$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/0DD6A56C073011EAAD272760C4F9AE02.roa File: 0DD6A56C073011EAAD272760C4F9AE02.roa (raw, json) Hash identifier: chzh/wLBlVn6UWj7Q8i4fp766bjmlVm4kExalm92FjM= Subject key identifier: 1C:7D:78:29:D4:7B:F1:3D:15:F9:48:B6:36:35:EE:4B:59:A4:86:4A Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0EA1 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/0DD6A56C073011EAAD272760C4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:11 +0000 ROA not before: Thu 29 Feb 2024 19:38:11 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397228 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 19:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3745 (0xea1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:11 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd23-8303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:63:1a:d9:d8:2f:65:ca:83:01:07:1e:7b:b5: d3:8c:e0:df:2f:b8:2f:dc:57:32:37:02:7f:e9:b3: 73:34:54:48:a9:0a:74:d0:08:92:67:a4:09:27:49: 56:ba:a9:68:a0:b8:ce:98:ef:e9:f4:4e:2b:2f:b9: 81:c5:c5:85:da:ef:b2:e6:8e:20:dc:a2:a8:6f:6f: f6:f9:c2:20:51:cd:46:7b:2a:f5:0c:b0:fd:f0:ea: 42:f1:f0:8d:23:13:59:4d:54:94:52:df:a6:70:19: 17:e8:96:e1:ea:43:07:61:fd:a8:54:1f:d7:41:f5: c9:96:5c:b9:49:9c:39:59:ce:8b:d2:35:d5:3b:95: 87:b7:f6:86:9c:73:d3:96:95:22:89:51:b2:a2:a8: 19:f6:bb:3e:65:ab:22:48:0f:e6:03:9f:9c:7f:93: 3c:1a:8c:55:69:cb:76:09:b1:94:41:36:32:d4:8e: 6f:35:88:2f:17:85:8c:ff:ad:5c:b0:6d:c5:b4:ae: 0d:f3:39:21:85:fe:2e:46:37:da:6c:5f:ac:f8:a1: bd:62:73:91:d0:25:a4:66:3b:df:d8:00:8f:d4:f4: ca:34:47:64:bf:90:65:e1:e1:61:80:3d:71:c0:37: 69:a2:8e:f4:7d:0d:5f:58:47:d1:c1:21:af:bd:29: d5:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:7D:78:29:D4:7B:F1:3D:15:F9:48:B6:36:35:EE:4B:59:A4:86:4A X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/0DD6A56C073011EAAD272760C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 58:84:f7:ae:8b:7c:cb:96:8f:df:65:50:d3:1f:95:01:dc:90: ff:f5:37:8e:47:e8:45:cc:b2:f3:16:6c:81:c8:7a:13:3b:9b: 25:32:04:ac:b3:75:7c:6f:de:ed:29:96:7f:46:15:b3:50:5c: 4d:78:5f:ea:4e:39:10:6f:d5:9b:8c:b2:a3:08:f9:c3:94:9b: 36:fb:3d:f6:6f:44:b2:dd:9a:71:3c:49:51:87:9b:47:17:e0: 27:94:9b:79:52:57:8a:4c:66:c3:84:c1:e4:fa:7e:86:8b:18: a8:15:5c:0f:52:35:1f:ad:98:be:0a:6c:4f:61:49:77:e6:b1: b8:e1:19:53:67:62:ed:6e:3c:cd:55:fb:b5:05:2c:b5:c4:2b: 65:6a:bd:85:e0:65:01:00:24:8d:e0:8d:7a:bb:09:15:a0:3c: 7d:58:64:70:38:34:32:1f:d1:25:ab:62:6d:fd:3b:1f:12:61: 34:47:ea:a5:93:6b:0c:a4:19:6d:96:b5:ce:e9:ff:21:92:44: b2:44:2e:49:15:d1:9b:12:95:74:26:32:c5:97:15:8c:41:aa: 77:ae:2f:7f:11:f1:87:63:f5:45:d6:14:d8:13:0b:70:11:70: 6c:95:28:6a:cd:eb:d0:24:5b:5c:d0:a0:ab:0b:cf:8a:13:18: 5f:af:f4:ba -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODExWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQyMy04MzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42Ma2dgvZcqDAQcee7XTjODfL7gv3FcyNwJ/6bNzNFRIqQp00AiSZ6QJJ0lW uqlooLjOmO/p9E4rL7mBxcWF2u+y5o4g3KKob2/2+cIgUc1Geyr1DLD98OpC8fCN IxNZTVSUUt+mcBkX6Jbh6kMHYf2oVB/XQfXJlly5SZw5Wc6L0jXVO5WHt/aGnHPT lpUiiVGyoqgZ9rs+ZasiSA/mA5+cf5M8GoxVact2CbGUQTYy1I5vNYgvF4WM/61c sG3FtK4N8zkhhf4uRjfabF+s+KG9YnOR0CWkZjvf2ACP1PTKNEdkv5Bl4eFhgD1x wDdpoo70fQ1fWEfRwSGvvSnV9QIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFBx9eCnU e/E9FflItjY17ktZpIZKMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvMERENkE1NkMw NzMwMTFFQUFEMjcyNzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAFiE966LfMuW j99lUNMflQHckP/1N45H6EXMsvMWbIHIehM7myUyBKyzdXxv3u0pln9GFbNQXE14 X+pOORBv1ZuMsqMI+cOUmzb7PfZvRLLdmnE8SVGHm0cX4CeUm3lSV4pMZsOEweT6 foaLGKgVXA9SNR+tmL4KbE9hSXfmsbjhGVNnYu1uPM1V+7UFLLXEK2VqvYXgZQEA JI3gjXq7CRWgPH1YZHA4NDIf0SWrYm39Ox8SYTRH6qWTawykGW2Wtc7p/yGSRLJE LkkV0ZsSlXQmMsWXFYxBqneuL38R8Ydj9UXWFNgTC3ARcGyVKGrN69AkW1zQoKsL z4oTGF+v9Lo= -----END CERTIFICATE-----Generated at Thu Apr 18 20:34:37 2024 by rpki-client on console-ams.rpki-client.org