$ rpki-client -vvf rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/60DB91E48BEB11ED9A3CD825C4F9AE02.roa File: 60DB91E48BEB11ED9A3CD825C4F9AE02.roa (raw, json) Hash identifier: GStxspM7rX6cVJq7TJi4F9iOLd6pT7iZHKiCRc0MCaI= Subject key identifier: BF:8B:A4:A2:AC:57:E7:C1:8B:45:89:76:07:5C:C0:06:BA:B2:18:99 Certificate issuer: /CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F Certificate serial: 332B Authority key identifier: BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/60DB91E48BEB11ED9A3CD825C4F9AE02.roa Signing time: Thu 14 Mar 2024 16:01:13 +0000 ROA not before: Thu 14 Mar 2024 16:01:13 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 4837 IP address blocks: 118.193.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13099 (0x332b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915370F Validity Not Before: Mar 14 16:01:13 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f31f49-f269 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e5:e5:4e:31:d2:34:1f:c0:14:ec:76:8f:78: e0:1f:a8:54:b2:a8:4b:4f:91:d0:38:ac:e5:61:73: 98:a3:35:25:8c:24:07:9a:cf:88:df:67:ea:cb:05: 62:ed:6b:96:f3:4a:96:62:3e:1d:eb:2f:97:cb:8f: 2f:66:c5:db:8a:33:89:74:7d:b0:81:b2:ce:33:06: b8:ca:63:cd:dd:13:e4:01:6c:4b:a3:41:50:1c:2d: f4:d5:0b:54:76:0e:dc:5e:72:ff:0f:25:29:e3:17: 49:95:b0:9f:ad:ed:18:10:5f:a4:34:10:6c:80:93: dc:6f:21:58:0b:a5:cb:42:54:e7:6a:c7:5d:6c:28: ea:c5:ea:31:7d:97:f8:75:b6:51:de:3e:0c:4c:c3: f2:be:b4:7c:73:13:ea:73:79:4d:36:ab:35:39:06: 0b:e1:7e:ec:27:30:25:9c:d4:ea:e6:94:bf:f8:0e: 97:6c:57:6e:7a:0e:cf:0e:a7:2a:97:f9:cf:a5:c7: 3a:47:2c:5b:f2:fe:67:58:88:4f:9d:58:d6:d2:c5: 35:a0:45:27:f5:ba:be:38:0d:e1:72:10:c4:e6:14: 76:3d:64:f1:d7:81:48:f8:3c:19:c3:45:63:40:0e: 44:b8:00:a8:64:2b:ca:c8:64:45:c1:7d:b6:3a:36: b8:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:8B:A4:A2:AC:57:E7:C1:8B:45:89:76:07:5C:C0:06:BA:B2:18:99 X509v3 Authority Key Identifier: keyid:BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/60DB91E48BEB11ED9A3CD825C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.193.240.0/21 Signature Algorithm: sha256WithRSAEncryption 74:2c:13:9e:c2:f9:4b:1a:5a:6d:f0:ef:18:44:f2:b0:b5:a0: f7:2b:7b:41:4d:03:bd:7b:4a:74:4b:3f:f0:6d:d7:11:70:e8: 30:2d:02:51:cf:60:f3:1e:38:46:60:6d:c0:b8:70:0f:58:ed: 8c:d2:e3:69:4c:71:bb:1c:51:0b:c3:80:f8:54:2d:d8:4c:d2: e3:75:00:1b:d8:32:c2:f4:43:27:4a:e1:55:9a:70:a8:37:96: a1:e4:d4:09:56:2e:ec:ec:3c:56:88:5f:0a:38:59:77:54:10: c5:83:43:85:4b:67:01:d6:f0:35:4a:70:74:f5:f1:84:91:89: bf:7f:68:08:09:63:9e:29:82:49:5a:95:63:1d:0d:b6:9a:94: de:9d:90:ee:17:7f:f8:b7:2a:7e:7f:31:c4:65:35:6c:ea:c4: 4e:d8:9a:6d:e9:be:78:eb:63:b4:1e:cd:fd:9c:aa:e1:10:e2: 61:c9:64:41:09:f5:73:f7:a0:2f:e5:05:74:fa:0b:99:6f:d3: 60:38:5e:a6:2a:e4:89:37:38:b6:98:e6:53:98:21:76:c9:74: 37:d7:1e:fa:b9:1d:05:c5:3d:21:96:29:b9:70:bb:74:08:d2: 89:90:47:a8:16:c6:a7:97:2f:d7:b6:d8:db:b1:93:2d:af:46: b5:44:09:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICMyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM3MEYxMTAvBgNVBAUTKEJCNUI4MTU2QjAzN0U1RDIyMjYzRUFDN0Y2QTExQzA1 MkZERjYzM0YwHhcNMjQwMzE0MTYwMTEzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzMWY0OS1mMjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+XlTjHSNB/AFOx2j3jgH6hUsqhLT5HQOKzlYXOYozUljCQHms+I32fqywVi 7WuW80qWYj4d6y+Xy48vZsXbijOJdH2wgbLOMwa4ymPN3RPkAWxLo0FQHC301QtU dg7cXnL/DyUp4xdJlbCfre0YEF+kNBBsgJPcbyFYC6XLQlTnasddbCjqxeoxfZf4 dbZR3j4MTMPyvrR8cxPqc3lNNqs1OQYL4X7sJzAlnNTq5pS/+A6XbFdueg7PDqcq l/nPpcc6Ryxb8v5nWIhPnVjW0sU1oEUn9bq+OA3hchDE5hR2PWTx14FI+DwZw0Vj QA5EuACoZCvKyGRFwX22Oja44QIDAQABo4IClTCCApEwHQYDVR0OBBYEFL+LpKKs V+fBi0WJdgdcwAa6shiZMB8GA1UdIwQYMBaAFLtbgVawN+XSImPqx/ahHAUv32M/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzcwRi83MzQ2RThBMjYw NDkxMUUyQTMwNzU3OEQyOTc5QkIyMC91MXVCVnJBMzVkSWlZLXJIOXFFY0JTX2ZZ ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxdUJWckEzNWRJaVktckg5cUVjQlNfZll6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM3MEYvNzM0NkU4QTI2MDQ5MTFFMkEzMDc1NzhEMjk3OUJCMjAvNjBEQjkxRTQ4 QkVCMTFFRDlBM0NEODI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN2wfAwDQYJKoZIhvcNAQELBQADggEBAHQsE57C+UsaWm3w 7xhE8rC1oPcre0FNA717SnRLP/Bt1xFw6DAtAlHPYPMeOEZgbcC4cA9Y7YzS42lM cbscUQvDgPhULdhM0uN1ABvYMsL0QydK4VWacKg3lqHk1AlWLuzsPFaIXwo4WXdU EMWDQ4VLZwHW8DVKcHT18YSRib9/aAgJY54pgklalWMdDbaalN6dkO4Xf/i3Kn5/ McRlNWzqxE7Ymm3pvnjrY7Qezf2cquEQ4mHJZEEJ9XP3oC/lBXT6C5lv02A4XqYq 5Ik3OLaY5lOYIXbJdDfXHvq5HQXFPSGWKblwu3QI0omQR6gWxqeXL9e22Nuxky2v RrVECbs= -----END CERTIFICATE-----Generated at Sun Feb 16 20:42:41 2025 by rpki-client