$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F49547A8099A11EAB5891D5BC4F9AE02.roa File: F49547A8099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: JJZZ616zU4KOj7qhE4chxD+LUHVETeK41jSiTC6Vntc= Subject key identifier: 18:3C:F9:E4:24:32:0B:0B:E0:39:EB:1A:3F:9A:50:CD:55:08:50:A2 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0EAE Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F49547A8099A11EAB5891D5BC4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:24 +0000 ROA not before: Thu 29 Feb 2024 19:38:24 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397241 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3758 (0xeae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:24 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd2f-8d74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:43:01:90:62:6c:2d:e2:ef:6b:98:8c:33:b6: 4f:4c:af:ef:d0:16:bc:1d:8d:3e:86:62:a7:07:ba: d4:9c:f6:b8:b7:f1:39:47:47:11:95:45:a2:51:9b: 17:78:9f:49:5d:7f:a1:6c:ee:23:85:4f:2f:45:16: b7:79:7a:e5:ea:14:86:65:0f:cc:0f:95:a2:99:d8: 1e:28:9d:28:43:c5:3d:be:b1:a9:a4:8d:dc:47:47: 95:91:b0:1c:48:f4:93:0f:f3:65:1e:3c:12:53:13: 17:c7:76:75:3a:1f:69:ab:89:67:72:ae:78:8e:bc: 31:cd:1b:0c:e6:3e:1d:c8:0e:cd:3b:45:a7:95:4a: 32:bc:1e:d9:d0:a1:ed:cd:91:4f:8b:00:5f:86:29: bd:3f:69:7b:99:8a:a4:f0:4b:38:ee:66:4e:70:c3: cf:cb:0d:43:de:04:36:95:02:b4:35:03:04:e8:b6: bf:ad:2a:31:72:ea:99:79:a2:ec:19:e5:b1:ee:34: 7c:bd:92:0a:87:79:57:f2:31:9f:62:f0:7a:5e:b6: 32:71:d4:20:e7:b5:81:7e:bd:7a:45:4d:71:08:e6: 1c:b7:88:d0:e1:34:d4:b3:d5:be:47:b5:da:78:3d: 2a:aa:3d:4d:80:3c:b7:5a:67:e1:8f:72:72:27:9f: e8:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:3C:F9:E4:24:32:0B:0B:E0:39:EB:1A:3F:9A:50:CD:55:08:50:A2 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F49547A8099A11EAB5891D5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 0b:4c:a0:95:6b:fd:cf:29:51:0a:48:41:99:7c:d7:43:4e:05: c9:2e:2b:83:8f:4f:6f:19:c5:fb:24:7c:3d:c5:bf:4f:dd:e8: eb:ab:69:d8:14:d6:07:a1:4f:82:e3:82:5d:61:70:98:fe:8d: 89:ac:7e:55:10:2b:92:94:48:9b:01:00:64:c2:07:c4:7d:18: 66:4a:75:2f:da:78:17:b6:4d:94:35:ba:57:b4:0f:9b:01:d8: 59:52:0f:72:3c:e1:1a:77:d4:28:ac:01:6b:c3:a3:6f:15:51: 68:9e:ba:d9:fc:b2:78:53:00:6c:f1:23:cd:34:5d:12:27:c0: 7f:33:de:50:57:67:27:de:e9:87:96:ee:e5:ae:15:72:6b:33: 18:49:b8:4c:f7:bd:85:a6:23:5f:14:e4:fa:f1:ef:3d:d5:36: dd:00:b3:7c:1e:b7:74:12:0a:d6:16:40:ae:35:20:3d:de:e6: 96:7f:b4:7c:79:53:0e:14:87:f3:0c:e5:45:a2:cc:55:7e:ca: 2d:65:30:d3:19:23:14:a4:00:2a:80:b6:39:c2:55:6b:94:6a: f0:a8:26:a6:1f:0b:45:8f:34:fa:c8:26:8a:4f:1b:7c:d8:7b: e2:01:0a:49:1d:4f:a1:60:f9:90:35:c9:16:74:f6:15:6c:e2: 30:fb:34:6d -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODI0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQyZi04ZDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0MBkGJsLeLva5iMM7ZPTK/v0Ba8HY0+hmKnB7rUnPa4t/E5R0cRlUWiUZsX eJ9JXX+hbO4jhU8vRRa3eXrl6hSGZQ/MD5WimdgeKJ0oQ8U9vrGppI3cR0eVkbAc SPSTD/NlHjwSUxMXx3Z1Oh9pq4lncq54jrwxzRsM5j4dyA7NO0WnlUoyvB7Z0KHt zZFPiwBfhim9P2l7mYqk8Es47mZOcMPPyw1D3gQ2lQK0NQME6La/rSoxcuqZeaLs GeWx7jR8vZIKh3lX8jGfYvB6XrYycdQg57WBfr16RU1xCOYct4jQ4TTUs9W+R7Xa eD0qqj1NgDy3Wmfhj3JyJ5/o1QIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFBg8+eQk MgsL4DnrGj+aUM1VCFCiMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjQ5NTQ3QTgw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAAtMoJVr/c8p UQpIQZl810NOBckuK4OPT28ZxfskfD3Fv0/d6OuradgU1gehT4Ljgl1hcJj+jYms flUQK5KUSJsBAGTCB8R9GGZKdS/aeBe2TZQ1ule0D5sB2FlSD3I84Rp31CisAWvD o28VUWieutn8snhTAGzxI800XRInwH8z3lBXZyfe6YeW7uWuFXJrMxhJuEz3vYWm I18U5Prx7z3VNt0As3wet3QSCtYWQK41ID3e5pZ/tHx5Uw4Uh/MM5UWizFV+yi1l MNMZIxSkACqAtjnCVWuUavCoJqYfC0WPNPrIJopPG3zYe+IBCkkdT6Fg+ZA1yRZ0 9hVs4jD7NG0= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:55 2024 by rpki-client on console-ams.rpki-client.org