$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/2575F02EF56011EEACB7CB3CC4F9AE02.roa File: 2575F02EF56011EEACB7CB3CC4F9AE02.roa (raw, json) Hash identifier: kU3/vBoIEfiO4tYJxD39GFfNZGe0oBmTGfM6rg3pB5g= Subject key identifier: 96:61:4E:C5:57:3A:A3:B2:D9:EC:C0:74:E8:DF:F3:3D:AC:B6:31:B0 Certificate issuer: /CN=A91DC931/serialNumber=198C4364CF032C730D9585834982096D50A752C9 Certificate serial: 06 Authority key identifier: 19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/2575F02EF56011EEACB7CB3CC4F9AE02.roa Signing time: Mon 08 Apr 2024 04:26:19 +0000 ROA not before: Mon 08 Apr 2024 04:26:19 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 117.55.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 09:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC931/serialNumber=198C4364CF032C730D9585834982096D50A752C9 Validity Not Before: Apr 8 04:26:19 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=661371eb-d87c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:a1:da:6c:08:03:7f:cb:1e:58:90:6d:49:a6: 72:75:7d:f6:96:82:b0:ba:ce:50:89:4d:da:66:db: c9:87:bc:17:f2:38:a2:44:79:ff:06:5d:37:d0:a7: d2:af:24:c0:52:08:9b:cd:f8:86:b6:ca:6f:35:94: 81:81:7a:b7:33:21:af:2b:cc:59:a2:4f:6c:6c:5e: 41:44:de:71:7d:e5:9f:cd:ba:69:f9:cf:44:63:e0: f9:8a:c6:cb:83:f1:cd:2c:5c:29:72:0f:40:30:eb: c7:c7:25:15:7d:2d:33:3b:bd:8b:27:69:4c:95:10: 1a:c2:25:fe:01:1f:ed:af:21:15:c9:3f:bc:3a:01: 20:7e:eb:a3:7b:d0:aa:49:1d:ef:25:4d:5b:ac:89: de:18:3b:a2:6d:2f:d1:c2:eb:ef:5a:d1:d7:61:8c: fa:9a:de:c4:51:b1:51:3c:c1:d0:df:34:68:ba:ef: e3:78:15:6e:07:89:e2:2b:8c:d5:56:66:bc:7d:1e: ec:cc:49:36:eb:c2:c9:15:80:a9:3d:db:0e:54:6a: 62:85:72:ad:14:33:96:ba:84:47:83:41:b6:b8:62: c8:c1:81:cc:d2:33:8f:05:5d:39:b5:29:22:f3:60: 08:0d:97:02:1f:1e:a8:c7:28:31:fa:07:de:85:b1: 73:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:61:4E:C5:57:3A:A3:B2:D9:EC:C0:74:E8:DF:F3:3D:AC:B6:31:B0 X509v3 Authority Key Identifier: keyid:19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/2575F02EF56011EEACB7CB3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.255.0/24 Signature Algorithm: sha256WithRSAEncryption 20:23:a6:e5:c7:4c:74:d4:c4:a5:ef:66:8a:e4:3c:53:f4:a6: 28:d6:be:d8:5e:f3:38:06:6f:73:f1:f8:cf:2b:0d:38:eb:d4: 9f:eb:66:13:c0:e8:4b:96:05:5d:20:da:f8:2c:90:dd:29:22: 0b:aa:86:31:a8:5f:8e:fb:af:65:9d:48:d7:65:76:7f:12:f5: 01:b6:a1:d0:6e:b3:e1:cc:82:bc:ce:80:f4:2f:a3:b6:f4:8b: 13:6a:ce:75:b3:69:88:9d:19:e2:7c:d5:ca:02:1d:4d:d3:b7: a4:92:50:99:26:4f:6e:99:47:45:73:4d:40:49:f3:5e:1e:a3: f0:c7:4f:77:cd:2f:8b:98:ce:6b:f9:9c:f3:2c:d0:39:46:1a: dc:21:98:7c:2b:b2:2b:74:f2:c7:c1:d8:d1:f0:22:a5:e9:0d: e3:9d:b9:74:ee:bc:66:db:26:1d:42:77:e2:47:09:36:de:62: 08:f8:9c:7c:2d:89:79:a6:ca:c8:a9:90:31:1c:ce:61:82:83: 51:70:a6:2d:63:c9:3b:5e:66:a6:7f:d6:0e:0f:1a:55:48:29: 1c:93:47:dd:f0:45:36:47:93:5e:2e:d4:62:f4:5e:a3:22:4a: b0:2b:e5:bb:7d:76:fc:49:31:f8:c0:a8:49:10:77:0a:73:a9: ec:fd:8a:48 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzkzMTExMC8GA1UEBRMoMTk4QzQzNjRDRjAzMkM3MzBEOTU4NTgzNDk4MjA5NkQ1 MEE3NTJDOTAeFw0yNDA0MDgwNDI2MTlaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MTM3MWViLWQ4N2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzodpsCAN/yx5YkG1JpnJ1ffaWgrC6zlCJTdpm28mHvBfyOKJEef8GXTfQp9Kv JMBSCJvN+Ia2ym81lIGBerczIa8rzFmiT2xsXkFE3nF95Z/Numn5z0Rj4PmKxsuD 8c0sXClyD0Aw68fHJRV9LTM7vYsnaUyVEBrCJf4BH+2vIRXJP7w6ASB+66N70KpJ He8lTVusid4YO6JtL9HC6+9a0ddhjPqa3sRRsVE8wdDfNGi67+N4FW4HieIrjNVW Zrx9HuzMSTbrwskVgKk92w5UamKFcq0UM5a6hEeDQba4YsjBgczSM48FXTm1KSLz YAgNlwIfHqjHKDH6B96FsXOZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUlmFOxVc6 o7LZ7MB06N/zPay2MbAwHwYDVR0jBBgwFoAUGYxDZM8DLHMNlYWDSYIJbVCnUskw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDOTMxLzRBMjVCNkEwRjU1 RDExRUU5QkUxOTc4MEM0RjlBRTAyL0dZeERaTThETEhNTmxZV0RTWUlKYlZDblVz ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR1l4RFpNOERMSE1ObFlXRFNZSUpiVkNuVXNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzkzMS80QTI1QjZBMEY1NUQxMUVFOUJFMTk3ODBDNEY5QUUwMi8yNTc1RjAyRUY1 NjAxMUVFQUNCN0NCM0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAHU3/zANBgkqhkiG9w0BAQsFAAOCAQEAICOm5cdMdNTEpe9m iuQ8U/SmKNa+2F7zOAZvc/H4zysNOOvUn+tmE8DoS5YFXSDa+CyQ3SkiC6qGMahf jvuvZZ1I12V2fxL1Abah0G6z4cyCvM6A9C+jtvSLE2rOdbNpiJ0Z4nzVygIdTdO3 pJJQmSZPbplHRXNNQEnzXh6j8MdPd80vi5jOa/mc8yzQOUYa3CGYfCuyK3Tyx8HY 0fAipekN4525dO68ZtsmHUJ34kcJNt5iCPicfC2JeabKyKmQMRzOYYKDUXCmLWPJ O15mpn/WDg8aVUgpHJNH3fBFNkeTXi7UYvReoyJKsCvlu312/Ekx+MCoSRB3CnOp 7P2KSA== -----END CERTIFICATE-----Generated at Wed May 1 10:34:20 2024 by rpki-client on console-fra.rpki-client.org