$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F0735BD8099A11EAB5891D5BC4F9AE02.roa File: F0735BD8099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: dPl8NIAc8hQAimsq+AflvGqpzytj/z2QOKoRD2CnON4= Subject key identifier: 27:68:F3:BE:C5:D8:A8:9D:E1:36:F2:9C:B3:A2:5E:E4:2A:01:CA:77 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0E98 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F0735BD8099A11EAB5891D5BC4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:01 +0000 ROA not before: Thu 29 Feb 2024 19:38:01 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397219 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3736 (0xe98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:01 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd19-cf3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:52:47:a4:cc:a0:79:ef:ec:e0:0a:92:95:9b: ea:85:00:cc:06:a9:34:a0:6f:d7:60:9e:a6:a4:cb: 62:bf:8a:be:0a:f0:bb:56:2a:28:d7:83:1a:38:4a: e0:fb:4e:bb:1e:97:fe:4d:1b:3e:34:33:46:01:55: ee:43:d4:e2:f5:bc:c3:3c:22:ac:18:47:3b:43:c1: 9b:a4:05:3f:40:d7:7b:47:75:53:ab:e4:7f:bf:e7: 69:c9:49:b7:a9:af:b4:01:8f:07:3d:f2:ea:b7:07: 76:ad:af:e0:71:af:34:35:ac:17:33:31:a9:df:65: f7:f0:d0:bb:a5:e3:fc:f6:89:67:a0:07:71:cc:45: 54:fc:16:25:45:ff:49:07:d3:27:11:5c:d7:fc:bc: 70:6e:e9:e2:e2:eb:ed:e9:90:45:c2:f6:38:a1:c4: 08:11:79:37:b0:d6:10:38:62:0b:a0:f0:5e:3a:eb: a0:29:3b:27:91:0f:ee:06:f9:99:5a:de:52:16:c7: 54:fe:87:fa:30:d9:3e:34:ef:0b:a6:fe:65:2c:85: 47:8a:92:ef:4d:0c:eb:b9:02:a0:8b:a6:fe:08:07: 05:19:c8:72:20:67:07:bb:58:27:e3:cf:7f:53:88: 30:cb:50:15:7a:7e:0c:84:54:d8:41:20:31:a9:88: 01:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:68:F3:BE:C5:D8:A8:9D:E1:36:F2:9C:B3:A2:5E:E4:2A:01:CA:77 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F0735BD8099A11EAB5891D5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 30:eb:53:17:64:98:6a:2f:04:f4:72:f1:8e:c1:bd:8d:0d:c5: 4f:83:47:1e:19:62:d7:ae:8f:36:c1:d2:77:49:eb:bc:5a:cb: ed:7d:53:43:3f:12:f4:f7:f5:52:6c:cb:f9:86:39:6d:df:ca: 18:1d:f9:13:ca:49:17:ae:e3:a6:8d:3c:6c:56:ae:7f:f3:7f: f3:6f:d2:f0:07:ff:a2:5a:c3:fb:ef:68:6a:c8:be:33:94:c7: 85:0f:28:8a:24:1a:80:22:56:c7:56:04:c6:18:15:c9:aa:5b: d1:ae:42:9d:37:b2:bf:97:db:76:e1:16:11:86:35:53:e9:e6: 86:1d:b1:af:5a:20:38:32:ba:c8:ed:3a:95:4a:90:50:54:af: de:7b:3f:0c:22:cd:d1:22:07:14:18:23:b9:a2:25:7a:b8:9c: fd:c3:c3:97:ac:e1:09:52:53:62:88:d7:0f:f9:da:c3:b5:14: de:81:ed:2e:1d:94:72:92:df:a6:7d:86:c5:0d:b3:d3:65:a2: 8f:4d:93:54:51:fe:bd:66:52:8e:78:e6:f9:1c:96:42:8b:22: a0:19:8f:6a:95:db:1e:d3:7b:4a:4b:b4:41:3b:2c:93:54:86: 20:69:80:ad:be:d8:d7:e6:3f:50:aa:3d:e1:5b:7e:fd:88:b6: 15:23:7d:29 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODAxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQxOS1jZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylJHpMygee/s4AqSlZvqhQDMBqk0oG/XYJ6mpMtiv4q+CvC7Vioo14MaOErg +067Hpf+TRs+NDNGAVXuQ9Ti9bzDPCKsGEc7Q8GbpAU/QNd7R3VTq+R/v+dpyUm3 qa+0AY8HPfLqtwd2ra/gca80NawXMzGp32X38NC7peP89olnoAdxzEVU/BYlRf9J B9MnEVzX/Lxwbuni4uvt6ZBFwvY4ocQIEXk3sNYQOGILoPBeOuugKTsnkQ/uBvmZ Wt5SFsdU/of6MNk+NO8Lpv5lLIVHipLvTQzruQKgi6b+CAcFGchyIGcHu1gn489/ U4gwy1AVen4MhFTYQSAxqYgBvQIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFCdo877F 2Kid4TbynLOiXuQqAcp3MB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjA3MzVCRDgw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBADDrUxdkmGov BPRy8Y7BvY0NxU+DRx4ZYteujzbB0ndJ67xay+19U0M/EvT39VJsy/mGOW3fyhgd +RPKSReu46aNPGxWrn/zf/Nv0vAH/6Jaw/vvaGrIvjOUx4UPKIokGoAiVsdWBMYY FcmqW9GuQp03sr+X23bhFhGGNVPp5oYdsa9aIDgyusjtOpVKkFBUr957PwwizdEi BxQYI7miJXq4nP3Dw5es4QlSU2KI1w/52sO1FN6B7S4dlHKS36Z9hsUNs9Nloo9N k1RR/r1mUo545vkclkKLIqAZj2qV2x7Te0pLtEE7LJNUhiBpgK2+2NfmP1CqPeFb fv2IthUjfSk= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:55 2024 by rpki-client on console-ams.rpki-client.org