$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/52BF1CA809B111EAB045B31EC4F9AE02.roa File: 52BF1CA809B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: TiW/xjiDGOTGCqC8pPieynk7U1Sl6bZ+sVNibJx7Fpg= Subject key identifier: 0B:9A:49:85:63:71:BC:E8:4C:D4:D2:9C:AE:5D:7B:CE:DE:D0:B9:7A Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0E95 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/52BF1CA809B111EAB045B31EC4F9AE02.roa Signing time: Thu 29 Feb 2024 19:37:59 +0000 ROA not before: Thu 29 Feb 2024 19:37:59 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397216 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 18:35:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3733 (0xe95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:37:59 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd17-3d38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:db:88:2c:3c:c4:c0:aa:f3:14:49:c7:a1:e0: ab:f9:36:be:1f:88:e3:4b:56:81:00:a9:65:d4:a4: 6b:c5:04:86:16:29:08:eb:44:32:b8:68:a8:71:d2: 09:c7:80:f8:fd:bb:32:30:51:48:8a:04:e7:b0:1c: 90:fd:03:a6:f1:42:44:8f:c0:60:f2:19:84:b0:bc: eb:55:81:e6:08:88:ce:f1:49:87:e2:84:2b:03:88: c4:d1:8e:e2:c8:f1:7b:f2:db:c7:fc:99:3e:02:cf: d3:a5:9f:d2:ab:8f:b3:69:3b:6b:68:46:91:b5:f1: e5:39:c4:ca:b0:e8:7e:05:72:8f:bd:8e:e1:1e:84: 26:0a:ac:f1:f1:fc:38:45:b1:01:05:af:3b:b1:b1: c9:a1:0a:76:c3:5b:8a:6b:e4:97:c8:4d:f0:55:13: 1b:ac:1d:ab:a5:74:28:0d:ab:b4:4b:d0:86:de:b6: 55:28:1e:25:d6:c1:68:86:8d:58:de:54:02:c1:f2: 3b:1a:81:ed:93:db:fe:b4:c7:46:a8:07:de:41:a2: 43:d6:2f:43:a8:e9:87:b7:fc:b1:84:3a:55:78:d6: 59:1a:69:25:7a:16:38:71:d2:e4:f5:15:30:ac:02: d4:29:ba:fc:47:aa:eb:73:8f:cc:fb:62:f4:ae:74: 1b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:9A:49:85:63:71:BC:E8:4C:D4:D2:9C:AE:5D:7B:CE:DE:D0:B9:7A X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/52BF1CA809B111EAB045B31EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 49:31:94:65:19:1c:ac:1f:32:3e:c4:15:76:37:48:e5:6d:da: 18:d6:ce:25:8c:7d:58:20:a5:83:1c:23:d7:f3:20:39:ef:f7: 57:07:e9:24:3f:1c:46:d6:dc:33:99:9e:1b:d1:b3:af:a2:d5: 54:06:36:bc:86:1a:11:59:4a:fc:60:a3:9c:cb:3e:b2:17:45: 76:7d:f6:30:40:e0:7f:b2:b5:97:3f:17:63:fb:d9:b8:0a:54: f1:7d:27:6b:b9:ec:d3:97:46:34:7e:1d:0a:cd:d7:9b:25:38: 34:e7:f3:7b:b9:10:e0:ed:b9:cb:0d:64:4c:82:59:30:94:06: 97:a3:09:08:0b:6b:a8:6b:dd:bf:71:7c:4c:ee:37:47:b8:f4: e3:76:38:76:d0:d5:04:8c:74:07:b3:5c:1d:70:5d:1b:6f:8c: 3a:0d:14:73:13:15:84:60:f6:11:94:78:0a:31:f7:86:91:60: cd:23:09:47:a7:34:f2:e1:76:71:df:43:40:8b:72:e5:98:11: b0:00:97:79:ca:e8:b6:66:63:62:da:57:e8:5f:b3:11:09:25: fb:7a:61:ee:d8:d9:58:4e:cd:9d:e7:7e:b5:df:8b:82:f2:9f: 39:79:f7:43:61:57:c3:9b:f3:bb:c6:34:b9:d4:27:10:dc:ec: 4b:1e:3c:f5 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzNzU5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQxNy0zZDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtuILDzEwKrzFEnHoeCr+Ta+H4jjS1aBAKll1KRrxQSGFikI60QyuGiocdIJ x4D4/bsyMFFIigTnsByQ/QOm8UJEj8Bg8hmEsLzrVYHmCIjO8UmH4oQrA4jE0Y7i yPF78tvH/Jk+As/TpZ/Sq4+zaTtraEaRtfHlOcTKsOh+BXKPvY7hHoQmCqzx8fw4 RbEBBa87sbHJoQp2w1uKa+SXyE3wVRMbrB2rpXQoDau0S9CG3rZVKB4l1sFoho1Y 3lQCwfI7GoHtk9v+tMdGqAfeQaJD1i9DqOmHt/yxhDpVeNZZGmklehY4cdLk9RUw rALUKbr8R6rrc4/M+2L0rnQbHQIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFAuaSYVj cbzoTNTSnK5de87e0Ll6MB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTJCRjFDQTgw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAEkxlGUZHKwf Mj7EFXY3SOVt2hjWziWMfVggpYMcI9fzIDnv91cH6SQ/HEbW3DOZnhvRs6+i1VQG NryGGhFZSvxgo5zLPrIXRXZ99jBA4H+ytZc/F2P72bgKVPF9J2u57NOXRjR+HQrN 15slODTn83u5EODtucsNZEyCWTCUBpejCQgLa6hr3b9xfEzuN0e49ON2OHbQ1QSM dAezXB1wXRtvjDoNFHMTFYRg9hGUeAox94aRYM0jCUenNPLhdnHfQ0CLcuWYEbAA l3nK6LZmY2LaV+hfsxEJJft6Ye7Y2VhOzZ3nfrXfi4Lynzl590NhV8Ob87vGNLnU JxDc7EsePPU= -----END CERTIFICATE-----Generated at Wed Apr 24 20:29:50 2024 by rpki-client on console-fra.rpki-client.org