$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F10FEA5C099A11EAB5891D5BC4F9AE02.roa File: F10FEA5C099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: CAFj3AR8C7nWFilluq8Zlz0MzuUUBW8YUn1ZIPsTqVg= Subject key identifier: D0:F9:C6:7C:16:1C:46:13:4E:2A:D1:EE:A3:F9:9F:BC:F3:1C:DB:A8 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0E99 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F10FEA5C099A11EAB5891D5BC4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:02 +0000 ROA not before: Thu 29 Feb 2024 19:38:02 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397220 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3737 (0xe99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:02 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd1a-11f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:cd:1b:f6:04:2b:03:42:68:67:ff:3a:2c:fe: 94:41:5c:84:b2:b0:7c:87:7f:6a:35:70:ee:ba:f4: 19:9e:86:68:f3:49:d4:45:4b:87:5d:a9:a5:a2:e0: ae:5a:24:ec:57:b2:ed:44:80:92:cd:bb:8f:dd:74: 09:dd:8d:f5:88:28:ac:06:86:d9:c2:0b:aa:31:da: 4a:c1:a3:a3:47:8f:fb:4e:fd:cf:dd:c6:12:0a:fb: 3d:1b:3a:72:81:9c:0d:9a:29:ee:66:5b:1d:4c:ac: ad:81:ea:65:0f:80:48:f1:a6:23:73:77:79:67:69: c6:82:41:7b:c5:3e:f2:c5:cf:3f:84:c5:66:e0:88: a6:8d:b6:c5:18:1e:65:96:b1:91:f9:5e:7e:a8:46: b0:36:60:6a:6f:a7:90:e5:d2:62:ec:22:4c:d8:03: 06:0b:2d:26:ea:14:c9:43:d2:6e:eb:dd:bd:7d:1e: 82:8e:cb:10:8c:bb:b9:9b:86:4a:7d:33:8e:2b:ca: b9:dd:19:f9:a3:6e:68:b0:f1:e7:47:4d:0d:0c:44: d4:e1:0e:b3:fb:f4:66:84:77:0e:f3:d5:b1:e6:0a: 92:2e:ee:65:8d:e2:11:19:8c:f5:ad:e8:88:09:ad: b4:d0:3d:93:40:f1:81:36:90:9b:d1:f3:32:4c:8c: 14:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:F9:C6:7C:16:1C:46:13:4E:2A:D1:EE:A3:F9:9F:BC:F3:1C:DB:A8 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F10FEA5C099A11EAB5891D5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 6f:e8:79:7a:8e:6b:d9:ce:d5:78:03:63:6c:84:69:34:af:43: 47:10:cf:19:61:de:f7:16:56:25:19:cc:31:4e:2a:18:d8:7d: 11:76:55:6c:c3:9d:ef:b8:58:30:b5:07:20:0a:21:a3:1c:f2: b8:56:ff:62:f3:3b:b8:b8:44:a8:3f:90:5b:7a:07:85:e7:e3: 66:ef:a5:53:c1:1e:0e:fe:84:92:6b:6f:e9:80:6c:78:d4:00: 5e:a3:aa:fa:f6:ca:44:21:1f:65:be:50:51:0b:db:b4:c1:0b: 66:62:3e:e2:eb:14:cc:92:43:51:af:ca:bd:eb:eb:27:ae:d8: 73:a0:d9:53:e0:a7:e4:8e:f5:65:0d:75:4f:07:ea:c5:3f:a2: ef:75:81:87:d1:5c:cf:e4:d2:78:79:16:ee:7d:9d:26:71:29: b7:2d:a6:7c:af:d4:df:4c:b8:4e:d2:ad:61:ea:56:88:a0:6a: b0:30:ae:f3:68:14:a4:b5:25:81:ba:e8:44:0c:b0:96:d2:2f: 1b:a2:be:8a:bf:61:fe:09:1f:db:48:f9:85:78:ca:00:4a:6c: 76:01:48:64:b0:0f:aa:39:0e:c7:a7:a6:88:ed:38:f3:ad:65: f2:5b:3f:74:2f:2d:c8:60:79:f4:54:d4:ea:3a:19:ec:e4:07: 8d:52:fd:82 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODAyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQxYS0xMWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5M0b9gQrA0JoZ/86LP6UQVyEsrB8h39qNXDuuvQZnoZo80nURUuHXamlouCu WiTsV7LtRICSzbuP3XQJ3Y31iCisBobZwguqMdpKwaOjR4/7Tv3P3cYSCvs9Gzpy gZwNminuZlsdTKytgeplD4BI8aYjc3d5Z2nGgkF7xT7yxc8/hMVm4IimjbbFGB5l lrGR+V5+qEawNmBqb6eQ5dJi7CJM2AMGCy0m6hTJQ9Ju6929fR6CjssQjLu5m4ZK fTOOK8q53Rn5o25osPHnR00NDETU4Q6z+/RmhHcO89Wx5gqSLu5ljeIRGYz1reiI Ca200D2TQPGBNpCb0fMyTIwUrwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFND5xnwW HEYTTirR7qP5n7zzHNuoMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjEwRkVBNUMw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAG/oeXqOa9nO 1XgDY2yEaTSvQ0cQzxlh3vcWViUZzDFOKhjYfRF2VWzDne+4WDC1ByAKIaMc8rhW /2LzO7i4RKg/kFt6B4Xn42bvpVPBHg7+hJJrb+mAbHjUAF6jqvr2ykQhH2W+UFEL 27TBC2ZiPuLrFMySQ1Gvyr3r6yeu2HOg2VPgp+SO9WUNdU8H6sU/ou91gYfRXM/k 0nh5Fu59nSZxKbctpnyv1N9MuE7SrWHqVoigarAwrvNoFKS1JYG66EQMsJbSLxui voq/Yf4JH9tI+YV4ygBKbHYBSGSwD6o5DsenpojtOPOtZfJbP3QvLchgefRU1Oo6 GezkB41S/YI= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:26 2024 by rpki-client on console-fra.rpki-client.org