$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/BE60F6465F9A11EE86E5F045C4F9AE02.roa File: BE60F6465F9A11EE86E5F045C4F9AE02.roa (raw, json) Hash identifier: Zcjrd+fbgk/LU6rKFs8HexPtlHT53LzcQObHWbnBY8w= Subject key identifier: AB:8A:36:C3:59:48:4E:62:8E:CE:0A:35:C5:25:29:C1:06:F6:9A:85 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 0383 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/BE60F6465F9A11EE86E5F045C4F9AE02.roa Signing time: Thu 05 Dec 2024 01:15:00 +0000 ROA not before: Thu 05 Dec 2024 01:15:00 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132422 IP address blocks: 103.235.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 899 (0x383) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B Validity Not Before: Dec 5 01:15:00 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6750fe94-4ad5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:87:b0:6f:b1:14:df:a0:72:8c:ba:f9:33:95: e4:09:d5:61:df:e2:a3:c0:e8:87:72:19:f2:d0:e3: 73:b5:3e:9c:66:67:b1:55:b3:2d:01:fe:6a:55:12: ec:da:ea:b3:1d:e3:c5:3e:db:0b:e6:b6:f4:c3:25: f5:5c:10:f1:c1:75:98:ef:55:55:b4:36:33:72:93: a3:a1:35:b9:9f:4b:f9:be:fb:e4:c5:5c:43:ae:05: 45:da:00:e2:2f:50:85:b3:76:48:20:37:f1:5a:df: 00:19:86:57:28:2e:3f:a9:19:cf:a8:fc:11:f8:48: bf:00:e8:57:d4:75:30:9b:71:f2:04:fc:b4:9c:48: 71:53:af:13:4b:99:b3:12:1b:43:19:00:bf:f9:87: 87:79:cd:d1:5d:2c:0c:bb:66:c3:48:15:56:9f:5a: 00:62:d5:cc:de:d0:71:0f:9b:a6:5c:ff:12:db:20: 12:d1:0c:cc:e6:25:15:ee:33:1f:a1:76:ba:9c:f0: aa:8f:cb:53:77:52:75:f9:ee:2c:f7:c9:12:cb:ac: bb:74:0d:29:9d:32:d2:c6:d6:61:46:59:0a:6d:d8: 27:d9:b4:46:ba:22:17:86:e9:91:13:18:c3:9b:dd: 4b:9d:4f:64:9a:d2:19:07:e2:95:f5:13:95:91:bd: 12:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:8A:36:C3:59:48:4E:62:8E:CE:0A:35:C5:25:29:C1:06:F6:9A:85 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/BE60F6465F9A11EE86E5F045C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.235.19.0/24 Signature Algorithm: sha256WithRSAEncryption ac:e5:0f:92:6c:93:13:e8:38:5c:19:b4:0c:5f:8b:8a:92:20: 88:b7:ef:62:ae:6c:68:a2:c6:1a:e9:db:88:6a:70:44:ce:ce: c3:5c:34:d7:02:4d:64:90:86:f6:9f:13:eb:46:ee:57:6b:45: 9e:be:e4:87:ee:50:45:bc:27:2b:4d:ad:6e:fa:6a:69:4f:58: 65:e8:cb:80:b0:0f:6d:3d:ac:ac:bd:ea:49:41:33:d8:f7:05: 39:92:6a:cd:89:97:07:9e:60:8c:20:97:3e:81:0a:70:42:23: 54:69:de:ae:78:c0:f7:56:c4:08:0e:b1:b1:03:8a:ef:6d:1b: e3:1a:fa:43:b6:49:07:01:50:23:93:51:bf:ab:96:8c:a4:0f: 4b:b4:b3:c7:45:f3:f9:a5:12:49:f1:2d:6f:7a:14:97:1d:4e: 26:7c:7f:32:bc:b9:12:eb:4a:96:ff:cc:6f:6e:18:1a:9b:85: ac:ab:c4:c0:49:7c:21:2d:c9:a3:8d:16:a3:67:1e:ad:58:70: b4:c2:e0:3d:9b:65:2a:37:fe:a1:2c:8e:2e:32:55:83:f4:84: a6:f9:d2:59:cf:ca:0a:1f:c4:93:a4:f5:43:7e:cb:06:bc:e6: 0f:0c:c3:c8:56:52:40:45:11:83:ab:a5:cb:aa:9b:24:ed:9e: 2f:63:65:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjQxMjA1MDExNTAwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwZmU5NC00YWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYewb7EU36ByjLr5M5XkCdVh3+KjwOiHchny0ONztT6cZmexVbMtAf5qVRLs 2uqzHePFPtsL5rb0wyX1XBDxwXWY71VVtDYzcpOjoTW5n0v5vvvkxVxDrgVF2gDi L1CFs3ZIIDfxWt8AGYZXKC4/qRnPqPwR+Ei/AOhX1HUwm3HyBPy0nEhxU68TS5mz EhtDGQC/+YeHec3RXSwMu2bDSBVWn1oAYtXM3tBxD5umXP8S2yAS0QzM5iUV7jMf oXa6nPCqj8tTd1J1+e4s98kSy6y7dA0pnTLSxtZhRlkKbdgn2bRGuiIXhumRExjD m91LnU9kmtIZB+KV9ROVkb0SyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKuKNsNZ SE5ijs4KNcUlKcEG9pqFMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1N0IvOERBNzI2NDBDMUZBMTFFQ0IzMEVFMjFBQzRGOUFFMDIvQkU2MEY2NDY1 RjlBMTFFRTg2RTVGMDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn6xMwDQYJKoZIhvcNAQELBQADggEBAKzlD5JskxPoOFwZ tAxfi4qSIIi372KubGiixhrp24hqcETOzsNcNNcCTWSQhvafE+tG7ldrRZ6+5Ifu UEW8JytNrW76amlPWGXoy4CwD209rKy96klBM9j3BTmSas2JlweeYIwglz6BCnBC I1Rp3q54wPdWxAgOsbEDiu9tG+Ma+kO2SQcBUCOTUb+rloykD0u0s8dF8/mlEknx LW96FJcdTiZ8fzK8uRLrSpb/zG9uGBqbhayrxMBJfCEtyaONFqNnHq1YcLTC4D2b ZSo3/qEsji4yVYP0hKb50lnPygofxJOk9UN+ywa85g8Mw8hWUkBFEYOrpcuqmyTt ni9jZdA= -----END CERTIFICATE-----Generated at Sun Apr 6 06:32:23 2025 by rpki-client