:7d:16:61:6f:d5:a2:5a: 2e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:82:FE:E5:02:D8:B5:12:30:47:63:26:1D:65:44:B8:39:B0:7E:25 X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/AD17704445F611EE97DF317CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.254.120.0/21 202.169.16.0/21 Signature Algorithm: sha256WithRSAEncryption 9e:33:5c:00:71:01:60:1e:d9:44:d3:35:ff:d0:a1:b4:b0:44: a1:95:14:98:c3:20:73:f9:44:72:ed:96:08:13:e7:f1:05:0c: 05:cb:eb:5b:e8:3c:f5:f6:8d:74:59:55:6d:30:48:04:e8:c4: 8b:b4:09:62:48:62:15:2a:54:6f:d9:14:20:da:1a:2c:b4:b9: 80:07:9d:61:3e:81:e2:d6:1c:84:d7:7b:eb:60:1e:79:64:73: c7:cf:5e:ca:1c:e3:07:44:e3:fa:2b:33:ab:e8:e6:a4:c0:2c: 73:e4:8a:e9:e4:25:10:a3:6b:42:36:93:ab:fb:db:77:60:05: 3b:02:bd:a5:83:20:11:b8:b6:d1:a4:34:38:c9:64:8e:4e:5b: c5:d3:69:20:e5:51:d1:39:eb:fa:03:28:11:2f:16:d3:c5:73: 4d:58:1f:f8:f5:8e:21:ad:de:3e:49:7a:75:66:42:31:a9:df: b2:bc:7b:47:37:5f:e7:86:b7:42:ca:4c:2f:5f:91:e6:22:38: dc:7c:b0:ba:46:41:2a:ce:4d:a1:c8:c3:08:57:5b:a6:e2:19: 59:4a:5a:39:fb:ed:e3:aa:dd:d4:0f:d1:28:e9:81:72:fc:bc: 37:cb:62:81:26:b5:57:16:a2:a1:47:2c:4f:1d:28:bf:87:5a: f5:16:d0:b8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjMxMjA1MDMxMzQ4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlOTU2Yy00YmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Q6g5MEYT5p+ri70N5EQRuZJUWFCND+BxTeUATKkJ/t9wjBZTVcGG9O2rBXJ DmQqmYTwk7FaYPyoe19mxSSYeMENlpCt8D5oVoASyDJStFOYyOlSQA9o43gplC+i EWNO3ysJf7N9QzqXPGLffGERRh0Bx2YD8J12MQLkPbwur67RaXQIyKigO7qBAmzZ zX05J3oh1IXxy1RqbJVkvMvHahFPfeL6I8B2qBapKYveRVzHiAsbrwI+R15mhWbU DJatajDzWcJb6L5R2OL5bd6FbAPttkHUcKQTLUEk2vgIrpz1MI8Z20XVIfffPh6N gzJ4b8wRDAz87H0WYW/Volou0wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDuC/uUC 2LUSMEdjJh1lRLg5sH4lMB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDEyMTYvREM3ODI2OENCOTRCMTFFQzgzMkI3NDE5QzRGOUFFMDIvQUQxNzcwNDQ0 NUY2MTFFRTk3REYzMTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAN9/ngDBAPKqRAwDQYJKoZIhvcNAQELBQADggEBAJ4zXABx AWAe2UTTNf/QobSwRKGVFJjDIHP5RHLtlggT5/EFDAXL61voPPX2jXRZVW0wSATo xIu0CWJIYhUqVG/ZFCDaGiy0uYAHnWE+geLWHITXe+tgHnlkc8fPXsoc4wdE4/or M6vo5qTALHPkiunkJRCja0I2k6v723dgBTsCvaWDIBG4ttGkNDjJZI5OW8XTaSDl UdE56/oDKBEvFtPFc01YH/j1jiGt3j5JenVmQjGp37K8e0c3X+eGt0LKTC9fkeYi ONx8sLpGQSrOTaHIwwhXW6biGVlKWjn77eOq3dQP0SjpgXL8vDfLYoEmtVcWoqFH LE8dKL+HWvUW0Lg= -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:44 2024 by rpki-client on console-fra.rpki-client.org