$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/DDC1A87037DA11EDBEF9D050C4F9AE02.roa File: DDC1A87037DA11EDBEF9D050C4F9AE02.roa (raw, json) Hash identifier: JPtWkJd9tKQ9YS8DsRPubKSCxL1JQ7cieCqKgCXkh+U= Subject key identifier: 92:3F:50:4A:93:01:09:BD:06:F6:93:C1:B5:78:E8:63:35:0F:B2:AF Certificate issuer: /CN=A91EDB37/serialNumber=BB544176DDE68E3581C5C43F4FC7CC2CF68D6924 Certificate serial: 05F1 Authority key identifier: BB:54:41:76:DD:E6:8E:35:81:C5:C4:3F:4F:C7:CC:2C:F6:8D:69:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/DDC1A87037DA11EDBEF9D050C4F9AE02.roa Signing time: Wed 24 Jul 2024 23:41:46 +0000 ROA not before: Wed 24 Jul 2024 23:41:46 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 21859 IP address blocks: 122.10.140.0/22 maxlen: 24 122.10.196.0/23 maxlen: 24 122.10.221.0/24 maxlen: 24 122.10.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.crl rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1521 (0x5f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37/serialNumber=BB544176DDE68E3581C5C43F4FC7CC2CF68D6924 Validity Not Before: Jul 24 23:41:46 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a1913a-f6bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e1:87:16:96:0e:a8:a1:b1:55:6f:da:70:9e: d3:b4:0a:5f:ae:b9:cf:16:5e:85:66:2a:b0:03:43: 2d:a1:2a:1e:d2:7f:a4:f0:cb:25:2e:c4:a1:88:11: 3f:3e:e3:cf:ba:00:aa:26:b6:67:09:3e:6c:6e:6f: 4c:9a:af:92:e4:a8:a6:e7:5a:64:45:3a:9a:7b:89: d2:be:b5:90:d4:7c:2a:1f:d6:ba:79:22:b3:10:29: 0b:fb:28:f8:cf:5e:93:f4:82:9c:04:c4:9a:db:99: 46:b8:c3:4c:85:03:dc:7f:15:03:ec:ff:cf:0d:b1: 70:3f:3e:75:2a:2a:1a:df:6a:c8:de:ab:40:1c:73: 80:f1:61:e9:36:a3:99:41:1f:91:8e:75:be:aa:ce: 32:50:c8:33:79:d3:9f:92:87:4a:d4:75:5d:7b:a2: de:48:cf:5a:6a:59:e0:dd:b7:ad:d5:5c:0d:4d:ed: 20:81:d9:32:ad:db:af:fc:b8:01:95:b9:1e:b9:0d: 4e:d4:b8:18:48:3c:28:b9:9b:6c:95:9d:72:2b:99: 35:b2:0e:9c:3f:f9:9a:6a:0e:73:96:26:14:26:9f: 54:ca:2e:47:f2:41:3c:19:ca:dc:a5:04:d1:64:4d: 75:75:b6:af:92:27:84:30:13:a5:3b:45:20:4a:45: 67:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:3F:50:4A:93:01:09:BD:06:F6:93:C1:B5:78:E8:63:35:0F:B2:AF X509v3 Authority Key Identifier: keyid:BB:54:41:76:DD:E6:8E:35:81:C5:C4:3F:4F:C7:CC:2C:F6:8D:69:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/DDC1A87037DA11EDBEF9D050C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.10.140.0/22 122.10.196.0/23 122.10.221.0/24 122.10.223.0/24 Signature Algorithm: sha256WithRSAEncryption