$ rpki-client -vvf rpki.apnic.net/member_repository/A916C643/A5D884C4152B11ECA53E4C63C4F9AE02/594A0BF2152E11EC94BCB264C4F9AE02.roa File: 594A0BF2152E11EC94BCB264C4F9AE02.roa (raw, json) Hash identifier: De+KbU1rQ+e7QR643NvX9xdd94W0D5EZXh2X3vA8FwY= Subject key identifier: 01:F6:18:B5:4F:35:0D:DA:54:84:E0:2D:1F:04:DE:AD:32:35:04:11 Certificate issuer: /CN=A916C643/serialNumber=1B62FD5E03D3337AA2DC4E150794144047B1B63A Certificate serial: 04A3 Authority key identifier: 1B:62:FD:5E:03:D3:33:7A:A2:DC:4E:15:07:94:14:40:47:B1:B6:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G2L9XgPTM3qi3E4VB5QUQEextjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C643/A5D884C4152B11ECA53E4C63C4F9AE02/594A0BF2152E11EC94BCB264C4F9AE02.roa Signing time: Thu 28 Nov 2024 23:42:59 +0000 ROA not before: Thu 28 Nov 2024 23:42:59 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 133493 IP address blocks: 103.60.22.0/24 maxlen: 24 103.60.23.0/24 maxlen: 24 103.60.96.0/24 maxlen: 24 103.238.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C643/A5D884C4152B11ECA53E4C63C4F9AE02/G2L9XgPTM3qi3E4VB5QUQEextjo.crl rsync://rpki.apnic.net/member_repository/A916C643/A5D884C4152B11ECA53E4C63C4F9AE02/G2L9XgPTM3qi3E4VB5QUQEextjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G2L9XgPTM3qi3E4VB5QUQEextjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 23:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1187 (0x4a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C643, serialNumber=1B62FD5E03D3337AA2DC4E150794144047B1B63A Validity Not Before: Nov 28 23:42:59 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67490003-8581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:95:46:43:39:84:ec:0e:29:56:54:9e:50:64: 7a:51:60:f6:70:00:64:98:d4:84:ee:ad:39:b3:cb: 37:22:24:d6:f4:d1:0b:8d:5a:d0:06:e3:b2:bf:04: 9d:7f:52:6b:ed:6f:05:0c:0f:db:92:7c:6d:1f:13: e8:65:d0:0c:71:c6:20:6f:0f:10:78:b2:61:d5:a2: 21:bc:19:e9:d6:85:38:d5:3b:ff:88:ff:d4:8e:99: 26:5f:b6:09:a5:2a:76:48:56:49:ad:84:c4:af:6d: 41:b7:91:73:bc:e6:8f:27:3d:39:e9:b6:03:5c:94: 74:5c:17:f4:f0:cd:db:fb:6a:16:92:ff:c4:cf:37: 66:af:02:eb:b0:86:5f:c5:e9:d5:e1:03:d1:07:fc: bc:b5:19:48:4f:d4:91:53:20:4a:57:12:2d:70:50: 7a:fe:26:53:dd:0e:d9:19:37:6d:77:82:5b:b7:2c: 73:f8:9e:9a:f2:b4:f7:91:42:5f:ad:df:eb:c4:19: fe:bd:6b:e1:4a:56:46:36:2c:84:2e:f2:cc:a1:79: 6d:bd:51:30:59:7a:74:df:9b:4a:ea:88:61:7e:d0: 68:91:4d:79:02:1d:35:85:fc:d0:7d:8c:36:2c:27: 13:8b:59:d1:ba:58:79:55:b4:18:65:62:61:cd:b4: 49:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:F6:18:B5:4F:35:0D:DA:54:84:E0:2D:1F:04:DE:AD:32:35:04:11 X509v3 Authority Key Identifier: keyid:1B:62:FD:5E:03:D3:33:7A:A2:DC:4E:15:07:94:14:40:47:B1:B6:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C643/A5D884C4152B11ECA53E4C63C4F9AE02/G2L9XgPTM3qi3E4VB5QUQEextjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G2L9XgPTM3qi3E4VB5QUQEextjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C643/A5D884C4152B11ECA53E4C63C4F9AE02/594A0BF2152E11EC94BCB264C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.60.22.0/23 103.60.96.0/24 103.238.62.