$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55703D7E09B111EAB045B31EC4F9AE02.roa File: 55703D7E09B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: tyUvrUwvIGRweAG/KzClCXWTUPJZF4YehjvPYFruiFo= Subject key identifier: D3:D3:2A:BF:4A:CC:BE:A6:8A:10:67:AA:20:19:E0:FE:90:4C:CC:70 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0EA0 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55703D7E09B111EAB045B31EC4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:10 +0000 ROA not before: Thu 29 Feb 2024 19:38:10 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397227 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3744 (0xea0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:10 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd21-37ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:44:62:b3:ed:fc:49:9f:aa:85:34:55:98:7e: 07:28:d1:30:db:87:d4:ad:ce:7b:0f:11:24:62:dd: 70:2c:2e:25:f2:ba:f9:0b:dc:b2:51:f3:17:b1:8e: 0b:5d:6c:75:0a:a1:0d:6d:18:a8:68:7a:7b:b1:31: 13:e4:8b:54:21:79:cc:a5:4f:58:a0:72:c3:c0:08: d3:ce:51:da:88:ba:e5:90:7e:7f:88:40:cd:4c:0c: 16:1b:ab:36:e3:85:f8:f4:95:ab:91:3e:8c:44:a3: 6e:2b:eb:7d:f8:a8:db:84:a4:00:4d:33:a7:b2:31: d7:a9:7c:56:e7:db:ed:78:5b:34:8d:df:bf:8a:b3: 73:3a:1f:fe:2e:43:24:a5:33:84:48:a8:1e:b6:4f: 18:c6:e1:7f:1b:f3:6f:6d:25:a8:4d:50:03:30:b5: 8a:a9:f7:88:48:f4:77:b8:19:59:e0:89:72:c2:91: aa:9c:78:fe:af:6f:b7:d7:83:32:5f:9e:04:58:37: 82:4c:67:ba:d5:8c:86:ac:8c:ed:fe:59:0e:7b:5b: 25:60:74:3f:f1:63:65:19:44:0f:92:b6:b6:41:20: 8b:f6:96:c7:42:ae:46:ec:84:78:9c:a2:f8:d4:64: 94:52:fe:0b:2f:d3:2e:5f:93:8b:0b:a8:33:01:a5: 33:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D3:2A:BF:4A:CC:BE:A6:8A:10:67:AA:20:19:E0:FE:90:4C:CC:70 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55703D7E09B111EAB045B31EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 73:62:45:70:71:35:00:d1:d2:2c:42:1a:eb:92:ee:3c:3b:c7: 25:43:e2:99:ac:aa:63:ee:f5:70:11:6a:aa:7b:71:17:36:79: 5a:66:75:8a:3a:75:2a:94:9e:55:63:1f:51:80:d6:7c:62:87: 0d:60:23:f1:57:61:56:d7:f3:f7:11:19:87:11:f3:9a:e0:92: 4e:49:20:cc:3f:5f:70:a1:e3:7e:22:38:d1:44:b3:89:be:59: c2:c7:43:a8:51:ff:4c:d9:12:b4:ee:3f:ca:95:b6:c6:6b:21: ae:8d:aa:b6:23:12:b7:f8:6d:50:80:e5:b5:bd:ae:78:4f:69: 74:d7:97:fc:57:e1:46:45:71:02:98:74:f8:37:da:60:5d:13: 58:39:76:e7:60:95:65:2a:35:c7:3c:39:d2:c5:48:7f:69:ac: e6:ab:d5:3f:04:83:91:4a:a3:a2:55:52:95:90:bf:ad:0f:e0: dc:a5:a4:d9:5e:88:15:30:79:6d:d9:f9:f0:48:c4:d4:21:6b: 1f:ac:9a:d7:1d:9b:18:30:68:95:8a:18:c3:13:84:93:b5:be: 95:07:58:82:75:8d:07:c6:54:40:12:43:f5:34:0d:20:74:eb: f1:bf:d7:b9:b6:ec:43:57:36:11:a4:d5:de:63:b3:1b:e5:6f: 0b:62:db:62 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODEwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQyMS0zN2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0Ris+38SZ+qhTRVmH4HKNEw24fUrc57DxEkYt1wLC4l8rr5C9yyUfMXsY4L XWx1CqENbRioaHp7sTET5ItUIXnMpU9YoHLDwAjTzlHaiLrlkH5/iEDNTAwWG6s2 44X49JWrkT6MRKNuK+t9+KjbhKQATTOnsjHXqXxW59vteFs0jd+/irNzOh/+LkMk pTOESKgetk8YxuF/G/NvbSWoTVADMLWKqfeISPR3uBlZ4IlywpGqnHj+r2+314My X54EWDeCTGe61YyGrIzt/lkOe1slYHQ/8WNlGUQPkra2QSCL9pbHQq5G7IR4nKL4 1GSUUv4LL9MuX5OLC6gzAaUziwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFNPTKr9K zL6mihBnqiAZ4P6QTMxwMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTU3MDNEN0Uw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAHNiRXBxNQDR 0ixCGuuS7jw7xyVD4pmsqmPu9XARaqp7cRc2eVpmdYo6dSqUnlVjH1GA1nxihw1g I/FXYVbX8/cRGYcR85rgkk5JIMw/X3Ch434iONFEs4m+WcLHQ6hR/0zZErTuP8qV tsZrIa6NqrYjErf4bVCA5bW9rnhPaXTXl/xX4UZFcQKYdPg32mBdE1g5dudglWUq Ncc8OdLFSH9prOar1T8Eg5FKo6JVUpWQv60P4NylpNleiBUweW3Z+fBIxNQhax+s mtcdmxgwaJWKGMMThJO1vpUHWIJ1jQfGVEASQ/U0DSB06/G/17m27ENXNhGk1d5j sxvlbwti22I= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:25 2024 by rpki-client on console-fra.rpki-client.org