$ rpki-client -vvf rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/25DD10F26F3211EDA3DCF033C4F9AE02.roa File: 25DD10F26F3211EDA3DCF033C4F9AE02.roa (raw, json) Hash identifier: sj2URhxZjW3y0qKioZtUw0R7cEojajRcOxadk4cHwRY= Subject key identifier: 3F:A4:00:40:FE:31:D2:89:66:2A:2B:23:A3:CD:7C:04:70:3D:52:DB Certificate issuer: /CN=A9123F84/serialNumber=91C4976DEAD3DE8778E5C0DCFF2603971AC2D4DB Certificate serial: 0135 Authority key identifier: 91:C4:97:6D:EA:D3:DE:87:78:E5:C0:DC:FF:26:03:97:1A:C2:D4:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcSXberT3od45cDc_yYDlxrC1Ns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/25DD10F26F3211EDA3DCF033C4F9AE02.roa Signing time: Mon 01 Jul 2024 04:46:33 +0000 ROA not before: Mon 01 Jul 2024 04:46:33 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 54092 IP address blocks: 203.55.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/kcSXberT3od45cDc_yYDlxrC1Ns.crl rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/kcSXberT3od45cDc_yYDlxrC1Ns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcSXberT3od45cDc_yYDlxrC1Ns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123F84/serialNumber=91C4976DEAD3DE8778E5C0DCFF2603971AC2D4DB Validity Not Before: Jul 1 04:46:33 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668234a9-28e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5d:20:56:90:11:72:3f:c9:58:38:9f:d1:a7: 4b:95:24:df:d2:89:80:fe:1f:8c:bb:b5:5b:a6:89: 4f:c1:f2:c6:51:1b:13:3f:99:b4:5c:54:4c:36:24: fa:6d:fb:70:2d:fa:a9:92:22:7b:39:c9:f9:18:b9: f2:7a:79:74:76:be:51:f4:0e:dc:18:dd:c9:ae:bc: 33:04:81:dc:1c:65:e7:26:d7:01:ae:06:6c:f0:46: ed:53:53:0f:7d:87:46:78:69:03:a4:0e:e9:78:99: 12:da:c0:18:bb:7d:d1:8b:e5:02:e3:7c:2e:82:82: 20:21:3b:ac:36:63:99:d5:ff:52:e6:6f:8e:1c:da: 6d:16:06:d0:6d:44:ed:00:8e:bb:1c:d5:34:ab:db: 2e:9e:95:1a:a6:a6:41:72:87:7d:aa:a4:04:6a:a6: 68:16:7f:9e:a4:ac:b1:80:92:07:5a:fb:74:cb:81: 67:87:1b:d3:4a:09:f5:12:2d:b9:2f:28:29:e2:16: 91:f7:74:65:75:02:29:d3:e5:1f:c4:b4:f5:bc:ea: 92:9a:70:ed:35:3f:80:5d:7a:b7:e7:c3:e8:09:bc: b8:d6:49:72:96:8e:70:74:72:36:0e:dd:83:ad:64: 93:c2:0a:f3:98:af:e7:e5:9d:eb:9f:00:d1:90:af: 07:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A4:00:40:FE:31:D2:89:66:2A:2B:23:A3:CD:7C:04:70:3D:52:DB X509v3 Authority Key Identifier: keyid:91:C4:97:6D:EA:D3:DE:87:78:E5:C0:DC:FF:26:03:97:1A:C2:D4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/kcSXberT3od45cDc_yYDlxrC1Ns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcSXberT3od45cDc_yYDlxrC1Ns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/25DD10F26F3211EDA3DCF033C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.55.215.