$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/8207CCA0906C11EC86E8B711C4F9AE02.roa File: 8207CCA0906C11EC86E8B711C4F9AE02.roa (raw, json) Hash identifier: 9qCo4gewXoo4/qYQLpJ3mS2E+hjvvsdSgOLjxvHk+D4= Subject key identifier: 1F:58:F3:29:67:D9:FA:E8:87:D8:33:43:31:C3:57:CE:77:C3:24:DC Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 34AE Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/8207CCA0906C11EC86E8B711C4F9AE02.roa Signing time: Fri 08 Dec 2023 14:40:35 +0000 ROA not before: Fri 08 Dec 2023 14:40:35 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 24456 IP address blocks: 121.58.227.0/27 maxlen: 27 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:32:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13486 (0x34ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Dec 8 14:40:35 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65732ae3-5274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:76:4c:ab:53:12:6f:45:58:e9:32:0c:f2:22: 5d:e5:ab:f9:e7:74:b2:6d:8a:d6:2f:fc:c2:f7:94: 71:cc:a6:11:f1:ea:22:5a:85:bf:57:9b:bb:be:aa: 77:71:f1:90:e6:2d:8a:10:a0:96:c1:e1:4f:29:0a: d1:44:64:f5:c6:74:fa:b8:58:72:95:af:8b:b9:9e: 7a:e7:bb:9b:25:c8:b6:7e:bb:e0:49:00:27:e8:3f: a5:2a:c2:2f:28:29:4c:c6:eb:62:3c:d9:e4:a7:59: eb:07:2f:a8:c1:06:b8:64:9a:a0:8c:26:24:23:36: 2e:44:8c:52:f0:3a:c1:ac:14:0a:83:70:6e:d2:c7: b0:0d:b5:6d:83:8e:ac:75:c1:e4:2e:76:71:35:20: 7b:eb:fc:d8:95:d1:1a:64:90:53:ec:6e:7b:a9:d9: 4b:1c:49:be:a7:85:d8:43:18:a3:51:1e:28:f6:31: c9:e3:31:01:c4:1c:6d:37:4a:56:0f:da:de:88:d2: fc:3d:69:e4:b7:58:c0:28:ce:92:31:fd:40:af:56: 1d:de:81:04:fb:d6:c3:19:e5:11:d2:f4:3b:04:c9: ff:29:e2:b0:9c:b3:0b:8a:b6:a9:6e:df:6c:27:a1: 75:65:20:d0:b5:5f:67:dd:33:73:3d:1f:29:d8:05: 49:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:58:F3:29:67:D9:FA:E8:87:D8:33:43:31:C3:57:CE:77:C3:24:DC X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/8207CCA0906C11EC86E8B711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.58.227.0/27 Signature Algorithm: sha256WithRSAEncryption 17:4f:4b:42:b5:f3:b0:bb:5e:bf:94:ba:39:8c:39:2a:51:a0: d0:9e:36:55:21:b9:a7:aa:91:7e:1e:40:be:76:3a:95:83:b9: 8b:03:56:dc:94:dd:56:54:ef:48:b6:55:e9:5f:b9:28:41:80: f0:7c:51:dd:d6:bb:ed:17:8c:bc:51:c2:f9:6e:ff:ad:d3:61: 70:80:b7:76:04:52:f3:43:30:ad:53:8d:f8:fd:b9:a9:54:9f: 21:f1:03:7d:12:6d:e1:9f:bc:12:3a:c4:b1:8c:fb:f3:9b:e1: c4:6e:74:cd:3e:eb:0a:4b:7c:33:cf:1f:5f:22:66:ee:7c:0e: 5e:f8:0c:b6:12:60:0b:9f:c2:7b:77:5d:08:70:11:da:59:f7: 63:6b:17:a4:ff:46:66:cf:6d:1d:0c:82:52:69:aa:18:9f:9c: e2:24:80:86:36:7e:c2:6f:b6:ce:87:00:59:c1:fd:b9:3b:d5: 08:7e:e1:82:68:54:fb:64:a9:ee:e0:87:58:d7:39:bb:e1:b5: d1:e7:43:f9:63:77:7e:5b:ac:3a:88:e3:0d:fe:5a:6c:95:fa: 37:7f:8b:a4:0e:c6:0c:95:b2:c0:3d:da:61:a1:ff:38:a4:e2: 77:2a:2c:0d:6a:ae:1a:39:0a:c3:42:e1:13:77:73:29:71:b1: 46:67:a5:e2 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICNK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjMxMjA4MTQ0MDM1WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczMmFlMy01Mjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXZMq1MSb0VY6TIM8iJd5av553SybYrWL/zC95RxzKYR8eoiWoW/V5u7vqp3 cfGQ5i2KEKCWweFPKQrRRGT1xnT6uFhyla+LuZ5657ubJci2frvgSQAn6D+lKsIv KClMxutiPNnkp1nrBy+owQa4ZJqgjCYkIzYuRIxS8DrBrBQKg3Bu0sewDbVtg46s dcHkLnZxNSB76/zYldEaZJBT7G57qdlLHEm+p4XYQxijUR4o9jHJ4zEBxBxtN0pW D9reiNL8PWnkt1jAKM6SMf1Ar1Yd3oEE+9bDGeUR0vQ7BMn/KeKwnLMLirapbt9s J6F1ZSDQtV9n3TNzPR8p2AVJyQIDAQABo4ICljCCApIwHQYDVR0OBBYEFB9Y8yln 2froh9gzQzHDV853wyTcMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI0NTQvRDRDMzBCNDIxRDg3MTFFMkExOTgyMkUwMDhCMDJDRDIvODIwN0NDQTA5 MDZDMTFFQzg2RThCNzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgABMAcDBQV5OuMAMA0GCSqGSIb3DQEBCwUAA4IBAQAXT0tCtfOwu16/ lLo5jDkqUaDQnjZVIbmnqpF+HkC+djqVg7mLA1bclN1WVO9ItlXpX7koQYDwfFHd 1rvtF4y8UcL5bv+t02FwgLd2BFLzQzCtU434/bmpVJ8h8QN9Em3hn7wSOsSxjPvz m+HEbnTNPusKS3wzzx9fImbufA5e+Ay2EmALn8J7d10IcBHaWfdjaxek/0Zmz20d DIJSaaoYn5ziJICGNn7Cb7bOhwBZwf25O9UIfuGCaFT7ZKnu4IdY1zm74bXR50P5 Y3d+W6w6iOMN/lpslfo3f4ukDsYMlbLAPdphof84pOJ3KiwNaq4aOQrDQuETd3Mp cbFGZ6Xi -----END CERTIFICATE-----Generated at Fri May 31 16:41:44 2024 by rpki-client on console-ams.rpki-client.org