$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/F1120B125C7311EF9CC47281C4F9AE02.roa File: F1120B125C7311EF9CC47281C4F9AE02.roa (raw, json) Hash identifier: D1LuX3usa0tBox0sSCc8jcGl3+07/Mmi9S6IkrSaNU0= Subject key identifier: A7:7A:B9:FF:E8:D8:35:F0:53:28:C8:80:2D:D1:DF:4A:87:0C:C0:ED Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3533 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/F1120B125C7311EF9CC47281C4F9AE02.roa Signing time: Mon 16 Sep 2024 14:51:16 +0000 ROA not before: Mon 16 Sep 2024 14:51:16 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 8075 IP address blocks: 117.121.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13619 (0x3533) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 16 14:51:16 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e845e3-5f1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ec:a7:ab:93:12:8b:f3:03:e6:ee:c0:14:8e: d5:93:8b:75:e2:af:dc:19:f6:d5:f0:20:9c:6c:52: 83:b8:cf:f0:94:34:59:49:27:af:83:98:ba:0c:67: e5:ea:c3:53:1a:51:9b:4c:47:49:90:f8:ce:d0:ac: 57:5b:44:7c:4d:96:e9:6a:b4:e9:32:65:95:28:e2: f7:0b:31:4c:88:7c:54:0d:b6:70:e1:d5:eb:39:f0: b5:b3:0e:05:82:ab:27:95:a3:5e:8a:50:3c:47:6a: 94:55:9f:64:f6:85:f5:ea:bf:0c:6c:89:ed:85:0b: f2:28:7a:be:ec:88:ea:ac:a0:00:0f:f1:39:e1:85: 84:5d:91:a1:7e:82:b6:f5:bc:74:bd:5a:4c:fb:0d: fd:14:1c:b8:f7:72:b3:95:cc:2f:19:cc:c0:9b:e4: 17:00:21:4d:6f:9e:ee:e0:25:3b:59:0e:a6:e1:e4: 66:4d:99:13:4d:19:cb:66:7e:e3:a9:e0:37:ce:37: ad:c4:92:1a:b5:87:6e:d2:8b:48:27:07:6e:55:82: 4c:c3:52:dd:3d:40:36:df:dc:d1:7b:5d:00:31:17: 9e:52:9f:e0:40:f6:1a:3c:20:a2:47:e4:2a:bc:75: 93:11:38:cf:cd:62:19:7f:fb:07:7d:81:2b:de:ef: 1f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:7A:B9:FF:E8:D8:35:F0:53:28:C8:80:2D:D1:DF:4A:87:0C:C0:ED X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/F1120B125C7311EF9CC47281C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.121.247.0/24 Signature Algorithm: sha256WithRSAEncryption 64:5f:3a:f4:69:5d:a8:f5:8c:44:d3:9c:1b:7e:b9:58:61:61: 4b:e6:a4:26:0f:bc:9c:96:89:04:b2:d2:9a:5c:ce:64:d4:a2: 0b:27:42:09:70:0d:ba:51:76:66:fe:22:99:f0:42:fe:1f:0a: eb:bf:27:48:fe:47:89:c5:54:a4:a7:f2:aa:d3:20:c6:98:f1: 6e:23:c2:d6:8c:f8:06:44:3e:54:15:20:18:e7:90:78:17:4a: 86:fd:c4:14:a5:1f:3a:ca:db:de:42:92:a4:60:09:1a:91:8b: ce:29:3f:b8:32:85:43:ae:ca:e4:1b:47:cc:f6:56:ea:18:8e: cc:e0:b5:74:7a:9e:2e:39:f5:7b:cf:0b:57:92:bb:0c:53:3a: 04:ba:e9:88:81:9d:af:ba:4e:8a:a1:43:58:a4:93:32:fb:35: 6b:51:e8:c0:cb:e4:7b:e4:f7:37:87:7c:de:f0:ed:fc:e1:4c: 5a:7a:14:a3:54:09:d2:00:b4:49:51:73:c3:fe:f2:7c:9d:5c: ac:4e:3b:bc:b9:78:a5:c7:0f:f9:e5:e5:71:76:1b:e7:3a:59: 7c:00:a1:67:5a:69:a1:8c:cd:c8:33:97:0d:b9:28:3e:e2:50: 00:84:c2:89:ce:e2:d6:50:5c:93:12:72:4f:a4:5a:2f:91:38: ee:3c:7f:b6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjQwOTE2MTQ1MTE2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4NDVlMy01ZjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+ynq5MSi/MD5u7AFI7Vk4t14q/cGfbV8CCcbFKDuM/wlDRZSSevg5i6DGfl 6sNTGlGbTEdJkPjO0KxXW0R8TZbparTpMmWVKOL3CzFMiHxUDbZw4dXrOfC1sw4F gqsnlaNeilA8R2qUVZ9k9oX16r8MbInthQvyKHq+7IjqrKAAD/E54YWEXZGhfoK2 9bx0vVpM+w39FBy493KzlcwvGczAm+QXACFNb57u4CU7WQ6m4eRmTZkTTRnLZn7j qeA3zjetxJIatYdu0otIJwduVYJMw1LdPUA239zRe10AMReeUp/gQPYaPCCiR+Qq vHWTETjPzWIZf/sHfYEr3u8fgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKd6uf/o 2DXwUyjIgC3R30qHDMDtMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvRjExMjBCMTI1 QzczMTFFRjlDQzQ3MjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1efcwDQYJKoZIhvcNAQELBQADggEBAGRfOvRpXaj1jETT nBt+uVhhYUvmpCYPvJyWiQSy0ppczmTUogsnQglwDbpRdmb+IpnwQv4fCuu/J0j+ R4nFVKSn8qrTIMaY8W4jwtaM+AZEPlQVIBjnkHgXSob9xBSlHzrK295CkqRgCRqR i84pP7gyhUOuyuQbR8z2VuoYjszgtXR6ni459XvPC1eSuwxTOgS66YiBna+6Toqh Q1ikkzL7NWtR6MDL5Hvk9zeHfN7w7fzhTFp6FKNUCdIAtElRc8P+8nydXKxOO7y5 eKXHD/nl5XF2G+c6WXwAoWdaaaGMzcgzlw25KD7iUACEwonO4tZQXJMSck+kWi+R OO48f7Y= -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:04 2024 by rpki-client on console-fra.rpki-client.org