$ rpki-client -vvf rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/60C72042052911F0A2361C50C4F9AE02.roa File: 60C72042052911F0A2361C50C4F9AE02.roa (raw, json) Hash identifier: eoqR2rI7tCJcx2sHbbxw1cinGXO6kmie9biadQvkvGU= Subject key identifier: 10:73:FF:E8:FD:3D:EA:C5:47:D6:25:A0:23:91:AF:F1:85:CE:50:AE Certificate issuer: /CN=A912A294/serialNumber=87B5D853F6425215ADA7822F02A57483EE267C04 Certificate serial: 0153 Authority key identifier: 87:B5:D8:53:F6:42:52:15:AD:A7:82:2F:02:A5:74:83:EE:26:7C:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/60C72042052911F0A2361C50C4F9AE02.roa Signing time: Thu 20 Mar 2025 01:19:33 +0000 ROA not before: Thu 20 Mar 2025 01:19:32 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138077 IP address blocks: 101.1.4.0/24 maxlen: 24 2401:44c0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A294 Validity Not Before: Mar 20 01:19:32 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67db6d24-a795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:fa:a7:4d:2a:94:2c:ac:11:0e:56:72:f4:5b: 25:7a:7d:c4:b3:6f:99:21:03:5b:a9:51:88:96:37: ce:f1:d7:e6:8c:77:65:b4:45:09:a6:28:0c:b7:69: db:cd:65:4b:53:87:6c:7c:ca:76:f3:9b:07:4b:2f: aa:56:0b:43:70:1c:95:20:a3:af:33:06:a9:45:a2: 35:ec:00:e8:04:48:fc:83:13:2e:44:8e:da:44:2e: bf:49:2c:6a:8d:31:64:02:e9:e5:7c:0b:27:16:1e: c4:43:df:26:5e:d8:63:ac:1e:db:0b:b2:3f:2e:6f: 25:3b:e8:65:ae:bb:5f:c4:95:64:64:cb:c0:4e:73: ea:bf:97:6c:f6:fc:95:6e:c8:75:6c:a2:51:0f:f2: 82:b1:ba:16:02:60:0c:cd:4d:fa:f0:02:cc:2a:a5: 25:61:98:89:d0:60:30:67:30:a2:16:ea:19:89:09: 9f:76:ee:86:76:30:18:c7:fb:74:a0:25:41:87:d4: 85:d3:12:44:0c:88:8f:d6:37:66:e7:78:bd:35:cb: 73:89:48:0d:3d:7b:8f:b2:f4:64:89:7e:32:82:7f: 9d:50:11:c2:a3:3c:42:fb:d6:6d:79:8c:8e:4c:ab: f5:03:74:0a:33:e7:dd:1b:55:33:e6:2a:41:ad:0e: 83:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:73:FF:E8:FD:3D:EA:C5:47:D6:25:A0:23:91:AF:F1:85:CE:50:AE X509v3 Authority Key Identifier: keyid:87:B5:D8:53:F6:42:52:15:AD:A7:82:2F:02:A5:74:83:EE:26:7C:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/60C72042052911F0A2361C50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.1.4.0/24 IPv6: 2401:44c0:3::/48 Signature Algorithm: sha256WithRSAEncryption 8b:55:f0:a6:ab:46:3f:f5:ae:01:24:70:45:46:0e:aa:4a:3a: a5:8b:de:0d:26:40:15:9b:b2:4d:7c:d8:19:f9:85:fb:54:8e: 2f:21:43:1d:8a:f1:25:fc:cd:3b:c0:fa:48:2b:ab:70:97:3a: 11:10:a3:cf:93:67:36:d1:2b:48:94:e2:8f:dd:cd:3f:ab:27: 17:19:18:dc:58:ba:b7:4a:f1:8e:ac:0a:79:df:fb:27:29:fb: 0e:de:e0:53:97:13:47:15:2a:5e:36:80:af:15:d7:69:84:b7: 2b:35:67:07:67:23:bf:29:7c:2e:8e:9a:5a:bf:eb:3d:02:1d: be:ff:ea:9e:df:e8:55:63:eb:d2:96:51:c2:50:a7:4c:8b:9f: e7:9c:53:cc:42:d1:d9:04:d6:34:76:06:80:5b:91:40:c4:a3: 24:28:67:a5:f9:0e:cf:a9:2b:b4:51:e9:d3:c2:1c:21:6a:eb: 0d:f5:06:9f:d4:d2:79:e3:5d:4b:79:36:8e:00:3b:b0:75:b1: 22:ee:78:00:93:3c:4b:bd:35:22:ba:32:7a:84:43:2f:84:b5: 53:e7:d9:83:5c:b6:00:12:a2:85:91:8f:1a:6c:b1:74:22:8c: 15:18:8f:c3:0c:96:3a:b4:2b:a9:8a:4b:56:9a:5f:9e:02:8d: 07:28:a3:1b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEyOTQxMTAvBgNVBAUTKDg3QjVEODUzRjY0MjUyMTVBREE3ODIyRjAyQTU3NDgz RUUyNjdDMDQwHhcNMjUwMzIwMDExOTMyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RiNmQyNC1hNzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8PqnTSqULKwRDlZy9Fslen3Es2+ZIQNbqVGIljfO8dfmjHdltEUJpigMt2nb zWVLU4dsfMp285sHSy+qVgtDcByVIKOvMwapRaI17ADoBEj8gxMuRI7aRC6/SSxq jTFkAunlfAsnFh7EQ98mXthjrB7bC7I/Lm8lO+hlrrtfxJVkZMvATnPqv5ds9vyV bsh1bKJRD/KCsboWAmAMzU368ALMKqUlYZiJ0GAwZzCiFuoZiQmfdu6GdjAYx/t0 oCVBh9SF0xJEDIiP1jdm53i9NctziUgNPXuPsvRkiX4ygn+dUBHCozxC+9ZteYyO TKv1A3QKM+fdG1Uz5ipBrQ6DxwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBBz/+j9 PerFR9YloCORr/GFzlCuMB8GA1UdIwQYMBaAFIe12FP2QlIVraeCLwKldIPuJnwE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTI5NC85OTJGMUQwRTRB RDYxMUVFOTdCNTNGNzJDNEY5QUUwMi9oN1hZVV9aQ1VoV3RwNEl2QXFWMGctNG1m QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3WFlVX1pDVWhXdHA0SXZBcVYwZy00bWZBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkEyOTQvOTkyRjFEMEU0QUQ2MTFFRTk3QjUzRjcyQzRGOUFFMDIvNjBDNzIwNDIw NTI5MTFGMEEyMzYxQzUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABlAQQwDwQCAAIwCQMHACQBRMAAAzANBgkqhkiG9w0BAQsF AAOCAQEAi1XwpqtGP/WuASRwRUYOqko6pYveDSZAFZuyTXzYGfmF+1SOLyFDHYrx JfzNO8D6SCurcJc6ERCjz5NnNtErSJTij93NP6snFxkY3Fi6t0rxjqwKed/7Jyn7 Dt7gU5cTRxUqXjaArxXXaYS3KzVnB2cjvyl8Lo6aWr/rPQIdvv/qnt/oVWPr0pZR wlCnTIuf55xTzELR2QTWNHYGgFuRQMSjJChnpfkOz6krtFHp08IcIWrrDfUGn9TS eeNdS3k2jgA7sHWxIu54AJM8S701IroyeoRDL4S1U+fZg1y2ABKihZGPGmyxdCKM FRiPwwyWOrQrqYpLVppfngKNByijGw== -----END CERTIFICATE-----Generated at Sat Apr 5 03:30:47 2025 by rpki-client