$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/7AA2CD46073111EA993EC663C4F9AE02.roa File: 7AA2CD46073111EA993EC663C4F9AE02.roa (raw, json) Hash identifier: tpSrRToHQManhjAr4cN1zG6dZmu/boCfaeGvP/Y0EhE= Subject key identifier: 27:7F:E2:75:0F:38:66:5B:9C:3C:47:F6:74:91:1C:AA:C3:70:96:FD Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0EA5 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/7AA2CD46073111EA993EC663C4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:14 +0000 ROA not before: Thu 29 Feb 2024 19:38:14 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397232 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 19:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3749 (0xea5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:14 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd26-5340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fe:b3:23:6b:77:ed:63:22:41:c4:8c:0c:21: 5a:64:69:9c:05:48:b3:db:b6:60:9a:94:73:73:cb: 30:0b:01:ae:ce:8f:62:aa:ad:4e:58:e0:26:db:f8: d7:cc:9d:2b:34:6c:9b:e7:e8:73:7b:25:d4:68:46: ba:06:d5:52:1e:77:1e:23:95:2e:8c:e7:55:22:c6: 59:45:88:47:82:75:75:2b:90:9d:c6:5f:cc:d5:97: e8:13:24:df:e3:f0:f2:8a:76:3b:ea:22:24:a8:96: 95:c2:49:fb:65:0e:a7:ee:94:60:d6:41:c2:07:bb: 00:ea:d6:bf:40:0b:be:21:25:3c:88:fd:5d:f4:b6: e4:76:f4:c6:d8:a6:eb:d1:71:62:4e:a1:09:fb:a7: 9e:0c:36:70:a9:9f:b6:89:ab:73:fa:d9:e1:5c:9b: 55:62:e9:02:fe:2b:57:af:1d:2b:fb:24:4b:9b:09: 7c:49:0e:e5:19:19:5e:b9:a0:15:03:49:a3:9a:e2: 81:38:aa:de:13:f4:fd:3b:e9:cc:b9:46:f5:5a:6a: 17:a6:b0:19:b8:01:c0:65:18:06:74:32:df:1a:c0: 17:0f:1f:67:c3:c5:87:98:19:c2:cb:aa:d9:2b:d2: f0:30:04:c3:62:65:9d:61:af:4f:91:74:5b:dd:7f: f8:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:7F:E2:75:0F:38:66:5B:9C:3C:47:F6:74:91:1C:AA:C3:70:96:FD X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/7AA2CD46073111EA993EC663C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 0b:ac:d0:d0:28:4a:9c:28:f2:d1:eb:dd:f2:3f:cd:78:8b:81: 2d:b2:41:16:85:37:0f:57:c4:7b:49:01:41:67:a8:01:5a:9c: b3:2d:83:e4:d4:db:46:5b:ad:76:6f:eb:82:51:ba:9e:44:92: ae:e8:c2:9c:b3:8c:aa:ac:33:16:1f:d0:cb:02:e6:9b:24:47: 87:cf:88:25:7e:aa:ce:57:99:33:c9:71:67:62:0c:22:41:5a: 79:bf:b9:27:22:0d:05:49:7b:43:02:67:32:74:ae:56:a6:d5: c3:c2:a6:04:3b:9c:91:67:8b:f3:9a:9f:a4:66:58:a9:d1:fd: 55:f4:4d:a5:68:95:e7:a7:f6:a6:4e:81:0a:b8:e4:22:30:60: b2:dd:0c:66:82:31:a2:65:8a:b4:c1:77:56:2a:cc:a9:18:37: 26:5f:b6:c1:c9:15:26:96:67:71:61:ac:11:c5:b9:a0:00:77: ab:37:9f:15:e5:d7:cb:ba:39:91:55:d7:68:2f:e4:ce:a2:d7: 72:81:78:89:af:fd:30:53:82:ba:e0:7a:2d:30:66:8e:fe:c7: 5f:50:81:6a:7e:63:0c:42:59:a4:61:6c:eb:a3:40:64:3a:5c: 39:80:e4:46:e4:31:4e:be:35:12:18:9f:c9:96:4c:31:7f:34: 32:45:f4:9a -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODE0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQyNi01MzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyP6zI2t37WMiQcSMDCFaZGmcBUiz27ZgmpRzc8swCwGuzo9iqq1OWOAm2/jX zJ0rNGyb5+hzeyXUaEa6BtVSHnceI5UujOdVIsZZRYhHgnV1K5Cdxl/M1ZfoEyTf 4/DyinY76iIkqJaVwkn7ZQ6n7pRg1kHCB7sA6ta/QAu+ISU8iP1d9LbkdvTG2Kbr 0XFiTqEJ+6eeDDZwqZ+2iatz+tnhXJtVYukC/itXrx0r+yRLmwl8SQ7lGRleuaAV A0mjmuKBOKreE/T9O+nMuUb1WmoXprAZuAHAZRgGdDLfGsAXDx9nw8WHmBnCy6rZ K9LwMATDYmWdYa9PkXRb3X/4hwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFCd/4nUP OGZbnDxH9nSRHKrDcJb9MB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvN0FBMkNENDYw NzMxMTFFQTk5M0VDNjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAAus0NAoSpwo 8tHr3fI/zXiLgS2yQRaFNw9XxHtJAUFnqAFanLMtg+TU20ZbrXZv64JRup5Ekq7o wpyzjKqsMxYf0MsC5pskR4fPiCV+qs5XmTPJcWdiDCJBWnm/uSciDQVJe0MCZzJ0 rlam1cPCpgQ7nJFni/Oan6RmWKnR/VX0TaVoleen9qZOgQq45CIwYLLdDGaCMaJl irTBd1YqzKkYNyZftsHJFSaWZ3FhrBHFuaAAd6s3nxXl18u6OZFV12gv5M6i13KB eImv/TBTgrrgei0wZo7+x19QgWp+YwxCWaRhbOujQGQ6XDmA5EbkMU6+NRIYn8mW TDF/NDJF9Jo= -----END CERTIFICATE-----Generated at Thu Apr 18 20:10:43 2024 by rpki-client on console-fra.rpki-client.org