$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/CFB6C2ECB55511EFB8F19317C4F9AE02.roa File: CFB6C2ECB55511EFB8F19317C4F9AE02.roa (raw, json) Hash identifier: 7DH9XNSCd4jWFH0/wUCfAwXyA4TmJu5U8XhIJRlq9bc= Subject key identifier: 58:1B:DF:A0:5D:EF:31:92:7E:9D:AD:5F:2A:C5:6F:63:BE:A6:AE:C5 Certificate issuer: /CN=A91C6BB2/serialNumber=03BC749AC1682C4B46DA259AB7EB662AA225B0EE Certificate serial: 023D Authority key identifier: 03:BC:74:9A:C1:68:2C:4B:46:DA:25:9A:B7:EB:66:2A:A2:25:B0:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/CFB6C2ECB55511EFB8F19317C4F9AE02.roa Signing time: Sun 08 Dec 2024 11:16:04 +0000 ROA not before: Sun 08 Dec 2024 11:16:04 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 134186 IP address blocks: 45.117.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.crl rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BB2 Validity Not Before: Dec 8 11:16:04 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67557ff3-5fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:50:ec:10:30:63:df:2b:04:9c:fb:51:23:c1: 8d:cc:d5:3c:e8:b6:5c:cf:3a:ec:84:96:2e:93:18: 9f:cd:22:a3:f7:ea:f2:ed:1e:d7:cf:4a:9f:a3:ee: 42:a1:0b:74:16:cb:02:6d:a4:77:ca:90:27:c3:1a: 12:af:38:dd:34:35:ee:5c:f3:87:e9:9e:ed:1e:aa: 85:f1:37:cc:5a:af:0e:84:f8:63:27:ac:94:45:eb: 19:72:da:5e:5f:3f:46:41:c6:65:bc:0a:e5:d2:5d: 2c:d4:68:d9:03:b6:83:2e:83:48:45:24:47:5a:59: 54:e6:43:12:9d:e9:e7:a9:ec:4e:58:27:d5:ef:c7: cf:c8:8f:93:f9:6c:cf:31:00:6b:1e:8c:cd:18:97: e1:a3:2f:08:46:46:27:5f:d8:e5:35:8d:94:96:ba: d9:33:dd:62:e5:dc:68:9d:9e:b5:27:b6:6a:c0:5f: 3c:01:8a:a2:0d:16:d6:06:da:cf:ff:96:a9:bb:7a: d7:fd:e5:7a:61:54:ea:b6:74:16:3b:59:52:12:b5: 2b:6b:ee:eb:00:e2:25:73:12:54:d1:0d:2c:97:79: eb:5c:30:25:0a:d8:43:40:2d:28:fe:9b:90:70:e7: d7:c3:64:09:c4:c8:25:0a:4e:dd:a3:e0:f5:63:ed: a3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:1B:DF:A0:5D:EF:31:92:7E:9D:AD:5F:2A:C5:6F:63:BE:A6:AE:C5 X509v3 Authority Key Identifier: keyid:03:BC:74:9A:C1:68:2C:4B:46:DA:25:9A:B7:EB:66:2A:A2:25:B0:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/CFB6C2ECB55511EFB8F19317C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.60.0/24 Signature Algorithm: sha256WithRSAEncryption 74:d0:3d:e7:ce:a7:65:2c:f9:f6:0f:ad:06:b3:6e:0e:81:4a: fc:6c:05:f5:3f:83:ae:6a:aa:c7:71:82:eb:96:fb:49:83:14: