$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/71D60BC2F6BA11EB865C4246C4F9AE02.roa File: 71D60BC2F6BA11EB865C4246C4F9AE02.roa (raw, json) Hash identifier: E9Q0DLQxOx2PNLNxJzUPOmEekE0nfR8RNH8+NziMkYc= Subject key identifier: EC:7C:2A:80:C9:37:20:15:EA:7C:74:1D:15:D8:72:76:E1:4A:C9:D5 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 35CB Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/71D60BC2F6BA11EB865C4246C4F9AE02.roa Signing time: Mon 30 Dec 2024 14:26:44 +0000 ROA not before: Mon 30 Dec 2024 14:26:44 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 209242 IP address blocks: 125.22.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13771 (0x35cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3 Validity Not Before: Dec 30 14:26:44 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6772ada4-454a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a0:ff:16:5f:48:5a:65:4b:d4:7f:b0:a1:81: 00:99:63:31:1b:87:04:49:97:b1:79:a5:fa:d4:d5: 1c:a1:93:d4:eb:a6:02:8b:ee:c3:26:90:38:e8:29: 2e:7b:26:0a:82:26:b7:4d:96:6c:10:05:1a:15:89: 93:d9:c9:fd:bc:80:cc:92:ea:06:66:5e:d3:52:da: 6e:c6:5c:df:cf:6e:bb:67:0c:9d:aa:e7:93:61:f1: 09:58:c7:cb:55:12:78:dc:58:04:28:ee:ec:8b:68: bd:37:14:6b:25:42:fb:53:a9:89:34:de:05:39:74: ac:7c:f0:71:c0:20:9e:d4:7f:5a:83:02:ce:eb:20: a2:03:85:6b:2d:22:78:22:a4:48:52:6c:6c:59:62: ab:a8:e0:6a:38:d1:57:87:76:c2:03:95:d9:df:70: dd:3f:0e:95:2d:f1:02:07:88:c8:6c:12:8f:64:48: ce:1e:87:cd:b6:42:1e:bb:88:e0:e0:e1:63:2b:63: f9:2d:59:af:70:3a:ad:1f:6b:82:ed:85:6b:7d:bb: 85:d1:ea:78:7e:58:3a:b2:3e:9d:fc:01:73:bb:16: 96:28:05:07:d6:f6:19:da:10:e9:dd:d8:ee:a3:3d: 61:9c:67:7b:43:67:da:be:26:d7:96:f1:1a:d3:32: d0:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:7C:2A:80:C9:37:20:15:EA:7C:74:1D:15:D8:72:76:E1:4A:C9:D5 X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/71D60BC2F6BA11EB865C4246C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.22.120.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:b9:28:ba:ce:6d:47:be:08:6d:8e:07:79:03:1b:47:db:f7: d3:27:5d:e8:73:9f:24:0b:cc:9c:ad:b5:fa:82:e9:d0:78:7e: 09:3f:c6:b8:33:3a:ee:5a:09:72:a5:ba:f7:ab:0b:bd:d6:51: d0:0e:63:12:3f:32:e0:d3:a4:5a:e0:ff:90:9c:c7:98:58:78: 2a:a5:a8:ec:1a:f2:cc:3d:03:35:6b:cf:16:93:cf:a5:5b:39: fe:16:0f:29:b5:22:5e:61:7d:e7:16:95:f4:6f:4b:f1:29:5d: 27:14:bb:79:07:81:da:bd:74:2f:d2:a5:bb:d1:9f:df:16:bb: ab:64:68:64:40:b7:24:d0:34:01:28:bd:78:7f:37:40:5f:06: 85:ae:a7:84:84:bb:6a:da:a2:f0:73:fc:b7:a5:ff:c9:0a:33: f7:36:92:91:f3:fb:b5:fa:59:ed:7c:6b:04:e7:c3:93:9e:50: 31:92:a0:22:8b:a7:f0:47:8e:15:1d:68:61:72:b1:b8:5c:ee: 6c:0a:34:59:07:fa:23:36:fc:12:5f:16:65:9e:0c:d8:03:92: 76:89:52:ae:7b:3f:ee:48:60:85:df:70:9a:7d:2e:8c:4a:bd: 59:2b:ee:4a:e2:7a:42:93:35:03:cd:90:d0:77:1f:1e:7b:a7: a8:db:c6:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjQxMjMwMTQyNjQ0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcyYWRhNC00NTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmqD/Fl9IWmVL1H+woYEAmWMxG4cESZexeaX61NUcoZPU66YCi+7DJpA46Cku eyYKgia3TZZsEAUaFYmT2cn9vIDMkuoGZl7TUtpuxlzfz267ZwydqueTYfEJWMfL VRJ43FgEKO7si2i9NxRrJUL7U6mJNN4FOXSsfPBxwCCe1H9agwLO6yCiA4VrLSJ4 IqRIUmxsWWKrqOBqONFXh3bCA5XZ33DdPw6VLfECB4jIbBKPZEjOHofNtkIeu4jg 4OFjK2P5LVmvcDqtH2uC7YVrfbuF0ep4flg6sj6d/AFzuxaWKAUH1vYZ2hDp3dju oz1hnGd7Q2favibXlvEa0zLQBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOx8KoDJ NyAV6nx0HRXYcnbhSsnVMB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0QjMvRTY1ODUxMTIxRDg0MTFFMkExQkEzMERCMDhCMDJDRDIvNzFENjBCQzJG NkJBMTFFQjg2NUM0MjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB9FngwDQYJKoZIhvcNAQELBQADggEBAHy5KLrObUe+CG2O B3kDG0fb99MnXehznyQLzJyttfqC6dB4fgk/xrgzOu5aCXKluverC73WUdAOYxI/ MuDTpFrg/5Ccx5hYeCqlqOwa8sw9AzVrzxaTz6VbOf4WDym1Il5hfecWlfRvS/Ep XScUu3kHgdq9dC/SpbvRn98Wu6tkaGRAtyTQNAEovXh/N0BfBoWup4SEu2raovBz /Lel/8kKM/c2kpHz+7X6We18awTnw5OeUDGSoCKLp/BHjhUdaGFysbhc7mwKNFkH +iM2/BJfFmWeDNgDknaJUq57P+5IYIXfcJp9LoxKvVkr7kriekKTNQPNkNB3Hx57 p6jbxiQ= -----END CERTIFICATE-----Generated at Sat Apr 5 01:55:01 2025 by rpki-client