b8:f2:e5:aa:32:94:7a:f0:a1:11:fa:7f:25:e0:ed:e1:51:00: 3e:61:f0:69:2f:6c:26:56:31:bb:10:a5:72:b9:e7:98:01:d0: 68:c1:c6:3b:4f:d4:f7:39:e3:ae:ea:da:15:a2:93:d8:b2:a6: 7b:39:2e:e6:55:1a:2e:f3:12:76:85:c0:e1:aa:ee:18:bf:5d: c0:92:72:80:e0:a3:7e:11:c6:10:fb:71:56:f0:97:c1:03:ff: d1:f3:67:bb:61:b1:5a:e2:7b:4d:5e:67:6d:d9:e1:82:71:b3: 93:f8:63:bc:d9:a5:ab:88:c5:9f:a0:24:6b:e7:2a:cf:6f:59: 2f:29:26:35:09:e3:b5:86:b4:a1:93:bd:c3:09:70:bf:18:0d: d4:38:67:e8:5b:da:21:5a:a3:6d:f1:5c:79:fd:d3:af:48:16: 82:48:0b:21:c3:60:27:82:08:3e:87:7c:b9:5d:c7:87:0f:cf: 48:59:48:f2:85:f3:77:27:a6:71:01:2c:f5:de:0a:69:a7:c7: 5f:1a:a1:b7:79:7e:34:f5:cc:b6:bf:21:f3:59:24:77:88:df: ef:0b:fd:3f:33:f2:71:2b:b6:c8:01:81:72:fa:15:50:09:2d: b1:d5:62:0a:cb:01:5c:02:42:8f:64:f3:6a:57:86:5e:bd:94: cb:84:5b:ce -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKEJCNTQ0MTc2RERFNjhFMzU4MUM1QzQzRjRGQzdDQzJD RjY4RDY5MjQwHhcNMjQwNzI0MjM0MTQ2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExOTEzYS1mNmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuGHFpYOqKGxVW/acJ7TtApfrrnPFl6FZiqwA0MtoSoe0n+k8MslLsShiBE/ PuPPugCqJrZnCT5sbm9Mmq+S5Kim51pkRTqae4nSvrWQ1HwqH9a6eSKzECkL+yj4 z16T9IKcBMSa25lGuMNMhQPcfxUD7P/PDbFwPz51Kioa32rI3qtAHHOA8WHpNqOZ QR+RjnW+qs4yUMgzedOfkodK1HVde6LeSM9aalng3bet1VwNTe0ggdkyrduv/LgB lbkeuQ1O1LgYSDwouZtslZ1yK5k1sg6cP/maag5zliYUJp9Uyi5H8kE8GcrcpQTR ZE11dbavkieEMBOlO0UgSkVniwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFJI/UEqT AQm9BvaTwbV46GM1D7KvMB8GA1UdIwQYMBaAFLtUQXbd5o41gcXEP0/HzCz2jWkk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy81NzY0NzM3QTc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi91MVJCZHQzbWpqV0J4Y1FfVDhmTUxQYU5h U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxUkJkdDNtampXQnhjUV9UOGZNTFBhTmFTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNTc2NDczN0E3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvRERDMUE4NzAz N0RBMTFFREJFRjlEMDUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAJ6CowDBAF6CsQDBAB6Ct0DBAB6Ct8wDQYJKoZIhvcNAQEL BQADggEBALjy5aoylHrwoRH6fyXg7eFRAD5h8GkvbCZWMbsQpXK555gB0GjBxjtP 1Pc5467q2hWik9iypns5LuZVGi7zEnaFwOGq7hi/XcCScoDgo34RxhD7cVbwl8ED /9HzZ7thsVrie01eZ23Z4YJxs5P4Y7zZpauIxZ+gJGvnKs9vWS8pJjUJ47WGtKGT vcMJcL8YDdQ4Z+hb2iFao23xXHn9069IFoJICyHDYCeCCD6HfLldx4cPz0hZSPKF 83cnpnEBLPXeCmmnx18aobd5fjT1zLa/IfNZJHeI3+8L/T8z8nErtsgBgXL6FVAJ LbHVYgrLAVwCQo9k82pXhl69lMuEW84= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:50 2024 by rpki-client on console-fra.rpki-client.org