$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55F662DC09B111EAB045B31EC4F9AE02.roa File: 55F662DC09B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: 2wbdEcI1zwm+PHPsvpOKdsLN31Ce0ebGFE+98z/6Pv0= Subject key identifier: D7:0B:01:C4:C1:15:8F:51:F3:40:26:08:1C:44:EF:CB:F3:4C:53:C6 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0EA2 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55F662DC09B111EAB045B31EC4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:12 +0000 ROA not before: Thu 29 Feb 2024 19:38:12 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397229 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3746 (0xea2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:12 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd23-41b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0f:76:f5:e8:eb:3e:b7:a6:79:04:c5:45:99: 19:e9:69:c8:c7:72:29:a3:2f:59:bf:26:4b:8d:00: 9e:7f:a4:2f:79:86:5d:3b:a1:f5:5f:87:1f:b0:1c: 67:b2:f0:48:5d:31:48:e7:e5:bf:0e:48:53:42:e1: 81:cf:29:68:36:e8:dd:28:bb:e6:bc:ee:08:d9:4c: 71:1e:41:f8:10:0e:86:5c:77:78:f0:08:aa:8f:28: d1:28:a3:07:fa:b0:80:ff:45:f5:b8:84:e5:06:65: 74:bb:2b:56:4c:73:17:3d:da:4a:e9:8a:85:d0:48: 6d:ae:d7:0b:e3:6e:a3:f0:59:13:cc:6d:15:23:16: 14:9e:20:33:f9:ec:71:a5:bd:66:5f:8d:5e:21:0b: d2:3e:b4:33:01:02:9f:15:2d:36:7e:a6:ae:16:1f: fa:06:35:be:f8:57:17:7d:dc:d8:6c:f3:d4:f0:30: f8:c7:a6:6e:cb:d8:af:e8:66:b0:26:67:08:75:cf: 19:5f:c1:7b:7e:35:5a:fb:2e:52:06:ef:4d:a6:f2: 59:1a:5c:02:47:f1:be:da:90:05:b7:ee:9c:56:88: e5:9f:f3:50:ac:de:c2:11:95:31:02:f1:2c:be:30: b5:d2:2e:fb:9c:cf:8d:60:66:4e:3f:78:62:35:b0: 3c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:0B:01:C4:C1:15:8F:51:F3:40:26:08:1C:44:EF:CB:F3:4C:53:C6 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55F662DC09B111EAB045B31EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 3b:ed:95:b3:55:2f:2a:55:4c:de:78:63:c9:1a:12:24:00:4c: 4c:35:1d:3d:55:9a:53:b4:19:c7:49:88:f5:1c:76:73:b8:89: ac:ee:bc:b4:ea:59:15:af:c8:e5:f8:a0:c5:12:81:aa:6a:bb: eb:ec:7e:49:2c:f9:c2:6a:7f:c4:fa:a8:c0:53:c8:cf:3f:83: 31:bb:7b:06:7c:a7:e2:ff:3c:de:22:95:05:96:61:8d:2e:a5: 5b:12:4f:4d:54:1d:48:1e:6d:24:47:a2:17:6e:01:68:99:17: 81:4b:15:2a:38:50:97:8a:cd:a4:02:28:c4:41:2d:7b:04:ce: ea:9d:17:b8:e7:30:ec:7b:8e:c9:6a:81:17:5d:be:67:09:5d: d8:38:37:24:ec:8f:44:67:97:61:cb:8e:8c:68:46:32:f2:3b: 11:3b:34:fe:77:f9:de:73:ac:bb:3b:a4:8c:51:29:d8:05:70: 11:77:b3:8c:36:56:43:51:3b:6e:e2:e6:73:a6:a1:79:3c:9f: 3f:44:71:cf:66:bb:bb:be:bb:60:b1:7f:cc:26:66:42:af:32: 4f:8b:03:24:ee:b4:ff:6e:f8:ea:2b:c5:eb:06:fb:28:80:2b: 3c:e9:bd:49:f0:d7:fa:19:d3:ae:85:b9:4f:c9:36:4c:03:f3: f2:59:14:d1 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODEyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQyMy00MWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4w929ejrPremeQTFRZkZ6WnIx3Ipoy9ZvyZLjQCef6QveYZdO6H1X4cfsBxn svBIXTFI5+W/DkhTQuGBzyloNujdKLvmvO4I2UxxHkH4EA6GXHd48AiqjyjRKKMH +rCA/0X1uITlBmV0uytWTHMXPdpK6YqF0EhtrtcL426j8FkTzG0VIxYUniAz+exx pb1mX41eIQvSPrQzAQKfFS02fqauFh/6BjW++FcXfdzYbPPU8DD4x6Zuy9iv6Gaw JmcIdc8ZX8F7fjVa+y5SBu9NpvJZGlwCR/G+2pAFt+6cVojln/NQrN7CEZUxAvEs vjC10i77nM+NYGZOP3hiNbA8TQIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFNcLAcTB FY9R80AmCBxE78vzTFPGMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTVGNjYyREMw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBADvtlbNVLypV TN54Y8kaEiQATEw1HT1VmlO0GcdJiPUcdnO4iazuvLTqWRWvyOX4oMUSgapqu+vs fkks+cJqf8T6qMBTyM8/gzG7ewZ8p+L/PN4ilQWWYY0upVsST01UHUgebSRHohdu AWiZF4FLFSo4UJeKzaQCKMRBLXsEzuqdF7jnMOx7jslqgRddvmcJXdg4NyTsj0Rn l2HLjoxoRjLyOxE7NP53+d5zrLs7pIxRKdgFcBF3s4w2VkNRO27i5nOmoXk8nz9E cc9mu7u+u2Cxf8wmZkKvMk+LAyTutP9u+OorxesG+yiAKzzpvUnw1/oZ066FuU/J NkwD8/JZFNE= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:55 2024 by rpki-client on console-ams.rpki-client.org