$ rpki-client -vvf rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/D53B3AEE89FE11E6A44EAA55C4F9AE02.roa File: D53B3AEE89FE11E6A44EAA55C4F9AE02.roa (raw, json) Hash identifier: C24xAwQ8MLMpMRt3jGw1uKg/XcxV57rHOMlU+NGZQfE= Subject key identifier: 99:70:E0:C7:30:2E:47:32:C8:B4:01:F6:3A:57:3C:A5:13:6C:93:B9 Certificate issuer: /CN=A91AABB1/serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Certificate serial: 3406 Authority key identifier: EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/D53B3AEE89FE11E6A44EAA55C4F9AE02.roa Signing time: Thu 08 Jun 2023 15:21:00 +0000 ROA not before: Thu 08 Jun 2023 15:21:00 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 63932 IP address blocks: 114.130.54.0/23 maxlen: 23 114.130.54.0/24 maxlen: 24 114.130.55.0/24 maxlen: 24 114.130.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 15:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13318 (0x3406) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AABB1/serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Validity Not Before: Jun 8 15:21:00 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6481f1db-2ba8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a9:db:99:58:69:a1:fa:b5:de:db:13:1b:c4: 2c:91:25:6e:80:7a:10:f9:85:7f:b4:eb:b8:e6:d3: 09:e5:c5:83:25:43:86:a1:fd:7f:f0:f6:ba:93:66: fa:c1:98:af:b3:c5:55:42:93:18:30:be:4d:f4:0a: bc:84:f7:bd:46:ad:4a:aa:ee:83:8a:0d:44:7b:c3: 16:29:f3:55:ad:97:bb:62:60:6f:1d:9a:5b:73:3d: ee:5d:9a:14:48:4c:3a:67:18:63:87:d3:97:d4:09: 00:ae:b4:d2:3f:25:a6:d2:4b:d9:dc:e9:88:5f:22: 69:81:47:92:2b:1b:50:e7:93:b2:2f:1c:82:0e:ed: 3a:bc:ef:6d:e1:c7:1e:2e:3c:06:77:d3:81:bc:92: 22:35:ba:9a:48:6f:f4:f6:33:f7:49:f1:39:b2:28: b4:9b:5f:31:0b:6f:a8:56:ec:8c:e3:98:b0:8a:2c: e9:e9:1b:0b:b9:c9:4c:fd:61:9a:5a:f8:fe:81:79: 71:e6:64:e0:47:3c:b9:f7:ed:94:45:31:a2:6e:89: d8:dd:50:65:e1:cb:83:4d:d6:6b:3f:b5:0e:81:90: cf:83:e1:2f:8f:37:68:d1:21:d1:7a:07:6a:ae:d1: 35:65:3b:68:c6:0d:81:85:79:f7:02:4a:34:b6:0b: d3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:70:E0:C7:30:2E:47:32:C8:B4:01:F6:3A:57:3C:A5:13:6C:93:B9 X509v3 Authority Key Identifier: keyid:EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/D53B3AEE89FE11E6A44EAA55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.130.54.0/23 114.130.116.0/22 Signature Algorithm: sha256WithRSAEncryption 92:bc:67:06:85:5a:5a:99:18:d1:be:79:da:90:8b:7c:d8:c1: 13:90:3f:0a:94:50:d3:8c:b3:22:3b:c2:5a:7c:3a:0a:9d:75: 52:3e:12:e8:97:29:7d:12:2d:dc:2f:95:d6:76:37:22:d5:d9: 52:5b:f5:6a:63:90:0f:b1:7a:34:d9:9e:2f:1b:07:5d:6d:3a: 5f:9e:ef:85:14:b9:a8:ff:90:75:6c:12:41:33:7b:cf:6b:db: e0:e1:3d:14:7f:c3:ae:45:b0:a2:30:2c:81:33:38:85:31:28: ad:63:ac:3e:43:33:88:ed:55:18:37:48:b1:7b:ae:ff:97:8a: 6d:4c:7d:90:bf:6a:e5:9e:54:3e:ce:f0:01:7d:5d:f6:f4:4e: 6b:d5:ed:4d:5e:ad:b7:00:28:8c:ee:05:1f:b9:59:ca:1b:53: 3f:2f:60:1a:68:e8:8a:7d:db:26:b9:be:23:69:34:f3:55:e7: 59:49:84:db:34:35:f1:87:2f:e9:50:23:85:86:09:84:c7:c5: 4e:74:d8:6d:b0:85:67:39:61:c6:25:93:27:15:db:b3:28:f3: cc:da:a5:0d:47:73:7e:e2:7c:8c:48:34:5b:2f:ab:29:89:a3: 84:37:b4:ef:a4:b6:29:1d:30:99:9f:08:15:34:2b:ea:35:f5: c0:36:40:70 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFCQjExMTAvBgNVBAUTKEVCN0ZFOTg5MkRGMDAwMjU1RkNGM0FDMEIyQjREMTJB RUE2RkY4MDYwHhcNMjMwNjA4MTUyMTAwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDgxZjFkYi0yYmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA46nbmVhpofq13tsTG8QskSVugHoQ+YV/tOu45tMJ5cWDJUOGof1/8Pa6k2b6 wZivs8VVQpMYML5N9Aq8hPe9Rq1Kqu6Dig1Ee8MWKfNVrZe7YmBvHZpbcz3uXZoU SEw6Zxhjh9OX1AkArrTSPyWm0kvZ3OmIXyJpgUeSKxtQ55OyLxyCDu06vO9t4cce LjwGd9OBvJIiNbqaSG/09jP3SfE5sii0m18xC2+oVuyM45iwiizp6RsLuclM/WGa Wvj+gXlx5mTgRzy59+2URTGibonY3VBl4cuDTdZrP7UOgZDPg+Evjzdo0SHRegdq rtE1ZTtoxg2BhXn3Ako0tgvTswIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJlw4Mcw LkcyyLQB9jpXPKUTbJO5MB8GA1UdIwQYMBaAFOt/6Ykt8AAlX886wLK00Srqb/gG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUJCMS84ODc0RTlFODFE OTgxMUUyOTc4OEE5ODIwOEIwMkNEMi82M19waVMzd0FDVmZ6enJBc3JUUkt1cHYt QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYzX3BpUzN3QUNWZnp6ckFzclRSS3Vwdi1BWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFCQjEvODg3NEU5RTgxRDk4MTFFMjk3ODhBOTgyMDhCMDJDRDIvRDUzQjNBRUU4 OUZFMTFFNkE0NEVBQTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFygjYDBAJygnQwDQYJKoZIhvcNAQELBQADggEBAJK8ZwaF WlqZGNG+edqQi3zYwROQPwqUUNOMsyI7wlp8OgqddVI+EuiXKX0SLdwvldZ2NyLV 2VJb9WpjkA+xejTZni8bB11tOl+e74UUuaj/kHVsEkEze89r2+DhPRR/w65FsKIw LIEzOIUxKK1jrD5DM4jtVRg3SLF7rv+Xim1MfZC/auWeVD7O8AF9Xfb0TmvV7U1e rbcAKIzuBR+5WcobUz8vYBpo6Ip92ya5viNpNPNV51lJhNs0NfGHL+lQI4WGCYTH xU502G2whWc5YcYlkycV27Mo88zapQ1Hc37ifIxINFsvqymJo4Q3tO+ktikdMJmf CBU0K+o19cA2QHA= -----END CERTIFICATE-----Generated at Mon May 20 17:22:32 2024 by rpki-client on console-fra.rpki-client.org