$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/2575F02EF56011EEACB7CB3CC4F9AE02.roa File: 2575F02EF56011EEACB7CB3CC4F9AE02.roa (raw, json) Hash identifier: zLtLI1BQNW1wn6UWygb+Rg5doBGgY1EY6qM449wyd6Y= Subject key identifier: 2E:6A:49:76:48:78:EA:71:A6:27:FF:C9:B7:DD:F8:DB:50:93:B6:BC Certificate issuer: /CN=A91DC931/serialNumber=198C4364CF032C730D9585834982096D50A752C9 Certificate serial: 3B Authority key identifier: 19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/2575F02EF56011EEACB7CB3CC4F9AE02.roa Signing time: Wed 17 Jul 2024 19:42:52 +0000 ROA not before: Wed 17 Jul 2024 19:42:52 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 117.55.254.0/24 maxlen: 24 117.55.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:10:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC931 Validity Not Before: Jul 17 19:42:52 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66981ebc-ec64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:79:c5:0b:63:08:18:81:ad:fe:3d:02:c0:ae: 52:20:84:4c:aa:51:73:68:e4:d5:ad:f3:ad:5f:f8: d5:d6:5b:fd:c7:f4:c8:dd:81:41:3b:29:ad:94:6d: 00:9c:2a:e8:24:a1:12:fa:58:18:86:bb:b5:ca:80: 2a:c4:d0:11:32:30:fc:4c:2e:48:a7:5c:71:08:c7: 91:57:7c:58:35:0d:74:8e:44:cd:ed:bf:c6:08:27: c5:10:2f:43:90:81:88:c7:33:7e:15:5d:a6:44:82: 4c:be:0e:72:3a:55:75:4f:51:ec:53:49:76:36:e6: 3c:0d:32:15:d7:a0:0b:7f:af:c8:8f:dd:7d:4d:ec: cb:4b:89:25:81:61:81:cf:37:b8:39:43:9d:7f:4e: 6f:08:ec:21:45:81:bd:2f:2e:ed:5e:ca:79:17:f0: 0c:72:8d:f7:fb:6a:da:43:f4:1c:e0:68:a5:78:b0: c3:4e:5e:da:89:dd:e1:e3:7e:97:99:37:b1:14:75: 80:90:48:e0:7d:5e:1e:6d:38:bb:1b:3a:1b:d2:82: 0b:43:a0:a7:a1:02:ec:a1:be:53:10:ca:9d:36:f2: 56:4c:a5:4a:89:c6:10:af:e2:00:f6:f8:22:a2:eb: 06:65:56:09:ad:aa:4c:e8:86:83:3c:a9:97:fb:a5: 1e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:6A:49:76:48:78:EA:71:A6:27:FF:C9:B7:DD:F8:DB:50:93:B6:BC X509v3 Authority Key Identifier: keyid:19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/2575F02EF56011EEACB7CB3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.254.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:cb:3f:91:11:71:7c:02:ae:fa:9e:d1:17:5c:2c:45:95:e3: f3:fb:dc:f1:15:00:fe:10:df:d2:11:9e:91:14:95:2c:a7:d0: 83:70:52:a2:64:b2:04:00:11:f6:ce:68:fa:57:ee:f8:cd:af: 51:05:08:ae:f4:d0:8e:90:78:18:52:45:b8:36:46:c6:76:b2: c3:8d:34:2b:f6:74:dc:d1:71:76:71:60:a8:46:11:65:b2:7f: 16:3e:70:8b:57:6a:0e:ba:25:f3:ce:42:b0:ac:8d:73:c1:0a: 36:9b:b4:c6:37:c2:af:0c:80:74:9e:42:5c:3a:ae:0f:e1:06: 38:b1:3e:da:02:4a:d1:91:1d:a6:93:c2:80:a7:12:34:78:40: c1:bd:cd:e8:24:dc:38:df:9d:0a:fc:df:e7:d9:63:94:79:fa: 6a:e8:4c:0b:b2:1b:a0:25:47:3f:3b:9f:cb:cd:a1:d9:fb:23: 15:b6:c8:22:1d:20:18:ac:90:70:2a:58:79:2b:97:0e:de:1a: 2b:a0:d9:d8:f6:87:8c:61:92:d5:c9:be:37:20:43:c1:ee:e1: 3e:22:aa:27:bd:0f:a3:f0:ee:61:d4:b5:b3:e6:0f:47:f7:7f: 9e:e3:07:54:53:bb:a4:29:cf:2c:c0:14:f0:1f:20:5b:6d:99: 9f:16:06:d5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzkzMTExMC8GA1UEBRMoMTk4QzQzNjRDRjAzMkM3MzBEOTU4NTgzNDk4MjA5NkQ1 MEE3NTJDOTAeFw0yNDA3MTcxOTQyNTJaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OTgxZWJjLWVjNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzecULYwgYga3+PQLArlIghEyqUXNo5NWt861f+NXWW/3H9MjdgUE7Ka2UbQCc KugkoRL6WBiGu7XKgCrE0BEyMPxMLkinXHEIx5FXfFg1DXSORM3tv8YIJ8UQL0OQ gYjHM34VXaZEgky+DnI6VXVPUexTSXY25jwNMhXXoAt/r8iP3X1N7MtLiSWBYYHP N7g5Q51/Tm8I7CFFgb0vLu1eynkX8Axyjff7atpD9BzgaKV4sMNOXtqJ3eHjfpeZ N7EUdYCQSOB9Xh5tOLsbOhvSggtDoKehAuyhvlMQyp028lZMpUqJxhCv4gD2+CKi 6wZlVgmtqkzohoM8qZf7pR7nAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQULmpJdkh4 6nGmJ//Jt93421CTtrwwHwYDVR0jBBgwFoAUGYxDZM8DLHMNlYWDSYIJbVCnUskw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDOTMxLzRBMjVCNkEwRjU1 RDExRUU5QkUxOTc4MEM0RjlBRTAyL0dZeERaTThETEhNTmxZV0RTWUlKYlZDblVz ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR1l4RFpNOERMSE1ObFlXRFNZSUpiVkNuVXNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzkzMS80QTI1QjZBMEY1NUQxMUVFOUJFMTk3ODBDNEY5QUUwMi8yNTc1RjAyRUY1 NjAxMUVFQUNCN0NCM0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAXU3/jANBgkqhkiG9w0BAQsFAAOCAQEAPcs/kRFxfAKu+p7R F1wsRZXj8/vc8RUA/hDf0hGekRSVLKfQg3BSomSyBAAR9s5o+lfu+M2vUQUIrvTQ jpB4GFJFuDZGxnayw400K/Z03NFxdnFgqEYRZbJ/Fj5wi1dqDrol885CsKyNc8EK Npu0xjfCrwyAdJ5CXDquD+EGOLE+2gJK0ZEdppPCgKcSNHhAwb3N6CTcON+dCvzf 59ljlHn6auhMC7IboCVHPzufy82h2fsjFbbIIh0gGKyQcCpYeSuXDt4aK6DZ2PaH jGGS1cm+NyBDwe7hPiKqJ70Po/DuYdS1s+YPR/d/nuMHVFO7pCnPLMAU8B8gW22Z nxYG1Q== -----END CERTIFICATE-----Generated at Thu Mar 13 21:56:59 2025 by rpki-client