$ rpki-client -vvf rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/140D52F2854B11EAACB2FE39C4F9AE02.roa File: 140D52F2854B11EAACB2FE39C4F9AE02.roa (raw, json) Hash identifier: lUd8khrscqt2/SuycXkak1zRZ1/D9J3OfZ7NRIMFXKQ= Subject key identifier: C9:5C:52:7A:B2:42:07:8B:F0:57:4A:DB:63:F3:53:E5:29:B4:CC:98 Certificate issuer: /CN=A91274A4/serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5 Certificate serial: 0B7A Authority key identifier: 59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/140D52F2854B11EAACB2FE39C4F9AE02.roa Signing time: Tue 17 Dec 2024 05:19:57 +0000 ROA not before: Tue 17 Dec 2024 05:19:57 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139883 IP address blocks: 61.16.51.0/24 maxlen: 24 61.16.52.0/24 maxlen: 24 61.16.55.0/24 maxlen: 24 61.16.101.0/24 maxlen: 24 61.16.105.0/24 maxlen: 24 61.16.110.0/24 maxlen: 24 61.16.119.0/24 maxlen: 24 2407:9880:8101::/48 maxlen: 48 2407:9880:8111::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2938 (0xb7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91274A4, serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5 Validity Not Before: Dec 17 05:19:57 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=676109fd-10a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:36:91:c8:25:a4:2c:bb:63:7c:59:f3:a7:c9: 53:56:39:6d:a3:2b:6b:e4:57:fa:81:75:c1:4c:48: d0:6c:b5:3d:ff:42:7f:9b:aa:31:fe:1f:5a:a2:22: 5c:90:e8:9a:a2:e0:2e:a1:1c:c0:64:f8:f5:2f:af: 17:8e:31:20:02:21:33:7b:b0:f6:0d:3b:e4:81:a5: 5d:61:73:d6:b0:2b:b5:13:d5:b6:4d:40:a1:ed:65: 6f:0a:9c:77:29:eb:0c:ab:4b:21:e8:d2:2d:c4:1a: 8e:2c:b8:b4:da:2d:da:5f:1f:5f:1d:8c:f4:eb:55: 34:ae:2c:d1:a2:08:af:36:4e:25:7d:32:fb:09:b5: 39:42:63:5d:dd:ab:7c:86:5c:5d:3f:65:ac:76:a0: 48:58:3b:8c:d7:1f:f3:5c:46:2e:bd:42:c3:f6:bb: b4:44:3e:6e:e5:f5:99:d2:db:ae:2f:4d:56:3b:6e: 9b:0d:9c:d8:e7:b5:cc:f1:67:b8:47:d7:1b:74:a1: 37:fb:39:51:dd:78:74:e8:7a:d3:c5:f5:95:24:4f: d4:08:26:b4:18:23:e5:b7:58:5c:87:37:b0:18:5e: bb:98:b7:91:d6:1d:79:cc:ff:92:b1:3b:31:c9:ab: cf:a9:f0:67:f0:0e:d5:f0:51:f6:08:70:85:c0:2d: 6c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:5C:52:7A:B2:42:07:8B:F0:57:4A:DB:63:F3:53:E5:29:B4:CC:98 X509v3 Authority Key Identifier: keyid:59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/140D52F2854B11EAACB2FE39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.16.51.0-61.16.52.255 61.16.55.0/24 61.16.101.0/24 61.16.105.0/24 61.16.110.0/24 61.16.119.0/24 IPv6: 2407:9880:8101::/48 2407:9880:8111::/48 Signature Algorithm: sha256WithRSAEncryption 