$ rpki-client -vvf rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/60D4C96008DA11EEA1B2EE78C4F9AE02.roa File: 60D4C96008DA11EEA1B2EE78C4F9AE02.roa (raw, json) Hash identifier: 9dLmROiC4Lw0+lnZo79JQvbFk0n5gZqA79ORbR1QB2I= Subject key identifier: FD:37:F9:E9:4D:8B:FD:85:C3:CE:E3:5E:F9:7A:B4:BA:18:7C:E5:EC Certificate issuer: /CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Certificate serial: 087B Authority key identifier: 70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/60D4C96008DA11EEA1B2EE78C4F9AE02.roa Signing time: Mon 28 Oct 2024 20:50:59 +0000 ROA not before: Mon 28 Oct 2024 20:50:59 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 206283 IP address blocks: 117.55.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:28:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2171 (0x87b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Validity Not Before: Oct 28 20:50:59 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671ff933-a6b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2d:23:de:80:3f:0e:0b:16:24:c1:67:74:cc: ea:27:26:cc:07:b1:79:92:9b:d9:0e:42:37:4c:ef: 5d:54:3f:8e:de:d8:67:de:66:b2:b5:56:0c:40:64: fa:1f:03:99:bd:59:7d:5a:ca:2b:93:1a:2b:4c:34: c5:49:a8:87:6b:9f:63:d3:d0:aa:5d:39:3b:2b:92: dd:cf:8e:e4:18:6d:6f:88:44:29:34:03:1d:74:47: a2:6a:81:61:e0:f8:52:d9:a9:18:47:93:f1:5c:4e: 2e:ba:15:fe:c4:67:16:4e:ed:1c:a9:51:46:90:fe: c8:c1:1a:e0:c7:1e:2e:e0:1c:09:19:8d:53:cd:54: c6:ab:4d:d3:3b:06:ad:6d:2a:57:27:60:36:18:89: b3:c7:1a:da:34:6c:32:1a:f3:43:51:65:fd:33:0d: d6:5e:5f:65:6f:f9:f3:ea:3f:25:97:01:53:23:c7: fe:4a:63:07:4f:96:14:65:dd:c7:e4:74:4e:bd:7c: 5b:bc:a3:64:bf:bb:45:c4:29:ae:a7:6e:16:18:a4: f6:78:1e:63:9d:72:48:6a:ed:23:c6:11:d2:45:d9: 38:94:21:6b:16:8e:ae:5e:59:3c:fb:6f:05:db:63: 22:bf:ca:e8:79:ac:36:66:9b:47:7a:64:95:ec:9d: 6f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:37:F9:E9:4D:8B:FD:85:C3:CE:E3:5E:F9:7A:B4:BA:18:7C:E5:EC X509v3 Authority Key Identifier: keyid:70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/60D4C96008DA11EEA1B2EE78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.195.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:25:20:d1:ca:4b:df:8d:4b:0e:a7:0b:d0:c5:5a:7e:d8:f9: 4f:6c:8e:d9:8d:7a:a8:1c:f2:48:f4:29:64:73:d3:4e:85:49: 58:e2:f7:3c:d6:a0:ef:d2:fc:f6:0a:21:a5:cd:26:d6:38:74: 85:3c:61:ad:7f:5a:16:04:b5:98:ba:e6:42:67:12:6a:50:ea: 9c:72:6b:c6:59:d3:d9:bb:5f:40:25:0e:de:a9:07:5a:8c:b9: 05:79:5b:69:0b:a4:95:42:64:df:c1:e6:93:6b:20:8c:a3:d3: b0:d8:26:54:f7:ef:40:57:2f:b3:4e:28:d6:0f:c1:24:f1:82: c2:22:0d:e2:3b:f8:4b:1e:3d:cb:ea:c7:6e:e8:ff:51:11:cd: e5:18:1a:b3:39:67:e7:ec:f7:cf:f1:4a:8a:52:66:31:18:e6: 9c:d0:52:dd:da:2c:fc:0c:6e:b4:34:ae:7d:2b:ff:14:dd:a9: 48:e8:15:f8:6a:db:b2:8b:0d:52:88:9d:7b:4d:90:f8:1f:93: c2:38:1d:56:25:a1:92:91:a0:d8:3d:46:30:b7:43:b4:1b:08: 36:ef:42:a9:7c:9d:9d:07:48:97:1f:a2:37:55:15:29:9e:08: 34:d3:7a:05:49:62:a2:59:b4:61:9f:2f:e1:03:a8:45:e7:1f: b5:5f:8a:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBNEIxMTAvBgNVBAUTKDcwOTIxMENGNzYxRUM2N0ZCMzk0RUE1ODk2QTVDNjQ3 QjMwNUVFRjEwHhcNMjQxMDI4MjA1MDU5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmZjkzMy1hNmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuS0j3oA/DgsWJMFndMzqJybMB7F5kpvZDkI3TO9dVD+O3thn3maytVYMQGT6 HwOZvVl9WsorkxorTDTFSaiHa59j09CqXTk7K5Ldz47kGG1viEQpNAMddEeiaoFh 4PhS2akYR5PxXE4uuhX+xGcWTu0cqVFGkP7IwRrgxx4u4BwJGY1TzVTGq03TOwat bSpXJ2A2GImzxxraNGwyGvNDUWX9Mw3WXl9lb/nz6j8llwFTI8f+SmMHT5YUZd3H 5HROvXxbvKNkv7tFxCmup24WGKT2eB5jnXJIau0jxhHSRdk4lCFrFo6uXlk8+28F 22Miv8roeaw2ZptHemSV7J1vMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFP03+elN i/2Fw87jXvl6tLoYfOXsMB8GA1UdIwQYMBaAFHCSEM92HsZ/s5TqWJalxkezBe7x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0E0Qi9EQzJGMDQzMkJG ODAxMUVBOTZGRTRBNjhDNEY5QUUwMi9jSklRejNZZXhuLXpsT3BZbHFYR1I3TUY3 dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKSVF6M1lleG4temxPcFlscVhHUjdNRjd2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBNEIvREMyRjA0MzJCRjgwMTFFQTk2RkU0QTY4QzRGOUFFMDIvNjBENEM5NjAw OERBMTFFRUExQjJFRTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1N8MwDQYJKoZIhvcNAQELBQADggEBAColINHKS9+NSw6n C9DFWn7Y+U9sjtmNeqgc8kj0KWRz006FSVji9zzWoO/S/PYKIaXNJtY4dIU8Ya1/ WhYEtZi65kJnEmpQ6pxya8ZZ09m7X0AlDt6pB1qMuQV5W2kLpJVCZN/B5pNrIIyj 07DYJlT370BXL7NOKNYPwSTxgsIiDeI7+EsePcvqx27o/1ERzeUYGrM5Z+fs98/x SopSZjEY5pzQUt3aLPwMbrQ0rn0r/xTdqUjoFfhq27KLDVKInXtNkPgfk8I4HVYl oZKRoNg9RjC3Q7QbCDbvQql8nZ0HSJcfojdVFSmeCDTTegVJYqJZtGGfL+EDqEXn H7VfitU= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:37 2024 by rpki-client on console-fra.rpki-client.org