$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/50AF1E205CD411EEBADBCF7DC4F9AE02.roa File: 50AF1E205CD411EEBADBCF7DC4F9AE02.roa (raw, json) Hash identifier: nuueDOx0/+apmDU7DZPGRGBg+qRwYmEeSxZjhAXG0Z4= Subject key identifier: EB:FB:B4:AD:AC:6E:04:8B:DC:B5:AF:6A:35:3E:2E:C0:C2:3C:6E:F8 Certificate issuer: /CN=A91F2B47/serialNumber=17D5FE323EBFD9A8D344E77B73799A8E75624352 Certificate serial: 0153 Authority key identifier: 17:D5:FE:32:3E:BF:D9:A8:D3:44:E7:7B:73:79:9A:8E:75:62:43:52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F9X-Mj6_2ajTROd7c3majnViQ1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/50AF1E205CD411EEBADBCF7DC4F9AE02.roa Signing time: Thu 29 Feb 2024 04:47:09 +0000 ROA not before: Thu 29 Feb 2024 04:47:09 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 3758 IP address blocks: 166.120.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/F9X-Mj6_2ajTROd7c3majnViQ1I.crl rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/F9X-Mj6_2ajTROd7c3majnViQ1I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F9X-Mj6_2ajTROd7c3majnViQ1I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2B47/serialNumber=17D5FE323EBFD9A8D344E77B73799A8E75624352 Validity Not Before: Feb 29 04:47:09 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e00c4d-560e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c6:6a:ec:af:d5:2d:cd:d6:2d:9a:12:05:8c: 23:aa:80:4e:e3:b3:b4:70:fc:38:d9:18:31:79:eb: d8:aa:b5:2a:1a:9a:00:31:5b:04:0d:73:35:f2:9b: 36:95:8b:7e:98:33:9f:95:b1:1d:3f:a0:1e:62:d6: bb:24:e4:74:02:e7:83:7e:aa:e0:5b:df:dd:0d:83: fd:b6:43:bb:db:de:07:ec:30:30:e7:b4:87:d8:2a: 41:20:ce:b2:8b:d7:24:f9:db:d9:bc:4c:c5:f6:3f: 66:ec:f9:a4:0c:f0:6d:72:c0:ea:e4:be:02:2a:3a: b4:46:2a:70:65:e6:f0:d1:c6:2d:23:9c:7f:01:19: 76:ab:47:0c:b9:d4:be:31:e4:26:6d:61:51:1c:06: 32:0f:d5:0d:48:9f:a3:e3:67:ae:74:74:49:62:81: 75:80:17:81:35:40:4e:6a:46:16:fc:86:e6:81:42: 6e:1b:4e:82:cf:5d:38:79:28:33:1a:9d:da:8e:cc: f9:e6:09:01:ee:12:26:90:b4:19:ec:1f:f7:da:81: fb:41:cd:6a:ec:9d:11:43:b1:ae:47:17:e6:f7:dd: c4:c3:84:2f:94:7f:5e:2c:5b:5c:eb:3e:ef:80:42: d0:4e:c2:5c:48:0d:ca:df:71:78:39:5f:b6:91:b8: 75:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:FB:B4:AD:AC:6E:04:8B:DC:B5:AF:6A:35:3E:2E:C0:C2:3C:6E:F8 X509v3 Authority Key Identifier: keyid:17:D5:FE:32:3E:BF:D9:A8:D3:44:E7:7B:73:79:9A:8E:75:62:43:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/F9X-Mj6_2ajTROd7c3majnViQ1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F9X-Mj6_2ajTROd7c3majnViQ1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/50AF1E205CD411EEBADBCF7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 