51:25:13:a5:aa:c8:0b:51:20:62:48:93:f3:74:15:a2:c4:e3: 20:47:52:35:7c:56:19:3e:91:64:eb:24:b0:85:cd:62:c0:46: f5:2d:eb:0b:04:2c:4d:d2:73:18:2d:83:87:2c:57:60:ac:2f: 82:20:fb:d4:93:66:4f:c6:3e:35:2c:98:23:95:ef:70:b0:70: a6:a4:55:c2:47:54:10:a6:4d:2b:68:06:96:09:70:b4:b2:aa: 6e:07:59:26:4c:67:d4:c1:de:3c:ac:f8:27:41:59:52:f2:be: 2c:8d:e8:66:10:bd:34:1e:3c:b4:7e:03:e9:9b:53:8f:f3:26: f2:22:a5:96:06:ae:39:2d:04:6c:e3:af:23:d0:e5:2b:28:99: 7a:fe:a7:f8:0e:44:34:91:f3:93:2d:f2:95:d2:c7:6c:07:8a: 21:15:74:5b:d9:5f:9b:ea:d3:33:91:31:09:1b:86:d3:11:12: 7a:4c:9e:ec:78:f0:02:26:c1:2d:c1:0f:05:85:e7:1f:25:69: 7a:15:f3:a7:66:99:54:e5:db:45:58:61:69:a8:9d:a6:c0:00: 34:9a:18:e8:22:31:6f:b1:5a:a5:3f:10:f8:12:c1:48:ce:eb: a5:86:ac:af:fb:fe:70:80:60:c3:4e:db:a3:47:50:5a:4d:f1: de:e8:5b:bd -----BEGIN CERTIFICATE----- MIIFsTCCBJmgAwIBAgICC3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc0QTQxMTAvBgNVBAUTKDU5NTY2NUZGODVFNEU0NzczNzFGNzU0MUY3MjA5REMy NDRFNjBDQTUwHhcNMjQxMjE3MDUxOTU3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYxMDlmZC0xMGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzaRyCWkLLtjfFnzp8lTVjltoytr5Ff6gXXBTEjQbLU9/0J/m6ox/h9aoiJc kOiaouAuoRzAZPj1L68XjjEgAiEze7D2DTvkgaVdYXPWsCu1E9W2TUCh7WVvCpx3 KesMq0sh6NItxBqOLLi02i3aXx9fHYz061U0rizRogivNk4lfTL7CbU5QmNd3at8 hlxdP2WsdqBIWDuM1x/zXEYuvULD9ru0RD5u5fWZ0tuuL01WO26bDZzY57XM8We4 R9cbdKE3+zlR3Xh06HrTxfWVJE/UCCa0GCPlt1hchzewGF67mLeR1h15zP+SsTsx yavPqfBn8A7V8FH2CHCFwC1sRwIDAQABo4IC1TCCAtEwHQYDVR0OBBYEFMlcUnqy QgeL8FdK22PzU+UptMyYMB8GA1UdIwQYMBaAFFlWZf+F5OR3Nx91QfcgncJE5gyl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzRBNC9EREJFNDIwQTMw RjAxMUVBOTg1OUFFNTNDNEY5QUUwMi9XVlpsXzRYazVIYzNIM1ZCOXlDZHdrVG1E S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dWWmxfNFhrNUhjM0gzVkI5eUNkd2tUbURLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc0QTQvRERCRTQyMEEzMEYwMTFFQTk4NTlBRTUzQzRGOUFFMDIvMTQwRDUyRjI4 NTRCMTFFQUFDQjJGRTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXwYIKwYBBQUHAQcBAf8E UDBOMDIEAgABMCwwDAMEAD0QMwMEAD0QNAMEAD0QNwMEAD0QZQMEAD0QaQMEAD0Q bgMEAD0QdzAYBAIAAjASAwcAJAeYgIEBAwcAJAeYgIERMA0GCSqGSIb3DQEBCwUA A4IBAQBRJROlqsgLUSBiSJPzdBWixOMgR1I1fFYZPpFk6ySwhc1iwEb1LesLBCxN 0nMYLYOHLFdgrC+CIPvUk2ZPxj41LJgjle9wsHCmpFXCR1QQpk0raAaWCXC0sqpu B1kmTGfUwd48rPgnQVlS8r4sjehmEL00Hjy0fgPpm1OP8ybyIqWWBq45LQRs468j 0OUrKJl6/qf4DkQ0kfOTLfKV0sdsB4ohFXRb2V+b6tMzkTEJG4bTERJ6TJ7sePAC JsEtwQ8FhecfJWl6FfOnZplU5dtFWGFpqJ2mwAA0mhjoIjFvsVqlPxD4EsFIzuul hqyv+/5wgGDDTtujR1BaTfHe6Fu9 -----END CERTIFICATE-----Generated at Sat Apr 26 13:09:38 2025 by rpki-client