$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/DDC1A87037DA11EDBEF9D050C4F9AE02.roa File: DDC1A87037DA11EDBEF9D050C4F9AE02.roa (raw, json) Hash identifier: 0E1AnRLdDQSi7CALPuxqOZ1UQT1UoHej7TgsxQxh0Zs= Subject key identifier: A5:98:4F:37:FF:8E:FD:05:3B:17:8D:B0:1B:45:D8:4E:A8:96:60:0E Certificate issuer: /CN=A91EDB37/serialNumber=BB544176DDE68E3581C5C43F4FC7CC2CF68D6924 Certificate serial: 0552 Authority key identifier: BB:54:41:76:DD:E6:8E:35:81:C5:C4:3F:4F:C7:CC:2C:F6:8D:69:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/DDC1A87037DA11EDBEF9D050C4F9AE02.roa Signing time: Thu 28 Sep 2023 07:35:01 +0000 ROA not before: Thu 28 Sep 2023 07:35:01 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 21859 IP address blocks: 122.10.140.0/22 maxlen: 24 122.10.196.0/23 maxlen: 24 122.10.221.0/24 maxlen: 24 122.10.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.crl rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1362 (0x552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37/serialNumber=BB544176DDE68E3581C5C43F4FC7CC2CF68D6924 Validity Not Before: Sep 28 07:35:01 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65152ca5-a91e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:90:83:d4:01:57:0d:f8:b9:96:6c:14:a0:4c: 50:2e:22:c5:e1:2b:1d:8a:aa:87:e0:60:46:75:62: ac:04:f3:b9:1c:40:e2:69:04:c5:a1:45:a8:d6:96: 6f:29:82:5e:c6:13:cb:c5:0e:85:0b:f8:01:8a:07: d3:ad:0a:36:0c:b0:dd:3f:97:ed:42:ff:ca:96:a6: 74:df:d9:71:0e:f1:c6:66:a8:87:1a:ae:2b:59:ff: 02:f6:ca:d4:fb:de:99:27:5d:3b:57:a8:b0:0a:5d: 24:16:a1:ce:26:c4:d3:54:0d:98:8c:e4:8f:2e:16: 97:8c:e4:5d:16:f3:17:e6:a1:af:27:e8:49:55:1e: 55:3f:d5:da:b9:74:0e:4a:0c:18:01:81:37:0e:9c: 05:0f:81:f8:7b:82:fa:41:76:74:c2:6f:44:bb:0c: d9:77:6c:b8:d6:ee:51:61:58:6c:0a:33:8e:67:a8: 40:7f:a7:f1:80:ce:ca:88:57:dd:48:03:75:b7:3f: f8:dc:94:44:22:c5:03:88:a2:da:1a:36:40:08:55: 10:8e:ea:5d:14:6b:a7:3f:e3:2c:83:9d:48:e7:dc: 8d:7b:a3:4f:39:98:86:9d:d8:af:f2:1b:e4:d1:70: 7b:22:f5:85:7e:25:89:c9:57:9f:94:50:3c:e5:73: df:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:98:4F:37:FF:8E:FD:05:3B:17:8D:B0:1B:45:D8:4E:A8:96:60:0E X509v3 Authority Key Identifier: keyid:BB:54:41:76:DD:E6:8E:35:81:C5:C4:3F:4F:C7:CC:2C:F6:8D:69:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/DDC1A87037DA11EDBEF9D050C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.10.140.0/22 122.10.196.0/23 122.10.221.0/24 122.10.223.0/24 Signature Algorithm: sha256WithRSAEncryption 