d3:f9:80:ce:d2:fc:57:32:dd:b6:3c:5b:42:36:1c:d7:cc:34: 2b:95:4e:b5:c0:dc:ef:e1:c9:f9:29:09:8a:90:79:2b:a7:0d: 26:c7:44:a8:21:54:a8:70:b2:e4:2a:9b:d5:dc:95:60:c3:45: 86:43:ea:77:03:fb:e7:ca:36:b7:eb:93:a4:eb:ea:43:eb:be: 04:fe:4b:5d:10:23:11:35:25:f3:0d:5b:64:6f:d3:1f:a3:ca: 06:7e:65:f4:45:6a:75:3f:e4:64:a9:88:00:dd:3d:f7:67:04: 22:40:90:63:0e:85:13:4b:98:bf:a0:e2:10:25:78:4e:2e:01: 56:6d:c9:36:83:dd:10:66:5e:b8:8e:44:19:2c:36:45:2d:eb: c2:6c:21:74:e7:95:f6:ed:93:c7:17:91:71:1f:14:07:0f:73: 1e:a8:1c:d1:b1:7c:75:42:bd:29:de:0f:c4:e3:ee:34:c7:3c: 2c:aa:04:a5:60:ce:87:ac:4b:e8:2c:3e:50:83:13:b9:04:c5: 3e:2f:6f:c5:2e:7e:6d:e7:9b:bc:39:eb:98:e8:4b:38:12:e8: 61:8f:79:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCQjIxMTAvBgNVBAUTKDAzQkM3NDlBQzE2ODJDNEI0NkRBMjU5QUI3RUI2NjJB QTIyNUIwRUUwHhcNMjQxMjA4MTExNjA0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU1N2ZmMy01ZmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFDsEDBj3ysEnPtRI8GNzNU86LZczzrshJYukxifzSKj9+ry7R7Xz0qfo+5C oQt0FssCbaR3ypAnwxoSrzjdNDXuXPOH6Z7tHqqF8TfMWq8OhPhjJ6yUResZctpe Xz9GQcZlvArl0l0s1GjZA7aDLoNIRSRHWllU5kMSnennqexOWCfV78fPyI+T+WzP MQBrHozNGJfhoy8IRkYnX9jlNY2UlrrZM91i5dxonZ61J7ZqwF88AYqiDRbWBtrP /5apu3rX/eV6YVTqtnQWO1lSErUra+7rAOIlcxJU0Q0sl3nrXDAlCthDQC0o/puQ cOfXw2QJxMglCk7do+D1Y+2jcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFgb36Bd 7zGSfp2tXyrFb2O+pq7FMB8GA1UdIwQYMBaAFAO8dJrBaCxLRtolmrfrZiqiJbDu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJCMi81RDRDQzJGNjA4 QzgxMUVEOTQ0RjI1NjZDNEY5QUUwMi9BN3gwbXNGb0xFdEcyaVdhdC10bUtxSWxz TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E3eDBtc0ZvTEV0RzJpV2F0LXRtS3FJbHNPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZCQjIvNUQ0Q0MyRjYwOEM4MTFFRDk0NEYyNTY2QzRGOUFFMDIvQ0ZCNkMyRUNC NTU1MTFFRkI4RjE5MzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtdTwwDQYJKoZIhvcNAQELBQADggEBAHTQPefOp2Us+fYP rQazbg6BSvxsBfU/g65qqsdxguuW+0mDFNP5gM7S/Fcy3bY8W0I2HNfMNCuVTrXA 3O/hyfkpCYqQeSunDSbHRKghVKhwsuQqm9XclWDDRYZD6ncD++fKNrfrk6Tr6kPr vgT+S10QIxE1JfMNW2Rv0x+jygZ+ZfRFanU/5GSpiADdPfdnBCJAkGMOhRNLmL+g 4hAleE4uAVZtyTaD3RBmXriORBksNkUt68JsIXTnlfbtk8cXkXEfFAcPcx6oHNGx fHVCvSneD8Tj7jTHPCyqBKVgzoesS+gsPlCDE7kExT4vb8Uufm3nm7w565joSzgS 6GGPedc= -----END CERTIFICATE-----Generated at Sat Apr 5 01:45:01 2025 by rpki-client