$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F15AD0CE544E11ED9C5E2F3AC4F9AE02.roa File: F15AD0CE544E11ED9C5E2F3AC4F9AE02.roa (raw, json) Hash identifier: mrGJzAbW37pPvsvk8/sNvAoE/DrsQDtBp4BLxlB8Gkc= Subject key identifier: 6D:2E:3E:90:71:09:14:13:91:2E:3B:2C:34:EE:49:E8:53:C3:A1:B8 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 269B Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F15AD0CE544E11ED9C5E2F3AC4F9AE02.roa Signing time: Wed 10 Apr 2024 16:23:44 +0000 ROA not before: Wed 10 Apr 2024 16:23:44 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 139040 IP address blocks: 119.92.217.0/24 maxlen: 24 122.55.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:14:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9883 (0x269b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 10 16:23:44 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6616bd10-89ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:eb:7f:f2:5e:da:34:88:8f:8a:c3:5c:6a:9d: a0:c1:4a:8a:1b:e4:b9:b9:18:0c:b2:69:5e:13:81: 93:ce:d6:7c:9d:8f:52:29:70:d6:af:c2:5c:ee:20: 2f:cd:40:f1:1e:b6:18:c9:98:3b:b0:a8:e8:ff:8d: 59:ee:84:c0:d2:c8:47:29:9d:b9:2a:30:f0:e2:46: 61:df:66:42:b0:8a:5b:22:27:0d:9e:a4:21:26:bc: 07:58:54:3f:ae:7e:24:f7:15:23:6c:82:cc:d1:08: 9b:ee:81:c3:8f:89:7c:7f:a3:fe:ed:ba:b4:02:7f: d0:22:bc:a0:32:cf:8a:95:5d:00:63:48:17:4b:79: 0d:3a:86:18:ca:eb:9e:9b:1e:b7:0f:9d:29:e9:6b: 53:46:22:e4:72:32:95:1e:0a:d2:77:21:cc:b2:5b: 0a:88:86:d1:31:e5:e8:71:43:16:c7:75:fe:bc:ac: c5:98:93:bb:37:38:94:f0:fe:6e:1d:30:55:fb:19: b2:f7:29:f5:e3:57:f6:78:77:14:87:9b:cc:4b:93: b3:19:ab:dd:e1:e5:a4:c9:b4:8c:40:59:ee:90:d7: ec:c0:f1:ba:b9:fe:d1:14:42:68:69:40:fc:5e:a4: ce:03:57:2e:27:57:93:2a:f1:8f:d0:29:6c:d4:a7: 21:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:2E:3E:90:71:09:14:13:91:2E:3B:2C:34:EE:49:E8:53:C3:A1:B8 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F15AD0CE544E11ED9C5E2F3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.92.217.0/24 122.55.180.0/24 Signature Algorithm: sha256WithRSAEncryption 75:7b:5e:27:da:3b:7e:ab:be:5b:68:31:1f:6c:49:76:5d:d1: f0:29:47:35:23:2e:58:e4:4b:fe:ed:d7:26:2d:e0:10:75:9d: 41:ef:08:dd:f3:ac:fd:fe:3c:d6:97:e5:27:c5:e6:b5:94:25: 82:13:3a:23:6f:81:11:72:eb:9c:9c:6c:7b:93:53:72:0c:51: 0d:90:7c:b3:91:f8:9f:ac:cb:65:a0:26:e2:a7:8e:f6:21:a3: a3:19:06:47:e4:7f:12:a9:01:ff:9e:ba:66:61:77:e8:55:7d: 4d:18:e3:84:9c:68:38:15:9a:b5:05:5c:49:32:6c:3d:ae:e1: aa:2b:b0:32:a0:b7:a3:27:1b:3c:5d:20:6e:27:b7:87:64:98: 9b:c7:49:ae:78:41:fe:fa:11:fa:f6:0a:13:23:bc:9e:bb:37: 6c:95:05:57:26:f7:af:57:ce:45:df:2b:cc:a5:f6:bb:d8:5f: db:7e:a7:0a:54:0e:6e:39:48:59:94:e6:58:91:2d:a6:1a:f0: 68:f7:f4:ed:ad:82:66:f7:3c:e7:53:58:c1:9a:32:7b:9a:3b: ff:27:d2:6e:76:a3:ec:8e:2b:3d:18:e5:ef:bf:69:71:97:97: 94:af:8c:a4:d0:a8:4a:9b:36:0e:06:c4:fe:0a:5b:9d:7f:d6: 21:20:cf:64 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjQwNDEwMTYyMzQ0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2YmQxMC04OWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ut/8l7aNIiPisNcap2gwUqKG+S5uRgMsmleE4GTztZ8nY9SKXDWr8Jc7iAv zUDxHrYYyZg7sKjo/41Z7oTA0shHKZ25KjDw4kZh32ZCsIpbIicNnqQhJrwHWFQ/ rn4k9xUjbILM0Qib7oHDj4l8f6P+7bq0An/QIrygMs+KlV0AY0gXS3kNOoYYyuue mx63D50p6WtTRiLkcjKVHgrSdyHMslsKiIbRMeXocUMWx3X+vKzFmJO7NziU8P5u HTBV+xmy9yn141f2eHcUh5vMS5OzGavd4eWkybSMQFnukNfswPG6uf7RFEJoaUD8 XqTOA1cuJ1eTKvGP0Cls1KchvwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFG0uPpBx CRQTkS47LDTuSehTw6G4MB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvRjE1QUQwQ0U1 NDRFMTFFRDlDNUUyRjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB3XNkDBAB6N7QwDQYJKoZIhvcNAQELBQADggEBAHV7Xifa O36rvltoMR9sSXZd0fApRzUjLljkS/7t1yYt4BB1nUHvCN3zrP3+PNaX5SfF5rWU JYITOiNvgRFy65ycbHuTU3IMUQ2QfLOR+J+sy2WgJuKnjvYho6MZBkfkfxKpAf+e umZhd+hVfU0Y44ScaDgVmrUFXEkybD2u4aorsDKgt6MnGzxdIG4nt4dkmJvHSa54 Qf76Efr2ChMjvJ67N2yVBVcm969XzkXfK8yl9rvYX9t+pwpUDm45SFmU5liRLaYa 8Gj39O2tgmb3POdTWMGaMnuaO/8n0m52o+yOKz0Y5e+/aXGXl5SvjKTQqEqbNg4G xP4KW51/1iEgz2Q= -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:41 2024 by rpki-client on console-fra.rpki-client.org