$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/9FCD0EE6A34411EB94DFE619C4F9AE02.roa File: 9FCD0EE6A34411EB94DFE619C4F9AE02.roa (raw, json) Hash identifier: XXm7dEPWN7PeNwcSEocHHcyLGZ98umw2siGVr4odclk= Subject key identifier: A4:79:3B:BE:6D:B3:49:F1:5D:88:E2:49:7F:3C:70:4A:89:76:A4:B8 Certificate issuer: /CN=A91EEBAD/serialNumber=81FFF215005DA1AFAC5E24ABBCC03CA70F664B56 Certificate serial: 0552 Authority key identifier: 81:FF:F2:15:00:5D:A1:AF:AC:5E:24:AB:BC:C0:3C:A7:0F:66:4B:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/9FCD0EE6A34411EB94DFE619C4F9AE02.roa Signing time: Fri 17 May 2024 01:04:52 +0000 ROA not before: Fri 17 May 2024 01:04:52 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 45136 IP address blocks: 119.235.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.crl rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1362 (0x552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEBAD/serialNumber=81FFF215005DA1AFAC5E24ABBCC03CA70F664B56 Validity Not Before: May 17 01:04:52 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6646ad34-c1f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:5b:97:fe:d0:e4:d4:3e:7c:6b:74:97:ab:2f: 3f:25:78:ea:3e:b5:9a:c2:67:83:05:14:76:66:94: 0e:92:cf:c9:ae:73:d8:4c:b8:1d:f5:66:e8:33:58: a2:1d:df:9e:48:82:ad:84:a9:16:5e:b9:47:29:41: 8f:a4:d8:b4:19:15:d1:33:e8:b7:57:2e:f7:77:ac: 3d:94:04:ac:68:89:22:bf:83:a6:8a:37:c5:48:4f: ad:ce:65:0b:2f:52:e9:f0:23:7d:8c:66:f7:d7:1e: 98:cd:82:9a:35:08:31:ec:be:bb:3f:60:a0:3b:b3: 13:ac:d3:69:83:a2:cf:f0:eb:fa:f4:f3:2a:fe:88: 62:43:51:e7:43:99:4b:b2:0b:12:47:e1:69:77:89: 53:41:40:2d:e6:1a:32:0b:8e:13:77:19:d1:e9:f9: 9a:01:fb:f0:69:6a:1f:19:b3:b7:df:f3:e0:57:1d: ef:d7:fb:88:28:aa:3d:12:5e:c6:cc:10:5d:14:fd: 48:46:7a:03:ef:8b:74:44:4b:e9:8d:55:5d:18:c5: bc:87:3d:3c:51:12:4d:3c:f7:c5:8a:90:e6:1f:12: 4a:25:b3:0d:ce:f8:eb:ae:96:82:bc:89:78:3a:2a: 50:8b:2f:d0:02:a4:9b:fc:97:e2:99:8d:e3:99:1c: 57:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:79:3B:BE:6D:B3:49:F1:5D:88:E2:49:7F:3C:70:4A:89:76:A4:B8 X509v3 Authority Key Identifier: keyid:81:FF:F2:15:00:5D:A1:AF:AC:5E:24:AB:BC:C0:3C:A7:0F:66:4B:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/9FCD0EE6A34411EB94DFE619C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.235.40.0/21 Signature Algorithm: sha256WithRSAEncryption 68:64:35:13:0c:63:e3:45:27:a0:6f:1a:fd:6a:f0:11:dd:a6: 