$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/F88F642285E411EEB951413BC4F9AE02.roa File: F88F642285E411EEB951413BC4F9AE02.roa (raw, json) Hash identifier: AsBmvifqi5kf8Uva/ra6MediB6kZeyoXPryhmUwcMIo= Subject key identifier: 33:6F:98:24:97:B7:18:F4:3F:47:7F:69:EE:F8:57:96:19:8E:60:D7 Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 0420 Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/F88F642285E411EEB951413BC4F9AE02.roa Signing time: Mon 01 Jan 2024 02:03:40 +0000 ROA not before: Mon 01 Jan 2024 02:03:40 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 21859 IP address blocks: 117.55.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1056 (0x420) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Jan 1 02:03:40 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65921d7b-8a65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bf:1f:7a:b2:e0:7e:77:5b:30:69:cd:d6:9c: fa:66:1b:e0:b9:c9:91:1e:23:2e:fd:1e:0b:1f:60: 48:30:59:5b:fa:b6:49:5e:5e:e6:1b:75:fc:6e:9b: 43:e8:1d:fb:72:0a:29:be:c9:5d:d9:90:e5:41:59: 79:f5:9e:97:69:6e:52:99:2d:cf:cb:d3:a2:76:0e: c9:7e:69:d0:a1:81:21:4e:6f:96:92:2e:7e:41:cc: da:46:b8:ba:7c:de:86:29:f2:bc:5a:8a:4f:53:5e: 21:7a:23:68:e1:e3:d8:84:23:7c:67:2b:1f:64:a7: ce:b5:71:b8:3a:53:55:49:09:4c:47:13:b7:e6:ae: 87:9d:7f:ae:f4:f4:22:42:1e:c9:ac:33:3d:b8:bf: 47:8e:e0:52:51:98:29:62:9c:4b:8f:74:45:11:6e: 7a:42:89:6f:34:8e:bb:a8:2c:02:53:e8:ea:01:bf: a7:17:04:fc:e1:75:1d:84:88:27:05:b5:dc:59:a9: 50:3e:fc:22:ed:87:ec:24:4f:08:85:7a:4c:79:8e: 71:e1:fc:09:2b:10:1b:fc:c5:a6:09:3e:f9:38:23: c3:7a:83:05:01:80:89:3f:da:9a:d8:c1:d1:c4:c7: 80:1f:fc:77:06:e2:76:04:07:ee:9f:89:fd:8e:3f: bc:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:6F:98:24:97:B7:18:F4:3F:47:7F:69:EE:F8:57:96:19:8E:60:D7 X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/F88F642285E411EEB951413BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.205.0/24 Signature Algorithm: sha256WithRSAEncryption 57:10:52:c6:ab:fc:e7:01:4a:8f:f5:c0:cc:fc:c7:8a:00:c7: ee:cd:10:e9:6e:41:dc:41:81:1d:6a:b3:cd:57:ba:eb:fe:89: 5c:05:e1:af:40:56:29:fc:58:4a:9c:b1:12:74:85:02:ee:d5: 43:ce:0e:4f:57:5a:84:83:bd:b9:be:00:93:75:52:4e:17:0f: ef:dd:c8:b4:84:3e:d8:26:fd:4e:40:7b:46:56:a0:cd:a2:ce: ef:ef:52:2e:2e:41:d9:6e:74:c4:e5:47:23:89:ad:84:a2:0c: 3f:5a:c9:a0:a2:bc:5b:9f:71:91:5e:92:a8:ba:27:74:b7:67: a0:a4:fd:25:34:b8:3b:0d:85:99:7a:79:0f:ac:22:c7:4a:d5: 92:fd:87:cf:83:a3:15:f7:7e:f7:e5:8b:27:0d:4b:c3:32:fd: 25:16:61:a9:fe:1e:b9:f7:1d:6e:87:46:38:2b:2f:ea:42:99: fd:80:8d:68:2d:12:02:6c:9e:48:35:8e:86:60:d8:48:2e:47: 9e:73:22:b9:2e:c8:f4:97:a7:d1:51:f4:1b:51:ee:5d:34:c4: e8:ef:07:f1:78:d5:0a:85:ca:8f:ad:94:fa:18:72:bb:3f:68: 97:62:e2:07:24:52:f9:7e:bc:2d:7a:43:8f:e2:34:a4:14:44: 4c:d3:ac:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjQwMTAxMDIwMzQwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkyMWQ3Yi04YTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwL8ferLgfndbMGnN1pz6ZhvgucmRHiMu/R4LH2BIMFlb+rZJXl7mG3X8bptD 6B37cgopvsld2ZDlQVl59Z6XaW5SmS3Py9Oidg7JfmnQoYEhTm+Wki5+QczaRri6 fN6GKfK8WopPU14heiNo4ePYhCN8ZysfZKfOtXG4OlNVSQlMRxO35q6HnX+u9PQi Qh7JrDM9uL9HjuBSUZgpYpxLj3RFEW56QolvNI67qCwCU+jqAb+nFwT84XUdhIgn BbXcWalQPvwi7YfsJE8IhXpMeY5x4fwJKxAb/MWmCT75OCPDeoMFAYCJP9qa2MHR xMeAH/x3BuJ2BAfun4n9jj+8QQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDNvmCSX txj0P0d/ae74V5YZjmDXMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENzIvNDU3NkE2NzIyNjEyMTFFQ0I5MzE5OTQyQzRGOUFFMDIvRjg4RjY0MjI4 NUU0MTFFRUI5NTE0MTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1N80wDQYJKoZIhvcNAQELBQADggEBAFcQUsar/OcBSo/1 wMz8x4oAx+7NEOluQdxBgR1qs81Xuuv+iVwF4a9AVin8WEqcsRJ0hQLu1UPODk9X WoSDvbm+AJN1Uk4XD+/dyLSEPtgm/U5Ae0ZWoM2izu/vUi4uQdludMTlRyOJrYSi DD9ayaCivFufcZFekqi6J3S3Z6Ck/SU0uDsNhZl6eQ+sIsdK1ZL9h8+DoxX3fvfl iycNS8My/SUWYan+Hrn3HW6HRjgrL+pCmf2AjWgtEgJsnkg1joZg2EguR55zIrku yPSXp9FR9BtR7l00xOjvB/F41QqFyo+tlPoYcrs/aJdi4gckUvl+vC16Q4/iNKQU REzTrDc= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:23 2024 by rpki-client on console-fra.rpki-client.org