$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/24EF88B8F56011EEACB7CB3CC4F9AE02.roa File: 24EF88B8F56011EEACB7CB3CC4F9AE02.roa (raw, json) Hash identifier: 7p7VjinwL3w0mIDvdC/+VoKlpaveAeKNLD3q7R+HydE= Subject key identifier: 0D:C1:FD:B2:98:72:A8:59:00:82:D7:A8:47:AF:B4:D9:AB:71:38:EF Certificate issuer: /CN=A91DC931/serialNumber=198C4364CF032C730D9585834982096D50A752C9 Certificate serial: 05 Authority key identifier: 19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/24EF88B8F56011EEACB7CB3CC4F9AE02.roa Signing time: Mon 08 Apr 2024 04:26:18 +0000 ROA not before: Mon 08 Apr 2024 04:26:18 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 14618 IP address blocks: 117.55.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 09:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC931/serialNumber=198C4364CF032C730D9585834982096D50A752C9 Validity Not Before: Apr 8 04:26:18 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=661371ea-882d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a6:3d:50:b2:07:3b:f3:73:23:88:98:64:38: 4c:8d:9e:d7:2b:79:2f:da:65:e6:da:14:00:cf:5d: 9d:74:94:8b:92:db:68:11:58:8a:c6:eb:c9:d3:4c: 72:bd:8f:66:3f:55:45:5e:90:03:11:dc:97:f6:f6: 66:f8:25:9e:57:be:24:c2:a7:ec:e0:43:5a:2e:62: a7:db:d1:e2:66:1d:d2:fd:24:31:6e:0f:de:bf:b5: d8:ba:dc:15:f0:db:ef:27:95:1a:55:e3:c2:e3:a3: 69:77:bc:a6:d9:ef:ca:08:0c:98:40:cb:bf:54:4e: 83:b5:1b:e0:ee:a0:38:15:77:3f:64:43:c3:14:43: ca:a9:81:f1:16:48:8a:ae:d1:e6:68:ec:7a:b4:81: 77:e1:51:de:84:da:60:bb:76:a8:98:c9:ed:ba:3c: 09:cb:98:15:13:02:26:2c:99:64:51:c1:29:e2:ac: 82:ef:e5:21:bd:a0:a9:4a:36:25:13:1e:53:ac:ab: 09:94:d4:a6:c2:05:dc:b8:2c:75:c0:51:94:32:59: 98:b7:5c:4d:d8:ba:46:d7:30:d6:97:df:95:c9:6c: 63:64:e9:68:b3:07:49:55:11:09:03:6a:a9:4d:ef: ad:ca:3c:52:30:4c:68:5e:8d:a6:67:bb:32:dd:a7: e4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C1:FD:B2:98:72:A8:59:00:82:D7:A8:47:AF:B4:D9:AB:71:38:EF X509v3 Authority Key Identifier: keyid:19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/24EF88B8F56011EEACB7CB3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.255.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:94:c5:e8:32:1f:70:45:5b:e7:e8:14:09:d7:1e:35:59:5d: 15:3c:1f:b8:0f:a2:45:74:30:ee:49:0a:a9:2a:4e:81:4d:8c: 86:10:1c:10:4b:94:20:52:6d:27:59:ae:19:f1:30:ae:ff:47: e6:c9:81:57:3e:0f:62:2e:7c:85:7a:e4:fb:b3:77:0a:4f:18: 4d:ec:c7:44:08:16:42:fd:73:fc:a2:c2:58:74:2f:20:bf:74: 13:7c:c5:8b:11:1b:ad:3d:04:8f:ba:7e:5e:65:6a:70:90:1b: 74:18:5a:d1:01:4d:bf:b9:d4:82:d8:e2:4e:a3:66:41:82:94: 31:37:0d:67:77:45:f4:aa:e4:7b:ec:23:dd:5a:f7:fe:b0:47: 75:1c:81:0a:5f:b0:e7:42:73:d4:d0:e3:92:8f:ca:30:fc:90: 9b:71:07:09:a5:c9:61:3a:f6:e1:77:45:0a:60:e6:7d:bb:ed: 56:5d:72:d2:8b:b6:66:74:34:7f:5b:90:e8:03:81:df:5b:40: 51:fd:83:93:d2:69:5f:3b:8d:11:e4:eb:bd:29:f0:76:e9:ef: a0:39:3a:b5:67:b7:d9:46:69:96:32:e9:59:0f:78:97:46:54: a9:de:48:54:00:88:3f:b0:af:36:70:50:73:fb:5a:04:99:97: ca:d8:d2:67 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzkzMTExMC8GA1UEBRMoMTk4QzQzNjRDRjAzMkM3MzBEOTU4NTgzNDk4MjA5NkQ1 MEE3NTJDOTAeFw0yNDA0MDgwNDI2MThaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MTM3MWVhLTg4MmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFpj1Qsgc783MjiJhkOEyNntcreS/aZebaFADPXZ10lIuS22gRWIrG68nTTHK9 j2Y/VUVekAMR3Jf29mb4JZ5XviTCp+zgQ1ouYqfb0eJmHdL9JDFuD96/tdi63BXw 2+8nlRpV48Ljo2l3vKbZ78oIDJhAy79UToO1G+DuoDgVdz9kQ8MUQ8qpgfEWSIqu 0eZo7Hq0gXfhUd6E2mC7dqiYye26PAnLmBUTAiYsmWRRwSnirILv5SG9oKlKNiUT HlOsqwmU1KbCBdy4LHXAUZQyWZi3XE3YukbXMNaX35XJbGNk6WizB0lVEQkDaqlN 763KPFIwTGhejaZnuzLdp+R3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUDcH9sphy qFkAgteoR6+02atxOO8wHwYDVR0jBBgwFoAUGYxDZM8DLHMNlYWDSYIJbVCnUskw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDOTMxLzRBMjVCNkEwRjU1 RDExRUU5QkUxOTc4MEM0RjlBRTAyL0dZeERaTThETEhNTmxZV0RTWUlKYlZDblVz ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR1l4RFpNOERMSE1ObFlXRFNZSUpiVkNuVXNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzkzMS80QTI1QjZBMEY1NUQxMUVFOUJFMTk3ODBDNEY5QUUwMi8yNEVGODhCOEY1 NjAxMUVFQUNCN0NCM0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAHU3/zANBgkqhkiG9w0BAQsFAAOCAQEAHpTF6DIfcEVb5+gU CdceNVldFTwfuA+iRXQw7kkKqSpOgU2MhhAcEEuUIFJtJ1muGfEwrv9H5smBVz4P Yi58hXrk+7N3Ck8YTezHRAgWQv1z/KLCWHQvIL90E3zFixEbrT0Ej7p+XmVqcJAb dBha0QFNv7nUgtjiTqNmQYKUMTcNZ3dF9Krke+wj3Vr3/rBHdRyBCl+w50Jz1NDj ko/KMPyQm3EHCaXJYTr24XdFCmDmfbvtVl1y0ou2ZnQ0f1uQ6AOB31tAUf2Dk9Jp XzuNEeTrvSnwdunvoDk6tWe32UZpljLpWQ94l0ZUqd5IVACIP7CvNnBQc/taBJmX ytjSZw== -----END CERTIFICATE-----Generated at Wed May 1 10:34:20 2024 by rpki-client on console-fra.rpki-client.org