$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F3DDF814099A11EAB5891D5BC4F9AE02.roa File: F3DDF814099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: cIVKo6UWPGyzSyVR+rg38rhOGNYaeRQiWkow074+frc= Subject key identifier: 35:77:83:F9:AF:3E:B3:D0:EC:2D:F1:F3:0C:67:4E:07:BA:9A:B3:60 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0EAC Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F3DDF814099A11EAB5891D5BC4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:22 +0000 ROA not before: Thu 29 Feb 2024 19:38:22 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397239 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3756 (0xeac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:22 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd2e-c89e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a3:76:d4:7c:d2:08:fa:04:f2:8b:81:f1:52: c1:75:6b:d6:32:80:6d:42:88:2d:7c:32:5d:67:7a: 1e:ea:ed:4e:90:35:0a:29:53:a4:e2:98:e0:f6:01: 38:f7:4f:d2:73:ea:27:4f:7e:18:4d:6d:f4:53:37: b4:8b:0c:94:a0:79:1d:85:a0:29:d5:23:c3:65:35: 99:68:15:6d:7a:f6:f1:49:b6:56:14:d0:5f:98:af: 25:32:47:99:38:9e:50:c4:4b:91:9d:0e:67:6a:18: d2:52:16:5d:ec:84:0e:52:bf:c1:64:aa:1a:c2:7e: 33:38:47:d7:6c:a6:fc:f9:25:92:56:f9:09:c1:6e: e4:0d:49:d4:28:9d:10:6b:d9:fb:42:80:39:fe:b4: 3b:fe:33:0c:d4:bc:b6:f5:26:b9:3d:89:7c:a3:cc: 2b:0b:6d:93:10:c2:36:72:d4:90:56:80:a6:34:b3: c8:96:2f:d4:29:ea:03:ed:cf:2b:58:b2:2a:00:9f: 34:67:3c:6e:10:98:27:1a:70:ed:0f:ed:7f:f3:ac: 7a:d5:5f:c3:60:37:5e:ec:45:a9:ce:09:5f:b2:11: ef:ec:a2:07:64:e0:6e:31:93:64:53:d5:49:e4:5f: 11:7e:e9:9a:84:4c:61:fd:b9:0e:ed:5a:80:29:9f: 37:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:77:83:F9:AF:3E:B3:D0:EC:2D:F1:F3:0C:67:4E:07:BA:9A:B3:60 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F3DDF814099A11EAB5891D5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 19:e8:c1:69:d9:b0:64:aa:6a:9a:7e:83:29:80:f0:79:fd:74: c5:64:55:a0:90:36:a9:ba:da:25:ea:1f:9b:5e:79:5f:d4:0e: be:d9:64:a0:e4:2a:68:e6:8f:dd:96:08:44:62:1c:90:6f:68: 7a:11:e0:83:51:c9:21:00:7f:7a:b7:c9:be:cf:90:8c:fc:87: 99:38:de:57:8f:5d:d1:40:93:a7:9b:38:3e:91:95:b9:dc:76: d6:ea:1f:3a:24:08:c1:b4:15:23:ab:c1:68:2e:c0:8f:33:b6: be:f1:3d:ed:67:c9:39:57:00:33:8f:20:bf:23:b9:11:b6:0c: 03:4a:83:d8:b6:4a:80:ab:bd:09:2e:d4:e5:3a:0e:c7:b9:e0: c5:47:a9:fb:81:6f:b8:25:91:c4:14:40:59:48:68:de:15:29: 36:16:f4:04:45:0f:57:78:dd:96:ea:8d:95:c7:91:e8:da:1e: 47:34:89:d0:5d:f7:f2:55:36:41:10:73:93:99:07:70:08:60: 41:32:a7:af:4a:03:f2:44:ff:19:79:ec:c6:27:2c:75:d1:26: 4c:8d:1a:03:a8:b1:a4:23:0d:b2:ec:df:92:e1:8a:a5:0f:3a: 75:6d:df:85:24:3b:06:d9:79:b6:e1:c0:bb:e0:01:cc:25:70: 30:88:9f:66 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODIyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQyZS1jODllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqN21HzSCPoE8ouB8VLBdWvWMoBtQogtfDJdZ3oe6u1OkDUKKVOk4pjg9gE4 90/Sc+onT34YTW30Uze0iwyUoHkdhaAp1SPDZTWZaBVtevbxSbZWFNBfmK8lMkeZ OJ5QxEuRnQ5nahjSUhZd7IQOUr/BZKoawn4zOEfXbKb8+SWSVvkJwW7kDUnUKJ0Q a9n7QoA5/rQ7/jMM1Ly29Sa5PYl8o8wrC22TEMI2ctSQVoCmNLPIli/UKeoD7c8r WLIqAJ80ZzxuEJgnGnDtD+1/86x61V/DYDde7EWpzglfshHv7KIHZOBuMZNkU9VJ 5F8RfumahExh/bkO7VqAKZ83DQIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFDV3g/mv PrPQ7C3x8wxnTge6mrNgMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjNEREY4MTQw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBABnowWnZsGSq app+gymA8Hn9dMVkVaCQNqm62iXqH5teeV/UDr7ZZKDkKmjmj92WCERiHJBvaHoR 4INRySEAf3q3yb7PkIz8h5k43lePXdFAk6ebOD6RlbncdtbqHzokCMG0FSOrwWgu wI8ztr7xPe1nyTlXADOPIL8juRG2DANKg9i2SoCrvQku1OU6Dse54MVHqfuBb7gl kcQUQFlIaN4VKTYW9ARFD1d43ZbqjZXHkejaHkc0idBd9/JVNkEQc5OZB3AIYEEy p69KA/JE/xl57MYnLHXRJkyNGgOosaQjDbLs35LhiqUPOnVt34UkOwbZebbhwLvg AcwlcDCIn2Y= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:55 2024 by rpki-client on console-ams.rpki-client.org