$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa File: D35D0A48129B11EB97265731C4F9AE02.roa (raw, json) Hash identifier: HtCAJGkypYB0c5gP9De0Q+j0tC2rNbiAHi8hiBhqKrI= Subject key identifier: F3:C2:8C:B9:0F:CB:1D:4E:F2:D1:01:69:1E:35:9D:CC:C2:94:9C:B9 Certificate issuer: /CN=A91F2573/serialNumber=E847DEAD5C0FED49E33A3B6224EFF3E4ECDA4196 Certificate serial: 0694 Authority key identifier: E8:47:DE:AD:5C:0F:ED:49:E3:3A:3B:62:24:EF:F3:E4:EC:DA:41:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EferVwP7UnjOjtiJO_z5OzaQZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa Signing time: Mon 12 Feb 2024 23:11:49 +0000 ROA not before: Mon 12 Feb 2024 23:11:49 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 56035 IP address blocks: 110.173.228.0/24 maxlen: 24 110.173.229.0/24 maxlen: 24 110.173.230.0/24 maxlen: 24 110.173.231.0/24 maxlen: 24 120.88.0.0/24 maxlen: 24 120.88.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/6EferVwP7UnjOjtiJO_z5OzaQZY.crl rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/6EferVwP7UnjOjtiJO_z5OzaQZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EferVwP7UnjOjtiJO_z5OzaQZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1684 (0x694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2573/serialNumber=E847DEAD5C0FED49E33A3B6224EFF3E4ECDA4196 Validity Not Before: Feb 12 23:11:49 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65caa5b5-466c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c7:a4:e1:a6:ea:9c:ba:22:55:f5:54:79:b2: ba:ce:eb:e1:6d:2a:3f:11:73:e6:89:38:f1:9d:1e: 44:ff:28:ae:8b:31:1f:ee:f5:88:3e:ec:8f:05:3b: 46:0e:6b:db:1b:12:ad:73:8e:cd:fc:7e:77:21:d1: 50:85:4c:86:3a:45:7b:c0:24:91:d6:4a:e5:06:9c: f2:b9:ef:10:6b:67:b2:89:35:e4:53:4d:86:21:3b: 0f:4f:8e:b5:d3:f5:89:96:b8:6b:7d:ee:96:73:91: c0:c5:38:eb:fc:28:2a:25:7e:cc:2d:7c:04:25:8b: b7:49:4f:fd:95:79:20:e6:24:0f:04:46:e5:b8:11: 23:5c:97:ef:d3:e4:12:95:ba:0d:a7:f2:50:63:02: 54:7a:81:de:19:cd:6f:0c:01:11:60:d6:c1:22:0c: dd:e9:3d:ec:c4:e9:af:82:b6:a2:c4:3a:3c:18:ec: 95:46:42:ac:97:40:98:e3:5b:7c:cc:a0:5e:a5:57: 4d:90:cd:37:37:3e:e7:c8:07:db:b9:9f:86:75:75: f9:d4:2d:69:10:a6:a3:93:32:c4:1c:bd:f3:e6:ab: 77:79:73:41:0c:ab:78:e6:7e:c4:fd:2f:ec:2a:05: 67:05:03:fa:9d:f9:f1:d5:1f:eb:b1:f0:a5:be:2f: 82:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C2:8C:B9:0F:CB:1D:4E:F2:D1:01:69:1E:35:9D:CC:C2:94:9C:B9 X509v3 Authority Key Identifier: keyid:E8:47:DE:AD:5C:0F:ED:49:E3:3A:3B:62:24:EF:F3:E4:EC:DA:41:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/6EferVwP7UnjOjtiJO_z5OzaQZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EferVwP7UnjOjtiJO_z5OzaQZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.173.228.0/22 