$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/F060FF0E720D11EDA84BE02EC4F9AE02.roa File: F060FF0E720D11EDA84BE02EC4F9AE02.roa (raw, json) Hash identifier: GlAc5fAZweTglvbASziU5BwBtzuZgb2Uajdg0QEwpgc= Subject key identifier: C1:F9:CA:C5:16:B5:21:D8:9D:A8:D8:25:CB:76:B3:59:7C:70:F1:A2 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 012C Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/F060FF0E720D11EDA84BE02EC4F9AE02.roa Signing time: Wed 19 Jun 2024 04:14:16 +0000 ROA not before: Wed 19 Jun 2024 04:14:16 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 8220 IP address blocks: 148.109.0.0/16 maxlen: 16 148.109.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: Jun 19 04:14:16 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66725b18-63d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ff:94:42:6b:8f:5a:ca:2a:60:be:10:7d:d2:b8: 9c:71:e5:4e:a2:20:c2:3c:ee:d3:d6:a6:a7:d8:29: 77:e6:ce:f9:d5:ba:25:3a:2c:72:57:de:4e:92:0f: 9b:0f:1f:f5:f7:6c:12:65:2e:a5:a6:4c:f5:96:16: 88:85:fb:9d:d7:b7:2e:63:83:0b:0a:5c:39:30:1c: 10:8b:b1:cf:6a:fc:a4:63:44:ef:30:ad:b6:48:c3: 68:a8:b7:35:a9:34:e1:2d:fe:34:56:83:dc:51:e4: 89:d7:5f:db:40:f2:71:bc:6e:44:2f:92:2e:f3:c4: 55:cf:fd:37:67:00:09:cd:41:b7:ed:d7:60:03:45: 4b:17:24:7e:2b:1f:1d:e2:df:15:74:14:92:e6:58: c7:18:da:11:5f:aa:76:f5:09:bb:7d:8f:b0:2e:51: a8:bc:9c:4d:32:a9:ce:ac:f3:62:4a:81:35:7f:a5: 58:ec:a6:12:bf:f4:72:2d:d7:0f:a6:55:d1:54:f1: 14:67:de:52:97:6d:2a:59:27:d3:56:4a:47:8c:88: cf:5a:8d:02:d0:7a:db:07:85:d1:03:8f:ee:88:bb: 6e:4d:85:d8:b0:b0:38:59:52:f7:d7:08:83:45:2a: 7e:a5:04:9e:35:14:57:43:30:fc:f6:78:86:a9:d8: b7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:F9:CA:C5:16:B5:21:D8:9D:A8:D8:25:CB:76:B3:59:7C:70:F1:A2 X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/F060FF0E720D11EDA84BE02EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.109.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:52:e9:e5:dd:54:58:fc:c7:39:54:13:91:c2:30:e2:66:68: f4:5a:f9:26:a8:3b:b6:9d:6f:68:90:75:52:24:7f:1c:f9:df: 4a:36:cc:12:46:7b:9d:7e:f8:cf:30:85:23:f0:ab:71:fe:82: 19:8c:d8:e6:d4:bc:ec:0b:34:d1:b2:2c:d5:41:f5:5e:3a:4d: 8d:02:e0:fe:5c:7a:04:53:c7:12:36:d9:10:65:b5:37:8a:ae: e2:d4:b8:04:37:f8:92:f0:8e:c2:23:b4:44:5a:b2:65:23:64: 84:85:2b:f1:d1:b7:36:10:27:1d:a5:2a:17:45:08:2e:01:8b: 8d:6c:c9:f9:c5:ae:da:fc:81:7f:b8:08:2a:7e:a8:cb:ea:63: 9b:14:71:aa:f8:7f:b1:a6:72:20:5c:08:8f:41:6d:16:b2:7c: 33:0f:3c:91:0d:f8:ce:f2:c5:c6:b4:32:4a:35:1f:5d:3d:6d: 96:dd:6e:dc:8e:1d:e1:1c:71:56:3c:1d:25:9c:1f:be:bc:11: f9:54:64:05:5b:b3:ff:3b:f0:34:e1:3b:53:60:8b:cb:9e:77: 33:92:d7:d6:c9:fd:b1:97:7c:a0:c5:2c:d5:a1:38:40:23:8b: e0:40:ce:b7:f1:95:59:6e:ca:dd:0c:61:c8:b7:65:b4:f1:b9: f2:5c:eb:51 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjQwNjE5MDQxNDE2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyNWIxOC02M2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/5RCa49ayipgvhB90ricceVOoiDCPO7T1qan2Cl35s751bolOixyV95Okg+b Dx/192wSZS6lpkz1lhaIhfud17cuY4MLClw5MBwQi7HPavykY0TvMK22SMNoqLc1 qTThLf40VoPcUeSJ11/bQPJxvG5EL5Iu88RVz/03ZwAJzUG37ddgA0VLFyR+Kx8d 4t8VdBSS5ljHGNoRX6p29Qm7fY+wLlGovJxNMqnOrPNiSoE1f6VY7KYSv/RyLdcP plXRVPEUZ95Sl20qWSfTVkpHjIjPWo0C0HrbB4XRA4/uiLtuTYXYsLA4WVL31wiD RSp+pQSeNRRXQzD89niGqdi3vQIDAQABo4IClDCCApAwHQYDVR0OBBYEFMH5ysUW tSHYnajYJct2s1l8cPGiMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM0RUQvNzU5ODQ0NDQ3MjBEMTFFREI1NDVFMDMwQzRGOUFFMDIvRjA2MEZGMEU3 MjBEMTFFREE4NEJFMDJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCUbTANBgkqhkiG9w0BAQsFAAOCAQEAiFLp5d1UWPzHOVQT kcIw4mZo9Fr5Jqg7tp1vaJB1UiR/HPnfSjbMEkZ7nX74zzCFI/Crcf6CGYzY5tS8 7As00bIs1UH1XjpNjQLg/lx6BFPHEjbZEGW1N4qu4tS4BDf4kvCOwiO0RFqyZSNk hIUr8dG3NhAnHaUqF0UILgGLjWzJ+cWu2vyBf7gIKn6oy+pjmxRxqvh/saZyIFwI j0FtFrJ8Mw88kQ34zvLFxrQySjUfXT1tlt1u3I4d4RxxVjwdJZwfvrwR+VRkBVuz /zvwNOE7U2CLy553M5LX1sn9sZd8oMUs1aE4QCOL4EDOt/GVWW7K3QxhyLdltPG5 8lzrUQ== -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:54 2024 by rpki-client on console-fra.rpki-client.org