$ rpki-client -vvf rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/6C71053CAE2311EFAEB8B36AC4F9AE02.roa File: 6C71053CAE2311EFAEB8B36AC4F9AE02.roa (raw, json) Hash identifier: VOU2oePvPzhJHSmIOJDpu6FRgs6bt+gsBLUsoGiA/E8= Subject key identifier: 8A:B3:3E:4A:AA:BB:58:51:1B:D4:E0:AF:E4:BE:04:8E:84:5E:77:5B Certificate issuer: /CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F Certificate serial: 342F Authority key identifier: BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/6C71053CAE2311EFAEB8B36AC4F9AE02.roa Signing time: Fri 29 Nov 2024 07:29:00 +0000 ROA not before: Fri 29 Nov 2024 07:29:00 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 55361 IP address blocks: 122.8.15.0/24 maxlen: 24 122.8.16.0/24 maxlen: 24 122.8.17.0/24 maxlen: 24 122.8.18.0/24 maxlen: 24 122.8.19.0/24 maxlen: 24 122.8.20.0/24 maxlen: 24 122.8.21.0/24 maxlen: 24 122.8.56.0/24 maxlen: 24 122.8.57.0/24 maxlen: 24 122.8.58.0/24 maxlen: 24 122.8.59.0/24 maxlen: 24 122.8.60.0/24 maxlen: 24 122.8.61.0/24 maxlen: 24 122.8.62.0/24 maxlen: 24 122.8.82.0/24 maxlen: 24 122.8.83.0/24 maxlen: 24 122.8.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13359 (0x342f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915370F Validity Not Before: Nov 29 07:29:00 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=67496d3c-34d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d8:8b:be:33:2c:9d:ea:fe:e3:2d:e3:ef:c9: f6:ea:f6:1c:01:d2:57:cf:bc:94:aa:fb:22:f7:81: ae:5d:04:1a:43:a9:59:fe:ee:32:84:3b:d4:9d:ca: f9:4e:6b:58:1d:68:4b:4c:18:0a:64:d3:ae:08:89: 71:b0:b2:0b:9b:b1:f1:09:c5:54:01:81:c3:be:db: 15:d7:d3:8d:4d:fa:1a:54:1b:c9:ab:4c:90:94:29: 22:6a:de:cd:0f:be:31:11:a3:a4:eb:d1:c7:6a:31: 5f:34:a6:9b:80:82:2a:a9:54:76:07:65:13:49:25: 33:8d:92:c7:bd:2d:a0:00:5e:7d:10:50:27:31:79: c9:7f:49:38:19:30:ea:97:76:5f:69:ce:1b:23:b4: 4d:43:4b:49:62:65:fc:83:56:40:c5:19:23:b7:3d: ec:a8:d7:b5:2b:24:4c:96:5d:49:22:f6:d7:43:02: aa:34:40:a0:8d:c2:7f:8e:0d:46:3e:05:e7:b2:f0: e5:8e:18:a6:20:3a:82:18:b4:50:2d:f5:8d:e8:51: d9:fc:f0:08:6d:de:59:f8:b7:0d:2b:66:d4:39:34: 19:93:cb:5e:9f:a7:45:22:c4:13:dd:61:25:0f:2d: 19:b9:a6:b0:0d:18:5c:88:b4:d1:15:fd:f6:23:34: 44:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:B3:3E:4A:AA:BB:58:51:1B:D4:E0:AF:E4:BE:04:8E:84:5E:77:5B X509v3 Authority Key Identifier: keyid:BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/6C71053CAE2311EFAEB8B36AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.8.15.0-122.8.21.255 122.8.56.0-122.8.62.255 122.8.82.0/23 122.8.92.0/22 Signature