$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/95C12B8E21A111EE8360C139C4F9AE02.roa File: 95C12B8E21A111EE8360C139C4F9AE02.roa (raw, json) Hash identifier: ANarnw7th2betqTUJ1dSr/6kmM20Z4BPNu0RmkGVouY= Subject key identifier: DD:3A:DD:89:D0:73:19:F8:27:3C:4D:9C:E3:00:50:90:D3:9D:50:1D Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 04E4 Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/95C12B8E21A111EE8360C139C4F9AE02.roa Signing time: Sat 28 Dec 2024 23:32:33 +0000 ROA not before: Sat 28 Dec 2024 23:32:33 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 61112 IP address blocks: 117.55.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1252 (0x4e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72 Validity Not Before: Dec 28 23:32:33 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67708a91-d24c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:1f:99:92:a4:87:47:72:74:74:ec:a1:07:20: c0:5a:a0:31:5c:d3:cf:1b:77:70:12:30:b7:f7:22: 9e:e2:e0:68:f8:24:27:9e:99:02:97:c7:49:dc:a9: 20:f5:a0:8e:5b:f7:19:46:89:dd:fc:3e:f4:e6:a8: 86:96:a7:60:c8:4f:36:27:f5:0c:aa:6b:46:cb:35: c6:b5:ad:dc:7b:43:5f:a9:96:f6:00:95:ad:e9:21: af:07:3f:22:5e:0d:fa:35:d6:65:2c:51:04:ba:4e: ca:db:df:cd:94:a5:b4:34:88:09:e3:b6:a9:e0:0d: fc:60:bf:2d:74:d4:19:3f:33:fc:90:1b:94:a5:46: a0:a0:be:1d:ed:04:2e:29:03:ce:ac:a2:59:2e:74: 08:a6:95:5a:a6:37:23:1d:a8:0e:88:59:ff:fb:b8: 7c:5b:1a:9b:13:06:85:bd:72:cd:43:9a:2f:05:43: db:b1:39:1d:fc:b4:07:64:35:94:7e:50:ad:9b:79: 69:d9:44:ae:a8:76:40:1a:9f:94:cf:06:e4:4d:2d: 72:c0:23:f3:54:35:8f:61:25:ca:af:a6:f7:33:d0: 56:a8:9e:f4:43:bf:7e:64:27:75:d5:f7:f8:14:8d: f6:4c:ff:8b:98:a0:e5:6a:44:e6:92:b5:52:16:06: 74:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:3A:DD:89:D0:73:19:F8:27:3C:4D:9C:E3:00:50:90:D3:9D:50:1D X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/95C12B8E21A111EE8360C139C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.204.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:dc:cc:b6:5e:57:cc:3b:b6:97:00:2e:e9:69:21:a5:65:4d: 9f:71:8f:e7:f6:43:75:18:a6:7e:6d:42:56:ed:04:1b:33:8c: 71:b3:c6:65:71:13:fd:e1:b2:f9:ef:f6:c3:ce:00:bd:ac:3d: 45:44:75:36:cd:8e:bc:22:81:73:7d:f4:b9:c2:71:ca:38:5c: 98:08:aa:0a:9b:f8:e0:53:81:e9:fe:8b:22:c2:73:0c:cd:ca: 9a:21:fb:30:10:a1:7c:09:36:ef:c8:79:b3:4a:1c:61:50:ff: d3:28:53:20:64:7e:fb:d8:db:39:5d:64:b8:90:c6:07:ef:dc: c6:99:25:8a:58:bf:9e:57:93:d8:04:02:b9:a8:4e:45:4d:a5: e3:7e:d2:61:b7:e5:d6:f0:d7:72:b8:42:0a:98:4c:31:c0:73: c9:8c:4d:6b:ed:1f:74:a2:03:16:bc:da:91:e4:7e:a9:d1:91: 9f:ce:dc:81:3a:fb:7f:f6:ac:ca:f3:fd:0a:1d:54:9c:db:7e: e7:66:6a:44:d5:82:62:58:67:15:56:a3:50:73:dc:17:84:25: 55:35:3f:4a:b5:08:c3:58:70:88:1a:54:c3:a5:b7:3a:28:bd: a0:97:44:81:72:71:ee:04:c6:ae:19:28:42:60:3d:6a:56:3b: ca:a4:fb:bf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjQxMjI4MjMzMjMzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcwOGE5MS1kMjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8h+ZkqSHR3J0dOyhByDAWqAxXNPPG3dwEjC39yKe4uBo+CQnnpkCl8dJ3Kkg 9aCOW/cZRond/D705qiGlqdgyE82J/UMqmtGyzXGta3ce0NfqZb2AJWt6SGvBz8i Xg36NdZlLFEEuk7K29/NlKW0NIgJ47ap4A38YL8tdNQZPzP8kBuUpUagoL4d7QQu KQPOrKJZLnQIppVapjcjHagOiFn/+7h8WxqbEwaFvXLNQ5ovBUPbsTkd/LQHZDWU flCtm3lp2USuqHZAGp+UzwbkTS1ywCPzVDWPYSXKr6b3M9BWqJ70Q79+ZCd11ff4 FI32TP+LmKDlakTmkrVSFgZ0LwIDAQABo4IClTCCApEwHQYDVR0OBBYEFN063YnQ cxn4JzxNnOMAUJDTnVAdMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENzIvNDU3NkE2NzIyNjEyMTFFQ0I5MzE5OTQyQzRGOUFFMDIvOTVDMTJCOEUy MUExMTFFRTgzNjBDMTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1N8wwDQYJKoZIhvcNAQELBQADggEBAB3czLZeV8w7tpcA LulpIaVlTZ9xj+f2Q3UYpn5tQlbtBBszjHGzxmVxE/3hsvnv9sPOAL2sPUVEdTbN jrwigXN99LnCcco4XJgIqgqb+OBTgen+iyLCcwzNypoh+zAQoXwJNu/IebNKHGFQ /9MoUyBkfvvY2zldZLiQxgfv3MaZJYpYv55Xk9gEArmoTkVNpeN+0mG35dbw13K4 QgqYTDHAc8mMTWvtH3SiAxa82pHkfqnRkZ/O3IE6+3/2rMrz/QodVJzbfudmakTV gmJYZxVWo1Bz3BeEJVU1P0q1CMNYcIgaVMOltzoovaCXRIFyce4Exq4ZKEJgPWpW O8qk+78= -----END CERTIFICATE-----Generated at Sun Apr 6 01:55:39 2025 by rpki-client