$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/D97BFEC0175911EC87322F85C4F9AE02.roa File: D97BFEC0175911EC87322F85C4F9AE02.roa (raw, json) Hash identifier: zujVYZo1Gy2knnWLbno31U8SLXqyX16vRQYdNEeh8/g= Subject key identifier: D8:82:C9:BE:DD:9C:7D:A3:1E:C1:DD:D3:F1:91:9C:80:B3:A1:98:E4 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 052D Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/D97BFEC0175911EC87322F85C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:48 +0000 ROA not before: Tue 03 Sep 2024 01:14:48 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132581 IP address blocks: 119.225.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1325 (0x52d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1 Validity Not Before: Sep 3 01:14:48 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d66308-7df3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:85:1a:42:a7:23:7f:0f:b4:8c:87:03:a7:a9: d8:77:60:46:82:f0:4a:cd:63:d6:2e:61:2b:c0:e4: 4e:6b:53:b8:b6:ac:9f:80:6f:b8:58:ba:8f:df:40: 5f:bc:ce:26:9a:7b:ec:d8:14:e0:2e:2d:66:35:f3: 2a:21:c9:ea:8f:55:ee:0a:27:8b:e2:c9:7a:9e:1b: 3e:bd:9b:7a:08:01:50:23:3d:08:6e:8a:a3:bf:af: 2d:73:12:1e:46:3f:64:c2:ba:c0:73:3b:4b:36:58: e8:fc:8a:20:67:f6:76:c3:69:45:91:fa:9b:51:9c: 58:bc:82:66:76:59:59:b1:7f:b1:76:c7:1a:36:98: 86:01:5b:a9:45:6c:3c:3b:9a:a9:59:b2:53:a0:73: 86:f8:76:cd:5c:34:ef:71:a0:57:17:37:a1:5e:78: bc:0b:6b:00:0e:3d:04:73:26:f6:e8:8e:38:7c:df: 8a:ea:7c:0c:bf:66:db:fe:a0:32:30:a5:6e:87:f4: 45:0f:a0:1e:27:e8:7c:d4:ff:09:92:36:f0:80:bd: 70:3b:96:f7:14:47:f2:ea:9f:2a:6c:47:91:c2:2d: d0:1a:fd:e6:fc:7d:4a:68:29:e8:2d:0e:ab:c0:42: 04:82:f4:57:94:b1:d9:22:4d:55:8d:be:41:3c:1f: ce:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:82:C9:BE:DD:9C:7D:A3:1E:C1:DD:D3:F1:91:9C:80:B3:A1:98:E4 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/D97BFEC0175911EC87322F85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.225.129.0/24 Signature Algorithm: sha256WithRSAEncryption 90:9f:82:80:44:62:1c:4e:81:ff:81:a6:77:2c:a4:f7:f7:58: 72:18:bd:e8:78:ea:4d:56:6e:1a:75:3a:2b:aa:8b:cc:04:e2: 99:74:55:6e:a7:dd:29:98:66:6d:bf:52:98:75:e3:bf:fa:9d: 3c:1e:88:fb:49:39:d0:55:1e:ac:68:85:32:a8:11:09:4f:9d: 82:e6:e8:70:16:30:ff:29:3f:c8:44:68:92:b5:e3:42:ba:7e: 22:be:94:45:3b:33:49:52:e8:8a:09:fd:69:54:8d:4a:a6:64: f6:a1:7d:9f:0e:ad:a6:1c:f0:69:f4:27:89:96:71:55:47:ac: 1d:8f:29:a4:c8:09:71:ea:e4:6c:4b:85:a2:4b:9d:f6:60:3c: 5c:18:8f:52:a2:b6:58:85:3e:6a:32:fa:ae:23:b3:da:be:70: a6:e3:f1:9c:04:8a:a9:8b:ee:3a:e6:bd:41:73:2b:46:32:18: 72:1a:c1:09:82:4b:5d:b6:8c:84:4a:92:84:a0:18:aa:66:ff: f9:7c:61:01:fd:37:39:2a:a7:24:70:0f:1d:bb:27:c8:0c:40: 21:2e:d2:43:c3:2d:a2:4d:84:5c:3e:ed:88:0f:24:88:aa:6c: a2:d7:46:32:d8:a2:0b:57:28:21:22:d9:41:c0:25:dd:f9:f0: e1:0d:e1:7d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjQwOTAzMDExNDQ4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjMwOC03ZGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkoUaQqcjfw+0jIcDp6nYd2BGgvBKzWPWLmErwOROa1O4tqyfgG+4WLqP30Bf vM4mmnvs2BTgLi1mNfMqIcnqj1XuCieL4sl6nhs+vZt6CAFQIz0Iboqjv68tcxIe Rj9kwrrAcztLNljo/IogZ/Z2w2lFkfqbUZxYvIJmdllZsX+xdscaNpiGAVupRWw8 O5qpWbJToHOG+HbNXDTvcaBXFzehXni8C2sADj0Ecyb26I44fN+K6nwMv2bb/qAy MKVuh/RFD6AeJ+h81P8JkjbwgL1wO5b3FEfy6p8qbEeRwi3QGv3m/H1KaCnoLQ6r wEIEgvRXlLHZIk1Vjb5BPB/OxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNiCyb7d nH2jHsHd0/GRnICzoZjkMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvRDk3QkZFQzAx NzU5MTFFQzg3MzIyRjg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB34YEwDQYJKoZIhvcNAQELBQADggEBAJCfgoBEYhxOgf+B pncspPf3WHIYveh46k1Wbhp1Oiuqi8wE4pl0VW6n3SmYZm2/Uph147/6nTweiPtJ OdBVHqxohTKoEQlPnYLm6HAWMP8pP8hEaJK140K6fiK+lEU7M0lS6IoJ/WlUjUqm ZPahfZ8OraYc8Gn0J4mWcVVHrB2PKaTICXHq5GxLhaJLnfZgPFwYj1KitliFPmoy +q4js9q+cKbj8ZwEiqmL7jrmvUFzK0YyGHIawQmCS122jIRKkoSgGKpm//l8YQH9 NzkqpyRwDx27J8gMQCEu0kPDLaJNhFw+7YgPJIiqbKLXRjLYogtXKCEi2UHAJd35 8OEN4X0= -----END CERTIFICATE-----Generated at Sun Feb 16 20:22:10 2025 by rpki-client