166.120.129.0/24 Signature Algorithm: sha256WithRSAEncryption 82:15:9a:3d:25:b0:79:6d:35:85:26:e6:7c:a2:16:90:7b:9e: de:9d:c2:fc:05:3e:62:08:6b:9f:d4:df:68:30:e2:65:85:b8: 9f:93:5b:37:e1:e3:5c:f0:62:49:2c:a5:76:73:94:45:8b:4b: b4:17:bb:9f:26:8d:01:5d:31:9a:49:a8:37:49:20:db:36:d1: 5c:1b:28:c0:9a:d9:b2:71:e1:af:41:2c:12:9d:34:74:55:c6: e2:a4:17:3a:b1:17:69:fd:f8:9a:88:eb:33:81:95:3d:06:98: 4d:cb:66:9d:83:de:c4:41:4a:41:78:78:c3:73:f6:42:7f:a1: 9e:14:3e:53:8e:a9:99:89:d4:25:f9:ff:52:2f:61:42:a9:52: 39:c2:80:b9:66:d8:0d:d5:1e:bc:8a:63:74:50:41:bf:10:4d: f4:3f:2e:39:4e:36:fb:f0:94:91:68:8f:2f:b9:f4:50:80:9a: 1d:d3:2b:82:95:11:16:52:fb:ec:ab:c3:a7:7c:dd:ab:02:59: e6:24:f5:c0:3b:3f:ad:e8:59:7f:c6:41:c8:b3:6c:8a:dd:4c: 0e:8f:3b:82:4a:2e:9d:d1:3f:0a:a2:6b:54:68:a9:13:b8:27: 13:f8:96:07:1a:47:f9:ed:32:c2:53:bd:4b:f3:fb:33:c1:36: 09:25:84:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCNDcxMTAvBgNVBAUTKDE3RDVGRTMyM0VCRkQ5QThEMzQ0RTc3QjczNzk5QThF NzU2MjQzNTIwHhcNMjQwMjI5MDQ0NzA5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwMGM0ZC01NjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcZq7K/VLc3WLZoSBYwjqoBO47O0cPw42RgxeevYqrUqGpoAMVsEDXM18ps2 lYt+mDOflbEdP6AeYta7JOR0AueDfqrgW9/dDYP9tkO7294H7DAw57SH2CpBIM6y i9ck+dvZvEzF9j9m7PmkDPBtcsDq5L4CKjq0RipwZebw0cYtI5x/ARl2q0cMudS+ MeQmbWFRHAYyD9UNSJ+j42eudHRJYoF1gBeBNUBOakYW/IbmgUJuG06Cz104eSgz Gp3ajsz55gkB7hImkLQZ7B/32oH7Qc1q7J0RQ7GuRxfm993Ew4QvlH9eLFtc6z7v gELQTsJcSA3K33F4OV+2kbh1cQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOv7tK2s bgSL3LWvajU+LsDCPG74MB8GA1UdIwQYMBaAFBfV/jI+v9mo00Tne3N5mo51YkNS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkI0Ny9FODhFOUM3RTMz QUYxMUVEQjYxMDc0MzRDNEY5QUUwMi9GOVgtTWo2XzJhalRST2Q3YzNtYWpuVmlR MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Y5WC1NajZfMmFqVFJPZDdjM21ham5WaVExSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJCNDcvRTg4RTlDN0UzM0FGMTFFREI2MTA3NDM0QzRGOUFFMDIvNTBBRjFFMjA1 Q0Q0MTFFRUJBREJDRjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACmeIEwDQYJKoZIhvcNAQELBQADggEBAIIVmj0lsHltNYUm 5nyiFpB7nt6dwvwFPmIIa5/U32gw4mWFuJ+TWzfh41zwYkkspXZzlEWLS7QXu58m jQFdMZpJqDdJINs20VwbKMCa2bJx4a9BLBKdNHRVxuKkFzqxF2n9+JqI6zOBlT0G mE3LZp2D3sRBSkF4eMNz9kJ/oZ4UPlOOqZmJ1CX5/1IvYUKpUjnCgLlm2A3VHryK Y3RQQb8QTfQ/LjlONvvwlJFojy+59FCAmh3TK4KVERZS++yrw6d83asCWeYk9cA7 P63oWX/GQcizbIrdTA6PO4JKLp3RPwqia1RoqRO4JxP4lgcaR/ntMsJTvUvz+zPB NgklhDk= -----END CERTIFICATE-----Generated at Tue May 21 05:35:46 2024 by rpki-client on console-ams.rpki-client.org