$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/24EF88B8F56011EEACB7CB3CC4F9AE02.roa File: 24EF88B8F56011EEACB7CB3CC4F9AE02.roa (raw, json) Hash identifier: hRcVFNYNHbBeZgTvTYU37EJFfyfSXfiYJs6pkm9HP0E= Subject key identifier: 4C:EC:96:F8:CC:6A:9E:B9:AC:76:D0:47:E7:14:C8:7A:77:24:9C:A3 Certificate issuer: /CN=A91DC931/serialNumber=198C4364CF032C730D9585834982096D50A752C9 Certificate serial: 39 Authority key identifier: 19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/24EF88B8F56011EEACB7CB3CC4F9AE02.roa Signing time: Wed 17 Jul 2024 19:42:51 +0000 ROA not before: Wed 17 Jul 2024 19:42:51 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 14618 IP address blocks: 117.55.254.0/24 maxlen: 24 117.55.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC931 Validity Not Before: Jul 17 19:42:51 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66981eba-427e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:33:44:36:ab:dd:58:09:6d:f2:0b:96:d1:1a: 5a:17:67:22:47:43:68:7d:86:91:7c:6b:59:e8:5e: bd:36:d3:f0:74:64:c2:cd:1d:87:5b:93:13:21:98: 6c:8e:f9:00:98:98:60:c1:95:e1:f2:3f:3b:22:28: f4:38:b3:b3:ca:19:5d:11:be:6c:b2:37:cf:c1:46: bb:2b:c3:85:cb:9b:04:af:ec:bd:37:2f:a8:8f:30: 60:8c:16:29:83:71:7e:10:66:aa:8d:6a:e3:cc:4a: 88:78:36:30:73:bb:61:9a:40:2d:6d:35:5e:45:47: e8:08:ab:da:90:7d:dc:a6:a1:35:96:89:42:51:92: 91:08:ab:14:bb:e8:f6:a2:27:b9:51:e0:a6:d5:36: 88:1a:e2:40:3e:2d:fa:21:b4:0b:94:79:3b:e8:92: 14:e7:ad:6f:42:8a:a8:f2:62:f2:db:06:17:45:7a: 37:c9:a9:4e:2d:2a:7c:42:03:31:76:2b:d4:c7:2b: e2:58:d5:1f:6f:d5:dd:24:19:64:8c:b0:f6:83:41: 4e:b0:1a:7b:9b:9b:4f:74:03:a5:70:09:0e:ce:8c: fe:37:e5:9f:77:78:93:9c:cd:a9:84:76:23:ea:35: 87:51:22:ee:64:c1:d3:68:bf:cc:74:e6:4c:15:59: c3:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:EC:96:F8:CC:6A:9E:B9:AC:76:D0:47:E7:14:C8:7A:77:24:9C:A3 X509v3 Authority Key Identifier: keyid:19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/24EF88B8F56011EEACB7CB3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.254.0/23 Signature Algorithm: sha256WithRSAEncryption 93:03:8e:9c:4d:29:b6:c7:ff:c5:b1:65:86:71:f1:26:70:fb: 93:52:46:fa:0e:83:83:fc:ad:46:5d:ae:29:53:a3:70:e1:01: 44:dd:46:e5:d2:1e:38:ca:8a:68:4c:e1:9d:63:0c:99:7b:2e: 82:45:f0:20:9f:96:90:a4:57:49:d5:d6:29:eb:1c:04:29:f9: fd:f9:42:ca:60:d2:43:4a:04:84:6d:d9:f0:5a:5e:15:2a:fd: c1:37:59:a5:a5:e3:9b:03:8b:72:a9:83:71:54:7c:64:83:67: d2:c6:fa:c2:0e:8d:97:e3:45:69:f7:c0:df:17:a4:e3:bb:1b: a9:aa:b8:be:b2:c5:8a:ef:14:b6:ed:da:17:ae:70:33:39:bc: a7:2c:d4:0f:88:d6:2e:a8:8b:cb:a2:c8:e7:0f:cd:7a:09:fe: 11:f5:0b:d5:79:6a:a5:6a:5d:11:8f:4f:27:40:00:31:8c:a0: c1:80:37:12:3c:b0:39:0a:3d:3e:8c:e7:47:dd:e5:f1:ea:7b: de:0d:f6:fd:5a:1b:84:fb:b0:dc:7e:2e:70:27:bf:4e:20:c9: 26:26:39:58:e0:6d:88:66:f7:55:5b:4a:a0:70:3d:e9:b7:0d: 80:5e:e0:09:d5:85:62:e9:11:3a:0f:65:1a:7c:e7:6e:87:11: 26:7a:76:46 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzkzMTExMC8GA1UEBRMoMTk4QzQzNjRDRjAzMkM3MzBEOTU4NTgzNDk4MjA5NkQ1 MEE3NTJDOTAeFw0yNDA3MTcxOTQyNTFaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OTgxZWJhLTQyN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuM0Q2q91YCW3yC5bRGloXZyJHQ2h9hpF8a1noXr020/B0ZMLNHYdbkxMhmGyO +QCYmGDBleHyPzsiKPQ4s7PKGV0RvmyyN8/BRrsrw4XLmwSv7L03L6iPMGCMFimD cX4QZqqNauPMSoh4NjBzu2GaQC1tNV5FR+gIq9qQfdymoTWWiUJRkpEIqxS76Pai J7lR4KbVNoga4kA+LfohtAuUeTvokhTnrW9CiqjyYvLbBhdFejfJqU4tKnxCAzF2 K9THK+JY1R9v1d0kGWSMsPaDQU6wGnubm090A6VwCQ7OjP435Z93eJOczamEdiPq NYdRIu5kwdNov8x05kwVWcN5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUTOyW+Mxq nrmsdtBH5xTIencknKMwHwYDVR0jBBgwFoAUGYxDZM8DLHMNlYWDSYIJbVCnUskw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDOTMxLzRBMjVCNkEwRjU1 RDExRUU5QkUxOTc4MEM0RjlBRTAyL0dZeERaTThETEhNTmxZV0RTWUlKYlZDblVz ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR1l4RFpNOERMSE1ObFlXRFNZSUpiVkNuVXNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzkzMS80QTI1QjZBMEY1NUQxMUVFOUJFMTk3ODBDNEY5QUUwMi8yNEVGODhCOEY1 NjAxMUVFQUNCN0NCM0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAXU3/jANBgkqhkiG9w0BAQsFAAOCAQEAkwOOnE0ptsf/xbFl hnHxJnD7k1JG+g6Dg/ytRl2uKVOjcOEBRN1G5dIeOMqKaEzhnWMMmXsugkXwIJ+W kKRXSdXWKescBCn5/flCymDSQ0oEhG3Z8FpeFSr9wTdZpaXjmwOLcqmDcVR8ZINn 0sb6wg6Nl+NFaffA3xek47sbqaq4vrLFiu8Utu3aF65wMzm8pyzUD4jWLqiLy6LI 5w/Negn+EfUL1XlqpWpdEY9PJ0AAMYygwYA3EjywOQo9PoznR93l8ep73g32/Vob hPuw3H4ucCe/TiDJJiY5WOBtiGb3VVtKoHA96bcNgF7gCdWFYukROg9lGnznbocR Jnp2Rg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:30:14 2025 by rpki-client