$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/60BD7AE4D7EB11EFAB07265EC4F9AE02.roa File: 60BD7AE4D7EB11EFAB07265EC4F9AE02.roa (raw, json) Hash identifier: k8TPFlWPbJ6ZdaYKLEKNfkV3uETsRr1dnvOqYmu32kg= Subject key identifier: BB:C5:DC:8F:37:F7:14:BD:1F:07:F6:02:69:08:83:6F:66:78:97:F6 Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 21F2 Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/60BD7AE4D7EB11EFAB07265EC4F9AE02.roa Signing time: Tue 21 Jan 2025 11:32:21 +0000 ROA not before: Tue 21 Jan 2025 11:32:21 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 46841 IP address blocks: 115.167.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8690 (0x21f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134 Validity Not Before: Jan 21 11:32:21 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=678f85c5-73ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cd:b8:f6:b3:88:5e:7c:95:b5:b9:c5:40:37: eb:ac:1f:12:d1:4f:ce:1c:f8:55:a5:5a:56:b8:5b: ca:34:ab:91:11:71:8c:14:56:6b:47:f3:85:f1:fd: cc:a8:34:50:25:0d:74:c2:61:d6:2c:66:eb:b0:af: 22:30:a6:fa:95:ef:fb:cd:6b:08:9b:c2:fc:5b:4a: 4d:3e:f2:d5:a4:ea:dd:04:46:48:29:65:0a:2a:f3: 6f:1d:db:d6:bd:e1:33:28:4c:52:b2:e2:56:13:93: d2:7a:48:ba:2d:0f:c9:26:8e:a1:51:21:99:2d:3c: 36:64:b9:58:94:fb:cb:9d:71:16:1f:62:a1:35:28: a0:4a:ba:77:d4:01:c5:38:69:2e:8d:16:6e:2d:5a: 7a:60:7b:29:09:2e:15:d1:bb:c7:76:2e:99:ee:ed: f9:55:f4:c0:1a:9c:74:a6:f4:8b:11:72:94:f6:d5: 49:0c:da:43:3c:33:94:9e:30:ca:ac:1f:4e:57:27: 6a:36:24:06:5e:c0:46:04:7e:51:8f:46:70:d8:5f: 54:a3:b7:c1:93:e8:2e:bd:86:1d:cc:4b:4d:6c:ac: c8:9f:93:5b:0a:57:7b:fe:7a:4f:0c:68:f4:b4:a2: 4b:68:94:37:06:39:c4:08:10:6b:fc:56:fe:76:0b: 99:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C5:DC:8F:37:F7:14:BD:1F:07:F6:02:69:08:83:6F:66:78:97:F6 X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/60BD7AE4D7EB11EFAB07265EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.167.77.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:bd:35:db:f6:01:55:09:75:51:64:90:9e:4a:d8:10:5e:3d: d6:b5:5b:22:9a:75:e0:3e:e4:d3:c4:4f:70:65:58:de:86:44: 2c:42:ca:80:9e:71:cd:c5:95:ed:66:e1:7d:68:6f:c0:58:91: 6d:8b:bb:39:3f:98:8b:b4:e4:e5:07:d7:66:26:74:8f:c9:14: 7b:c9:26:d4:0c:3b:d4:f2:31:2f:63:36:da:bf:05:3f:29:7b: 42:2f:64:92:9d:f2:82:c7:16:fe:80:87:78:ef:2e:2a:4a:2c: 2a:a7:a5:73:67:db:cb:ac:95:ca:8d:ee:31:84:00:19:31:f0: 09:8a:2a:22:4a:be:15:cd:5e:2c:fa:b3:ef:9a:e4:3e:85:e1: d6:80:4c:44:65:7a:41:fc:88:ca:94:8a:04:18:2f:f5:aa:62: 0e:7a:94:40:77:c6:89:70:3b:21:08:e3:ea:20:dc:0c:32:fd: 3d:a9:ca:12:47:1b:c9:19:29:80:cb:7a:a6:f9:cb:48:79:ef: b3:39:51:a3:f1:ae:89:12:8a:f6:ce:5a:b5:3b:50:78:80:60: 32:99:23:02:19:65:ef:d4:2f:0e:76:18:6a:92:db:5a:9e:f9: b4:5e:17:28:3e:a6:7d:24:2f:66:c9:fc:f0:67:0c:61:ba:9f: e6:89:4b:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjUwMTIxMTEzMjIxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhmODVjNS03M2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0c249rOIXnyVtbnFQDfrrB8S0U/OHPhVpVpWuFvKNKuREXGMFFZrR/OF8f3M qDRQJQ10wmHWLGbrsK8iMKb6le/7zWsIm8L8W0pNPvLVpOrdBEZIKWUKKvNvHdvW veEzKExSsuJWE5PSeki6LQ/JJo6hUSGZLTw2ZLlYlPvLnXEWH2KhNSigSrp31AHF OGkujRZuLVp6YHspCS4V0bvHdi6Z7u35VfTAGpx0pvSLEXKU9tVJDNpDPDOUnjDK rB9OVydqNiQGXsBGBH5Rj0Zw2F9Uo7fBk+guvYYdzEtNbKzIn5NbCld7/npPDGj0 tKJLaJQ3BjnECBBr/Fb+dguZxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLvF3I83 9xS9Hwf2AmkIg29meJf2MB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvNjBCRDdBRTRE N0VCMTFFRkFCMDcyNjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABzp00wDQYJKoZIhvcNAQELBQADggEBAC29Ndv2AVUJdVFk kJ5K2BBePda1WyKadeA+5NPET3BlWN6GRCxCyoCecc3Fle1m4X1ob8BYkW2Luzk/ mIu05OUH12YmdI/JFHvJJtQMO9TyMS9jNtq/BT8pe0IvZJKd8oLHFv6Ah3jvLipK LCqnpXNn28uslcqN7jGEABkx8AmKKiJKvhXNXiz6s++a5D6F4daATERlekH8iMqU igQYL/WqYg56lEB3xolwOyEI4+og3Awy/T2pyhJHG8kZKYDLeqb5y0h577M5UaPx rokSivbOWrU7UHiAYDKZIwIZZe/ULw52GGqS21qe+bReFyg+pn0kL2bJ/PBnDGG6 n+aJS8k= -----END CERTIFICATE-----Generated at Sun Apr 6 14:53:48 2025 by rpki-client