$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/60DA0694D9E111EA82120960C4F9AE02.roa File: 60DA0694D9E111EA82120960C4F9AE02.roa (raw, json) Hash identifier: 0RxGIy0cRn46gMQ4a+LKJK3dXVABCl5t2jG6UZ82riU= Subject key identifier: 31:9E:52:88:DA:09:C3:22:BE:96:1F:9E:88:7D:8B:D6:9C:F5:5F:25 Certificate issuer: /CN=A91EEEB8/serialNumber=E622C8114F3F24AA6A807C8141E3964B551BB930 Certificate serial: 343D Authority key identifier: E6:22:C8:11:4F:3F:24:AA:6A:80:7C:81:41:E3:96:4B:55:1B:B9:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/60DA0694D9E111EA82120960C4F9AE02.roa Signing time: Fri 04 Oct 2024 15:21:19 +0000 ROA not before: Fri 04 Oct 2024 15:21:19 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 135168 IP address blocks: 103.136.122.0/24 maxlen: 24 103.136.123.0/24 maxlen: 24 103.195.14.0/24 maxlen: 24 103.195.15.0/24 maxlen: 24 2404:8e80:1::/48 maxlen: 48 2404:8e80:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13373 (0x343d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEEB8 Validity Not Before: Oct 4 15:21:19 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670007ee-2b8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a2:20:cc:56:a4:05:e8:d1:c4:d8:11:3a:94: 24:19:73:93:08:51:b1:a5:49:47:5c:08:da:c0:34: 18:ca:d4:78:6e:08:83:fc:25:c6:a7:73:55:dd:96: 49:78:2a:ca:d8:0f:d3:13:0a:cf:9f:55:c6:2d:79: c1:93:3a:03:01:bf:18:a9:52:41:af:35:86:ef:c1: 0d:07:b6:cc:20:ae:d9:97:87:73:40:f5:a8:d1:a1: d4:88:8d:84:9d:46:d5:07:56:eb:91:23:2a:60:1b: 05:9b:b7:a8:37:57:56:c5:71:6c:ff:41:0c:d3:93: 86:68:ec:3e:3f:d5:f9:dc:bd:02:79:e1:0d:9d:91: 92:5d:d2:32:26:fa:81:8b:66:28:c2:62:89:7f:76: f8:c9:ff:a7:a1:85:a0:46:7b:42:97:ef:ba:f8:e2: e1:f8:f5:83:a6:02:5c:de:35:d4:11:6a:63:15:96: 44:4c:3d:53:4b:5b:e0:95:5d:2d:c2:5c:26:52:0e: 89:5e:6f:1f:4f:2a:b1:1c:b4:d9:fe:d7:96:9b:08: c4:eb:4a:3e:17:58:18:b9:ab:1c:73:38:47:f2:8e: 73:03:47:ba:3a:a9:18:3a:cc:d9:b0:e0:b0:98:a2: fb:f4:75:f9:43:db:7a:d9:8b:4c:0a:d1:3e:4f:9e: ed:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:9E:52:88:DA:09:C3:22:BE:96:1F:9E:88:7D:8B:D6:9C:F5:5F:25 X509v3 Authority Key Identifier: keyid:E6:22:C8:11:4F:3F:24:AA:6A:80:7C:81:41:E3:96:4B:55:1B:B9:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/60DA0694D9E111EA82120960C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.122.0/23 103.195.14.0/23 IPv6: 2404:8e80:1::/48 2404:8e80:3::/48 Signature Algorithm: sha256WithRSAEncryption d4:52:85:4a:3e:5f:1a:88:40:ec:4e:ad:70:5f:47:b5:7a:01: 