$ rpki-client -vvf rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/D53B3AEE89FE11E6A44EAA55C4F9AE02.roa File: D53B3AEE89FE11E6A44EAA55C4F9AE02.roa (raw, json) Hash identifier: QrrS2VxYNscI/BOk9bE6lCTC7XbP/jpfa//4gPNZQ8Y= Subject key identifier: 77:61:F6:2A:ED:59:C9:4A:33:0F:3F:EC:4E:3E:97:BC:AF:D5:43:BF Certificate issuer: /CN=A91AABB1/serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Certificate serial: 34ED Authority key identifier: EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/D53B3AEE89FE11E6A44EAA55C4F9AE02.roa Signing time: Thu 06 Jun 2024 15:11:16 +0000 ROA not before: Thu 06 Jun 2024 15:11:16 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 63932 IP address blocks: 114.130.54.0/23 maxlen: 23 114.130.54.0/24 maxlen: 24 114.130.55.0/24 maxlen: 24 114.130.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13549 (0x34ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AABB1/serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Validity Not Before: Jun 6 15:11:16 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6661d194-861e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ce:77:a4:c2:44:da:7e:54:f1:21:ca:f4:3f: 04:06:23:20:5c:5f:cf:96:3c:90:c9:4f:5a:7b:5c: e9:72:07:97:c8:71:8a:6f:b6:4b:6d:b8:4c:8c:e2: e6:70:f3:5d:a7:26:e8:a9:93:1b:b8:9d:1b:98:ee: 56:9c:6f:9c:75:72:e0:61:ab:27:0d:5b:a4:1d:39: ac:87:b9:c4:ad:46:34:c8:2f:0d:e9:3d:b9:58:52: 63:a6:68:a1:c8:53:91:eb:62:cf:e3:74:6b:e9:4b: 47:a5:89:1e:de:a1:d7:92:46:39:1d:8e:77:01:56: 5d:c8:93:9f:95:ff:cb:3a:5c:85:03:46:3f:07:e9: 5f:0b:f6:61:9a:95:06:49:01:e4:d8:b2:f1:b5:a9: 3a:7c:1f:ec:e7:bd:5b:27:56:10:31:99:b5:e2:f8: 49:3b:16:1d:fa:81:86:8d:ed:a2:3f:94:f4:fa:16: 36:fb:21:49:30:8f:a8:8f:16:f0:48:d9:68:9d:60: 05:b6:44:98:f2:0b:02:10:51:61:97:89:54:cf:a4: 31:d0:ea:4e:12:92:ad:e3:b3:9a:c1:40:6d:f3:1b: f1:a3:d3:79:b2:52:72:e1:86:ef:4c:05:26:3a:e2: f3:9a:ab:49:35:de:10:6f:ab:6e:ce:44:eb:b4:4e: 00:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:61:F6:2A:ED:59:C9:4A:33:0F:3F:EC:4E:3E:97:BC:AF:D5:43:BF X509v3 Authority Key Identifier: keyid:EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/D53B3AEE89FE11E6A44EAA55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.130.54.0/23 114.130.116.0/22 Signature Algorithm: sha256WithRSAEncryption 95:18:74:9e:97:41:d3:1d:69:44:8d:b8:a8:04:a0:bf:54:de: d8:6a:00:1d:87:d2:59:dc:11:c5:02:15:43:03:da:1a:3f:4e: a8:1b:f7:d3:df:16:02:22:92:30:df:e6:11:d7:18:0a:6f:5d: b9:3c:b3:0a:4a:3d:68:d8:0e:57:d5:73:36:9c:6a:b9:c6:91: 8f:de:e9:5f:08:06:7b:89:4c:99:bf:a8:d0:93:29:97:99:77: 34:47:fb:4d:e3:93:7e:63:47:56:a3:04:31:d0:81:2e:19:f1: 0f:79:69:b8:2d:e9:13:bd:fe:64:25:a6:b4:ed:ae:20:f2:65: 15:21:ff:7d:1e:32:c9:c3:7a:c3:55:6d:82:ff:f5:96:2f:8e: 11:fc:b7:a4:bf:a1:48:70:bb:e0:18:d1:1e:3d:2c:ad:ea:26: 55:c1:8c:e7:8d:56:c9:2d:d1:4c:56:33:0a:41:a0:fa:82:c2: 1b:92:b2:95:6d:d0:29:e4:2b:d8:31:55:4a:ce:68:c2:de:08: 88:50:a6:2e:9d:46:38:ae:2c:cd:4b:7c:fb:7d:66:eb:2b:10: 7e:65:7d:2e:47:23:fe:fe:fc:7d:39:6f:b2:2f:8e:56:4f:70: ca:a8:57:13:7c:63:01:3c:cb:c0:92:65:52:e3:67:58:66:ba: 0f:20:df:f1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFCQjExMTAvBgNVBAUTKEVCN0ZFOTg5MkRGMDAwMjU1RkNGM0FDMEIyQjREMTJB RUE2RkY4MDYwHhcNMjQwNjA2MTUxMTE2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYxZDE5NC04NjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqc53pMJE2n5U8SHK9D8EBiMgXF/PljyQyU9ae1zpcgeXyHGKb7ZLbbhMjOLm cPNdpyboqZMbuJ0bmO5WnG+cdXLgYasnDVukHTmsh7nErUY0yC8N6T25WFJjpmih yFOR62LP43Rr6UtHpYke3qHXkkY5HY53AVZdyJOflf/LOlyFA0Y/B+lfC/ZhmpUG SQHk2LLxtak6fB/s571bJ1YQMZm14vhJOxYd+oGGje2iP5T0+hY2+yFJMI+ojxbw SNlonWAFtkSY8gsCEFFhl4lUz6Qx0OpOEpKt47OawUBt8xvxo9N5slJy4YbvTAUm OuLzmqtJNd4Qb6tuzkTrtE4AdwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHdh9irt WclKMw8/7E4+l7yv1UO/MB8GA1UdIwQYMBaAFOt/6Ykt8AAlX886wLK00Srqb/gG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUJCMS84ODc0RTlFODFE OTgxMUUyOTc4OEE5ODIwOEIwMkNEMi82M19waVMzd0FDVmZ6enJBc3JUUkt1cHYt QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYzX3BpUzN3QUNWZnp6ckFzclRSS3Vwdi1BWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFCQjEvODg3NEU5RTgxRDk4MTFFMjk3ODhBOTgyMDhCMDJDRDIvRDUzQjNBRUU4 OUZFMTFFNkE0NEVBQTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFygjYDBAJygnQwDQYJKoZIhvcNAQELBQADggEBAJUYdJ6X QdMdaUSNuKgEoL9U3thqAB2H0lncEcUCFUMD2ho/Tqgb99PfFgIikjDf5hHXGApv Xbk8swpKPWjYDlfVczacarnGkY/e6V8IBnuJTJm/qNCTKZeZdzRH+03jk35jR1aj BDHQgS4Z8Q95abgt6RO9/mQlprTtriDyZRUh/30eMsnDesNVbYL/9ZYvjhH8t6S/ oUhwu+AY0R49LK3qJlXBjOeNVskt0UxWMwpBoPqCwhuSspVt0CnkK9gxVUrOaMLe CIhQpi6dRjiuLM1LfPt9ZusrEH5lfS5HI/7+/H05b7IvjlZPcMqoVxN8YwE8y8CS ZVLjZ1hmug8g3/E= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:02 2024 by rpki-client on console-ams.rpki-client.org