$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55703D7E09B111EAB045B31EC4F9AE02.roa File: 55703D7E09B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: 63TiAdKvqqYxBAI3wGnfXiLbHNNChNs4eajAtuZ5xaQ= Subject key identifier: 0F:2B:99:0A:B1:69:A5:C9:78:5F:AB:6D:9F:88:8A:1D:95:4A:55:D8 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0F81 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55703D7E09B111EAB045B31EC4F9AE02.roa Signing time: Fri 28 Feb 2025 19:30:00 +0000 ROA not before: Fri 28 Feb 2025 19:30:00 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397227 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3969 (0xf81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:30:00 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c20eb7-b92a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:db:d6:31:45:36:e6:6f:f9:3f:c5:99:65:f8: 26:20:81:fa:55:31:06:6e:93:e5:88:7e:4c:56:62: fd:c2:52:f9:3c:a2:57:dc:2f:d6:5c:72:55:f4:51: 23:54:b6:03:dc:98:a7:40:c8:90:f0:8c:b8:60:a0: 68:9e:cc:02:a8:24:b1:bc:64:e6:b9:80:34:b4:d6: 62:9b:e8:04:91:a3:d0:a4:ce:2e:e2:50:2f:6f:6a: 69:81:b5:5d:8c:aa:e7:b1:c4:d8:72:15:5a:27:18: 8d:bc:6f:6a:cf:1b:e0:6b:04:9e:d5:55:aa:bb:e7: ea:72:7d:ae:c8:3a:db:af:04:93:78:69:71:e9:bf: 0a:fb:54:9e:9e:0a:62:ef:c1:8b:77:e5:ec:4f:f4: d8:24:c6:29:77:1a:f5:c1:e4:a7:2a:86:02:f2:55: ce:bc:f9:b2:65:74:91:b4:37:77:11:92:63:cb:a9: f8:63:1a:99:17:42:e9:28:cc:a6:e6:5a:60:55:40: 03:51:b5:56:c8:ab:6e:ca:ec:cd:19:1e:26:b3:5c: 10:5c:06:9a:4f:50:f1:f5:88:d8:a9:59:80:89:17: 72:ad:9c:77:2a:15:24:a8:57:a6:d2:e5:e5:df:41: 8f:9c:f2:38:df:da:90:b0:f1:5e:1a:c4:e5:d1:7d: ef:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:2B:99:0A:B1:69:A5:C9:78:5F:AB:6D:9F:88:8A:1D:95:4A:55:D8 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55703D7E09B111EAB045B31EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 48:d2:2e:17:b9:eb:75:53:d8:c8:89:ba:75:2e:3a:6d:2b:4b: 37:4d:fa:f8:a8:3c:0d:7a:e0:20:7b:af:cf:ac:41:d9:ed:18: ed:b4:61:e6:6b:91:bb:a8:de:cd:c6:4f:ed:85:ac:c4:f0:7f: 35:98:7e:95:d2:fe:0e:ae:01:17:42:3d:82:df:bc:9f:d6:4e: 4f:cf:1a:2f:10:36:5c:f7:5b:38:ac:6f:24:8f:ba:89:3c:22: b4:d8:0a:f2:20:c1:a2:a8:65:03:d2:73:64:e1:a8:31:2c:35: e5:06:38:f4:30:78:48:7a:08:3e:6f:18:af:04:c1:f3:5f:9b: b8:3b:99:59:ea:4b:03:b0:48:fc:ef:c7:e1:3e:9b:3b:84:f1: 2e:97:a3:b9:cd:9f:81:0b:90:29:7a:c8:ef:8b:ef:21:02:2c: d0:44:66:37:cc:7b:0c:63:bf:3a:56:5d:e1:a6:ed:c3:7a:18: 89:c7:65:d7:13:78:aa:43:4e:5e:42:06:6d:69:24:c6:5b:be: 88:50:bf:bd:c2:ab:8b:b0:5d:92:14:4c:d6:51:9d:d5:ff:8f: 42:9d:31:c1:52:3a:af:63:a3:b7:7a:fa:09:1e:3e:56:94:57: 5d:18:b5:94:11:f8:fd:7d:fd:7f:bf:3c:3d:04:a3:f0:f7:1f: b1:ad:42:14 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICD4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkzMDAwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyMGViNy1iOTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dvWMUU25m/5P8WZZfgmIIH6VTEGbpPliH5MVmL9wlL5PKJX3C/WXHJV9FEj VLYD3JinQMiQ8Iy4YKBonswCqCSxvGTmuYA0tNZim+gEkaPQpM4u4lAvb2ppgbVd jKrnscTYchVaJxiNvG9qzxvgawSe1VWqu+fqcn2uyDrbrwSTeGlx6b8K+1Sengpi 78GLd+XsT/TYJMYpdxr1weSnKoYC8lXOvPmyZXSRtDd3EZJjy6n4YxqZF0LpKMym 5lpgVUADUbVWyKtuyuzNGR4ms1wQXAaaT1Dx9YjYqVmAiRdyrZx3KhUkqFem0uXl 30GPnPI439qQsPFeGsTl0X3vSwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFA8rmQqx aaXJeF+rbZ+Iih2VSlXYMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTU3MDNEN0Uw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAEjSLhe563VT 2MiJunUuOm0rSzdN+vioPA164CB7r8+sQdntGO20YeZrkbuo3s3GT+2FrMTwfzWY fpXS/g6uARdCPYLfvJ/WTk/PGi8QNlz3WzisbySPuok8IrTYCvIgwaKoZQPSc2Th qDEsNeUGOPQweEh6CD5vGK8EwfNfm7g7mVnqSwOwSPzvx+E+mzuE8S6Xo7nNn4EL kCl6yO+L7yECLNBEZjfMewxjvzpWXeGm7cN6GInHZdcTeKpDTl5CBm1pJMZbvohQ v73Cq4uwXZIUTNZRndX/j0KdMcFSOq9jo7d6+gkePlaUV10YtZQR+P19/X+/PD0E o/D3H7GtQhQ= -----END CERTIFICATE-----Generated at Sat Apr 26 08:10:31 2025 by rpki-client