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:3d:fd:3f:02:d5:63:17:d4:db:91:bf:68:ae:4b:79:18:41: 10:ca:b4:05:a5:5a:d2:c8:18:44:d9:f6:3a:50:f0:ca:0b:7f: fe:a0:28:e3:57:f6:db:90:bb:1b:82:aa:68:2f:4e:7e:46:f9: df:86:72:e2:dc:42:e9:13:d9:00:5c:51:18:c7:a6:da:9c:d3: 2a:34:aa:18:13:5b:4e:e8:f8:ba:98:fd:fd:f1:66:98:e8:cf: eb:4a:38:f4:34:61:ac:21:4f:6f:b5:f4:82:5e:b0:8f:15:be: f3:8d:3b:45:98:21:fa:c6:9a:f1:fe:a7:c6:1a:72:4d:ad:99: 3c:eb:b6:5d:21:5f:23:97:f3:5f:f4:15:4e:19:68:ea:58:9c: e3:ad:99:c7:d4:93:c8:33:cc:f5:17:e3:f6:98:7c:cb:8c:33: fd:7e:1d:21:7e:f4:2b:71:96:34:85:c0:32:9c:34:90:20:f7: 3f:f2:f6:c1:b5:7c:d1:6a:68:0d:b9:03:d8:84:eb:9c:9b:51: 60:40:88:d2:ad:cc:51:f1:01:e3:97:46:17:45:f5:01:31:35: 7e:5a:0c:c3:68:d6:85:b6:b6:21:ce:fd:48:98:e6:48:39:08: a0:ee:11:13:07:74:54:36:b3:28:3a:cf:0d:8a:57:75:c3:94: 49:90:ad:34 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM2NDMxMTAvBgNVBAUTKDFCNjJGRDVFMDNEMzMzN0FBMkRDNEUxNTA3OTQxNDQw NDdCMUI2M0EwHhcNMjQxMTI4MjM0MjU5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ5MDAwMy04NTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm5VGQzmE7A4pVlSeUGR6UWD2cABkmNSE7q05s8s3IiTW9NELjVrQBuOyvwSd f1Jr7W8FDA/bknxtHxPoZdAMccYgbw8QeLJh1aIhvBnp1oU41Tv/iP/UjpkmX7YJ pSp2SFZJrYTEr21Bt5FzvOaPJz056bYDXJR0XBf08M3b+2oWkv/EzzdmrwLrsIZf xenV4QPRB/y8tRlIT9SRUyBKVxItcFB6/iZT3Q7ZGTdtd4Jbtyxz+J6a8rT3kUJf rd/rxBn+vWvhSlZGNiyELvLMoXltvVEwWXp035tK6ohhftBokU15Ah01hfzQfYw2 LCcTi1nRulh5VbQYZWJhzbRJkQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFAH2GLVP NQ3aVITgLR8E3q0yNQQRMB8GA1UdIwQYMBaAFBti/V4D0zN6otxOFQeUFEBHsbY6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzY0My9BNUQ4ODRDNDE1 MkIxMUVDQTUzRTRDNjNDNEY5QUUwMi9HMkw5WGdQVE0zcWkzRTRWQjVRVVFFZXh0 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cyTDlYZ1BUTTNxaTNFNFZCNVFVUUVleHRqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM2NDMvQTVEODg0QzQxNTJCMTFFQ0E1M0U0QzYzQzRGOUFFMDIvNTk0QTBCRjIx NTJFMTFFQzk0QkNCMjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnPBYDBABnPGADBABn7j4wDQYJKoZIhvcNAQELBQADggEB AE89/T8C1WMX1NuRv2iuS3kYQRDKtAWlWtLIGETZ9jpQ8MoLf/6gKONX9tuQuxuC qmgvTn5G+d+GcuLcQukT2QBcURjHptqc0yo0qhgTW07o+LqY/f3xZpjoz+tKOPQ0 YawhT2+19IJesI8VvvONO0WYIfrGmvH+p8Yack2tmTzrtl0hXyOX81/0FU4ZaOpY nOOtmcfUk8gzzPUX4/aYfMuMM/1+HSF+9CtxljSFwDKcNJAg9z/y9sG1fNFqaA25 A9iE65ybUWBAiNKtzFHxAeOXRhdF9QExNX5aDMNo1oW2tiHO/UiY5kg5CKDuERMH dFQ2syg6zw2KV3XDlEmQrTQ= -----END CERTIFICATE-----Generated at Sun Apr 13 02:32:52 2025 by rpki-client