$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/B9CAD7A47D2311EEA3696814C4F9AE02.roa File: B9CAD7A47D2311EEA3696814C4F9AE02.roa (raw, json) Hash identifier: IP+1b1MWNwsXEa5/Ri8CW/cM8GMHLYMixTxcrnkax+s= Subject key identifier: 34:0B:B6:8B:D3:EE:DB:12:65:AC:26:64:A5:06:EC:1B:DE:80:B0:FF Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: D5 Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/B9CAD7A47D2311EEA3696814C4F9AE02.roa Signing time: Sun 15 Dec 2024 04:18:28 +0000 ROA not before: Sun 15 Dec 2024 04:18:28 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138505 IP address blocks: 180.131.132.0/23 maxlen: 23 180.131.132.0/24 maxlen: 24 180.131.133.0/24 maxlen: 24 2001:df3:1dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:19:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B Validity Not Before: Dec 15 04:18:28 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675e5894-5e06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:41:0f:05:b2:d5:27:7d:a9:ac:d4:8c:d7:33: ab:ef:ed:66:ed:fa:f7:f9:0e:d3:d9:d1:5f:45:65: f4:0b:a2:00:35:0c:ce:f4:81:49:45:7d:60:a2:22: af:eb:72:c9:1e:17:ec:9d:27:77:3d:7b:01:b9:16: c9:80:87:c8:e6:18:00:53:c1:a8:ca:95:ef:7c:f2: 97:48:2d:47:ca:4b:2c:a3:d6:47:9d:c4:64:a8:3a: 8f:9f:40:ee:a8:14:01:c4:c3:d2:c5:05:a8:68:d3: a5:c3:a7:ba:69:97:a5:b1:1a:5b:0f:22:63:39:b5: 18:f8:1c:db:1c:16:cc:76:eb:82:2c:9e:9a:a4:fe: 11:c1:99:06:7e:ee:44:0e:68:6d:2e:54:93:b5:f2: e2:ae:b1:67:c3:f0:cc:13:62:47:50:97:8a:dc:0f: 49:d6:18:9a:a5:2c:53:a9:ba:d3:2e:5e:6d:23:4b: ea:8b:36:29:44:08:35:f9:6f:a6:54:ca:5d:06:12: e5:34:a8:4c:1d:86:4a:a3:16:cd:03:b9:25:a0:06: ff:11:10:ac:54:84:d3:bf:30:64:87:54:25:b5:7f: d4:9e:86:76:66:8c:bd:09:c4:ef:9e:fd:3b:0a:ac: 27:6e:af:07:8b:1e:2e:d3:f9:26:34:83:22:e2:df: a7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:0B:B6:8B:D3:EE:DB:12:65:AC:26:64:A5:06:EC:1B:DE:80:B0:FF X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/B9CAD7A47D2311EEA3696814C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.131.132.0/23 IPv6: 2001:df3:1dc0::/48 Signature Algorithm: sha256WithRSAEncryption 9f:22:4e:50:d0:0d:ce:a3:aa:76:82:66:6e:c1:31:3a:01:6d: 9d:63:f3:11:ee:5f:34:6a:08:b9:1e:68:54:78:a6:10:01:e2: 13:af:0d:b4:7d:7e:d8:d9:40:f2:c9:1f:52:83:d4:67:bf:3b: de:71:c3:38:23:cc:3f:7d:66:8b:0d:ee:39:df:cf:25:ec:0e: 68:32:58:f7:40:02:b6:e9:5e:dc:52:74:63:2d:54:f8:a5:3a: db:09:13:0c:81:e5:0b:97:a1:84:1f:0b:34:f9:90:46:33:4f: 7a:ad:c0:d6:87:a5:ab:32:29:0c:94:38:0a:58:ac:3d:8e:36: 1a:bf:65:0b:f0:35:93:f9:d7:96:e0:3b:3d:c6:69:d0:b7:0c: 03:22:90:0b:49:57:b3:3d:5b:54:54:53:f7:7e:71:23:a2:2e: 0d:ff:44:1b:b5:ad:ea:7e:48:f1:92:9c:2c:ce:23:b7:7f:50: d1:8f:c1:2c:17:8f:e4:62:cc:a2:ee:79:0a:9c:ca:1d:91:f9: c0:9c:87:d4:47:b0:cb:67:96:cf:21:e8:60:c7:14:d7:60:72: cf:e1:e7:1d:4d:6d:2d:13:64:90:8e:89:d4:a8:93:7f:86:d9: 93:23:a2:b2:8b:95:3b:85:58:3c:cb:1f:c7:fe:dc:e5:b5:d2: 7e:94:e3:4c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjQxMjE1MDQxODI4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVlNTg5NC01ZTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkEPBbLVJ32prNSM1zOr7+1m7fr3+Q7T2dFfRWX0C6IANQzO9IFJRX1goiKv 63LJHhfsnSd3PXsBuRbJgIfI5hgAU8GoypXvfPKXSC1Hyksso9ZHncRkqDqPn0Du qBQBxMPSxQWoaNOlw6e6aZelsRpbDyJjObUY+BzbHBbMduuCLJ6apP4RwZkGfu5E DmhtLlSTtfLirrFnw/DME2JHUJeK3A9J1hiapSxTqbrTLl5tI0vqizYpRAg1+W+m VMpdBhLlNKhMHYZKoxbNA7kloAb/ERCsVITTvzBkh1QltX/UnoZ2Zoy9CcTvnv07 Cqwnbq8Hix4u0/kmNIMi4t+nKQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDQLtovT 7tsSZawmZKUG7BvegLD/MB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjVFMUIvNzQ5NTI1MTQ3RDIyMTFFRUE3QjA3NDYwQzRGOUFFMDIvQjlDQUQ3QTQ3 RDIzMTFFRUEzNjk2ODE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAG0g4QwDwQCAAIwCQMHACABDfMdwDANBgkqhkiG9w0BAQsF AAOCAQEAnyJOUNANzqOqdoJmbsExOgFtnWPzEe5fNGoIuR5oVHimEAHiE68NtH1+ 2NlA8skfUoPUZ7873nHDOCPMP31miw3uOd/PJewOaDJY90ACtule3FJ0Yy1U+KU6 2wkTDIHlC5ehhB8LNPmQRjNPeq3A1oelqzIpDJQ4ClisPY42Gr9lC/A1k/nXluA7 PcZp0LcMAyKQC0lXsz1bVFRT935xI6IuDf9EG7Wt6n5I8ZKcLM4jt39Q0Y/BLBeP 5GLMou55CpzKHZH5wJyH1Eewy2eWzyHoYMcU12Byz+HnHU1tLRNkkI6J1KiTf4bZ kyOisouVO4VYPMsfx/7c5bXSfpTjTA== -----END CERTIFICATE-----Generated at Sat Apr 5 20:08:10 2025 by rpki-client