$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa File: 1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa (raw, json) Hash identifier: hEnaLHRK3RhsZxVdnfBYMx2CZiUO3Zyp76r2D0ywcK4= Subject key identifier: 9E:64:C8:AE:BD:15:3D:D9:58:59:1A:FD:5A:19:64:F6:84:30:EE:33 Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 041F Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa Signing time: Mon 01 Jan 2024 02:03:39 +0000 ROA not before: Mon 01 Jan 2024 02:03:39 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 216458 IP address blocks: 117.55.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1055 (0x41f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Jan 1 02:03:39 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65921d7b-d940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f7:50:0c:8e:5b:5a:98:ca:8b:49:e1:57:90: d2:b5:f0:54:ec:63:61:34:a6:60:75:9d:61:94:07: e7:f0:c8:08:4d:d4:8c:4e:43:65:ce:ec:91:0d:18: 7d:d2:bb:fe:e0:c5:9d:3e:f2:0c:54:ff:44:ad:5a: c4:61:ce:5c:8d:2a:76:b7:c7:35:88:ce:da:5e:7f: e7:10:e0:d1:a5:b1:08:12:ad:02:14:eb:af:aa:80: 7b:12:a1:fb:77:64:b6:c8:2a:3a:a3:c9:8d:8b:04: a7:d0:5f:7f:35:c5:36:2c:65:6b:36:7f:5b:22:6f: a7:3b:6f:0a:ba:b1:dc:89:b9:6d:7c:90:b9:11:49: db:31:77:c9:f3:14:4d:62:9f:22:4c:eb:14:3a:0a: c6:3e:1e:a4:32:00:49:8c:b1:fc:67:2b:30:3d:16: 9d:e2:1c:aa:45:74:b9:ba:db:4a:f3:d1:23:1e:5b: 53:0f:0a:71:d8:71:f5:9c:61:4f:00:e3:9d:aa:d6: ed:2a:f6:15:e7:b4:28:45:58:dd:0d:fa:f3:e1:13: ac:ec:0b:6f:1e:94:86:89:20:73:d0:8e:62:3e:72: 1d:aa:fa:8b:7d:cb:fe:79:53:02:15:5b:35:91:19: a7:aa:94:8a:c3:e1:55:b9:09:63:39:1a:79:04:45: 18:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:64:C8:AE:BD:15:3D:D9:58:59:1A:FD:5A:19:64:F6:84:30:EE:33 X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.206.0/23 Signature Algorithm: sha256WithRSAEncryption cf:1d:67:9d:fc:b4:18:70:8c:7c:ea:59:c5:2c:e4:83:ed:8c: b3:c2:5c:6f:65:fb:1b:87:06:c4:26:9b:3d:3d:19:c6:ac:84: 9a:bf:75:83:e4:96:19:65:cf:37:7f:da:96:4a:e5:a7:59:1e: da:df:5f:bb:08:d7:eb:07:21:bb:05:5b:c3:4d:01:c1:56:ee: 32:50:f1:42:5c:33:9f:e9:9e:7d:9f:9f:98:a4:d5:29:61:b9: a7:1f:a0:49:01:c8:25:6b:08:70:51:c4:22:ae:08:36:64:f7: 12:26:f2:7f:48:e5:00:56:08:d4:fc:dd:6c:e9:57:67:a9:0b: f6:28:a8:af:6d:ef:b6:b6:81:09:7f:99:65:f5:18:cc:0c:d0: a3:c1:25:da:56:ed:67:72:d0:1b:88:2a:92:4a:1d:c1:f4:83: da:7a:b2:9d:19:26:3b:69:eb:11:e1:ce:d3:49:00:80:71:a8: ed:da:b9:d7:47:61:65:08:69:4d:c6:72:94:4b:a5:ba:54:aa: ec:f7:68:84:09:3f:be:00:0b:4c:c2:a4:f3:c5:1c:a9:98:3f: 20:8f:bd:d8:d0:b3:77:ee:5d:98:19:f0:d8:55:b5:46:84:ba: b0:d9:55:46:04:c3:c9:db:70:16:7a:6e:ef:94:86:11:c2:3f: fd:24:af:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjQwMTAxMDIwMzM5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkyMWQ3Yi1kOTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/dQDI5bWpjKi0nhV5DStfBU7GNhNKZgdZ1hlAfn8MgITdSMTkNlzuyRDRh9 0rv+4MWdPvIMVP9ErVrEYc5cjSp2t8c1iM7aXn/nEODRpbEIEq0CFOuvqoB7EqH7 d2S2yCo6o8mNiwSn0F9/NcU2LGVrNn9bIm+nO28KurHcibltfJC5EUnbMXfJ8xRN Yp8iTOsUOgrGPh6kMgBJjLH8ZyswPRad4hyqRXS5uttK89EjHltTDwpx2HH1nGFP AOOdqtbtKvYV57QoRVjdDfrz4ROs7AtvHpSGiSBz0I5iPnIdqvqLfcv+eVMCFVs1 kRmnqpSKw+FVuQljORp5BEUY/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ5kyK69 FT3ZWFka/VoZZPaEMO4zMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENzIvNDU3NkE2NzIyNjEyMTFFQ0I5MzE5OTQyQzRGOUFFMDIvMUNEN0JFRkM0 RDBFMTFFRUEwOUZCRjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF1N84wDQYJKoZIhvcNAQELBQADggEBAM8dZ538tBhwjHzq WcUs5IPtjLPCXG9l+xuHBsQmmz09GcashJq/dYPklhllzzd/2pZK5adZHtrfX7sI 1+sHIbsFW8NNAcFW7jJQ8UJcM5/pnn2fn5ik1SlhuacfoEkByCVrCHBRxCKuCDZk 9xIm8n9I5QBWCNT83WzpV2epC/YoqK9t77a2gQl/mWX1GMwM0KPBJdpW7Wdy0BuI KpJKHcH0g9p6sp0ZJjtp6xHhztNJAIBxqO3auddHYWUIaU3GcpRLpbpUquz3aIQJ P74AC0zCpPPFHKmYPyCPvdjQs3fuXZgZ8NhVtUaEurDZVUYEw8nbcBZ6bu+UhhHC P/0kr+s= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:23 2024 by rpki-client on console-fra.rpki-client.org