$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/7FC0AC6009AE11EAA7CED313C4F9AE02.roa File: 7FC0AC6009AE11EAA7CED313C4F9AE02.roa (raw, json) Hash identifier: GRE0ewXP9PESGqor5uVPuUuE/rw1jzhPWXveVKTgn6g= Subject key identifier: E0:04:E9:1A:EB:D6:AB:AF:75:4A:9E:09:0D:BF:3E:8F:68:8E:05:12 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0E9B Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/7FC0AC6009AE11EAA7CED313C4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:04 +0000 ROA not before: Thu 29 Feb 2024 19:38:04 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397222 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 18:35:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3739 (0xe9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:04 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd1c-2c73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:77:43:9a:11:99:89:97:34:94:09:6d:48:a2: a4:ba:f6:b9:25:da:3c:55:e8:2a:69:2b:d9:15:8c: 3f:af:36:f9:19:77:26:e6:de:d0:c8:22:d3:9e:70: 6b:4a:2c:bc:21:70:a0:67:92:b7:58:5a:95:61:95: 27:92:11:4e:51:b7:b5:76:0a:4e:1b:ec:16:79:92: 76:c6:d8:7a:db:c3:72:69:ad:34:f7:bc:d5:af:48: f1:4b:97:fa:66:ad:6b:2f:99:7e:9f:a7:c5:09:3b: 39:67:61:35:f4:75:9d:7e:54:23:f6:9f:5a:08:d0: 05:42:4a:d0:6d:21:01:25:6d:77:1f:b4:9f:d7:9b: b4:72:ba:10:21:54:44:23:34:78:1e:03:a7:98:f3: 7a:d2:f3:2d:19:e4:ad:51:6d:d0:9f:41:16:18:75: d6:77:01:1b:84:54:f0:39:c9:32:4a:98:82:8d:0f: c0:64:be:28:3a:50:84:2d:d8:4a:d6:91:1c:c3:09: 65:d9:d6:8b:66:3f:b4:19:ae:ca:d4:ce:29:36:ea: 8c:64:4a:ec:59:87:a7:e5:6a:06:4f:5c:c1:45:02: ef:e1:fa:c4:b2:bf:b1:9f:f8:fa:f5:9e:9e:1a:d2: de:d5:2a:88:a2:44:fe:80:c0:71:e0:0c:1a:c7:7a: b4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:04:E9:1A:EB:D6:AB:AF:75:4A:9E:09:0D:BF:3E:8F:68:8E:05:12 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/7FC0AC6009AE11EAA7CED313C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 77:0f:a3:42:cf:77:8d:79:fd:aa:5b:aa:e7:b9:22:6b:ab:e6: 9f:ef:d0:4b:33:da:6e:e6:68:dd:12:8a:39:fc:3c:14:3f:ad: d0:50:75:99:e5:bc:01:a4:a1:72:48:01:ef:94:46:1e:1e:f2: c2:79:55:90:21:58:93:ee:1e:8f:4c:23:50:c1:72:4f:8f:2d: 1d:f1:e9:ba:0e:2d:70:3c:c3:58:20:a3:b8:26:66:be:b9:ce: 5b:3b:8c:2f:42:a9:b2:68:8e:0d:74:65:b3:a5:d7:da:5b:d5: f9:7b:67:79:d5:53:1c:40:93:9b:50:ed:a5:23:be:9a:4b:ba: 40:7e:24:cc:fd:09:b1:20:04:18:59:77:4d:8d:82:fb:d4:52: 25:73:03:76:d4:60:d6:e2:a4:3b:79:41:92:c8:00:01:f8:4a: 17:e6:4d:a6:18:3b:b9:bd:cc:ed:67:29:fa:4c:a8:eb:06:dc: 91:24:17:ec:55:15:58:a6:87:51:ae:3a:fb:10:ad:09:63:ed: 85:4f:0b:60:3b:48:3a:79:f5:1e:c1:48:bb:5c:55:6c:7f:0d: cd:f7:ed:fa:23:97:da:e2:19:52:42:6f:91:f2:a0:e9:ce:1b: 87:ab:e2:f0:87:87:c6:34:2f:08:80:47:25:b0:7a:a2:16:63: 35:f2:4f:23 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODA0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQxYy0yYzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXdDmhGZiZc0lAltSKKkuva5Jdo8VegqaSvZFYw/rzb5GXcm5t7QyCLTnnBr Siy8IXCgZ5K3WFqVYZUnkhFOUbe1dgpOG+wWeZJ2xth628Nyaa0097zVr0jxS5f6 Zq1rL5l+n6fFCTs5Z2E19HWdflQj9p9aCNAFQkrQbSEBJW13H7Sf15u0croQIVRE IzR4HgOnmPN60vMtGeStUW3Qn0EWGHXWdwEbhFTwOckySpiCjQ/AZL4oOlCELdhK 1pEcwwll2daLZj+0Ga7K1M4pNuqMZErsWYen5WoGT1zBRQLv4frEsr+xn/j69Z6e GtLe1SqIokT+gMBx4Awax3q0BwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFOAE6Rrr 1quvdUqeCQ2/Po9ojgUSMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvN0ZDMEFDNjAw OUFFMTFFQUE3Q0VEMzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAHcPo0LPd415 /apbque5Imur5p/v0Esz2m7maN0Sijn8PBQ/rdBQdZnlvAGkoXJIAe+URh4e8sJ5 VZAhWJPuHo9MI1DBck+PLR3x6boOLXA8w1ggo7gmZr65zls7jC9CqbJojg10ZbOl 19pb1fl7Z3nVUxxAk5tQ7aUjvppLukB+JMz9CbEgBBhZd02NgvvUUiVzA3bUYNbi pDt5QZLIAAH4ShfmTaYYO7m9zO1nKfpMqOsG3JEkF+xVFVimh1GuOvsQrQlj7YVP C2A7SDp59R7BSLtcVWx/Dc337fojl9riGVJCb5HyoOnOG4er4vCHh8Y0LwiARyWw eqIWYzXyTyM= -----END CERTIFICATE-----Generated at Wed Apr 24 20:29:50 2024 by rpki-client on console-fra.rpki-client.org