0d:1d:3b:51:d3:97:db:d6:5e:bc:ed:0a:1b:79:17:fe:19:dd: ee:36:29:40:20:31:09:f5:6b:7e:93:5c:9c:b4:e5:06:99:86: a6:02:fe:a4:32:3e:e9:00:cb:28:8b:12:e4:78:16:ac:52:d6: b0:10:a3:fc:b7:f5:12:4c:47:58:f5:bc:ad:ab:16:08:4b:96: 11:be:a9:b1:2d:ed:63:78:4a:96:f8:38:af:0a:a6:04:48:d5: 08:b2:a1:db:95:92:7c:70:1a:26:4e:6a:10:7a:ae:72:38:c6: a3:47:2c:8d:c1:66:ee:c6:cc:f3:db:12:a5:7d:5d:be:fe:66: f4:07:b4:1c:ff:0e:41:1c:71:b3:b2:d2:4b:de:0b:f2:44:79: 8e:54:85:78:60:09:aa:42:a7:be:dd:8e:c4:9e:4c:e8:81:c8: ee:a8:3b:b2:f9:f4:9f:0b:85:d0:28:d6:4f:eb:f1:e3:60:15: 67:fd:32:dd:ca:5f:65:04:1d:34:42:56:94:64:ec:44:c0:f6: d6:44:ba:4b:3f:7a:b2:1b:64:fd:83:92:7b:16:4d:80:17:dd: 76:a0:76:79:cf:7a:3f:ec:c5:e5:d4:cc:2f:58:9c:94:fb:2c: 85:3d:5c:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVCQUQxMTAvBgNVBAUTKDgxRkZGMjE1MDA1REExQUZBQzVFMjRBQkJDQzAzQ0E3 MEY2NjRCNTYwHhcNMjQwNTE3MDEwNDUyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ2YWQzNC1jMWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+FuX/tDk1D58a3SXqy8/JXjqPrWawmeDBRR2ZpQOks/JrnPYTLgd9WboM1ii Hd+eSIKthKkWXrlHKUGPpNi0GRXRM+i3Vy73d6w9lASsaIkiv4OmijfFSE+tzmUL L1Lp8CN9jGb31x6YzYKaNQgx7L67P2CgO7MTrNNpg6LP8Ov69PMq/ohiQ1HnQ5lL sgsSR+Fpd4lTQUAt5hoyC44TdxnR6fmaAfvwaWofGbO33/PgVx3v1/uIKKo9El7G zBBdFP1IRnoD74t0REvpjVVdGMW8hz08URJNPPfFipDmHxJKJbMNzvjrrpaCvIl4 OipQiy/QAqSb/JfimY3jmRxXBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKR5O75t s0nxXYjiSX88cEqJdqS4MB8GA1UdIwQYMBaAFIH/8hUAXaGvrF4kq7zAPKcPZktW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUJBRC81MEQ5MUU2NkEz NDMxMUVCOTk3QjMzMTlDNEY5QUUwMi9nZl95RlFCZG9hLXNYaVNydk1BOHB3OW1T MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dmX3lGUUJkb2Etc1hpU3J2TUE4cHc5bVMxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVCQUQvNTBEOTFFNjZBMzQzMTFFQjk5N0IzMzE5QzRGOUFFMDIvOUZDRDBFRTZB MzQ0MTFFQjk0REZFNjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN36ygwDQYJKoZIhvcNAQELBQADggEBAGhkNRMMY+NFJ6Bv Gv1q8BHdpg0dO1HTl9vWXrztCht5F/4Z3e42KUAgMQn1a36TXJy05QaZhqYC/qQy PukAyyiLEuR4FqxS1rAQo/y39RJMR1j1vK2rFghLlhG+qbEt7WN4Spb4OK8KpgRI 1QiyoduVknxwGiZOahB6rnI4xqNHLI3BZu7GzPPbEqV9Xb7+ZvQHtBz/DkEccbOy 0kveC/JEeY5UhXhgCapCp77djsSeTOiByO6oO7L59J8LhdAo1k/r8eNgFWf9Mt3K X2UEHTRCVpRk7ETA9tZEuks/erIbZP2DknsWTYAX3XagdnnPej/sxeXUzC9YnJT7 LIU9XIk= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:32 2024 by rpki-client on console-ams.rpki-client.org