$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/A874B08E072E11EA8A64DC59C4F9AE02.roa File: A874B08E072E11EA8A64DC59C4F9AE02.roa (raw, json) Hash identifier: uziB4dGvF1VHlHvVWALH5Lm20+CTQMd7ucVTGRsNsBc= Subject key identifier: 78:C3:D2:85:90:7C:65:0B:08:79:A7:DD:D0:87:48:63:08:8A:B6:2F Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0E93 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/A874B08E072E11EA8A64DC59C4F9AE02.roa Signing time: Thu 29 Feb 2024 19:37:57 +0000 ROA not before: Thu 29 Feb 2024 19:37:57 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397213 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 18:35:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3731 (0xe93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:37:57 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd14-9944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:30:ab:00:88:14:8d:14:eb:e7:fb:d6:19:37: f9:66:99:dd:67:53:fe:ed:86:80:a9:eb:ca:a8:24: 47:cc:77:78:61:28:54:e6:88:6d:a9:54:5d:7f:d2: b6:8f:07:ca:0a:c6:2c:b0:11:21:71:3a:31:59:8b: 39:c9:8f:ca:bf:df:f9:d1:7c:a7:63:7b:ec:45:93: 17:3c:09:75:4a:c4:85:78:58:e8:df:22:50:2f:15: eb:80:44:ad:6c:d0:73:ab:b4:a9:be:d9:fe:22:5b: be:ad:05:a3:77:07:19:c1:50:03:a8:e6:ad:37:a4: 1c:0b:03:08:98:14:34:cc:d1:32:d7:d8:6e:3b:19: a6:63:5a:49:98:ec:83:40:59:9b:73:6d:f0:5a:0d: 45:b4:d3:78:3c:37:42:51:8a:62:ce:cb:90:e4:13: fa:67:ad:a0:9e:fc:72:22:b7:1b:de:f4:3c:78:70: 6c:ac:1c:f7:1c:e8:5a:5b:b7:23:f2:53:57:bc:9b: 1b:53:73:0e:72:53:35:ce:49:ef:9b:d5:10:67:c1: 21:19:d7:70:d8:f8:bd:e9:5f:04:94:36:bb:31:4f: 80:fc:de:1e:4d:af:ca:b5:b4:26:95:ed:cf:7f:11: 38:74:ea:02:42:d8:ab:d2:f6:49:a0:79:5f:39:28: 03:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C3:D2:85:90:7C:65:0B:08:79:A7:DD:D0:87:48:63:08:8A:B6:2F X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/A874B08E072E11EA8A64DC59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 7e:1a:86:69:9f:47:3d:ad:8c:8c:e7:e7:04:13:cf:fd:05:29: cb:09:15:7d:7f:ff:43:e1:95:93:43:a2:cc:a8:c5:bd:91:a1: 65:26:a0:56:05:1f:e9:32:9f:e1:39:1f:c2:5a:21:52:40:a8: c6:35:3d:62:a7:d8:90:db:ac:08:13:37:c9:01:27:bb:64:6a: 93:26:2f:03:ab:f7:73:8e:2a:6e:fd:84:19:72:0f:93:0c:1e: df:7b:ba:42:76:ae:e6:2a:94:6a:08:e1:36:76:49:4b:c0:3f: 6e:c3:23:ed:64:4a:8a:0f:10:c9:a2:aa:f6:ec:a0:be:ba:d1: 95:f4:9d:f4:a2:f4:de:f9:83:17:52:f3:7c:9a:ca:aa:7f:a1: cf:98:6e:e9:51:44:a7:7b:75:72:35:db:26:a2:82:6c:38:76: 25:f8:df:d1:e1:c8:fa:a9:f0:88:17:84:fa:1c:1a:93:22:74: 3e:45:01:fa:80:4b:02:e7:6c:17:af:8f:f9:98:17:6c:d6:60: d8:77:54:6e:43:fc:70:9a:ba:54:ee:65:d7:23:40:37:ba:a1: 71:42:be:85:ff:60:91:69:f8:0e:84:4e:a2:3b:ff:4b:d6:59: 01:b1:55:f9:a0:5d:13:75:96:f4:c5:2f:ed:c9:1f:e3:d3:9c: b2:99:89:84 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzNzU3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQxNC05OTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7TCrAIgUjRTr5/vWGTf5ZpndZ1P+7YaAqevKqCRHzHd4YShU5ohtqVRdf9K2 jwfKCsYssBEhcToxWYs5yY/Kv9/50XynY3vsRZMXPAl1SsSFeFjo3yJQLxXrgESt bNBzq7Spvtn+Ilu+rQWjdwcZwVADqOatN6QcCwMImBQ0zNEy19huOxmmY1pJmOyD QFmbc23wWg1FtNN4PDdCUYpizsuQ5BP6Z62gnvxyIrcb3vQ8eHBsrBz3HOhaW7cj 8lNXvJsbU3MOclM1zknvm9UQZ8EhGddw2Pi96V8ElDa7MU+A/N4eTa/KtbQmle3P fxE4dOoCQtir0vZJoHlfOSgDYQIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFHjD0oWQ fGULCHmn3dCHSGMIirYvMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvQTg3NEIwOEUw NzJFMTFFQThBNjREQzU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAH4ahmmfRz2t jIzn5wQTz/0FKcsJFX1//0PhlZNDosyoxb2RoWUmoFYFH+kyn+E5H8JaIVJAqMY1 PWKn2JDbrAgTN8kBJ7tkapMmLwOr93OOKm79hBlyD5MMHt97ukJ2ruYqlGoI4TZ2 SUvAP27DI+1kSooPEMmiqvbsoL660ZX0nfSi9N75gxdS83yayqp/oc+YbulRRKd7 dXI12yaigmw4diX439HhyPqp8IgXhPocGpMidD5FAfqASwLnbBevj/mYF2zWYNh3 VG5D/HCaulTuZdcjQDe6oXFCvoX/YJFp+A6ETqI7/0vWWQGxVfmgXRN1lvTFL+3J H+PTnLKZiYQ= -----END CERTIFICATE-----Generated at Wed Apr 24 21:18:17 2024 by rpki-client on console-ams.rpki-client.org