$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/92C1DA72F96911EA96156C10C4F9AE02.roa File: 92C1DA72F96911EA96156C10C4F9AE02.roa (raw, json) Hash identifier: 7OzEh6CNMowVfHgSovY1lWqmtDu6I5pBIgEYdybsNmg= Subject key identifier: CD:DA:E5:1C:84:DC:0A:88:80:F7:16:1C:A3:60:24:04:99:FF:7C:EE Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0EB0 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/92C1DA72F96911EA96156C10C4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:26 +0000 ROA not before: Thu 29 Feb 2024 19:38:26 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397243 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3760 (0xeb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:26 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd32-b4b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:32:c0:f6:9a:9b:56:4b:11:fb:4a:6a:6e:90: 37:fd:f1:74:7a:96:25:63:94:f9:99:04:a4:4c:70: d1:95:14:5b:16:d1:b4:cf:79:1a:b6:a6:b8:d2:61: 38:97:a3:4a:9e:8a:19:eb:d0:e7:8f:e0:53:7f:fd: 89:1e:57:ed:16:12:e5:63:79:2b:68:aa:93:48:1f: 0e:90:a1:28:5a:68:1c:2b:a2:3a:4c:22:8b:cc:48: 5d:4b:7d:e8:e1:5d:61:6f:f9:b3:aa:2a:60:a5:a4: 7e:0d:d2:f3:da:83:17:b8:db:cb:a0:2a:e8:b0:dd: 67:d3:ec:0c:7d:f2:32:4a:62:14:79:85:53:f6:fd: 05:f8:de:fc:0b:8c:ab:43:af:d6:64:d8:e9:17:5c: 09:21:c4:d0:08:46:49:d7:c9:22:f1:ec:33:82:df: dd:35:50:26:71:65:24:d1:f5:05:ab:b0:2d:18:0c: c2:4a:a5:11:59:7a:45:21:19:a8:99:ac:97:ca:cb: 65:58:e7:e5:54:f8:1f:5f:e3:75:e3:a1:17:5e:5b: 0c:bc:d9:8f:a0:51:a5:13:f5:07:ee:72:9b:fd:0c: 2b:f6:0e:aa:95:b2:42:2d:fc:c2:f6:04:23:cc:6c: 47:f7:63:5c:2d:a6:c5:dd:f6:d1:6c:9b:93:d0:d9: c4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:DA:E5:1C:84:DC:0A:88:80:F7:16:1C:A3:60:24:04:99:FF:7C:EE X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/92C1DA72F96911EA96156C10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 52:f4:97:fa:a2:38:d5:0d:57:df:dd:66:7c:f2:0e:84:68:71: bf:a9:73:16:3a:aa:76:84:1d:09:f2:47:d6:37:14:bf:61:de: 2f:07:be:a8:b9:02:3c:3a:78:43:f5:1d:e4:40:dc:ba:d4:7a: 26:02:e8:a1:a8:97:9c:48:c4:d5:47:7b:5b:5b:96:4f:21:63: 8d:4c:21:57:34:f5:e1:86:67:e8:7e:b0:d2:f7:f3:73:dd:11: 5a:9d:00:8b:9d:b6:ef:01:f5:4b:1a:4b:e7:04:59:b4:50:c2: b5:69:3a:56:90:27:8f:18:4f:39:63:ca:e4:94:b4:36:95:c1: 63:b4:13:95:b5:55:5a:4c:a4:97:c7:b8:3a:1d:61:72:cf:f7: cb:81:7b:7e:0f:02:65:10:18:b7:c9:25:c9:8c:be:3b:aa:45: 15:85:c4:fc:cb:05:d0:4f:78:d8:c2:80:ef:ac:2c:13:6b:52: 48:ef:62:c9:a8:d2:55:25:e4:67:f4:6b:97:7d:72:b8:3f:2b: 6c:12:c7:94:a3:db:d3:f5:85:1a:3a:81:79:fb:8e:61:17:9a: 27:02:cd:2a:83:8b:4d:eb:53:39:11:d7:29:ed:2f:ac:40:ef: d8:49:aa:69:88:8d:0f:e1:0a:bb:25:0e:d1:48:9d:9d:b3:87: 67:99:1d:3c -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODI2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQzMi1iNGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTLA9pqbVksR+0pqbpA3/fF0epYlY5T5mQSkTHDRlRRbFtG0z3katqa40mE4 l6NKnooZ69Dnj+BTf/2JHlftFhLlY3kraKqTSB8OkKEoWmgcK6I6TCKLzEhdS33o 4V1hb/mzqipgpaR+DdLz2oMXuNvLoCrosN1n0+wMffIySmIUeYVT9v0F+N78C4yr Q6/WZNjpF1wJIcTQCEZJ18ki8ewzgt/dNVAmcWUk0fUFq7AtGAzCSqURWXpFIRmo mayXystlWOflVPgfX+N146EXXlsMvNmPoFGlE/UH7nKb/Qwr9g6qlbJCLfzC9gQj zGxH92NcLabF3fbRbJuT0NnEtQIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFM3a5RyE 3AqIgPcWHKNgJASZ/3zuMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvOTJDMURBNzJG OTY5MTFFQTk2MTU2QzEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAFL0l/qiONUN V9/dZnzyDoRocb+pcxY6qnaEHQnyR9Y3FL9h3i8Hvqi5Ajw6eEP1HeRA3LrUeiYC 6KGol5xIxNVHe1tblk8hY41MIVc09eGGZ+h+sNL383PdEVqdAIudtu8B9UsaS+cE WbRQwrVpOlaQJ48YTzljyuSUtDaVwWO0E5W1VVpMpJfHuDodYXLP98uBe34PAmUQ GLfJJcmMvjuqRRWFxPzLBdBPeNjCgO+sLBNrUkjvYsmo0lUl5Gf0a5d9crg/K2wS x5Sj29P1hRo6gXn7jmEXmicCzSqDi03rUzkR1yntL6xA79hJqmmIjQ/hCrslDtFI nZ2zh2eZHTw= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:55 2024 by rpki-client on console-ams.rpki-client.org