$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/53DFF8EC2E9111E999636910C4F9AE02.roa File: 53DFF8EC2E9111E999636910C4F9AE02.roa (raw, json) Hash identifier: pFWyJjF088oOGw4nNl0g4YWTqxbuE3QpkV5M07utSjo= Subject key identifier: 1E:A6:A2:05:38:50:16:E3:E6:53:4C:4C:C5:04:08:3E:CB:51:41:27 Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 1034 Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/53DFF8EC2E9111E999636910C4F9AE02.roa Signing time: Tue 30 Apr 2024 18:26:37 +0000 ROA not before: Tue 30 Apr 2024 18:26:37 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 9771 IP address blocks: 121.97.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4148 (0x1034) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: Apr 30 18:26:37 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663137dd-3ab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c5:ce:51:b3:2f:21:dd:d7:b4:af:52:48:2b: 91:47:95:4e:b7:26:38:f8:66:62:a5:ff:17:1e:e1: 07:55:6e:55:a9:d6:66:c8:c5:15:4b:6a:27:fa:3b: bd:0a:e7:13:d4:2a:b7:8b:31:54:9a:28:38:81:2e: be:f7:a4:50:b1:f3:15:c6:4c:8f:e4:02:51:f2:27: 05:cf:cb:f1:11:87:d1:67:dc:ba:03:7a:8e:82:cc: 7c:d2:bb:53:a5:b3:99:67:84:31:c1:d0:77:0f:7e: 30:da:0a:d4:80:60:b7:0c:65:3d:38:08:83:39:77: 2d:bb:65:f1:38:26:a2:a0:b0:a6:a2:9f:32:e1:77: 36:d1:97:6c:cd:73:16:ad:ff:67:b4:0c:b2:cf:38: fd:67:fa:1d:bb:ab:34:4e:2e:34:0e:7c:d9:28:5c: 85:b2:ce:64:cd:7f:e0:b2:13:42:50:94:df:0a:ad: bc:3e:da:d1:36:d6:c2:bc:d0:b7:50:7b:70:e1:c5: 6f:02:39:ab:3f:85:e0:bb:b8:8c:4f:b5:0e:f8:76: 75:c7:6f:6e:6a:a4:52:53:04:94:e4:4a:94:8e:20: 4c:60:6b:a7:af:6b:e3:00:23:28:9f:15:bc:87:f6: 63:bf:50:2a:5b:83:27:0e:94:be:51:d5:04:32:7d: 66:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A6:A2:05:38:50:16:E3:E6:53:4C:4C:C5:04:08:3E:CB:51:41:27 X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/53DFF8EC2E9111E999636910C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.97.8.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:3f:e0:fc:f9:04:e2:3b:2b:da:69:b3:f9:45:ea:20:c4:7a: f9:e0:44:65:d8:e4:34:b3:5d:58:b7:83:ee:65:f1:08:d3:1f: 44:bf:1c:a1:10:61:31:79:3d:d4:87:0d:8b:a6:07:7c:8c:ce: 11:c7:19:85:89:45:e3:f8:19:de:72:09:e0:c6:d1:78:d8:31: 05:1f:d1:d4:01:0e:22:bf:6b:87:b8:a5:06:92:32:fb:c3:d7: cf:2a:30:f8:46:ee:ad:cf:a5:e0:ab:63:e9:97:ec:7f:2d:88: 7e:7a:db:d2:5a:ba:43:ad:be:45:fb:d2:63:4e:73:4f:38:79: a9:71:ad:b5:10:14:0d:78:b4:f9:d3:da:dc:04:b4:ff:92:4f: ba:2b:7e:2e:47:4f:37:32:c8:d7:83:96:d1:c6:07:b6:68:bd: f2:2b:80:9f:60:8c:cf:3a:ac:4f:42:f8:b4:ed:30:ad:f0:62: 4d:59:7f:db:75:e4:fc:ef:fa:8d:ea:20:aa:b4:2e:79:af:08: 21:77:76:db:0d:65:04:6a:b8:53:1d:ac:d9:2d:1b:df:51:8a: 13:e4:bf:2d:20:29:c3:87:67:b5:c8:8b:e6:32:24:a2:95:51: ed:f2:ed:6f:3a:d7:9d:88:a0:a0:92:5b:1b:55:c8:ef:cd:6d: 61:02:f5:ad -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjQwNDMwMTgyNjM3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMzdkZC0zYWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sXOUbMvId3XtK9SSCuRR5VOtyY4+GZipf8XHuEHVW5VqdZmyMUVS2on+ju9 CucT1Cq3izFUmig4gS6+96RQsfMVxkyP5AJR8icFz8vxEYfRZ9y6A3qOgsx80rtT pbOZZ4QxwdB3D34w2grUgGC3DGU9OAiDOXctu2XxOCaioLCmop8y4Xc20ZdszXMW rf9ntAyyzzj9Z/odu6s0Ti40DnzZKFyFss5kzX/gshNCUJTfCq28PtrRNtbCvNC3 UHtw4cVvAjmrP4Xgu7iMT7UO+HZ1x29uaqRSUwSU5EqUjiBMYGunr2vjACMonxW8 h/Zjv1AqW4MnDpS+UdUEMn1mAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFB6mogU4 UBbj5lNMTMUECD7LUUEnMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvNTNERkY4RUMy RTkxMTFFOTk5NjM2OTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB5YQgwDQYJKoZIhvcNAQELBQADggEBAB0/4Pz5BOI7K9pp s/lF6iDEevngRGXY5DSzXVi3g+5l8QjTH0S/HKEQYTF5PdSHDYumB3yMzhHHGYWJ ReP4Gd5yCeDG0XjYMQUf0dQBDiK/a4e4pQaSMvvD188qMPhG7q3PpeCrY+mX7H8t iH5629JaukOtvkX70mNOc084ealxrbUQFA14tPnT2twEtP+ST7orfi5HTzcyyNeD ltHGB7ZovfIrgJ9gjM86rE9C+LTtMK3wYk1Zf9t15Pzv+o3qIKq0LnmvCCF3dtsN ZQRquFMdrNktG99RihPkvy0gKcOHZ7XIi+YyJKKVUe3y7W86152IoKCSWxtVyO/N bWEC9a0= -----END CERTIFICATE-----Generated at Sat Apr 26 13:10:33 2025 by rpki-client