$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/71D60BC2F6BA11EB865C4246C4F9AE02.roa File: 71D60BC2F6BA11EB865C4246C4F9AE02.roa (raw, json) Hash identifier: QoNCxC2F1UvI8+aiOUsTGK8S+7ZkQLVuYM4NPAYbSBY= Subject key identifier: B5:21:38:0D:FD:98:1B:F7:03:E2:60:50:08:EF:37:C0:31:B5:27:CC Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 34C7 Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/71D60BC2F6BA11EB865C4246C4F9AE02.roa Signing time: Wed 28 Feb 2024 14:50:26 +0000 ROA not before: Wed 28 Feb 2024 14:50:26 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 209242 IP address blocks: 125.22.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:24:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13511 (0x34c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: Feb 28 14:50:26 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65df4832-4439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:97:fd:93:06:3d:61:5c:29:3f:4a:d3:c9:8b: 6c:33:2c:2a:41:dc:51:17:82:57:8d:cf:6b:69:15: 9c:3c:41:e9:6f:83:57:e3:89:22:51:5e:08:98:17: 35:f3:d2:1a:76:ff:fc:7b:28:d4:3b:03:e8:0b:6c: c3:79:27:74:69:bb:5d:bc:0b:0c:6b:da:0b:2e:1d: c2:d6:ae:3e:56:43:bb:a7:17:19:03:1b:26:bb:21: 19:88:2a:8e:f1:d2:f8:61:65:5b:3e:69:0b:ef:3c: 5c:24:7e:45:79:ce:c2:5f:4a:83:bb:e3:28:a2:ca: 6c:a3:be:3c:f8:d0:5a:63:60:c2:6f:f0:30:20:03: 1e:f0:7a:ec:3e:a9:7c:77:94:17:76:50:42:10:5e: 35:e3:b6:d4:76:5e:35:21:3f:e0:22:46:0f:63:bf: 91:74:e2:9b:2b:57:3f:76:b9:f6:0e:1f:cb:8e:d8: b2:fa:a8:89:15:e7:05:44:ba:43:de:4d:c7:bc:8e: 60:f2:b3:9c:67:0c:bf:7e:9b:37:46:f5:a1:a6:a1: 23:a0:00:d7:12:cd:4e:0b:2f:46:46:f4:72:c0:41: 07:00:ff:cb:0b:a1:a6:a4:56:ef:4b:e6:29:94:d8: 14:70:1c:97:4d:5c:c0:39:4e:8b:4e:9c:f5:0d:f6: 40:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:21:38:0D:FD:98:1B:F7:03:E2:60:50:08:EF:37:C0:31:B5:27:CC X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/71D60BC2F6BA11EB865C4246C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.22.120.0/24 Signature Algorithm: sha256WithRSAEncryption 31:22:a5:d6:07:e9:ec:1a:42:1d:73:cc:f2:5b:63:1f:1f:d3: 82:5a:ae:55:ec:b6:c6:e1:9b:2c:b0:b8:12:ed:64:72:0d:e1: 5c:3a:47:8f:7e:ad:e7:d2:11:54:c1:43:93:3d:a9:72:28:e4: 07:4f:c7:fd:bd:3c:20:4c:cd:20:16:d1:35:0b:e2:5b:88:5b: ac:42:86:3e:ed:63:22:ac:63:94:97:2a:90:88:15:4d:99:03: 5b:47:07:b9:5f:a3:ee:14:a2:e1:a5:4c:be:6d:e0:b7:7d:70: b3:24:e4:8b:5c:79:1d:81:3e:b7:c7:07:6a:f2:f0:7b:5b:8a: 07:2e:0a:65:58:6a:0b:fa:4e:98:a3:9e:66:24:67:c4:2f:54: 7b:c5:31:10:cc:26:a2:7d:0a:77:47:64:54:71:35:c0:be:84: f3:f9:1f:8d:cc:e1:21:26:68:91:96:72:45:71:7d:9e:87:dc: 76:71:09:33:b0:6c:65:cd:9f:83:c9:eb:df:ec:77:3e:b9:a9: 30:ef:3a:10:2d:35:f5:cc:0d:85:98:93:e8:a9:a5:f5:04:25: 19:5e:4c:32:cb:fa:8b:d2:d0:64:3f:00:ae:ca:53:e4:b3:ca: b4:01:b5:79:63:c2:6b:6a:a8:9d:5a:25:58:db:1a:fa:30:69: db:13:4e:98 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjQwMjI4MTQ1MDI2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmNDgzMi00NDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35f9kwY9YVwpP0rTyYtsMywqQdxRF4JXjc9raRWcPEHpb4NX44kiUV4ImBc1 89Iadv/8eyjUOwPoC2zDeSd0abtdvAsMa9oLLh3C1q4+VkO7pxcZAxsmuyEZiCqO 8dL4YWVbPmkL7zxcJH5Fec7CX0qDu+Moospso748+NBaY2DCb/AwIAMe8HrsPql8 d5QXdlBCEF4147bUdl41IT/gIkYPY7+RdOKbK1c/drn2Dh/Ljtiy+qiJFecFRLpD 3k3HvI5g8rOcZwy/fps3RvWhpqEjoADXEs1OCy9GRvRywEEHAP/LC6GmpFbvS+Yp lNgUcByXTVzAOU6LTpz1DfZAAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLUhOA39 mBv3A+JgUAjvN8AxtSfMMB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0QjMvRTY1ODUxMTIxRDg0MTFFMkExQkEzMERCMDhCMDJDRDIvNzFENjBCQzJG NkJBMTFFQjg2NUM0MjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB9FngwDQYJKoZIhvcNAQELBQADggEBADEipdYH6ewaQh1z zPJbYx8f04JarlXstsbhmyywuBLtZHIN4Vw6R49+refSEVTBQ5M9qXIo5AdPx/29 PCBMzSAW0TUL4luIW6xChj7tYyKsY5SXKpCIFU2ZA1tHB7lfo+4UouGlTL5t4Ld9 cLMk5ItceR2BPrfHB2ry8HtbigcuCmVYagv6TpijnmYkZ8QvVHvFMRDMJqJ9CndH ZFRxNcC+hPP5H43M4SEmaJGWckVxfZ6H3HZxCTOwbGXNn4PJ69/sdz65qTDvOhAt NfXMDYWYk+ippfUEJRleTDLL+ovS0GQ/AK7KU+SzyrQBtXljwmtqqJ1aJVjbGvow adsTTpg= -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:59 2024 by rpki-client on console-fra.rpki-client.org