$ rpki-client -vvf rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/2F268460A40311EFBD995535C4F9AE02.roa File: 2F268460A40311EFBD995535C4F9AE02.roa (raw, json) Hash identifier: plcbQlBVFl3gRXe4zLArG3hwdoRGSGYn5vJ4S+Zw6kI= Subject key identifier: 1E:E2:CC:BD:F5:F4:8D:86:1D:AD:F7:E7:C0:3F:09:70:7C:3C:A1:D2 Certificate issuer: /CN=A9139B49/serialNumber=4EE540A48AD973FBD831ABD02603B5FB0FB945BE Certificate serial: 1840 Authority key identifier: 4E:E5:40:A4:8A:D9:73:FB:D8:31:AB:D0:26:03:B5:FB:0F:B9:45:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/2F268460A40311EFBD995535C4F9AE02.roa Signing time: Wed 12 Feb 2025 17:24:24 +0000 ROA not before: Wed 12 Feb 2025 17:24:24 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 141342 IP address blocks: 122.129.65.0/24 maxlen: 24 122.129.67.0/24 maxlen: 24 122.129.68.0/24 maxlen: 24 122.129.70.0/24 maxlen: 24 122.129.71.0/24 maxlen: 24 122.129.83.0/24 maxlen: 24 122.129.87.0/24 maxlen: 24 122.129.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/TuVApIrZc_vYMavQJgO1-w-5Rb4.crl rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/TuVApIrZc_vYMavQJgO1-w-5Rb4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6208 (0x1840) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139B49 Validity Not Before: Feb 12 17:24:24 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67acd948-64f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c8:45:de:c3:ea:99:cb:f8:9b:ef:ac:0d:98: fe:65:3f:2e:d7:5d:c0:62:e5:75:65:d8:51:dc:d9: 3a:0b:d1:0a:d7:e0:39:62:85:0e:18:ae:ab:81:e6: 50:27:1f:33:20:93:66:c3:e4:7d:24:08:87:82:dc: dd:7c:a1:6c:8c:81:ae:5d:ae:3c:ed:25:e0:66:5a: 8c:4c:7a:19:1c:29:4e:68:a2:ed:cb:67:a8:b5:b0: f8:a5:59:e4:1b:57:ec:0c:6c:2e:81:76:2b:29:08: 9c:07:df:79:5a:65:a0:29:ab:e6:8b:9b:4f:51:bb: d6:33:19:d5:a5:14:87:12:5d:06:8d:f6:c1:a8:39: 0a:78:c7:10:66:a7:35:3f:7d:77:15:61:a5:76:d0: 1f:73:74:8e:8e:60:fb:08:5e:41:95:8f:5a:b5:81: 73:b5:d3:25:47:9f:0e:3b:93:5e:ee:66:fe:eb:b3: 13:8a:eb:7b:fe:69:62:9c:31:71:92:3a:bb:c9:21: 13:d9:64:ab:60:27:cc:5b:57:07:cd:f2:a2:ef:74: e5:31:3b:16:4a:37:bf:80:de:1e:79:a6:a0:68:d6: c3:d9:12:2f:c5:28:46:fb:e2:16:91:2f:b4:6c:f9: 5e:01:e3:6d:19:c4:d0:ff:99:75:a9:f7:4d:a5:f7: a9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E2:CC:BD:F5:F4:8D:86:1D:AD:F7:E7:C0:3F:09:70:7C:3C:A1:D2 X509v3 Authority Key Identifier: keyid:4E:E5:40:A4:8A:D9:73:FB:D8:31:AB:D0:26:03:B5:FB:0F:B9:45:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/TuVApIrZc_vYMavQJgO1-w-5Rb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/2F268460A40311EFBD995535C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.129.65.0/24 122.129.67.0-122.129.68.255 122.129.70.0/23 122.129.83.0/24 122.129.87.0/24 122.129.95.