$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5C5998765AD611EFA2E29C7BC4F9AE02.roa File: 5C5998765AD611EFA2E29C7BC4F9AE02.roa (raw, json) Hash identifier: xnJz9CbWIuAsxAPEZuUOdvS3/6CU2AdVOkfsin07HJk= Subject key identifier: B4:F1:76:15:80:D7:30:2E:1B:43:E6:BC:74:55:D9:5E:64:6A:50:5D Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 352C Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5C5998765AD611EFA2E29C7BC4F9AE02.roa Signing time: Mon 16 Sep 2024 14:51:10 +0000 ROA not before: Mon 16 Sep 2024 14:51:10 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 31715 IP address blocks: 117.121.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13612 (0x352c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 16 14:51:10 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e845dd-4e46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6c:63:8f:9c:79:ec:a0:d2:3b:21:61:b8:b1: 8c:b3:c7:97:5b:02:e0:75:e7:f9:ab:8f:4d:a7:f3: 23:11:68:f6:23:6b:5b:2d:70:16:ce:02:f3:6e:c8: 02:4f:65:fe:6e:43:2a:95:0d:14:46:9b:df:2a:91: 38:31:dd:9f:ec:31:a2:31:7b:9b:0e:d7:32:ce:8f: 1f:da:e6:62:8e:b7:7f:df:86:fa:15:11:24:0b:dc: f6:f2:37:9a:25:53:85:37:da:ec:0b:83:84:2a:d0: db:b3:1b:ed:29:a5:4c:6b:0b:00:10:af:8d:89:63: 2a:11:16:1e:87:e4:cc:05:71:25:d9:c9:d6:c8:0e: 99:7d:4b:04:47:37:e4:86:27:72:fd:3e:d8:5d:03: 86:21:aa:57:a3:57:7c:c6:4e:4e:aa:f7:98:f0:2c: 4f:2d:19:ff:dc:6d:cd:d9:fc:ff:05:52:db:ea:e4: 98:18:c5:5d:af:4e:62:a9:1b:5e:58:68:09:31:e8: 10:b1:d2:5e:bb:69:25:7e:f1:c5:ec:cc:5a:3f:81: ed:30:d2:c3:05:bc:15:06:23:83:c3:19:bd:46:5f: 13:fe:43:a6:69:1f:85:7a:23:ab:82:80:ec:6e:5a: f7:d0:27:b0:3b:31:27:f8:5d:eb:05:73:0e:6d:b9: 83:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F1:76:15:80:D7:30:2E:1B:43:E6:BC:74:55:D9:5E:64:6A:50:5D X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5C5998765AD611EFA2E29C7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.121.245.0/24 Signature Algorithm: sha256WithRSAEncryption 48:3f:86:16:f7:ca:85:35:ec:b1:69:c8:e3:81:f8:0a:fd:68: 65:f9:9c:39:e8:20:0a:97:5e:0a:cf:99:68:e5:83:8b:24:b9: e9:7c:96:0e:5e:d3:e0:69:0d:c5:32:5b:03:28:b4:97:7c:5c: fd:cd:e9:7c:a6:db:ee:c1:77:e3:f0:91:74:d6:d9:c9:b0:2f: 0c:e9:f1:b2:5b:37:3f:15:04:24:0e:27:86:9a:58:a3:94:0d: 58:5a:6b:e0:a3:c1:ce:11:8e:81:e6:89:bb:ba:b5:5c:a2:93: c8:63:9e:0a:a4:f5:79:ef:97:59:15:e0:6f:77:78:9f:5c:be: 83:c9:81:f6:64:8d:2b:04:c8:94:be:60:e3:9e:b1:3e:27:0d: c5:e3:60:d5:34:73:5a:d7:52:b8:e4:dd:c1:11:29:a5:0c:6f: a2:e5:f6:93:98:38:6f:a4:42:cc:3b:00:70:8d:c3:28:42:40: 58:18:48:e6:4e:24:eb:24:9c:b8:f3:30:b3:05:56:b7:45:44: 59:8e:44:12:fe:22:f8:3f:17:df:4b:dc:5a:3f:50:8d:59:0c: 8d:ad:69:1f:9c:27:a3:ee:0a:5d:ca:c6:39:20:29:97:8e:2b: a1:65:bb:62:3c:65:82:e6:c8:1d:5b:ca:83:33:1c:4f:d6:22: c6:7f:0f:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjQwOTE2MTQ1MTEwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4NDVkZC00ZTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmxjj5x57KDSOyFhuLGMs8eXWwLgdef5q49Np/MjEWj2I2tbLXAWzgLzbsgC T2X+bkMqlQ0URpvfKpE4Md2f7DGiMXubDtcyzo8f2uZijrd/34b6FREkC9z28jea JVOFN9rsC4OEKtDbsxvtKaVMawsAEK+NiWMqERYeh+TMBXEl2cnWyA6ZfUsERzfk hidy/T7YXQOGIapXo1d8xk5OqveY8CxPLRn/3G3N2fz/BVLb6uSYGMVdr05iqRte WGgJMegQsdJeu2klfvHF7MxaP4HtMNLDBbwVBiODwxm9Rl8T/kOmaR+FeiOrgoDs blr30CewOzEn+F3rBXMObbmD9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLTxdhWA 1zAuG0PmvHRV2V5kalBdMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvNUM1OTk4NzY1 QUQ2MTFFRkEyRTI5QzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1efUwDQYJKoZIhvcNAQELBQADggEBAEg/hhb3yoU17LFp yOOB+Ar9aGX5nDnoIAqXXgrPmWjlg4skuel8lg5e0+BpDcUyWwMotJd8XP3N6Xym 2+7Bd+PwkXTW2cmwLwzp8bJbNz8VBCQOJ4aaWKOUDVhaa+Cjwc4RjoHmibu6tVyi k8hjngqk9Xnvl1kV4G93eJ9cvoPJgfZkjSsEyJS+YOOesT4nDcXjYNU0c1rXUrjk 3cERKaUMb6Ll9pOYOG+kQsw7AHCNwyhCQFgYSOZOJOsknLjzMLMFVrdFRFmORBL+ Ivg/F99L3Fo/UI1ZDI2taR+cJ6PuCl3KxjkgKZeOK6Flu2I8ZYLmyB1byoMzHE/W IsZ/D9Q= -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:19 2024 by rpki-client on console-ams.rpki-client.org