$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/54E1D22809B111EAB045B31EC4F9AE02.roa File: 54E1D22809B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: lwwYSi9bX2n/PcHAAgQ7BIhZ09lvA32FB6Yk04V2ZEM= Subject key identifier: 7B:51:A9:BD:9B:A4:E0:C9:B5:A6:FC:E9:EF:A0:5E:56:63:04:19:1E Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0E9C Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/54E1D22809B111EAB045B31EC4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:06 +0000 ROA not before: Thu 29 Feb 2024 19:38:06 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397223 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3740 (0xe9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:06 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd1d-7623 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:4b:73:8a:c7:ef:8b:da:e3:90:dd:b0:1b:0f: aa:fc:9e:93:2d:cf:de:0e:ba:3b:bf:11:83:aa:9a: 1e:f8:e6:17:f9:be:96:46:e3:21:d7:2e:c5:a3:ad: 45:47:fd:a4:86:a6:f6:3b:cd:0d:88:e4:0e:8e:1e: a7:6a:86:05:70:aa:ad:b7:66:05:77:fa:1d:cb:63: 92:d9:4f:ae:75:4c:b2:cd:6f:15:23:33:50:fe:29: c3:1f:47:85:89:6a:1c:86:d7:92:07:a4:24:82:70: 38:6c:52:17:9d:d6:9d:cc:8e:1e:11:f4:91:b6:a3: a3:fd:2f:7f:f8:cb:e7:23:3d:93:5c:69:fe:0c:cf: 28:7f:bb:b6:34:8f:50:a1:3c:81:b8:9d:63:3c:96: 0e:29:a4:0f:00:ca:27:b7:8c:dd:9d:0e:81:4e:05: e7:72:31:24:5c:fa:40:68:7c:9e:d1:e1:88:e9:6c: d4:8b:32:f9:af:65:90:a7:4f:7c:84:b1:82:c3:71: 92:b1:6e:3a:f9:1a:9a:de:82:bd:4f:9f:c8:66:0e: 36:85:a7:7a:d3:31:9d:6e:ba:fe:6a:44:dd:9d:c6: 65:ef:c5:86:44:48:51:6d:40:83:c8:c6:bc:1e:f3: 8a:d5:64:00:bf:87:f0:08:db:23:08:e7:a2:b6:73: 89:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:51:A9:BD:9B:A4:E0:C9:B5:A6:FC:E9:EF:A0:5E:56:63:04:19:1E X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/54E1D22809B111EAB045B31EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 52:60:f2:39:0d:ab:a6:c9:0b:47:31:1d:26:7e:ea:81:03:9c: ae:f5:e3:7e:84:44:7f:17:6a:d8:2f:32:13:4b:e4:8d:e8:d8: a7:c5:91:5c:b5:03:ed:87:46:55:6f:b1:61:ac:ba:63:e3:d1: 46:6e:14:05:0b:64:30:44:74:8d:71:11:85:0b:3d:7a:61:98: 71:06:65:d2:4d:41:f5:18:7a:14:e4:b6:57:62:0b:a2:0d:c7: 36:30:e8:39:13:76:66:27:a5:61:6d:73:6b:0a:ea:50:57:f2: 0e:08:00:57:97:62:aa:ca:de:f5:82:1a:21:34:23:1f:aa:bb: b8:ea:e4:f6:af:a6:68:f7:d1:2b:f6:cc:4a:96:eb:7d:03:08: e7:c6:4c:8c:f0:78:ed:61:a0:10:d9:8b:5e:8c:c7:58:da:6b: 91:71:69:1a:0f:b2:01:87:32:0d:30:95:2e:24:37:60:f3:f2: d0:f8:8b:16:c7:ea:7b:e3:75:d8:de:1f:14:a4:fd:7a:cd:d3: 04:22:e8:64:3e:4e:eb:ce:a5:1e:72:c0:2e:6f:92:18:a9:35: 74:25:02:5b:89:ac:54:9a:7e:ad:ea:76:cc:64:8b:10:5b:fc: 74:88:96:b2:d7:70:01:cf:3f:b1:96:db:5b:19:4f:a9:15:88: c4:e5:83:c2 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODA2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQxZC03NjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Utzisfvi9rjkN2wGw+q/J6TLc/eDro7vxGDqpoe+OYX+b6WRuMh1y7Fo61F R/2khqb2O80NiOQOjh6naoYFcKqtt2YFd/ody2OS2U+udUyyzW8VIzNQ/inDH0eF iWochteSB6QkgnA4bFIXndadzI4eEfSRtqOj/S9/+MvnIz2TXGn+DM8of7u2NI9Q oTyBuJ1jPJYOKaQPAMont4zdnQ6BTgXncjEkXPpAaHye0eGI6WzUizL5r2WQp098 hLGCw3GSsW46+Rqa3oK9T5/IZg42had60zGdbrr+akTdncZl78WGREhRbUCDyMa8 HvOK1WQAv4fwCNsjCOeitnOJdQIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFHtRqb2b pODJtab86e+gXlZjBBkeMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTRFMUQyMjgw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAFJg8jkNq6bJ C0cxHSZ+6oEDnK71436ERH8XatgvMhNL5I3o2KfFkVy1A+2HRlVvsWGsumPj0UZu FAULZDBEdI1xEYULPXphmHEGZdJNQfUYehTktldiC6INxzYw6DkTdmYnpWFtc2sK 6lBX8g4IAFeXYqrK3vWCGiE0Ix+qu7jq5Pavpmj30Sv2zEqW630DCOfGTIzweO1h oBDZi16Mx1jaa5FxaRoPsgGHMg0wlS4kN2Dz8tD4ixbH6nvjddjeHxSk/XrN0wQi 6GQ+TuvOpR5ywC5vkhipNXQlAluJrFSafq3qdsxkixBb/HSIlrLXcAHPP7GW21sZ T6kViMTlg8I= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:25 2024 by rpki-client on console-fra.rpki-client.org