$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/BBE9AEC0F55F11EEB6F1153CC4F9AE02.roa File: BBE9AEC0F55F11EEB6F1153CC4F9AE02.roa (raw, json) Hash identifier: LTJcypAu6Coib5lGymH2yoKTBwPNQa57v5jvPjgYjd4= Subject key identifier: E0:B5:97:E2:F7:F2:B3:64:CE:67:CA:A3:AB:75:8C:CC:DD:67:29:38 Certificate issuer: /CN=A91DC931/serialNumber=198C4364CF032C730D9585834982096D50A752C9 Certificate serial: 3A Authority key identifier: 19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/BBE9AEC0F55F11EEB6F1153CC4F9AE02.roa Signing time: Wed 17 Jul 2024 19:42:51 +0000 ROA not before: Wed 17 Jul 2024 19:42:51 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152668 IP address blocks: 117.55.254.0/24 maxlen: 24 117.55.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC931/serialNumber=198C4364CF032C730D9585834982096D50A752C9 Validity Not Before: Jul 17 19:42:51 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66981ebb-6018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:16:9f:b8:f9:71:d5:ff:ea:23:0c:69:72:28: 81:03:ac:dd:13:a9:b7:7e:3b:42:da:01:1d:61:7a: 18:b8:fd:1c:8b:71:10:f1:07:96:ed:7c:9a:cf:88: 2c:b2:62:7e:18:c6:de:41:48:27:37:39:65:45:93: e2:f6:dd:0b:ea:ac:03:fd:5f:07:67:51:0e:f3:e8: 9e:6d:db:63:0d:8a:36:15:1e:c5:5d:b2:a0:fc:db: b4:99:b6:c6:59:7e:14:40:04:f9:06:ec:53:56:56: c3:7e:5d:19:4a:00:a2:ee:57:8e:40:42:fc:ba:b0: 75:51:5a:f1:25:71:cd:c7:31:c0:ec:87:17:ab:dc: 60:46:f1:f6:01:9e:5b:c0:d1:19:8d:55:79:77:22: 42:51:3d:05:c3:d6:d4:2f:15:e2:83:5e:21:9c:b1: 91:d7:a0:2b:98:41:d2:d7:a9:a1:39:4a:a1:26:d8: cf:32:dd:cc:59:ed:58:7b:c2:eb:e7:3a:3b:13:2b: 89:36:89:c5:b7:62:69:d9:8b:ea:dd:e5:4e:e9:00: b0:64:1e:99:d2:02:1e:95:74:e8:1b:16:ca:ee:e0: c4:f5:6f:99:e3:b3:cc:d5:ed:2f:d5:2e:b8:59:d0: 7d:bf:d7:39:2b:a0:b5:bb:c8:cd:27:14:34:89:93: d2:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B5:97:E2:F7:F2:B3:64:CE:67:CA:A3:AB:75:8C:CC:DD:67:29:38 X509v3 Authority Key Identifier: keyid:19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/BBE9AEC0F55F11EEB6F1153CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.254.0/23 Signature Algorithm: sha256WithRSAEncryption 36:ef:67:db:dc:d7:90:5a:6f:1b:08:18:8b:8f:3b:66:89:ff: fb:9d:4d:83:4d:83:ca:cc:df:95:9a:bc:31:21:66:83:11:cd: 11:8a:51:df:45:b5:71:7d:fb:c8:e0:22:3c:6f:a7:fb:e3:d9: 0f:f3:b2:d8:7f:e8:45:a4:4a:3d:22:5a:57:ee:84:ab:bf:b4: 1e:c6:ed:bc:1d:d5:d2:e6:1a:72:28:f9:e6:79:0d:de:08:50: ff:a6:1c:60:dc:45:9c:2e:cd:fa:50:bb:c4:17:77:2e:18:a3: c9:45:49:e4:5e:2e:3f:fd:e3:6c:1c:40:39:5f:59:61:f3:c0: ef:9a:cb:20:6c:1a:a2:7c:08:67:83:6e:af:ce:6e:d7:9a:0c: 23:1f:5e:7e:05:b0:fd:6a:3f:6e:ef:85:c6:b6:4d:2b:39:27: fb:f0:1c:23:9f:9a:f3:70:24:20:46:db:1a:e4:96:de:d0:42: 90:e3:2c:21:d4:27:f2:5a:04:3f:9e:3c:c3:5c:40:22:94:5b: 29:93:95:6c:f4:a1:ab:5c:da:2c:7e:a2:3f:b5:16:07:9f:ce: e1:b1:b3:95:ea:0c:22:4b:22:e2:3d:36:01:65:29:05:e0:53: 58:d0:9d:66:af:64:ac:58:f4:32:01:17:8e:a0:dd:53:06:f6: f2:97:1b:6f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzkzMTExMC8GA1UEBRMoMTk4QzQzNjRDRjAzMkM3MzBEOTU4NTgzNDk4MjA5NkQ1 MEE3NTJDOTAeFw0yNDA3MTcxOTQyNTFaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OTgxZWJiLTYwMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHFp+4+XHV/+ojDGlyKIEDrN0Tqbd+O0LaAR1hehi4/RyLcRDxB5btfJrPiCyy Yn4Yxt5BSCc3OWVFk+L23QvqrAP9XwdnUQ7z6J5t22MNijYVHsVdsqD827SZtsZZ fhRABPkG7FNWVsN+XRlKAKLuV45AQvy6sHVRWvElcc3HMcDshxer3GBG8fYBnlvA 0RmNVXl3IkJRPQXD1tQvFeKDXiGcsZHXoCuYQdLXqaE5SqEm2M8y3cxZ7Vh7wuvn OjsTK4k2icW3YmnZi+rd5U7pALBkHpnSAh6VdOgbFsru4MT1b5njs8zV7S/VLrhZ 0H2/1zkroLW7yM0nFDSJk9IbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU4LWX4vfy s2TOZ8qjq3WMzN1nKTgwHwYDVR0jBBgwFoAUGYxDZM8DLHMNlYWDSYIJbVCnUskw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDOTMxLzRBMjVCNkEwRjU1 RDExRUU5QkUxOTc4MEM0RjlBRTAyL0dZeERaTThETEhNTmxZV0RTWUlKYlZDblVz ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR1l4RFpNOERMSE1ObFlXRFNZSUpiVkNuVXNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzkzMS80QTI1QjZBMEY1NUQxMUVFOUJFMTk3ODBDNEY5QUUwMi9CQkU5QUVDMEY1 NUYxMUVFQjZGMTE1M0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAXU3/jANBgkqhkiG9w0BAQsFAAOCAQEANu9n29zXkFpvGwgY i487Zon/+51Ng02DyszflZq8MSFmgxHNEYpR30W1cX37yOAiPG+n++PZD/Oy2H/o RaRKPSJaV+6Eq7+0HsbtvB3V0uYacij55nkN3ghQ/6YcYNxFnC7N+lC7xBd3Lhij yUVJ5F4uP/3jbBxAOV9ZYfPA75rLIGwaonwIZ4Nur85u15oMIx9efgWw/Wo/bu+F xrZNKzkn+/AcI5+a83AkIEbbGuSW3tBCkOMsIdQn8loEP548w1xAIpRbKZOVbPSh q1zaLH6iP7UWB5/O4bGzleoMIksi4j02AWUpBeBTWNCdZq9krFj0MgEXjqDdUwb2 8pcbbw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:25 2024 by rpki-client on console-ams.rpki-client.org