$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/42C9FE0C77ED11EBBFBAF568C4F9AE02.roa File: 42C9FE0C77ED11EBBFBAF568C4F9AE02.roa (raw, json) Hash identifier: w6jxhdQtTNOwHu4Z9zXxDBnMSEsbHnP/UkRYuwortdo= Subject key identifier: 21:E9:01:2C:D5:17:7A:E1:3C:91:F4:6C:59:BB:59:23:0D:43:50:10 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0E91 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/42C9FE0C77ED11EBBFBAF568C4F9AE02.roa Signing time: Thu 29 Feb 2024 19:37:55 +0000 ROA not before: Thu 29 Feb 2024 19:37:55 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 19905 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3729 (0xe91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:37:55 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd13-1924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:7e:fb:0b:41:81:2e:49:8d:00:4b:e7:e8:82: 3b:9d:00:f8:96:cd:e5:ed:30:a1:a8:2c:b1:6a:50: 88:b3:fc:0e:fb:de:5e:04:03:fa:3e:9f:59:b6:a3: e7:7a:d7:bc:46:6a:b5:b4:5d:57:1d:7c:df:c7:10: 21:0b:34:cc:65:88:27:12:51:fa:fc:f9:18:93:f0: aa:a1:b7:f0:43:ab:71:a8:99:96:19:40:65:9c:08: e9:d6:b0:e4:79:62:84:28:19:bb:90:e3:a1:9e:3e: 10:b1:e5:69:57:ea:2c:ce:e2:72:6c:e9:e1:32:76: f2:6e:63:6e:10:d2:41:a4:2a:b3:f4:fa:75:78:f5: 2b:f7:9d:cb:d3:f2:27:9e:7e:76:c4:7e:9c:14:d7: 43:df:f5:00:2d:6b:88:31:20:ad:dd:85:f7:c7:07: f1:03:6c:d3:7a:cb:d6:99:ed:07:ff:03:87:e5:20: b3:cf:0e:68:8e:ce:4a:71:c0:25:5d:a1:f1:c9:b2: 85:22:28:24:f3:f0:ac:13:b3:2b:f1:da:88:99:b5: 40:b8:23:fb:40:e9:c8:f8:1b:3b:45:68:89:f7:b6: 8b:db:08:d9:95:08:39:5e:df:cd:f7:c9:f4:f2:fb: 13:1d:e2:33:8f:a6:62:0c:0b:fa:bf:c9:af:eb:49: 6d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E9:01:2C:D5:17:7A:E1:3C:91:F4:6C:59:BB:59:23:0D:43:50:10 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/42C9FE0C77ED11EBBFBAF568C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 04:79:e5:fa:3e:df:84:ea:51:78:0a:61:df:9b:70:33:ee:34: a3:cf:89:63:dc:1f:e4:d8:d0:1d:ac:7d:19:b2:bf:a7:16:c5: 87:1c:11:10:20:b6:cf:1f:28:ad:f0:43:2a:6d:29:02:be:77: d9:1d:62:b7:cd:d4:c3:eb:d0:2d:70:65:2e:2c:9f:ad:24:5a: 87:6f:b8:61:a9:2d:55:f7:80:cd:10:86:bd:82:2e:3d:e1:b0: 74:ef:fb:68:fc:1b:89:d0:ba:38:29:af:d1:52:e2:53:2d:16: b0:28:b1:34:2f:de:6f:3d:b6:e2:0e:9b:5d:64:dc:8f:b9:08: 07:c7:99:8b:42:10:14:28:00:1c:ad:c2:a6:4a:7e:0a:59:d8: 44:cb:6e:bc:e1:32:6e:c3:f7:35:08:47:83:93:28:6b:0b:f9: 09:4f:cf:b9:03:70:fa:09:7e:f8:0c:69:28:e6:84:05:ea:84: 4f:b8:36:e6:5f:db:12:ad:fb:dc:ed:2c:5e:a8:47:7d:20:20: 98:c3:29:08:fd:3b:7a:27:4c:91:c2:f7:ef:0a:8d:f6:61:9d: d4:3b:05:14:d6:e9:4a:b1:67:8d:fe:15:41:84:26:74:df:07: d6:01:51:63:81:48:f5:2c:a8:7b:5d:f7:24:a7:cc:36:e6:59: 1b:76:08:50 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzNzU1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQxMy0xOTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlX77C0GBLkmNAEvn6II7nQD4ls3l7TChqCyxalCIs/wO+95eBAP6Pp9ZtqPn ete8Rmq1tF1XHXzfxxAhCzTMZYgnElH6/PkYk/CqobfwQ6txqJmWGUBlnAjp1rDk eWKEKBm7kOOhnj4QseVpV+oszuJybOnhMnbybmNuENJBpCqz9Pp1ePUr953L0/In nn52xH6cFNdD3/UALWuIMSCt3YX3xwfxA2zTesvWme0H/wOH5SCzzw5ojs5KccAl XaHxybKFIigk8/CsE7Mr8dqImbVAuCP7QOnI+Bs7RWiJ97aL2wjZlQg5Xt/N98n0 8vsTHeIzj6ZiDAv6v8mv60lttwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFCHpASzV F3rhPJH0bFm7WSMNQ1AQMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNDJDOUZFMEM3 N0VEMTFFQkJGQkFGNTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAAR55fo+34Tq UXgKYd+bcDPuNKPPiWPcH+TY0B2sfRmyv6cWxYccERAgts8fKK3wQyptKQK+d9kd YrfN1MPr0C1wZS4sn60kWodvuGGpLVX3gM0Qhr2CLj3hsHTv+2j8G4nQujgpr9FS 4lMtFrAosTQv3m89tuIOm11k3I+5CAfHmYtCEBQoABytwqZKfgpZ2ETLbrzhMm7D 9zUIR4OTKGsL+QlPz7kDcPoJfvgMaSjmhAXqhE+4NuZf2xKt+9ztLF6oR30gIJjD KQj9O3onTJHC9+8KjfZhndQ7BRTW6UqxZ43+FUGEJnTfB9YBUWOBSPUsqHtd9ySn zDbmWRt2CFA= -----END CERTIFICATE-----Generated at Tue Apr 30 21:38:01 2024 by rpki-client on console-fra.rpki-client.org