$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/95C12B8E21A111EE8360C139C4F9AE02.roa File: 95C12B8E21A111EE8360C139C4F9AE02.roa (raw, json) Hash identifier: EaL7saPML0jId9rtbBr/qVnmKgWaUc9g52nwg+Gepss= Subject key identifier: CE:7E:D0:95:26:F0:DE:5A:C6:F3:6F:6B:35:6C:62:AF:A1:E4:30:23 Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 0423 Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/95C12B8E21A111EE8360C139C4F9AE02.roa Signing time: Mon 01 Jan 2024 02:03:42 +0000 ROA not before: Mon 01 Jan 2024 02:03:42 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 61112 IP address blocks: 117.55.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1059 (0x423) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Jan 1 02:03:42 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65921d7e-b4df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:77:23:71:14:05:f6:ba:65:f3:de:75:a6:7e: 5a:6d:b5:7c:f7:39:85:6f:9a:35:b2:d7:d4:6c:15: f6:33:19:70:b8:d8:23:d4:58:e0:5f:fb:3c:d8:a3: 49:04:d9:8c:2a:55:53:86:0d:b9:5a:43:f2:4f:5c: 70:20:68:bf:19:e5:89:91:8c:cf:0e:57:35:fa:e6: 23:ac:e8:7c:b3:46:86:c1:50:d7:3f:94:60:8f:b0: c2:3e:8c:e7:dc:30:3f:7a:35:a0:fe:fa:93:fc:b4: c7:d1:41:5c:f1:d5:bf:24:2b:3e:3d:6c:95:2b:ca: 51:ef:3a:fc:1f:15:7d:3b:4e:b5:1e:2b:4b:40:a7: 05:fa:35:7b:86:31:e0:89:d7:a4:aa:76:67:87:99: 3a:21:9e:14:e2:4c:5d:81:fc:01:48:06:c5:11:29: 90:c1:2d:06:de:ca:81:fd:7d:d5:2d:60:be:6b:18: cf:17:fa:89:e3:ab:33:4b:f1:da:16:c5:66:f3:a9: db:05:ec:53:a9:fb:ad:bd:18:14:72:ac:1a:16:88: f0:38:4b:cd:e0:29:07:e4:58:57:45:cd:73:d8:b0: ab:29:4f:30:48:97:e4:c9:fd:48:97:6a:60:bf:07: 08:24:a4:86:8f:64:d1:e6:76:f5:33:ea:22:d1:14: 71:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:7E:D0:95:26:F0:DE:5A:C6:F3:6F:6B:35:6C:62:AF:A1:E4:30:23 X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/95C12B8E21A111EE8360C139C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.204.0/24 Signature Algorithm: sha256WithRSAEncryption b1:3c:3b:ec:5b:ce:5f:42:b7:d8:f6:86:04:80:35:55:8b:31: 56:21:4b:a1:51:82:7d:0f:0b:6d:5d:6b:38:07:2d:2b:55:ac: 64:61:c6:56:a4:cd:84:a9:f9:c8:f3:60:56:cb:2c:f6:5a:b2: 70:bf:f0:96:f9:65:93:45:02:3b:0d:32:6e:dd:40:ae:ec:af: f8:0e:1d:4c:ea:b1:65:82:ab:4f:f2:58:c6:2f:b1:3d:12:6e: 40:50:25:3d:e4:22:d3:39:97:c1:2c:01:5d:10:84:ff:3e:38: a5:12:8c:6b:26:14:52:e4:6e:e0:af:27:cd:39:ae:a5:86:fe: e8:2e:a4:de:3e:fe:34:df:c3:45:b7:82:51:f2:78:40:08:c1: 71:03:23:41:00:4c:34:63:6a:a4:9c:6a:22:12:39:66:bf:8a: 34:7c:24:72:62:1a:36:6c:d7:c8:41:b5:57:0b:9a:88:a7:a6: 09:6d:4d:fb:45:ab:5e:8a:65:e2:61:ee:17:d5:62:d5:ba:7d: 56:a3:38:c0:07:fc:44:74:96:7a:4f:a1:b9:4e:fb:5d:f4:8c: ce:e9:c3:b8:9b:dc:4c:82:ac:61:3b:ab:d6:9e:3a:97:66:b2: 1c:56:93:40:c5:b2:fb:4c:3e:f9:65:f4:5b:a7:40:13:0c:43: ce:7b:51:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjQwMTAxMDIwMzQyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkyMWQ3ZS1iNGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ncjcRQF9rpl8951pn5abbV89zmFb5o1stfUbBX2MxlwuNgj1FjgX/s82KNJ BNmMKlVThg25WkPyT1xwIGi/GeWJkYzPDlc1+uYjrOh8s0aGwVDXP5Rgj7DCPozn 3DA/ejWg/vqT/LTH0UFc8dW/JCs+PWyVK8pR7zr8HxV9O061HitLQKcF+jV7hjHg idekqnZnh5k6IZ4U4kxdgfwBSAbFESmQwS0G3sqB/X3VLWC+axjPF/qJ46szS/Ha FsVm86nbBexTqfutvRgUcqwaFojwOEvN4CkH5FhXRc1z2LCrKU8wSJfkyf1Il2pg vwcIJKSGj2TR5nb1M+oi0RRxdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM5+0JUm 8N5axvNvazVsYq+h5DAjMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENzIvNDU3NkE2NzIyNjEyMTFFQ0I5MzE5OTQyQzRGOUFFMDIvOTVDMTJCOEUy MUExMTFFRTgzNjBDMTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1N8wwDQYJKoZIhvcNAQELBQADggEBALE8O+xbzl9Ct9j2 hgSANVWLMVYhS6FRgn0PC21dazgHLStVrGRhxlakzYSp+cjzYFbLLPZasnC/8Jb5 ZZNFAjsNMm7dQK7sr/gOHUzqsWWCq0/yWMYvsT0SbkBQJT3kItM5l8EsAV0QhP8+ OKUSjGsmFFLkbuCvJ805rqWG/ugupN4+/jTfw0W3glHyeEAIwXEDI0EATDRjaqSc aiISOWa/ijR8JHJiGjZs18hBtVcLmoinpgltTftFq16KZeJh7hfVYtW6fVajOMAH /ER0lnpPoblO+130jM7pw7ib3EyCrGE7q9aeOpdmshxWk0DFsvtMPvll9FunQBMM Q857Ue0= -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:04 2024 by rpki-client on console-ams.rpki-client.org