Algorithm: sha256WithRSAEncryption d4:19:c6:2f:ae:84:0a:ea:5c:29:a4:a7:89:98:c0:3a:ff:d3: 1a:20:7a:1a:0a:7b:b0:18:44:03:72:78:21:25:9d:40:06:22: 2e:8f:c0:51:21:ae:2b:b4:0f:c4:2f:6d:2d:05:ed:37:fa:78: 71:07:67:b3:71:6d:af:91:af:50:da:20:84:2c:b2:dc:68:d5: 8b:56:56:9d:be:8f:e9:2b:ad:fd:fe:be:56:42:05:9f:99:f0: ae:6a:e3:2d:2c:22:84:a3:2c:9f:00:8e:eb:bc:38:47:38:24: 1f:88:02:fd:cd:a8:01:15:e3:87:5a:f4:a6:56:35:c5:d3:2e: ce:da:04:fd:20:20:6d:72:43:ab:19:aa:7e:45:ac:20:cc:5c: f9:3e:f4:64:82:c3:d2:1e:07:e4:b3:23:8b:ba:6e:c4:aa:2b: d5:49:7a:4e:b8:78:ca:c0:bf:b6:a9:43:0c:35:0c:67:79:19: 5b:7a:78:07:50:c7:97:00:74:7b:4a:6b:53:6a:97:b7:6b:fb: 82:d7:25:bc:70:f2:db:52:57:9e:71:77:39:b2:bd:ec:ff:6f: 81:04:b9:ea:6e:52:15:a9:d0:1a:d4:90:4b:30:da:2e:6e:96: ae:d1:bd:b4:02:ec:af:9c:a5:0a:e1:13:c2:be:f4:0b:57:19: 9c:11:12:4a -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICNC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM3MEYxMTAvBgNVBAUTKEJCNUI4MTU2QjAzN0U1RDIyMjYzRUFDN0Y2QTExQzA1 MkZERjYzM0YwHhcNMjQxMTI5MDcyOTAwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ5NmQzYy0zNGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9iLvjMsner+4y3j78n26vYcAdJXz7yUqvsi94GuXQQaQ6lZ/u4yhDvUncr5 TmtYHWhLTBgKZNOuCIlxsLILm7HxCcVUAYHDvtsV19ONTfoaVBvJq0yQlCkiat7N D74xEaOk69HHajFfNKabgIIqqVR2B2UTSSUzjZLHvS2gAF59EFAnMXnJf0k4GTDq l3Zfac4bI7RNQ0tJYmX8g1ZAxRkjtz3sqNe1KyRMll1JIvbXQwKqNECgjcJ/jg1G PgXnsvDljhimIDqCGLRQLfWN6FHZ/PAIbd5Z+LcNK2bUOTQZk8ten6dFIsQT3WEl Dy0ZuaawDRhciLTRFf32IzREBQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFIqzPkqq u1hRG9Tgr+S+BI6EXndbMB8GA1UdIwQYMBaAFLtbgVawN+XSImPqx/ahHAUv32M/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzcwRi83MzQ2RThBMjYw NDkxMUUyQTMwNzU3OEQyOTc5QkIyMC91MXVCVnJBMzVkSWlZLXJIOXFFY0JTX2ZZ ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxdUJWckEzNWRJaVktckg5cUVjQlNfZll6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM3MEYvNzM0NkU4QTI2MDQ5MTFFMkEzMDc1NzhEMjk3OUJCMjAvNkM3MTA1M0NB RTIzMTFFRkFFQjhCMzZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgABMCgwDAMEAHoIDwMEAXoIFDAMAwQDegg4AwQAegg+AwQBeghSAwQC eghcMA0GCSqGSIb3DQEBCwUAA4IBAQDUGcYvroQK6lwppKeJmMA6/9MaIHoaCnuw GEQDcnghJZ1ABiIuj8BRIa4rtA/EL20tBe03+nhxB2ezcW2vka9Q2iCELLLcaNWL Vladvo/pK639/r5WQgWfmfCuauMtLCKEoyyfAI7rvDhHOCQfiAL9zagBFeOHWvSm VjXF0y7O2gT9ICBtckOrGap+RawgzFz5PvRkgsPSHgfksyOLum7EqivVSXpOuHjK wL+2qUMMNQxneRlbengHUMeXAHR7SmtTape3a/uC1yW8cPLbUleecXc5sr3s/2+B BLnqblIVqdAa1JBLMNoubpau0b20AuyvnKUK4RPCvvQLVxmcERJK -----END CERTIFICATE-----Generated at Thu Feb 20 02:42:08 2025 by rpki-client