$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/5870952EC53011EA98D1D651C4F9AE02.roa File: 5870952EC53011EA98D1D651C4F9AE02.roa (raw, json) Hash identifier: qlkxrtDkdB7rHBdwPP73Uk43WLSuezxmGhVTKZPNFac= Subject key identifier: 8A:58:58:F3:10:7F:36:A0:32:66:B7:C9:D3:06:1A:FC:AE:02:A8:E7 Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 102B Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/5870952EC53011EA98D1D651C4F9AE02.roa Signing time: Tue 30 Apr 2024 18:26:28 +0000 ROA not before: Tue 30 Apr 2024 18:26:28 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 10141 IP address blocks: 121.97.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4139 (0x102b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: Apr 30 18:26:28 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663137d4-395f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6e:bd:f2:c4:97:3e:50:66:f5:8d:ed:c4:22: 3b:a1:ef:61:64:50:9e:bb:30:11:a0:09:ba:0d:c1: 75:d7:09:75:f1:82:40:68:3f:a1:b7:b3:6c:90:34: 5e:06:1d:b9:a7:bf:75:55:1c:14:c8:97:46:06:d9: bd:bd:ab:56:d5:92:8b:27:9e:69:f6:a5:c8:d4:78: ef:25:41:44:c6:69:d8:9d:c4:26:a5:ce:6a:4d:8b: 0a:50:a5:79:a1:32:fa:0b:cc:8b:05:97:57:96:04: c5:bb:91:0d:17:e1:eb:ad:3e:0a:9b:d5:86:ad:22: a4:5f:b7:f2:da:a2:b2:83:68:42:29:62:da:3b:4f: f7:fb:ef:05:53:88:ae:22:84:37:a3:09:fa:fb:18: bd:c4:dc:0c:b9:49:2b:bb:4e:2a:b8:09:f1:ea:ba: bb:e8:64:67:37:a2:a5:0d:fe:c8:c1:2f:ac:70:60: 0d:00:9d:20:f8:cd:a9:d4:b2:45:3c:ab:dd:d9:0f: 9d:33:71:b6:27:45:39:29:d7:48:87:9f:1f:98:87: 12:98:0f:0b:4f:0a:11:c6:a2:41:e2:bb:6a:0f:76: f2:51:66:b3:33:8f:3f:72:f8:ab:79:e3:b7:2e:d1: 19:bf:23:11:b4:9b:70:da:09:34:c1:13:d5:61:a5: 04:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:58:58:F3:10:7F:36:A0:32:66:B7:C9:D3:06:1A:FC:AE:02:A8:E7 X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/5870952EC53011EA98D1D651C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.97.36.0/24 Signature Algorithm: sha256WithRSAEncryption a6:d7:7f:fd:77:9e:b3:c5:78:c5:57:9d:99:a7:3b:c0:4d:7b: bd:b4:5c:c8:90:fb:c6:a2:0e:c5:ec:17:3d:52:4c:06:1b:32: 9e:53:bd:cb:0d:52:66:12:18:93:c5:0f:0f:ef:6c:dc:79:f2: 74:f5:bc:b4:33:66:06:0d:70:a6:9b:a3:bf:49:7f:7c:e6:c9: 4e:92:ce:a5:bf:0a:a2:73:38:ac:e4:f5:b1:7f:26:27:9c:1b: 65:6c:6a:6d:75:36:3c:a0:a3:95:05:15:e9:b3:7c:39:7e:42: 84:49:67:18:4d:3f:5d:11:15:7a:38:5f:7f:50:d7:b0:bf:8c: f4:67:3c:7d:79:c4:10:a6:b3:ee:21:d3:77:a4:b1:c7:97:73: ef:39:10:83:52:61:ae:54:45:17:8e:6b:50:c3:91:9b:18:22: 41:05:87:df:d6:f1:41:62:9f:e9:94:31:9d:c9:d7:94:59:03: e4:29:27:f0:57:a2:ed:bf:9d:cb:38:5f:4a:ed:0d:9d:34:2d: 63:c0:30:38:9f:f6:3f:f4:8a:b8:6f:15:9f:93:28:18:61:16: f7:61:72:38:74:13:6c:b5:92:78:91:cb:b0:0d:d1:b5:9c:99: 10:97:e3:d8:73:4f:ba:30:9c:40:36:cd:85:13:94:d2:91:27: 5e:56:3f:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICECswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjQwNDMwMTgyNjI4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMzdkNC0zOTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2698sSXPlBm9Y3txCI7oe9hZFCeuzARoAm6DcF11wl18YJAaD+ht7NskDRe Bh25p791VRwUyJdGBtm9vatW1ZKLJ55p9qXI1HjvJUFExmnYncQmpc5qTYsKUKV5 oTL6C8yLBZdXlgTFu5ENF+HrrT4Km9WGrSKkX7fy2qKyg2hCKWLaO0/3++8FU4iu IoQ3own6+xi9xNwMuUkru04quAnx6rq76GRnN6KlDf7IwS+scGANAJ0g+M2p1LJF PKvd2Q+dM3G2J0U5KddIh58fmIcSmA8LTwoRxqJB4rtqD3byUWazM48/cvireeO3 LtEZvyMRtJtw2gk0wRPVYaUEqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIpYWPMQ fzagMma3ydMGGvyuAqjnMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvNTg3MDk1MkVD NTMwMTFFQTk4RDFENjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB5YSQwDQYJKoZIhvcNAQELBQADggEBAKbXf/13nrPFeMVX nZmnO8BNe720XMiQ+8aiDsXsFz1STAYbMp5TvcsNUmYSGJPFDw/vbNx58nT1vLQz ZgYNcKabo79Jf3zmyU6SzqW/CqJzOKzk9bF/JiecG2Vsam11Njygo5UFFemzfDl+ QoRJZxhNP10RFXo4X39Q17C/jPRnPH15xBCms+4h03eksceXc+85EINSYa5URReO a1DDkZsYIkEFh9/W8UFin+mUMZ3J15RZA+QpJ/BXou2/ncs4X0rtDZ00LWPAMDif 9j/0irhvFZ+TKBhhFvdhcjh0E2y1kniRy7AN0bWcmRCX49hzT7ownEA2zYUTlNKR J15WPxk= -----END CERTIFICATE-----Generated at Sat May 18 19:15:25 2024 by rpki-client on console-ams.rpki-client.org