$ rpki-client -vvf rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B9CCEC5A72E411ED833AE326C4F9AE02.roa File: B9CCEC5A72E411ED833AE326C4F9AE02.roa (raw, json) Hash identifier: i41UpmF6NxQ+Op++7sGyQHrNmH2u+l0JDYxBdEIP5Tw= Subject key identifier: A9:24:BB:24:3B:4C:B2:88:68:06:B0:CC:87:8A:9C:42:F5:89:E3:51 Certificate issuer: /CN=A91C326F/serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6 Certificate serial: 04F9 Authority key identifier: 39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B9CCEC5A72E411ED833AE326C4F9AE02.roa Signing time: Sat 03 Dec 2022 08:30:21 +0000 ROA not before: Sat 03 Dec 2022 08:30:21 +0000 ROA not after: Tue 31 Oct 2023 00:00:00 +0000 asID: 140224 IP address blocks: 121.54.188.0/24 maxlen: 24 121.54.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Mar 2023 00:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1273 (0x4f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C326F/serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6 Validity Not Before: Dec 3 08:30:21 2022 GMT Not After : Oct 31 00:00:00 2023 GMT Subject: CN=638b091d-4136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a7:f4:6b:3c:40:47:b2:ad:52:74:f3:c3:41: 9b:7c:56:11:30:ad:8a:9e:c7:fa:f8:b4:3e:ed:ce: 5f:76:76:1d:f5:99:ec:fd:ac:cf:d3:3f:33:8c:07: ab:34:b9:c2:b8:32:51:44:18:be:7d:c5:80:10:c5: e1:d5:51:3e:9e:fc:b3:8a:d3:56:d8:e2:bf:18:a8: 49:eb:ca:5b:86:04:a8:63:8e:d6:70:68:9b:3c:5a: 53:6f:89:25:d5:91:dc:86:7d:fe:23:0d:8c:96:9a: 1e:d1:f1:d6:c0:96:cd:0a:47:a8:c8:d3:22:8b:e8: 40:cf:12:3c:fd:99:d0:d1:6d:b2:45:17:36:09:67: 9b:d9:ed:31:53:87:04:cf:92:63:82:76:b0:e7:cb: 1f:35:1e:66:99:4d:ba:15:14:bb:02:30:ee:0e:8b: 81:2d:ac:ee:d9:7a:b3:05:e0:50:3d:b9:ff:cc:28: 78:37:91:bf:e7:c2:05:e0:63:ea:ae:c9:1b:12:12: ca:10:0d:68:54:e1:db:d3:2f:6a:4c:94:35:3e:23: 17:9c:f9:8e:46:d1:ea:af:0c:fd:92:68:22:d9:ef: 9f:45:4f:78:c1:10:5c:ce:bd:73:87:eb:0e:b8:1f: 96:bf:9c:15:df:3e:3f:5a:1c:2f:fc:68:d0:09:af: cb:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:24:BB:24:3B:4C:B2:88:68:06:B0:CC:87:8A:9C:42:F5:89:E3:51 X509v3 Authority Key Identifier: keyid:39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B9CCEC5A72E411ED833AE326C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.54.188.0/23 Signature Algorithm: sha256WithRSAEncryption 35:77:94:a4:4b:c1:bc:a0:74:c7:ca:1c:17:68:25:b3:99:ec: 51:de:30:5e:95:07:8e:eb:89:a8:37:3b:26:80:84:61:b7:b7: 7a:0e:bf:f8:4c:0b:f4:bc:58:54:91:91:3d:b3:de:3c:3a:b0: 8f:f1:e2:6c:3c:61:de:56:73:d2:81:82:f8:d0:d0:43:8b:89: 4d:36:b0:d2:20:7d:0f:26:99:a4:38:09:a5:61:c1:e8:e6:6a: 7f:a6:ab:c1:e3:9a:17:80:dc:1d:98:69:7c:79:ce:88:35:ca: 31:e5:46:13:24:b1:9c:f0:af:a8:be:1d:56:cb:a6:6f:04:88: 4f:8d:9e:6d:78:35:c9:8e:31:bb:e4:52:10:0a:3f:23:66:02: d7:7e:92:69:e2:c2:07:e6:72:7a:32:61:d3:20:59:ed:7b:d1: aa:7a:57:5f:61:2f:5a:60:ff:f9:e7:81:0d:14:03:a9:a3:51: c8:69:a1:e3:21:21:3e:2d:55:aa:77:51:c1:74:1d:ed:65:97: cc:0a:7e:26:30:7b:4f:3f:aa:a3:48:71:19:0f:ca:a4:4a:80: 8e:87:46:88:d4:e3:ff:6a:8b:7f:b5:26:90:fc:be:44:77:90: 06:eb:8e:73:dd:dd:6b:42:a2:ff:9f:ea:74:2a:a4:3a:7e:b2: b3:f0:7b:11 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMyNkYxMTAvBgNVBAUTKDM5MkYzNkUwQTQ1MDA1M0MzREM2NkQyRTM4OTRFMTBD QTczM0REQTYwHhcNMjIxMjAzMDgzMDIxWhcNMjMxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02MzhiMDkxZC00MTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKf0azxAR7KtUnTzw0GbfFYRMK2Knsf6+LQ+7c5fdnYd9Zns/azP0z8zjAer NLnCuDJRRBi+fcWAEMXh1VE+nvyzitNW2OK/GKhJ68pbhgSoY47WcGibPFpTb4kl 1ZHchn3+Iw2Mlpoe0fHWwJbNCkeoyNMii+hAzxI8/ZnQ0W2yRRc2CWeb2e0xU4cE z5Jjgnaw58sfNR5mmU26FRS7AjDuDouBLazu2XqzBeBQPbn/zCh4N5G/58IF4GPq rskbEhLKEA1oVOHb0y9qTJQ1PiMXnPmORtHqrwz9kmgi2e+fRU94wRBczr1zh+sO uB+Wv5wV3z4/Whwv/GjQCa/L0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKkkuyQ7 TLKIaAawzIeKnEL1ieNRMB8GA1UdIwQYMBaAFDkvNuCkUAU8PcZtLjiU4QynM92m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzI2Ri83ODY2RjUzMDVG QzcxMUVCOEE2OTIwMkVDNEY5QUUwMi9PUzgyNEtSUUJUdzl4bTB1T0pUaERLY3oz YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09TODI0S1JRQlR3OXhtMHVPSlRoREtjejNhWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMyNkYvNzg2NkY1MzA1RkM3MTFFQjhBNjkyMDJFQzRGOUFFMDIvQjlDQ0VDNUE3 MkU0MTFFRDgzM0FFMzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF5NrwwDQYJKoZIhvcNAQELBQADggEBADV3lKRLwbygdMfK HBdoJbOZ7FHeMF6VB47riag3OyaAhGG3t3oOv/hMC/S8WFSRkT2z3jw6sI/x4mw8 Yd5Wc9KBgvjQ0EOLiU02sNIgfQ8mmaQ4CaVhwejman+mq8HjmheA3B2YaXx5zog1 yjHlRhMksZzwr6i+HVbLpm8EiE+Nnm14NcmOMbvkUhAKPyNmAtd+kmniwgfmcnoy YdMgWe170ap6V19hL1pg//nngQ0UA6mjUchpoeMhIT4tVap3UcF0He1ll8wKfiYw e08/qqNIcRkPyqRKgI6HRojU4/9qi3+1JpD8vkR3kAbrjnPd3WtCov+f6nQqpDp+ srPwexE= -----END CERTIFICATE-----Generated at Wed Mar 15 11:54:16 2023 by rpki-client on console-fra.rpki-client.org