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:8c:a3:81:9b:a0:20:4a:68:a8:32:db:29:6b:60:dd:56:b9: 5c:ac:ef:fd:d1:cd:97:fe:a5:13:f2:bc:d9:7c:48:3b:94:e6: c7:b8:53:bf:e0:85:2f:a8:1f:e7:75:5b:df:17:66:0e:1d:1e: 4e:a6:6d:29:4e:f2:c2:62:51:45:82:04:54:f3:8f:50:f9:ef: 47:18:64:af:b5:bc:45:ba:5b:c6:af:e6:97:e0:d1:83:17:36: a4:36:c4:22:83:b7:8c:91:c4:1f:67:7b:70:9e:14:b2:bf:7b: 57:da:86:f7:71:66:41:d2:5a:b3:50:43:a9:fb:65:af:d3:1c: 9d:2b:a0:0c:2c:df:36:f7:56:80:0b:4d:36:cf:c5:df:71:56: 07:7a:ed:be:26:2a:df:6e:a5:12:73:bb:58:99:4f:fd:e2:9b: b1:8a:71:75:1a:b4:f7:ce:0a:d1:11:af:a9:ac:23:b5:66:54: 5e:5f:9a:fb:8f:e3:56:28:de:f8:5f:82:c5:25:85:68:c5:ac: 53:da:29:37:e6:2d:4e:2b:d8:80:4a:4c:76:4b:4a:6d:ce:56: ba:95:e2:d8:d3:8e:f4:60:5a:8c:04:76:8b:18:74:7f:c0:79: 97:2c:ef:40:3b:c3:e9:a3:c7:b4:45:6a:68:71:51:26:97:33: f2:26:61:31 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICGEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzlCNDkxMTAvBgNVBAUTKDRFRTU0MEE0OEFEOTczRkJEODMxQUJEMDI2MDNCNUZC MEZCOTQ1QkUwHhcNMjUwMjEyMTcyNDI0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FjZDk0OC02NGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwchF3sPqmcv4m++sDZj+ZT8u113AYuV1ZdhR3Nk6C9EK1+A5YoUOGK6rgeZQ Jx8zIJNmw+R9JAiHgtzdfKFsjIGuXa487SXgZlqMTHoZHClOaKLty2eotbD4pVnk G1fsDGwugXYrKQicB995WmWgKavmi5tPUbvWMxnVpRSHEl0GjfbBqDkKeMcQZqc1 P313FWGldtAfc3SOjmD7CF5BlY9atYFztdMlR58OO5Ne7mb+67MTiut7/mlinDFx kjq7ySET2WSrYCfMW1cHzfKi73TlMTsWSje/gN4eeaagaNbD2RIvxShG++IWkS+0 bPleAeNtGcTQ/5l1qfdNpfep2QIDAQABo4ICuzCCArcwHQYDVR0OBBYEFB7izL31 9I2GHa3358A/CXB8PKHSMB8GA1UdIwQYMBaAFE7lQKSK2XP72DGr0CYDtfsPuUW+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOUI0OS8wNzgwQjk5MEM5 RjgxMUU3OUVGMTIwMDlDNEY5QUUwMi9UdVZBcElyWmNfdllNYXZRSmdPMS13LTVS YjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R1VkFwSXJaY192WU1hdlFKZ08xLXctNVJiNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzlCNDkvMDc4MEI5OTBDOUY4MTFFNzlFRjEyMDA5QzRGOUFFMDIvMkYyNjg0NjBB NDAzMTFFRkJEOTk1NTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAB6gUEwDAMEAHqBQwMEAHqBRAMEAXqBRgMEAHqBUwMEAHqB VwMEAHqBXzANBgkqhkiG9w0BAQsFAAOCAQEAjoyjgZugIEpoqDLbKWtg3Va5XKzv /dHNl/6lE/K82XxIO5Tmx7hTv+CFL6gf53Vb3xdmDh0eTqZtKU7ywmJRRYIEVPOP UPnvRxhkr7W8Rbpbxq/ml+DRgxc2pDbEIoO3jJHEH2d7cJ4Usr97V9qG93FmQdJa s1BDqftlr9McnSugDCzfNvdWgAtNNs/F33FWB3rtviYq326lEnO7WJlP/eKbsYpx dRq0984K0RGvqawjtWZUXl+a+4/jVije+F+CxSWFaMWsU9opN+YtTivYgEpMdktK bc5WupXi2NOO9GBajAR2ixh0f8B5lyzvQDvD6aPHtEVqaHFRJpcz8iZhMQ== -----END CERTIFICATE-----Generated at Sun Apr 6 01:46:54 2025 by rpki-client