$ rpki-client -vvf rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B9CCEC5A72E411ED833AE326C4F9AE02.roa File: B9CCEC5A72E411ED833AE326C4F9AE02.roa (raw, json) Hash identifier: 7STuNNvyySdvKLv0ZARurOGrWZyKElkT0Pp3fy6yFYY= Subject key identifier: 42:8B:74:60:7F:01:AE:F3:90:50:CA:23:CF:0A:82:62:52:30:62:42 Certificate issuer: /CN=A91C326F/serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6 Certificate serial: 0656 Authority key identifier: 39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B9CCEC5A72E411ED833AE326C4F9AE02.roa Signing time: Sat 31 Aug 2024 00:02:04 +0000 ROA not before: Sat 31 Aug 2024 00:02:04 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140224 IP address blocks: 121.54.188.0/24 maxlen: 24 121.54.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1622 (0x656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C326F/serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6 Validity Not Before: Aug 31 00:02:04 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d25d7c-b11a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6f:51:bb:c3:db:fe:3b:17:03:02:d2:09:c7: e4:3c:a4:90:00:c1:17:8d:06:5c:3e:0c:91:3e:40: fd:e8:37:e5:6b:88:a3:dd:4b:0b:5f:19:63:5f:b2: 67:75:2c:79:e8:2c:b5:7b:74:a4:df:b5:59:e6:79: a8:c7:fc:87:d6:8c:33:64:57:d4:f6:3b:d9:8a:3b: 6c:f7:4f:d1:4d:1e:7a:8e:6e:c9:ab:b6:bd:6b:3d: 41:48:47:af:53:bb:15:24:aa:04:30:6a:cb:5d:37: 23:06:0f:5c:dd:7a:91:88:00:03:9b:87:17:44:91: df:a2:a9:1c:c2:d7:4a:3c:53:b3:86:07:f3:a5:98: 8a:a8:6e:6d:19:06:33:09:4e:2b:df:ba:ca:74:69: 88:99:33:28:71:e9:38:88:3c:90:a4:a4:96:e6:d1: 1a:82:38:db:8a:51:cc:85:e5:34:00:a4:16:5b:db: 1b:fd:34:cd:c7:1d:3a:64:37:60:fd:c8:8e:11:67: 82:0a:55:70:7c:37:25:9e:84:93:0f:5f:b2:8d:62: 99:9e:fc:b2:2b:18:c7:ab:56:bf:b0:7c:59:6f:99: 77:ea:97:a8:9e:f4:f2:e1:49:a4:36:56:bf:bf:c0: b1:f5:ba:cb:96:19:40:b3:6a:18:32:c7:4c:c2:8f: a3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:8B:74:60:7F:01:AE:F3:90:50:CA:23:CF:0A:82:62:52:30:62:42 X509v3 Authority Key Identifier: keyid:39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B9CCEC5A72E411ED833AE326C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.54.188.0/23 Signature Algorithm: sha256WithRSAEncryption c6:29:1a:df:ac:28:c0:7f:df:b5:0f:5d:db:dc:f3:83:64:b3: eb:68:27:88:e9:8e:a5:1c:cd:e7:17:6e:e0:a0:14:5c:87:29: d5:48:b7:bd:56:42:30:34:0e:c2:9e:e7:99:9e:75:2d:a0:63: fb:29:c6:57:a8:49:5e:13:03:4d:39:90:cb:7b:a7:20:f8:7d: 08:67:7b:f6:44:f2:35:54:a4:8d:39:44:28:38:7a:86:a3:77: 67:9d:7c:ee:95:6c:fa:8e:aa:44:20:a7:1b:a8:1e:b8:af:68: 5e:c1:db:46:10:bd:e8:99:26:7f:d5:1e:09:0f:07:1d:bd:a3: 89:ac:63:86:90:ea:57:b8:ce:81:53:fe:94:8f:b6:cd:98:f4: eb:ce:3a:ee:5e:fd:ff:b6:5f:58:46:9e:a8:76:c1:ca:b5:06: b8:e0:82:05:14:0c:21:0b:fb:a1:2a:1f:81:89:74:36:71:05: d2:a7:8b:9b:72:20:d8:34:5c:a2:80:30:cb:f1:eb:e8:14:05: 00:e3:19:70:8a:ad:16:28:d8:75:63:da:f6:5c:5b:a6:cd:bb: f6:2b:6b:17:47:1f:33:c4:c2:39:0c:f2:9d:35:0b:3b:83:d2: ec:a2:84:1c:25:00:93:06:75:2f:dc:52:ad:37:55:75:42:f2: 86:92:49:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMyNkYxMTAvBgNVBAUTKDM5MkYzNkUwQTQ1MDA1M0MzREM2NkQyRTM4OTRFMTBD QTczM0REQTYwHhcNMjQwODMxMDAwMjA0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyNWQ3Yy1iMTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxW9Ru8Pb/jsXAwLSCcfkPKSQAMEXjQZcPgyRPkD96Dfla4ij3UsLXxljX7Jn dSx56Cy1e3Sk37VZ5nmox/yH1owzZFfU9jvZijts90/RTR56jm7Jq7a9az1BSEev U7sVJKoEMGrLXTcjBg9c3XqRiAADm4cXRJHfoqkcwtdKPFOzhgfzpZiKqG5tGQYz CU4r37rKdGmImTMocek4iDyQpKSW5tEagjjbilHMheU0AKQWW9sb/TTNxx06ZDdg /ciOEWeCClVwfDclnoSTD1+yjWKZnvyyKxjHq1a/sHxZb5l36peonvTy4UmkNla/ v8Cx9brLlhlAs2oYMsdMwo+jpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEKLdGB/ Aa7zkFDKI88KgmJSMGJCMB8GA1UdIwQYMBaAFDkvNuCkUAU8PcZtLjiU4QynM92m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzI2Ri83ODY2RjUzMDVG QzcxMUVCOEE2OTIwMkVDNEY5QUUwMi9PUzgyNEtSUUJUdzl4bTB1T0pUaERLY3oz YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09TODI0S1JRQlR3OXhtMHVPSlRoREtjejNhWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMyNkYvNzg2NkY1MzA1RkM3MTFFQjhBNjkyMDJFQzRGOUFFMDIvQjlDQ0VDNUE3 MkU0MTFFRDgzM0FFMzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF5NrwwDQYJKoZIhvcNAQELBQADggEBAMYpGt+sKMB/37UP Xdvc84Nks+toJ4jpjqUczecXbuCgFFyHKdVIt71WQjA0DsKe55medS2gY/spxleo SV4TA005kMt7pyD4fQhne/ZE8jVUpI05RCg4eoajd2edfO6VbPqOqkQgpxuoHriv aF7B20YQveiZJn/VHgkPBx29o4msY4aQ6le4zoFT/pSPts2Y9OvOOu5e/f+2X1hG nqh2wcq1BrjgggUUDCEL+6EqH4GJdDZxBdKni5tyINg0XKKAMMvx6+gUBQDjGXCK rRYo2HVj2vZcW6bNu/YraxdHHzPEwjkM8p01CzuD0uyihBwlAJMGdS/cUq03VXVC 8oaSSQA= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:48 2024 by rpki-client on console-fra.rpki-client.org