$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F04860C28C5611E792848B4AC4F9AE02.roa File: F04860C28C5611E792848B4AC4F9AE02.roa (raw, json) Hash identifier: prYbbDK25Bc1CFA5URm+axMyGXHqHfx/q5USvn4UHzA= Subject key identifier: 66:9B:03:A7:F5:F8:64:98:4A:44:6E:5F:09:77:6B:95:43:BA:7E:C0 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2697 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F04860C28C5611E792848B4AC4F9AE02.roa Signing time: Wed 10 Apr 2024 16:23:41 +0000 ROA not before: Wed 10 Apr 2024 16:23:41 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 132853 IP address blocks: 122.53.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9879 (0x2697) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 10 16:23:41 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6616bd0c-3239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:22:58:61:33:f5:6a:95:df:f3:95:0b:63:7c: 1f:f9:a4:35:20:cb:18:b8:c2:28:29:dc:b3:8a:50: 83:cb:46:a2:cc:10:fd:69:81:6a:09:4e:c5:97:4e: ae:e8:f8:74:47:47:45:1b:7b:c2:07:e8:53:78:97: f4:11:ae:3f:5d:e4:7a:e2:70:22:00:41:65:bb:d5: 60:85:6e:89:31:14:95:fc:ce:89:3d:6c:bc:0a:08: 3f:ef:06:7e:15:74:f7:c9:b4:23:17:02:b2:a3:41: d0:66:f1:2f:50:8a:7c:8f:94:7f:8a:a8:b3:27:f6: f2:a9:d0:9f:d3:a5:9b:e7:75:29:de:30:22:94:0d: 80:0b:30:00:7e:4a:5e:e1:30:bf:91:8a:e2:1c:eb: 1e:b1:d7:b2:c5:4c:22:50:46:8e:3e:29:2e:2a:fb: e5:64:1f:31:9f:d3:28:eb:44:e3:92:bc:7e:fb:a8: 57:85:ed:e1:cc:27:01:8e:ab:5e:23:cc:6e:7b:64: c7:62:a9:9b:b7:7d:08:6b:e6:46:e7:95:59:b8:0f: ef:70:76:ae:b9:51:7f:02:27:4e:86:8c:80:08:a6: 64:69:55:53:a3:53:29:51:e1:03:c9:c6:35:3d:d7: c0:09:a5:25:0a:66:c0:f6:84:ab:6a:fc:17:13:20: b2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:9B:03:A7:F5:F8:64:98:4A:44:6E:5F:09:77:6B:95:43:BA:7E:C0 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F04860C28C5611E792848B4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.53.123.0/24 Signature Algorithm: sha256WithRSAEncryption a1:ed:fd:11:26:33:cc:92:d1:e7:b3:89:c1:77:9f:2c:d0:e4: 50:93:48:ae:1b:3d:54:a4:9c:70:8d:13:f2:be:5d:45:bb:45: 8c:f0:2f:b5:3b:17:ce:60:af:77:71:a0:ac:7e:38:7d:f7:30: 96:07:03:29:9c:0a:78:5c:fe:db:1d:22:e2:07:e4:e7:52:3d: 12:1d:7c:da:f3:d9:b3:3c:5c:40:a9:b8:aa:d6:44:87:5c:37: c3:64:1b:c2:ea:ff:b4:ec:bb:e8:71:e2:37:6f:4e:c7:09:18: 68:5d:7b:5e:f5:56:71:f0:e1:a3:6f:9f:55:4e:4b:0c:0f:d7: a8:c0:98:26:1b:7f:34:a5:52:e8:bd:ca:ec:1f:f6:ec:2c:c6: 7c:36:04:40:9f:ec:8c:1b:34:37:75:bb:cb:69:f4:23:34:f5: f7:db:4c:d4:27:77:28:d7:c0:f1:ca:b3:e9:02:f9:a3:06:18: 2f:9b:b4:00:95:62:74:e0:28:2c:1c:7d:20:29:9a:43:93:f0: a8:21:18:8f:ef:9e:57:f2:1f:5e:74:ee:43:e9:8e:4e:e2:b6: 0a:ae:d0:fa:8c:82:fc:0c:2e:19:8a:6f:fc:22:3a:04:71:4a: c4:21:56:87:5c:1f:68:bb:a8:20:ee:ee:83:52:bd:46:39:ec: 2d:8e:4b:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjQwNDEwMTYyMzQxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2YmQwYy0zMjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9yJYYTP1apXf85ULY3wf+aQ1IMsYuMIoKdyzilCDy0aizBD9aYFqCU7Fl06u 6Ph0R0dFG3vCB+hTeJf0Ea4/XeR64nAiAEFlu9VghW6JMRSV/M6JPWy8Cgg/7wZ+ FXT3ybQjFwKyo0HQZvEvUIp8j5R/iqizJ/byqdCf06Wb53Up3jAilA2ACzAAfkpe 4TC/kYriHOsesdeyxUwiUEaOPikuKvvlZB8xn9Mo60Tjkrx++6hXhe3hzCcBjqte I8xue2THYqmbt30Ia+ZG55VZuA/vcHauuVF/AidOhoyACKZkaVVTo1MpUeEDycY1 PdfACaUlCmbA9oSravwXEyCy2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGabA6f1 +GSYSkRuXwl3a5VDun7AMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvRjA0ODYwQzI4 QzU2MTFFNzkyODQ4QjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB6NXswDQYJKoZIhvcNAQELBQADggEBAKHt/REmM8yS0eez icF3nyzQ5FCTSK4bPVSknHCNE/K+XUW7RYzwL7U7F85gr3dxoKx+OH33MJYHAymc Cnhc/tsdIuIH5OdSPRIdfNrz2bM8XECpuKrWRIdcN8NkG8Lq/7Tsu+hx4jdvTscJ GGhde171VnHw4aNvn1VOSwwP16jAmCYbfzSlUui9yuwf9uwsxnw2BECf7IwbNDd1 u8tp9CM09ffbTNQndyjXwPHKs+kC+aMGGC+btACVYnTgKCwcfSApmkOT8KghGI/v nlfyH1507kPpjk7itgqu0PqMgvwMLhmKb/wiOgRxSsQhVodcH2i7qCDu7oNSvUY5 7C2OS/M= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:09 2024 by rpki-client on console-ams.rpki-client.org