120.88.0.0/23 Signature Algorithm: sha256WithRSAEncryption 28:27:11:40:1b:99:90:f9:52:a8:fb:c5:2d:93:09:dd:b6:40: 65:0f:03:3b:18:4d:e8:bc:13:ef:3f:f7:a8:df:ab:6d:49:d2: e4:3e:32:46:f2:e7:a0:c7:41:2c:81:b8:16:ee:80:e6:ff:e0: 7e:96:bb:b3:fd:21:22:82:7d:53:95:2e:a1:63:48:94:e5:3c: 80:1b:0e:2a:9b:75:7f:26:b1:8b:b7:e6:98:12:3b:ec:f5:b7: 1c:87:3f:9f:ea:0c:c2:68:bb:a5:c9:21:2f:60:65:6d:eb:06: 11:0e:24:1c:aa:3f:b3:d5:6d:5c:32:65:2a:1c:e6:eb:b2:8b: af:c1:91:5a:6e:8f:3f:b5:fa:5e:b6:c4:0d:e8:16:1b:58:48: 22:6f:50:eb:01:80:27:6b:ee:1d:4c:9b:ca:7f:c6:15:34:3d: 2f:97:37:27:d6:88:02:93:21:d6:8b:da:50:09:16:df:62:a9: a0:c2:39:6f:01:ca:52:47:7e:21:7b:3b:2c:1f:14:e8:5a:2b: 0b:f1:79:03:6f:42:d0:a3:76:2b:8e:63:6b:0f:38:fd:b7:52: 79:a0:16:01:95:9e:57:3a:77:dd:6f:c6:90:f2:f7:37:3f:f3: a0:46:ab:9e:0b:dc:c1:1e:a3:06:37:76:78:c6:d8:c1:bd:8f: e6:f8:25:83 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI1NzMxMTAvBgNVBAUTKEU4NDdERUFENUMwRkVENDlFMzNBM0I2MjI0RUZGM0U0 RUNEQTQxOTYwHhcNMjQwMjEyMjMxMTQ5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNhYTViNS00NjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18ek4abqnLoiVfVUebK6zuvhbSo/EXPmiTjxnR5E/yiuizEf7vWIPuyPBTtG DmvbGxKtc47N/H53IdFQhUyGOkV7wCSR1krlBpzyue8Qa2eyiTXkU02GITsPT461 0/WJlrhrfe6Wc5HAxTjr/CgqJX7MLXwEJYu3SU/9lXkg5iQPBEbluBEjXJfv0+QS lboNp/JQYwJUeoHeGc1vDAERYNbBIgzd6T3sxOmvgraixDo8GOyVRkKsl0CY41t8 zKBepVdNkM03Nz7nyAfbuZ+GdXX51C1pEKajkzLEHL3z5qt3eXNBDKt45n7E/S/s KgVnBQP6nfnx1R/rsfClvi+CFQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPPCjLkP yx1O8tEBaR41nczClJy5MB8GA1UdIwQYMBaAFOhH3q1cD+1J4zo7YiTv8+Ts2kGW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjU3My9BOTBFRDMyNjEy OUExMUVCOTU5MzlGMzBDNEY5QUUwMi82RWZlclZ3UDdVbmpPanRpSk9fejVPemFR WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZFZmVyVndQN1Vuak9qdGlKT196NU96YVFaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI1NzMvQTkwRUQzMjYxMjlBMTFFQjk1OTM5RjMwQzRGOUFFMDIvRDM1RDBBNDgx MjlCMTFFQjk3MjY1NzMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJureQDBAF4WAAwDQYJKoZIhvcNAQELBQADggEBACgnEUAb mZD5Uqj7xS2TCd22QGUPAzsYTei8E+8/96jfq21J0uQ+Mkby56DHQSyBuBbugOb/ 4H6Wu7P9ISKCfVOVLqFjSJTlPIAbDiqbdX8msYu35pgSO+z1txyHP5/qDMJou6XJ IS9gZW3rBhEOJByqP7PVbVwyZSoc5uuyi6/BkVpujz+1+l62xA3oFhtYSCJvUOsB gCdr7h1Mm8p/xhU0PS+XNyfWiAKTIdaL2lAJFt9iqaDCOW8BylJHfiF7OywfFOha KwvxeQNvQtCjdiuOY2sPOP23UnmgFgGVnlc6d91vxpDy9zc/86BGq54L3MEeowY3 dnjG2MG9j+b4JYM= -----END CERTIFICATE-----Generated at Sun May 19 00:30:23 2024 by rpki-client on console-ams.rpki-client.org