$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/5B917C28A2E011E9A98B0235C4F9AE02.roa File: 5B917C28A2E011E9A98B0235C4F9AE02.roa (raw, json) Hash identifier: nL1G6QX9sO47hs0tQUmWNASOgl/VhJm0a/th8GsoFuE= Subject key identifier: 21:F1:4B:64:8E:33:91:FC:C7:4A:A5:89:4B:92:36:21:48:AA:5D:1E Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 34DD Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/5B917C28A2E011E9A98B0235C4F9AE02.roa Signing time: Mon 22 Jul 2024 14:40:25 +0000 ROA not before: Mon 22 Jul 2024 14:40:25 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 17478 IP address blocks: 58.181.227.0/24 maxlen: 24 203.155.220.0/24 maxlen: 24 203.155.221.0/24 maxlen: 24 203.155.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13533 (0x34dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA Validity Not Before: Jul 22 14:40:25 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=669e6f59-6e40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9e:a1:78:a1:98:d5:c3:b8:c0:6f:84:56:53: 83:b7:43:3a:51:6d:6d:90:bc:48:dd:4a:53:d3:52: ec:ea:9f:16:2d:ca:9f:c4:5e:a2:c8:08:1d:e7:8a: ed:03:a7:8e:82:d1:4a:e6:86:1d:26:2a:e2:81:3b: d3:3b:cf:cb:de:47:2a:1c:f6:89:fa:98:ba:d2:d9: 8e:45:13:5f:ee:cb:20:15:bb:ba:e7:aa:07:4e:e9: a4:4a:a7:ac:4b:83:6f:1e:fd:bd:8e:9e:db:9b:25: 0d:cd:de:69:9b:d5:f7:a6:d0:5c:1b:8c:ff:f3:24: db:d2:f6:0a:b1:14:85:4b:9c:b7:26:1a:cd:3a:7f: 38:27:67:8f:7a:4f:e1:70:e0:2e:d3:03:e8:23:22: 04:9a:e9:25:c0:82:d7:6e:44:0c:c1:1b:67:ec:9c: 64:ec:2b:97:24:f0:0e:66:a7:53:f7:01:37:ff:c5: 9b:3c:da:de:f4:37:b2:ed:39:e8:52:2f:ab:02:30: f7:ba:fe:6d:3b:1b:7c:9c:48:42:e5:58:24:61:b8: b4:59:61:60:31:ae:55:7a:96:7d:a6:5e:df:e3:38: 29:6b:28:3d:1d:7a:da:b9:24:ca:cf:c1:6b:a4:4d: 5c:44:48:0c:6a:84:aa:4e:77:9f:07:78:0f:b8:0a: 18:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:F1:4B:64:8E:33:91:FC:C7:4A:A5:89:4B:92:36:21:48:AA:5D:1E X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/5B917C28A2E011E9A98B0235C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.181.227.0/24 203.155.220.0-203.155.222.255 Signature Algorithm: sha256WithRSAEncryption 03:e4:35:13:52:3e:00:1f:bd:5e:b4:09:89:50:cb:45:42:3d: 4b:82:9e:4b:97:24:6a:32:9d:b3:a1:22:84:26:77:dc:4f:e5: e0:c4:a6:84:2d:98:ab:6b:0d:ec:9f:05:46:fc:1b:16:c1:a7: 50:97:f7:62:9a:2f:81:20:16:65:9e:87:14:f0:84:dd:c5:f5: a9:6c:91:07:29:26:23:b3:0f:7a:c4:c8:a3:ab:cf:99:da:be: 7e:3a:7d:b0:78:61:93:9a:bd:5a:9d:e3:52:b3:70:11:52:6a: 69:97:29:d9:dd:58:ee:98:cf:12:89:47:4e:5c:9b:03:c9:67: 0c:83:fd:37:b1:ba:5c:e1:9d:3c:d1:12:64:9e:80:b2:7b:0e: 76:4c:18:8c:d7:5e:93:50:4c:fb:1e:5f:d0:73:51:a5:9f:33: ea:1d:5e:42:ac:1b:d0:86:ae:bd:c6:36:2a:fe:88:2a:ed:37: bc:5d:ad:62:20:81:b5:e4:c5:80:b6:46:2e:61:7d:6e:4f:9e: 55:b9:fc:df:ef:19:43:dc:bd:d4:f5:87:72:c0:78:b2:72:73: 21:df:08:72:97:e9:63:de:a5:f7:25:02:92:d5:35:80:74:93: 38:10:ad:15:15:89:9d:02:3f:f6:0f:70:8b:4f:cb:c8:ae:d4: a7:98:22:12 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICNN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjQwNzIyMTQ0MDI1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjllNmY1OS02ZTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx56heKGY1cO4wG+EVlODt0M6UW1tkLxI3UpT01Ls6p8WLcqfxF6iyAgd54rt A6eOgtFK5oYdJirigTvTO8/L3kcqHPaJ+pi60tmORRNf7ssgFbu656oHTumkSqes S4NvHv29jp7bmyUNzd5pm9X3ptBcG4z/8yTb0vYKsRSFS5y3JhrNOn84J2ePek/h cOAu0wPoIyIEmuklwILXbkQMwRtn7Jxk7CuXJPAOZqdT9wE3/8WbPNre9Dey7Tno Ui+rAjD3uv5tOxt8nEhC5VgkYbi0WWFgMa5VepZ9pl7f4zgpayg9HXrauSTKz8Fr pE1cREgMaoSqTnefB3gPuAoYXwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFCHxS2SO M5H8x0qliUuSNiFIql0eMB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvNUI5MTdDMjhB MkUwMTFFOUE5OEIwMjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAA6teMwDAMEAsub3AMEAMub3jANBgkqhkiG9w0BAQsFAAOC AQEAA+Q1E1I+AB+9XrQJiVDLRUI9S4KeS5ckajKds6EihCZ33E/l4MSmhC2Yq2sN 7J8FRvwbFsGnUJf3YpovgSAWZZ6HFPCE3cX1qWyRBykmI7MPesTIo6vPmdq+fjp9 sHhhk5q9Wp3jUrNwEVJqaZcp2d1Y7pjPEolHTlybA8lnDIP9N7G6XOGdPNESZJ6A snsOdkwYjNdek1BM+x5f0HNRpZ8z6h1eQqwb0IauvcY2Kv6IKu03vF2tYiCBteTF gLZGLmF9bk+eVbn83+8ZQ9y91PWHcsB4snJzId8IcpfpY96l9yUCktU1gHSTOBCt FRWJnQI/9g9wi0/LyK7Up5giEg== -----END CERTIFICATE-----Generated at Sun Feb 16 22:34:02 2025 by rpki-client