$ rpki-client -vvf rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B8D1689472E411ED833AE326C4F9AE02.roa File: B8D1689472E411ED833AE326C4F9AE02.roa (raw, json) Hash identifier: JSwTLZ+Ks+XHKVTbFIphlZkac86sl1CWT662kq+fPJ0= Subject key identifier: 35:35:3B:BC:52:1C:35:73:F3:C5:6F:E8:64:7A:C2:65:C1:8C:D9:AC Certificate issuer: /CN=A91C326F/serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6 Certificate serial: 0652 Authority key identifier: 39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B8D1689472E411ED833AE326C4F9AE02.roa Signing time: Sat 31 Aug 2024 00:01:59 +0000 ROA not before: Sat 31 Aug 2024 00:01:59 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 134176 IP address blocks: 121.54.188.0/24 maxlen: 24 121.54.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1618 (0x652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C326F Validity Not Before: Aug 31 00:01:59 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d25d77-29af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3f:0f:44:a7:e1:17:b4:3f:4d:e6:c1:ae:ee: b6:50:63:d7:5a:07:2b:d4:10:67:d7:94:82:84:87: c6:be:5a:78:12:7d:2e:6d:f2:db:fc:a1:40:11:33: d7:73:22:34:5a:23:0c:c1:36:29:93:ec:70:7a:91: c9:9b:80:05:20:cb:44:e4:22:a1:65:4f:6f:6b:33: 45:91:8f:a6:37:ca:5f:37:f8:dc:63:78:20:ba:49: 2c:8e:f1:6a:27:ef:20:4f:63:28:71:04:c5:1c:52: 52:9a:18:00:1d:e3:35:3d:fe:16:60:80:b0:dc:b1: 41:93:2b:b5:2f:88:d6:82:4a:f1:a6:10:2a:8b:ca: 54:53:6f:c6:b7:63:81:1b:8d:88:40:18:06:a8:fb: 0d:4b:ea:52:6c:0f:c4:eb:e3:e5:10:56:d5:39:6b: 3f:88:ed:11:04:ef:a3:98:86:37:95:44:7a:7f:3f: 2c:ba:7f:b6:78:59:01:91:fb:6b:6a:ee:6a:df:ee: fe:19:84:ef:a3:ac:d7:0d:1f:a0:3e:fa:03:3a:30: b8:38:c7:cc:19:72:e3:84:45:1d:7f:95:e2:be:20: 0a:5c:9a:76:ff:15:7e:df:33:9a:38:ab:77:33:3a: d0:20:95:eb:71:ae:f0:f4:74:12:4a:c4:c0:ab:e5: 5b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:35:3B:BC:52:1C:35:73:F3:C5:6F:E8:64:7A:C2:65:C1:8C:D9:AC X509v3 Authority Key Identifier: keyid:39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B8D1689472E411ED833AE326C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.54.188.0/23 Signature Algorithm: sha256WithRSAEncryption 77:bc:07:d5:3f:6a:28:9f:29:c8:9f:5f:4c:0e:b9:59:03:93: fc:a7:1f:52:fa:f1:32:3e:33:6d:b4:8f:43:cb:d4:9f:d0:f3: fe:c2:36:68:71:9c:b0:0c:cf:5a:0e:45:a6:05:37:cf:ad:db: 69:8a:60:be:34:46:6c:08:2d:d2:ab:ae:8a:23:14:8c:bf:2e: d0:24:e6:82:b3:b2:cb:4f:65:9d:d0:fd:27:eb:a2:85:cf:dd: 53:cb:50:b0:75:25:bd:6e:74:7d:16:57:b0:f9:e5:b5:c3:18: 6e:69:8c:bb:fb:6f:67:9b:d0:a0:62:68:4c:e8:62:ff:0a:4b: aa:ed:13:19:2a:11:b1:9d:e6:31:20:cd:85:f2:42:74:04:0e: bf:ee:90:4f:95:d4:d1:9d:07:2d:57:da:d2:4e:fa:17:4c:bc: 6e:51:74:dd:29:f3:20:c8:95:fa:30:bd:f1:c0:3b:13:18:70: f4:7f:63:cf:44:27:a6:cb:47:5e:c7:21:3f:c6:9e:17:9d:79: 6f:f1:9f:4f:6e:54:ee:07:79:78:48:08:34:70:2b:73:da:9e: 09:07:7f:9a:87:86:4e:75:ea:e9:9e:a6:f7:05:7d:ce:ba:52: f9:63:e7:68:a4:89:62:b0:9d:84:65:02:24:98:9c:82:b6:44: 74:5b:a4:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMyNkYxMTAvBgNVBAUTKDM5MkYzNkUwQTQ1MDA1M0MzREM2NkQyRTM4OTRFMTBD QTczM0REQTYwHhcNMjQwODMxMDAwMTU5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyNWQ3Ny0yOWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1T8PRKfhF7Q/TebBru62UGPXWgcr1BBn15SChIfGvlp4En0ubfLb/KFAETPX cyI0WiMMwTYpk+xwepHJm4AFIMtE5CKhZU9vazNFkY+mN8pfN/jcY3ggukksjvFq J+8gT2MocQTFHFJSmhgAHeM1Pf4WYICw3LFBkyu1L4jWgkrxphAqi8pUU2/Gt2OB G42IQBgGqPsNS+pSbA/E6+PlEFbVOWs/iO0RBO+jmIY3lUR6fz8sun+2eFkBkftr au5q3+7+GYTvo6zXDR+gPvoDOjC4OMfMGXLjhEUdf5XiviAKXJp2/xV+3zOaOKt3 MzrQIJXrca7w9HQSSsTAq+VbLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDU1O7xS HDVz88Vv6GR6wmXBjNmsMB8GA1UdIwQYMBaAFDkvNuCkUAU8PcZtLjiU4QynM92m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzI2Ri83ODY2RjUzMDVG QzcxMUVCOEE2OTIwMkVDNEY5QUUwMi9PUzgyNEtSUUJUdzl4bTB1T0pUaERLY3oz YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09TODI0S1JRQlR3OXhtMHVPSlRoREtjejNhWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMyNkYvNzg2NkY1MzA1RkM3MTFFQjhBNjkyMDJFQzRGOUFFMDIvQjhEMTY4OTQ3 MkU0MTFFRDgzM0FFMzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF5NrwwDQYJKoZIhvcNAQELBQADggEBAHe8B9U/aiifKcif X0wOuVkDk/ynH1L68TI+M220j0PL1J/Q8/7CNmhxnLAMz1oORaYFN8+t22mKYL40 RmwILdKrroojFIy/LtAk5oKzsstPZZ3Q/SfrooXP3VPLULB1Jb1udH0WV7D55bXD GG5pjLv7b2eb0KBiaEzoYv8KS6rtExkqEbGd5jEgzYXyQnQEDr/ukE+V1NGdBy1X 2tJO+hdMvG5RdN0p8yDIlfowvfHAOxMYcPR/Y89EJ6bLR17HIT/GnhedeW/xn09u VO4HeXhICDRwK3PangkHf5qHhk516umepvcFfc66Uvlj52ikiWKwnYRlAiSYnIK2 RHRbpBw= -----END CERTIFICATE-----Generated at Sun Feb 16 20:39:36 2025 by rpki-client