05:90:60:48:a2:04:40:0f:3a:73:78:18:45:37:86:83:c3:e5: b3:7f:38:bb:51:0c:2d:f5:44:87:b4:e7:4b:36:be:15:07:b6: c1:fe:f6:42:51:d2:4f:5b:4c:50:b2:05:ca:67:5b:6d:4e:d6: 0f:a3:98:78:55:45:65:af:c2:ce:74:a5:5e:15:3e:34:c1:1b: 3e:07:37:90:47:f8:3f:d0:27:84:83:dc:3e:20:f7:2f:8a:15: 78:44:96:5f:6e:9c:da:29:76:f2:4d:89:ed:99:c8:b2:0a:ed: 2f:bd:99:ff:a9:c0:10:ce:b5:91:7b:91:fb:83:5c:1c:9c:8d: c1:c9:0c:28:86:c3:a5:9c:9b:80:bd:ca:fb:ec:29:0d:4d:f6: 9d:d2:0a:f1:27:62:0f:72:b2:46:ae:42:f3:ab:47:5e:44:6d: 03:78:6a:6f:56:73:0a:34:f0:fb:03:e5:ec:c4:49:e3:54:a2: 0b:ee:f1:d7:fc:d2:40:be:6a:06:10:40:b5:f8:ff:aa:c4:9f: 1d:3f:74:9f:c7:1e:94:f3:ed:fe:3b:3a:5c:9c:98:ff:49:0c: 27:8e:a6:06:a2:a6:d8:db:e7:67:c9:e9:60:e5:c2:35:89:4e: 4f:2d:9a:97:f0:1d:63:f7:80:45:ad:76:2e:2f:48:89:b3:65: c8:7f:44:5e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKEJCNTQ0MTc2RERFNjhFMzU4MUM1QzQzRjRGQzdDQzJD RjY4RDY5MjQwHhcNMjMwOTI4MDczNTAxWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE1MmNhNS1hOTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45CD1AFXDfi5lmwUoExQLiLF4SsdiqqH4GBGdWKsBPO5HEDiaQTFoUWo1pZv KYJexhPLxQ6FC/gBigfTrQo2DLDdP5ftQv/KlqZ039lxDvHGZqiHGq4rWf8C9srU +96ZJ107V6iwCl0kFqHOJsTTVA2YjOSPLhaXjORdFvMX5qGvJ+hJVR5VP9XauXQO SgwYAYE3DpwFD4H4e4L6QXZ0wm9EuwzZd2y41u5RYVhsCjOOZ6hAf6fxgM7KiFfd SAN1tz/43JREIsUDiKLaGjZACFUQjupdFGunP+Msg51I59yNe6NPOZiGndiv8hvk 0XB7IvWFfiWJyVeflFA85XPfRQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFKWYTzf/ jv0FOxeNsBtF2E6olmAOMB8GA1UdIwQYMBaAFLtUQXbd5o41gcXEP0/HzCz2jWkk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy81NzY0NzM3QTc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi91MVJCZHQzbWpqV0J4Y1FfVDhmTUxQYU5h U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxUkJkdDNtampXQnhjUV9UOGZNTFBhTmFTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNTc2NDczN0E3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvRERDMUE4NzAz N0RBMTFFREJFRjlEMDUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAJ6CowDBAF6CsQDBAB6Ct0DBAB6Ct8wDQYJKoZIhvcNAQEL BQADggEBAAWQYEiiBEAPOnN4GEU3hoPD5bN/OLtRDC31RIe050s2vhUHtsH+9kJR 0k9bTFCyBcpnW21O1g+jmHhVRWWvws50pV4VPjTBGz4HN5BH+D/QJ4SD3D4g9y+K FXhEll9unNopdvJNie2ZyLIK7S+9mf+pwBDOtZF7kfuDXBycjcHJDCiGw6Wcm4C9 yvvsKQ1N9p3SCvEnYg9yskauQvOrR15EbQN4am9Wcwo08PsD5ezESeNUogvu8df8 0kC+agYQQLX4/6rEnx0/dJ/HHpTz7f47OlycmP9JDCeOpgaiptjb52fJ6WDlwjWJ Tk8tmpfwHWP3gEWtdi4vSImzZch/RF4= -----END CERTIFICATE-----Generated at Thu Apr 25 01:20:43 2024 by rpki-client on console-fra.rpki-client.org