90:d0:d2:b2:e1:2b:66:a9:1b:f1:9d:b1:3d:b8:91:9c:23:36: 2c:25:19:a3:7b:81:29:22:05:81:b1:0d:06:af:18:6a:f1:24: ef:d1:fb:72:66:60:f3:ef:ef:b2:2e:3b:e6:2a:d1:ca:c9:bf: 46:3b:de:9a:89:eb:2f:5b:75:8c:d8:8a:3b:a2:1a:fd:e5:69: 98:6b:c1:60:9a:3b:a5:78:5e:34:41:cc:8e:4d:43:b3:f8:17: b7:3b:fa:9f:b2:93:1a:25:03:8d:ec:78:35:cc:5c:c2:bf:ec: ee:8d:02:d5:f4:ff:f1:ba:99:57:3f:65:05:65:07:7c:d4:d2: 04:d7:4d:34:89:60:01:35:17:44:b8:48:30:fb:86:ed:15:5e: fa:73:42:99:87:b7:66:ca:77:9a:89:b5:8e:2f:01:64:85:33: aa:38:06:a0:64:11:20:b1:24:d7:19:4a:56:86:15:9e:75:a7: df:eb:cf:56:98:86:a2:3e:67:f7:1d:5a:94:7e:0b:04:13:41: f5:2c:25:fb:63:a2:c1:9f:18:01:dd:83:98:b3:1d:cd:38:e7: 82:c2:5e:1d:89:68:bf:02:54:40:72:49:6b:31:4d:30:6d:ed: 5e:d9:9f:30 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICND0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVFQjgxMTAvBgNVBAUTKEU2MjJDODExNEYzRjI0QUE2QTgwN0M4MTQxRTM5NjRC NTUxQkI5MzAwHhcNMjQxMDA0MTUyMTE5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwMDdlZS0yYjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaIgzFakBejRxNgROpQkGXOTCFGxpUlHXAjawDQYytR4bgiD/CXGp3NV3ZZJ eCrK2A/TEwrPn1XGLXnBkzoDAb8YqVJBrzWG78ENB7bMIK7Zl4dzQPWo0aHUiI2E nUbVB1brkSMqYBsFm7eoN1dWxXFs/0EM05OGaOw+P9X53L0CeeENnZGSXdIyJvqB i2YowmKJf3b4yf+noYWgRntCl++6+OLh+PWDpgJc3jXUEWpjFZZETD1TS1vglV0t wlwmUg6JXm8fTyqxHLTZ/teWmwjE60o+F1gYuascczhH8o5zA0e6OqkYOszZsOCw mKL79HX5Q9t62YtMCtE+T57tkwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFDGeUoja CcMivpYfnoh9i9ac9V8lMB8GA1UdIwQYMBaAFOYiyBFPPySqaoB8gUHjlktVG7kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUVCOC84RTBGMkNCNjFE QTExMUUyQjkwNkJDOTMwOEIwMkNEMi81aUxJRVU4X0pLcHFnSHlCUWVPV1MxVWJ1 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpTElFVThfSktwcWdIeUJRZU9XUzFVYnVUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVFQjgvOEUwRjJDQjYxREExMTFFMkI5MDZCQzkzMDhCMDJDRDIvNjBEQTA2OTRE OUUxMTFFQTgyMTIwOTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMBIEAgABMAwDBAFniHoDBAFnww4wGAQCAAIwEgMHACQEjoAAAQMHACQEjoAA AzANBgkqhkiG9w0BAQsFAAOCAQEA1FKFSj5fGohA7E6tcF9HtXoBkNDSsuErZqkb 8Z2xPbiRnCM2LCUZo3uBKSIFgbENBq8YavEk79H7cmZg8+/vsi475irRysm/Rjve monrL1t1jNiKO6Ia/eVpmGvBYJo7pXheNEHMjk1Ds/gXtzv6n7KTGiUDjex4Ncxc wr/s7o0C1fT/8bqZVz9lBWUHfNTSBNdNNIlgATUXRLhIMPuG7RVe+nNCmYe3Zsp3 mom1ji8BZIUzqjgGoGQRILEk1xlKVoYVnnWn3+vPVpiGoj5n9x1alH4LBBNB9Swl +2OiwZ8YAd2DmLMdzTjngsJeHYlovwJUQHJJazFNMG3tXtmfMA== -----END CERTIFICATE-----Generated at Mon Feb 17 08:17:43 2025 by rpki-client