$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/BE5DA1A0E3BE11EEAEC5E061C4F9AE02.roa File: BE5DA1A0E3BE11EEAEC5E061C4F9AE02.roa (raw, json) Hash identifier: 2oNbSuNtMrRZhuDFKF7wvA8tGJ7a062T3BnrjVnTxgI= Subject key identifier: 52:1C:C5:1B:69:41:00:B3:32:12:26:6D:B7:49:AD:EB:56:63:2E:D4 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 26A2 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/BE5DA1A0E3BE11EEAEC5E061C4F9AE02.roa Signing time: Wed 10 Apr 2024 16:23:51 +0000 ROA not before: Wed 10 Apr 2024 16:23:51 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152173 IP address blocks: 122.54.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9890 (0x26a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 10 16:23:51 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6616bd17-68e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:00:a0:b1:85:5c:78:22:c6:82:ab:6a:47:1b: 87:95:3c:c9:24:3e:b2:06:fa:ca:22:94:d0:28:73: 46:37:ba:6f:33:35:dd:56:a3:62:c2:95:49:6f:ec: aa:97:88:56:8f:4a:73:c5:42:a3:7f:c3:47:c5:fe: ad:65:32:3a:1b:6b:61:86:64:a8:a6:ac:18:4e:bc: 06:9c:ce:ef:df:00:e8:c4:3d:78:2c:95:3b:1d:03: be:e8:6b:6a:d3:7d:05:50:c5:bd:7d:8e:3a:fa:80: 07:2d:95:3c:e8:27:3f:a7:45:a3:5f:6f:2c:f8:14: 51:90:68:fb:da:a9:af:5b:22:fd:b9:e5:ce:2d:ac: 13:3c:8a:a4:f5:3f:e5:49:5c:72:4f:6c:7c:dc:50: 09:ce:08:c1:e6:ef:cc:6f:87:30:99:a6:8e:a7:1c: 77:51:57:cc:d6:c3:e0:5b:0e:5d:f5:81:04:ac:76: b0:2c:3f:1b:ee:13:4f:78:d3:28:af:29:25:b0:f1: 12:9e:ff:9a:6c:de:0a:82:69:35:a7:eb:a4:92:0f: c2:7b:22:13:c6:97:d1:8a:d9:9f:36:a2:1e:2e:6d: cc:59:be:a8:6e:99:1b:81:ee:05:de:72:2f:8b:6b: 50:bf:e0:56:7e:2b:c8:ca:b3:df:69:c6:8b:59:12: 54:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:1C:C5:1B:69:41:00:B3:32:12:26:6D:B7:49:AD:EB:56:63:2E:D4 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/BE5DA1A0E3BE11EEAEC5E061C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.54.67.0/24 Signature Algorithm: sha256WithRSAEncryption 50:c4:a7:49:74:0a:52:bb:07:1c:32:bc:27:e7:df:9e:d3:aa: 04:5e:e7:4d:38:a6:27:51:d3:58:7a:00:0f:8c:cb:e1:b2:b7: b0:6b:00:37:10:33:cd:7c:c0:f6:96:7f:46:c8:ce:4c:c0:8d: 74:ac:fe:ca:3d:ba:da:3c:8e:0d:43:1b:4d:d1:13:9d:47:16: 31:f4:4f:d6:46:fe:1b:99:69:c6:5f:2f:ec:af:c5:ca:a7:cd: 15:ff:b6:be:cb:c7:64:17:e3:6c:e7:1d:3e:10:82:ba:6a:4a: d1:fc:5f:79:eb:ed:d1:dc:63:8f:a0:dc:1f:a9:bf:7c:eb:29: a6:5e:b5:9e:56:71:5f:dc:08:99:5e:84:af:50:a2:8c:97:cc: 36:1e:45:aa:3e:24:65:c1:a9:05:bd:8c:62:b6:d5:3c:cc:89: 6d:fd:9f:48:0d:a0:44:d8:6c:92:d1:44:81:2d:35:eb:b9:bf: 82:3c:73:0e:89:c4:e3:cb:f2:59:c1:3f:51:cf:a6:be:6b:36: 10:87:92:f2:83:d8:85:cc:17:c5:40:5b:ec:29:91:03:b5:2a: 82:5c:14:61:de:91:ac:4d:42:2a:40:25:7f:a7:e9:61:3b:ba: c0:85:22:e4:ca:6e:38:04:80:46:6f:2b:a7:70:d1:45:ff:47: 96:ee:c8:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjQwNDEwMTYyMzUxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2YmQxNy02OGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvACgsYVceCLGgqtqRxuHlTzJJD6yBvrKIpTQKHNGN7pvMzXdVqNiwpVJb+yq l4hWj0pzxUKjf8NHxf6tZTI6G2thhmSopqwYTrwGnM7v3wDoxD14LJU7HQO+6Gtq 030FUMW9fY46+oAHLZU86Cc/p0WjX28s+BRRkGj72qmvWyL9ueXOLawTPIqk9T/l SVxyT2x83FAJzgjB5u/Mb4cwmaaOpxx3UVfM1sPgWw5d9YEErHawLD8b7hNPeNMo ryklsPESnv+abN4Kgmk1p+ukkg/CeyITxpfRitmfNqIeLm3MWb6obpkbge4F3nIv i2tQv+BWfivIyrPfacaLWRJUawIDAQABo4IClTCCApEwHQYDVR0OBBYEFFIcxRtp QQCzMhImbbdJretWYy7UMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvQkU1REExQTBF M0JFMTFFRUFFQzVFMDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB6NkMwDQYJKoZIhvcNAQELBQADggEBAFDEp0l0ClK7Bxwy vCfn357TqgRe5004pidR01h6AA+My+Gyt7BrADcQM818wPaWf0bIzkzAjXSs/so9 uto8jg1DG03RE51HFjH0T9ZG/huZacZfL+yvxcqnzRX/tr7Lx2QX42znHT4Qgrpq StH8X3nr7dHcY4+g3B+pv3zrKaZetZ5WcV/cCJlehK9QooyXzDYeRao+JGXBqQW9 jGK21TzMiW39n0gNoETYbJLRRIEtNeu5v4I8cw6JxOPL8lnBP1HPpr5rNhCHkvKD 2IXMF8VAW+wpkQO1KoJcFGHekaxNQipAJX+n6WE7usCFIuTKbjgEgEZvK6dw0UX/ R5buyFA= -----END CERTIFICATE-----Generated at Thu May 2 17:43:51 2024 by rpki-client on console-fra.rpki-client.org