$ rpki-client -vvf rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/60D4C96008DA11EEA1B2EE78C4F9AE02.roa File: 60D4C96008DA11EEA1B2EE78C4F9AE02.roa (raw, json) Hash identifier: +Qde+VZzITISzhtot4Zrf9fe/LU5WnPG7uZD0owGK4c= Subject key identifier: 3D:59:B2:07:77:B9:36:85:16:63:CD:EC:09:B1:92:E1:E2:EF:86:41 Certificate issuer: /CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Certificate serial: 07A7 Authority key identifier: 70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/60D4C96008DA11EEA1B2EE78C4F9AE02.roa Signing time: Thu 02 Nov 2023 22:09:56 +0000 ROA not before: Thu 02 Nov 2023 22:09:56 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 206283 IP address blocks: 117.55.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 22:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1959 (0x7a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Validity Not Before: Nov 2 22:09:56 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65441e33-3330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:76:aa:e1:14:7b:b4:80:ae:a5:a6:e8:55:ce: 66:4f:16:4a:28:38:b0:77:63:0c:03:73:8d:ac:f4: fc:83:48:ca:3c:5e:b1:3a:2a:ba:dc:67:9c:fd:9e: 0b:63:ae:da:69:80:96:23:15:f5:94:6f:6f:cc:bd: b1:b6:d1:88:72:fe:71:41:11:d5:70:c9:f5:92:66: a4:71:e6:33:28:ba:95:57:56:f8:b1:5e:23:da:02: 22:a5:d4:80:01:4f:9a:f2:b5:ae:c9:f4:86:3c:b7: ae:57:d9:f3:ab:49:af:84:fd:2f:51:09:7d:9e:0b: 75:34:ad:e1:e9:ea:35:d8:2c:f1:e1:70:82:16:14: 2c:de:3a:cf:13:a6:97:88:61:d4:60:69:ea:31:3f: 99:21:06:4f:81:42:96:fc:a6:a4:9d:35:51:a0:9f: 2e:90:b0:94:10:0d:22:ee:cb:12:87:bf:21:37:43: d2:cf:7b:95:9b:3f:e9:ca:9c:2d:a8:6d:d5:96:55: 52:b6:2c:f6:46:ac:10:3b:cf:54:65:eb:e6:ae:86: 64:e7:ba:e3:80:3c:71:3f:2e:ea:f0:11:2d:c2:f4: 0e:72:38:f3:28:4a:e7:11:12:fb:e9:4e:b8:b5:95: 45:cf:50:11:4f:63:02:1e:85:21:e9:6c:cc:de:86: ff:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:59:B2:07:77:B9:36:85:16:63:CD:EC:09:B1:92:E1:E2:EF:86:41 X509v3 Authority Key Identifier: keyid:70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/60D4C96008DA11EEA1B2EE78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.195.0/24 Signature Algorithm: sha256WithRSAEncryption 40:b1:73:3a:f5:68:0b:bd:de:ee:11:be:f2:db:ed:7c:81:ac: bb:8c:c3:e4:d5:ba:a5:5d:70:c0:f7:16:22:3c:10:ca:20:73: 68:12:c9:e5:7d:de:a0:1b:1a:7e:ad:f5:67:dd:ab:04:68:be: 69:09:ab:9f:bb:f6:6f:2f:47:72:d9:09:d5:b7:07:80:3e:f1: 69:3e:8a:22:60:1a:1c:1d:22:e3:04:90:85:39:00:b4:1d:5f: 24:8f:8d:96:fd:57:8f:3f:15:ba:a7:a8:95:8e:dd:bc:87:43: 82:e5:5b:eb:29:a0:00:42:57:2f:63:47:e6:cd:9c:f2:a8:a7: 70:64:a8:51:79:63:31:68:6a:93:5e:b4:7d:1d:b3:da:13:68: ba:f4:e1:a5:58:00:b9:80:6f:a8:1b:45:e9:7e:04:0d:e4:87: c6:61:9f:54:78:71:cd:95:8e:5f:1b:ad:82:b2:72:30:64:a5: 40:09:1f:b0:f1:67:82:b6:d7:6a:fe:05:c2:55:a2:fa:6d:be: 9e:50:b3:50:1f:86:81:d3:02:f9:2f:89:2e:00:a3:2a:8d:ba: 23:fd:e7:f3:ae:c8:d8:aa:b0:cd:86:b1:6c:02:07:f2:69:11: 63:b5:3b:31:ab:27:19:7f:f3:f3:ba:4f:99:eb:df:3e:ab:82: 3e:4e:19:3a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBNEIxMTAvBgNVBAUTKDcwOTIxMENGNzYxRUM2N0ZCMzk0RUE1ODk2QTVDNjQ3 QjMwNUVFRjEwHhcNMjMxMTAyMjIwOTU2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0MWUzMy0zMzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnaq4RR7tICupaboVc5mTxZKKDiwd2MMA3ONrPT8g0jKPF6xOiq63Gec/Z4L Y67aaYCWIxX1lG9vzL2xttGIcv5xQRHVcMn1kmakceYzKLqVV1b4sV4j2gIipdSA AU+a8rWuyfSGPLeuV9nzq0mvhP0vUQl9ngt1NK3h6eo12Czx4XCCFhQs3jrPE6aX iGHUYGnqMT+ZIQZPgUKW/KaknTVRoJ8ukLCUEA0i7ssSh78hN0PSz3uVmz/pypwt qG3VllVStiz2RqwQO89UZevmroZk57rjgDxxPy7q8BEtwvQOcjjzKErnERL76U64 tZVFz1ART2MCHoUh6WzM3ob/WQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD1Zsgd3 uTaFFmPN7AmxkuHi74ZBMB8GA1UdIwQYMBaAFHCSEM92HsZ/s5TqWJalxkezBe7x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0E0Qi9EQzJGMDQzMkJG ODAxMUVBOTZGRTRBNjhDNEY5QUUwMi9jSklRejNZZXhuLXpsT3BZbHFYR1I3TUY3 dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKSVF6M1lleG4temxPcFlscVhHUjdNRjd2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBNEIvREMyRjA0MzJCRjgwMTFFQTk2RkU0QTY4QzRGOUFFMDIvNjBENEM5NjAw OERBMTFFRUExQjJFRTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1N8MwDQYJKoZIhvcNAQELBQADggEBAECxczr1aAu93u4R vvLb7XyBrLuMw+TVuqVdcMD3FiI8EMogc2gSyeV93qAbGn6t9WfdqwRovmkJq5+7 9m8vR3LZCdW3B4A+8Wk+iiJgGhwdIuMEkIU5ALQdXySPjZb9V48/FbqnqJWO3byH Q4LlW+spoABCVy9jR+bNnPKop3BkqFF5YzFoapNetH0ds9oTaLr04aVYALmAb6gb Rel+BA3kh8Zhn1R4cc2Vjl8brYKycjBkpUAJH7DxZ4K212r+BcJVovptvp5Qs1Af hoHTAvkviS4AoyqNuiP95/OuyNiqsM2GsWwCB/JpEWO1OzGrJxl/8/O6T5nr3z6r gj5OGTo= -----END CERTIFICATE-----Generated at Tue Apr 30 23:05:06 2024 by rpki-client on console-ams.rpki-client.org