$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/543B65D209B111EAB045B31EC4F9AE02.roa File: 543B65D209B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: XV3ljGILi43Kdyc2pjrYtHsHPuk3NAIUOd8HDXY2t+s= Subject key identifier: CD:50:E5:59:2C:73:B1:80:8F:03:B2:81:2C:AD:07:C7:7A:EE:08:46 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0E9A Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/543B65D209B111EAB045B31EC4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:03 +0000 ROA not before: Thu 29 Feb 2024 19:38:03 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397221 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 19:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3738 (0xe9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:03 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd1b-c20c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:af:c3:e0:41:76:4e:57:ff:26:b8:7c:83:2f: fa:04:64:bf:53:14:48:2a:dd:a6:21:53:a2:4c:9e: d8:77:8f:89:cb:bf:84:35:88:e8:cc:40:fe:23:32: 64:94:5b:40:c8:73:16:84:02:4f:b6:b2:14:ce:f4: 4c:39:18:43:0c:42:a7:7e:cb:a6:c3:29:cf:de:5f: 84:f0:3f:46:b4:4e:71:98:70:d0:03:76:b0:e8:e1: 03:0e:c2:54:67:ea:8c:06:f3:e5:be:10:18:a4:1c: d3:69:13:9b:18:70:66:a1:9d:77:4d:cd:93:59:c4: 21:d0:a7:e7:c7:ea:f4:c9:33:ab:28:16:06:b5:38: 91:b4:93:ba:4a:29:2b:90:7d:1a:52:0a:fb:a9:d7: 11:38:6b:da:c7:45:1a:2e:ee:84:87:a7:ce:fa:5d: db:9c:cf:53:eb:3d:4a:5f:a8:c0:9a:2a:86:8c:a7: dc:42:11:bc:c0:fc:2d:01:5d:f7:14:95:dd:5f:2f: 66:e8:41:8b:cd:19:22:1e:78:c5:7f:2f:df:15:e0: a9:65:25:e0:5b:4f:ba:0d:f3:35:30:36:60:02:f2: c8:a5:6e:68:6e:33:0e:df:37:bb:ff:00:af:b4:10: f9:ec:f1:43:60:76:7a:8f:20:16:9b:40:7e:b1:f7: 8b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:50:E5:59:2C:73:B1:80:8F:03:B2:81:2C:AD:07:C7:7A:EE:08:46 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/543B65D209B111EAB045B31EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 0e:4f:76:72:bc:1d:46:96:28:16:58:9b:de:4f:e8:fc:71:c3: 50:3e:d7:47:39:39:03:7d:e6:30:98:da:b2:68:ac:37:c2:c2: eb:b1:68:be:ee:2b:4b:b5:00:a0:de:a0:94:ca:74:29:dd:fc: e6:b1:b4:67:aa:53:87:87:0c:4c:ae:be:e9:ce:97:d6:1f:e1: 22:1c:80:b1:b6:19:0b:8e:1c:7c:21:dc:2a:2a:f5:26:e1:6a: a5:fd:59:bb:e8:19:f6:b2:9a:9c:45:72:8b:3e:00:bd:77:d0: ae:06:60:ee:23:ad:f1:da:f0:47:4c:82:9f:d1:1c:f8:1a:ef: d0:92:8c:a8:7d:76:0c:9a:ce:21:e2:28:13:43:07:fd:37:40: af:d9:61:33:e8:98:d2:23:78:ad:de:04:d8:46:cb:cd:eb:51: d3:2f:f4:2f:09:cb:62:84:b2:4e:e0:7b:71:87:65:64:74:e5: 71:f0:3d:57:21:08:01:64:c9:8e:b0:9b:ff:9a:6e:52:7b:66: f0:91:1e:b3:87:f1:e1:ee:06:bb:71:ca:03:11:4a:64:37:7e: 8a:b2:c3:59:ac:b3:b5:51:21:ca:43:cf:10:01:22:56:cd:36: e5:80:dd:c3:6e:64:11:fe:bd:c5:0b:f3:60:eb:f5:b1:e1:67: fc:d9:f2:16 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODAzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQxYi1jMjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtq/D4EF2Tlf/Jrh8gy/6BGS/UxRIKt2mIVOiTJ7Yd4+Jy7+ENYjozED+IzJk lFtAyHMWhAJPtrIUzvRMORhDDEKnfsumwynP3l+E8D9GtE5xmHDQA3aw6OEDDsJU Z+qMBvPlvhAYpBzTaRObGHBmoZ13Tc2TWcQh0Kfnx+r0yTOrKBYGtTiRtJO6Sikr kH0aUgr7qdcROGvax0UaLu6Eh6fO+l3bnM9T6z1KX6jAmiqGjKfcQhG8wPwtAV33 FJXdXy9m6EGLzRkiHnjFfy/fFeCpZSXgW0+6DfM1MDZgAvLIpW5objMO3ze7/wCv tBD57PFDYHZ6jyAWm0B+sfeLIwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFM1Q5Vks c7GAjwOygSytB8d67ghGMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTQzQjY1RDIw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAA5PdnK8HUaW KBZYm95P6Pxxw1A+10c5OQN95jCY2rJorDfCwuuxaL7uK0u1AKDeoJTKdCnd/Oax tGeqU4eHDEyuvunOl9Yf4SIcgLG2GQuOHHwh3Coq9SbhaqX9WbvoGfaympxFcos+ AL130K4GYO4jrfHa8EdMgp/RHPga79CSjKh9dgyaziHiKBNDB/03QK/ZYTPomNIj eK3eBNhGy83rUdMv9C8Jy2KEsk7ge3GHZWR05XHwPVchCAFkyY6wm/+ablJ7ZvCR HrOH8eHuBrtxygMRSmQ3foqyw1mss7VRIcpDzxABIlbNNuWA3cNuZBH+vcUL82Dr 9bHhZ/zZ8hY= -----END CERTIFICATE-----Generated at Thu Apr 18 20:10:43 2024 by rpki-client on console-fra.rpki-client.org