$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55F662DC09B111EAB045B31EC4F9AE02.roa File: 55F662DC09B111EAB045B31EC4F9AE02.roa (raw, json) Hash identifier: ZZIctFNRs+dF3/ungPeZECiQ8thFMvaOwkbS3/IBuW8= Subject key identifier: 3B:0C:F6:EA:F3:E2:46:29:30:A3:48:B0:6C:C7:33:9E:91:52:44:2D Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0F83 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55F662DC09B111EAB045B31EC4F9AE02.roa Signing time: Fri 28 Feb 2025 19:30:02 +0000 ROA not before: Fri 28 Feb 2025 19:30:02 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397229 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3971 (0xf83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:30:02 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c20eba-9bfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c3:4f:bd:09:ee:45:f4:15:c4:01:8a:8b:83: 16:ca:b2:d7:fa:8e:03:d8:2d:97:8d:0f:cb:f5:35: 92:f8:28:cb:e7:b9:24:e8:bb:88:30:1e:ea:f2:3e: 5b:b2:5c:dd:4e:e9:61:40:2c:a4:c8:38:70:59:09: b1:03:08:2f:f1:2f:06:c6:68:d8:56:2d:cd:0a:3d: 98:00:a8:83:ee:59:af:a0:08:1d:a7:a7:37:4d:f1: 69:33:c1:62:44:f0:6b:ef:4c:2e:dd:62:fb:4c:47: e5:ec:ea:96:d1:7d:8a:0b:b2:25:b7:4e:50:ab:6a: 84:c9:a7:d0:c4:18:0f:09:7a:94:e9:dd:39:7a:6b: 01:20:d3:a2:bf:f0:33:f8:56:c7:77:d6:61:d3:0c: c1:34:2c:82:fb:d8:a0:66:78:e8:25:12:22:32:05: 79:57:e0:bb:5a:2c:3f:d3:6b:6b:de:a7:8c:93:02: 40:8e:78:57:bd:65:e2:32:f3:95:98:c5:23:68:45: 20:66:56:4c:58:e4:90:a3:7b:5c:ad:d6:ca:7e:9f: 2e:40:0c:b1:01:1c:9f:d5:83:72:44:11:8b:4a:3d: 76:d0:2d:5f:18:08:ae:b0:09:70:00:fc:e9:2a:d7: 90:39:9c:06:68:76:d5:22:8d:15:78:d2:6f:f4:2c: 9b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:0C:F6:EA:F3:E2:46:29:30:A3:48:B0:6C:C7:33:9E:91:52:44:2D X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/55F662DC09B111EAB045B31EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 79:f1:fb:d5:f8:8c:8c:75:00:f5:5a:b3:ac:ec:e5:42:ba:23: 84:ab:b2:76:63:c6:11:aa:b1:06:1f:07:84:7a:09:ac:22:8e: d4:69:ac:7b:2f:5b:15:04:59:76:73:ab:03:2d:1b:d6:8b:bc: 0c:6f:28:fb:a4:7a:f7:f6:6a:e6:2c:bc:4b:12:77:3b:03:2d: 3b:a3:d9:a1:ac:6b:81:aa:68:20:63:33:09:17:7d:d6:eb:4b: 55:c4:e8:db:80:65:4a:e4:c9:d0:5e:69:ab:e9:6d:b4:c8:4b: 4c:a6:33:27:fd:e4:11:e9:b0:49:3f:e2:91:ff:56:d5:e2:39: d1:f0:2a:46:f3:06:21:96:49:37:47:e2:76:8f:40:98:59:49: 1d:a8:9d:87:f0:28:c5:df:e3:e6:df:e4:f5:c1:80:09:47:a6: 23:3c:bc:bc:73:78:38:c6:f6:3f:c0:6a:63:3b:26:60:7e:d1: 60:4d:b4:6b:13:20:10:6e:4e:d5:bd:70:f3:b1:ee:25:8b:1c: 24:32:55:d8:25:96:1b:27:20:3a:c1:31:68:09:a9:74:98:1f: 2d:b3:ea:e7:20:0d:41:85:17:93:40:87:0b:31:48:1a:94:86: 9d:f6:da:fd:ac:4f:13:04:6c:45:95:ac:58:d1:48:32:dd:ef: 73:a6:e9:9e -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICD4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkzMDAyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyMGViYS05YmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsNPvQnuRfQVxAGKi4MWyrLX+o4D2C2XjQ/L9TWS+CjL57kk6LuIMB7q8j5b slzdTulhQCykyDhwWQmxAwgv8S8GxmjYVi3NCj2YAKiD7lmvoAgdp6c3TfFpM8Fi RPBr70wu3WL7TEfl7OqW0X2KC7Ilt05Qq2qEyafQxBgPCXqU6d05emsBINOiv/Az +FbHd9Zh0wzBNCyC+9igZnjoJRIiMgV5V+C7Wiw/02tr3qeMkwJAjnhXvWXiMvOV mMUjaEUgZlZMWOSQo3tcrdbKfp8uQAyxARyf1YNyRBGLSj120C1fGAiusAlwAPzp KteQOZwGaHbVIo0VeNJv9CybLQIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFDsM9urz 4kYpMKNIsGzHM56RUkQtMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNTVGNjYyREMw OUIxMTFFQUIwNDVCMzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAHnx+9X4jIx1 APVas6zs5UK6I4SrsnZjxhGqsQYfB4R6CawijtRprHsvWxUEWXZzqwMtG9aLvAxv KPukevf2auYsvEsSdzsDLTuj2aGsa4GqaCBjMwkXfdbrS1XE6NuAZUrkydBeaavp bbTIS0ymMyf95BHpsEk/4pH/VtXiOdHwKkbzBiGWSTdH4naPQJhZSR2onYfwKMXf 4+bf5PXBgAlHpiM8vLxzeDjG9j/AamM7JmB+0WBNtGsTIBBuTtW9cPOx7iWLHCQy VdgllhsnIDrBMWgJqXSYHy2z6ucgDUGFF5NAhwsxSBqUhp322v2sTxMEbEWVrFjR SDLd73Om6Z4= -----END CERTIFICATE-----Generated at Sat Apr 26 08:11:21 2025 by rpki-client