$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/834853DEA70E11EB95B8534CC4F9AE02.roa File: 834853DEA70E11EB95B8534CC4F9AE02.roa (raw, json) Hash identifier: 3ReFCclMPQMTswa6qM/DHe8OD36KCWoTarf3PrxCj8k= Subject key identifier: 83:D7:0E:F3:62:78:A8:84:51:51:BC:63:72:1E:3F:8C:29:5C:70:E1 Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3420 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/834853DEA70E11EB95B8534CC4F9AE02.roa Signing time: Mon 02 Oct 2023 15:10:57 +0000 ROA not before: Mon 02 Oct 2023 15:10:57 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 396982 IP address blocks: 117.121.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13344 (0x3420) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Oct 2 15:10:57 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651add81-58e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fd:61:dc:a1:c8:a4:aa:b7:c1:4a:bd:08:5a: 18:2a:1f:e1:3a:7e:6d:3a:de:e9:aa:cd:75:cf:ad: f1:8a:02:97:c7:8b:4d:c3:61:4c:4e:98:24:d2:ba: 57:3d:15:a9:9e:b9:8f:de:1a:f8:01:76:09:c3:92: bf:60:4d:db:8e:46:c3:95:76:da:c6:08:f5:71:d7: 3c:9a:2b:bf:65:f7:a9:22:12:d9:83:50:24:ab:03: 94:7f:3c:20:7c:7a:3c:83:dd:54:fc:34:29:5d:33: 93:36:59:12:40:47:35:7e:bd:1d:36:ca:1d:59:bc: ec:3d:12:61:ac:c8:bd:9a:a1:6f:1b:d8:7a:8a:7f: 12:b6:f1:ca:f6:9b:e3:6d:da:61:5d:b4:c4:4c:fd: 2e:2c:35:5d:6b:8f:73:70:60:02:79:80:78:14:3c: 4c:f4:c1:a9:dc:4f:a5:87:88:99:29:51:e9:86:ba: af:7b:cf:ea:7f:a6:11:c9:0e:39:79:2e:f5:80:22: 3b:8e:13:06:1e:67:e9:94:f2:6e:2d:97:96:96:d7: a2:f7:d6:dc:0c:62:42:26:7f:58:ae:2b:3d:a8:9a: 54:d5:f6:90:7b:04:a4:d7:01:fb:dc:6f:43:78:50: bb:c8:be:34:44:18:50:f0:ce:aa:a3:18:02:93:37: 11:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D7:0E:F3:62:78:A8:84:51:51:BC:63:72:1E:3F:8C:29:5C:70:E1 X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/834853DEA70E11EB95B8534CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.121.247.0/24 Signature Algorithm: sha256WithRSAEncryption 04:44:ee:66:b7:6f:29:ee:0e:ac:38:67:3d:7e:c1:7b:15:38: a5:0f:29:37:40:52:a9:d0:27:ac:1c:36:0f:86:5d:9f:28:f1: 0b:2d:be:3f:c4:f7:cc:e5:29:da:d0:f6:34:b9:ad:5d:42:03: 0e:a7:1f:6f:02:3b:2e:5c:0c:ec:2b:35:dc:5f:f9:e0:fc:62: 10:1e:a5:37:d6:93:9a:c8:b5:cb:5c:03:4c:44:96:99:68:29: f6:74:06:94:11:27:8f:19:01:fc:f3:02:22:9f:12:6d:0f:77: 64:7d:07:e0:e7:3f:ab:92:a7:2d:59:7c:5f:cb:7a:bd:ce:7b: 69:d9:e2:e9:95:c8:01:54:fe:3b:42:1e:c1:87:59:31:a6:a9: 78:d2:61:6c:1e:b2:bb:b0:1a:95:97:a8:93:3c:66:17:b9:c9: 1d:e2:7e:c3:94:13:4e:d5:af:ac:c9:e1:ff:ff:73:2d:00:7b: 94:9d:97:05:99:75:57:34:f8:e0:16:e8:5c:c7:4e:41:70:23: b3:df:26:a8:72:09:a4:36:77:dd:4b:6d:58:86:ac:da:72:9a: b7:27:a0:84:33:34:27:88:09:d0:24:17:de:25:91:c1:1a:93: 0c:34:42:42:a3:97:6e:3d:73:2c:8c:71:f2:8d:18:3d:d9:15: e4:53:cd:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjMxMDAyMTUxMDU3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFhZGQ4MS01OGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3P1h3KHIpKq3wUq9CFoYKh/hOn5tOt7pqs11z63xigKXx4tNw2FMTpgk0rpX PRWpnrmP3hr4AXYJw5K/YE3bjkbDlXbaxgj1cdc8miu/ZfepIhLZg1AkqwOUfzwg fHo8g91U/DQpXTOTNlkSQEc1fr0dNsodWbzsPRJhrMi9mqFvG9h6in8StvHK9pvj bdphXbTETP0uLDVda49zcGACeYB4FDxM9MGp3E+lh4iZKVHphrqve8/qf6YRyQ45 eS71gCI7jhMGHmfplPJuLZeWltei99bcDGJCJn9Yris9qJpU1faQewSk1wH73G9D eFC7yL40RBhQ8M6qoxgCkzcRJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIPXDvNi eKiEUVG8Y3IeP4wpXHDhMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvODM0ODUzREVB NzBFMTFFQjk1Qjg1MzRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1efcwDQYJKoZIhvcNAQELBQADggEBAARE7ma3bynuDqw4 Zz1+wXsVOKUPKTdAUqnQJ6wcNg+GXZ8o8Qstvj/E98zlKdrQ9jS5rV1CAw6nH28C Oy5cDOwrNdxf+eD8YhAepTfWk5rItctcA0xElploKfZ0BpQRJ48ZAfzzAiKfEm0P d2R9B+DnP6uSpy1ZfF/Ler3Oe2nZ4umVyAFU/jtCHsGHWTGmqXjSYWwesruwGpWX qJM8Zhe5yR3ifsOUE07Vr6zJ4f//cy0Ae5SdlwWZdVc0+OAW6FzHTkFwI7PfJqhy CaQ2d91LbViGrNpymrcnoIQzNCeICdAkF94lkcEakww0QkKjl249cyyMcfKNGD3Z FeRTzec= -----END CERTIFICATE-----Generated at Sat May 4 15:45:50 2024 by rpki-client on console-fra.rpki-client.org