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:72:4a:cd:3f:cf:d2:02:17:f5:db:4f:8f:40:6f:a5:10:ae: 56:35:69:fe:c3:09:ca:09:6f:8d:1c:78:62:bc:e8:55:c3:e5: 5c:51:a0:41:c3:f1:0c:88:62:92:12:34:70:97:1c:4d:07:9e: 66:be:b1:f7:09:78:6f:4b:fd:6d:25:c3:3c:5e:50:99:84:c4: ae:54:6a:70:f6:64:9d:8e:f3:27:1f:33:de:01:4c:b1:85:a3: 36:2c:83:d2:88:82:a9:7b:2f:ef:49:36:c4:26:99:24:7c:49: d2:02:07:49:24:b4:e3:0d:52:74:7e:e2:c1:83:87:ce:98:56: 33:bd:4f:0b:06:2d:b1:6a:5e:25:49:b1:3f:85:83:9d:e1:c9: 32:58:69:ae:94:2a:ce:c5:29:ca:60:ed:52:25:50:8b:5c:0c: 42:67:bd:9b:34:9a:3e:1f:66:2c:a6:8f:72:08:6b:1e:ba:d1: 2c:b9:29:16:71:91:5c:25:8e:a3:e8:3c:45:55:ab:0c:d7:c7: a9:08:68:80:a2:5f:3b:87:05:a4:1a:4b:c4:2e:7a:88:55:0b: cf:0f:4f:90:f8:34:ca:48:96:32:a1:c5:a2:07:be:e3:73:75: 0a:ec:9c:d3:77:37:33:6c:8e:29:f6:f0:38:d9:61:fa:82:1f: c5:a4:c3:3a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNGODQxMTAvBgNVBAUTKDkxQzQ5NzZERUFEM0RFODc3OEU1QzBEQ0ZGMjYwMzk3 MUFDMkQ0REIwHhcNMjQwNzAxMDQ0NjMzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgyMzRhOS0yOGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwF0gVpARcj/JWDif0adLlSTf0omA/h+Mu7VbpolPwfLGURsTP5m0XFRMNiT6 bftwLfqpkiJ7Ocn5GLnyenl0dr5R9A7cGN3JrrwzBIHcHGXnJtcBrgZs8EbtU1MP fYdGeGkDpA7peJkS2sAYu33Ri+UC43wugoIgITusNmOZ1f9S5m+OHNptFgbQbUTt AI67HNU0q9sunpUapqZBcod9qqQEaqZoFn+epKyxgJIHWvt0y4FnhxvTSgn1Ei25 Lygp4haR93RldQIp0+UfxLT1vOqSmnDtNT+AXXq358PoCby41klylo5wdHI2Dt2D rWSTwgrzmK/n5Z3rnwDRkK8HqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD+kAED+ MdKJZiorI6PNfARwPVLbMB8GA1UdIwQYMBaAFJHEl23q096HeOXA3P8mA5cawtTb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Y4NC9GNDNBM0YwNDZG MkYxMUVEQTg0QTY5MzNDNEY5QUUwMi9rY1NYYmVyVDNvZDQ1Y0RjX3lZRGx4ckMx TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tjU1hiZXJUM29kNDVjRGNfeVlEbHhyQzFOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNGODQvRjQzQTNGMDQ2RjJGMTFFREE4NEE2OTMzQzRGOUFFMDIvMjVERDEwRjI2 RjMyMTFFREEzRENGMDMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLN9cwDQYJKoZIhvcNAQELBQADggEBAJ5ySs0/z9ICF/Xb T49Ab6UQrlY1af7DCcoJb40ceGK86FXD5VxRoEHD8QyIYpISNHCXHE0Hnma+sfcJ eG9L/W0lwzxeUJmExK5UanD2ZJ2O8ycfM94BTLGFozYsg9KIgql7L+9JNsQmmSR8 SdICB0kktOMNUnR+4sGDh86YVjO9TwsGLbFqXiVJsT+Fg53hyTJYaa6UKs7FKcpg 7VIlUItcDEJnvZs0mj4fZiymj3IIax660Sy5KRZxkVwljqPoPEVVqwzXx6kIaICi XzuHBaQaS8QueohVC88PT5D4NMpIljKhxaIHvuNzdQrsnNN3NzNsjin28DjZYfqC H8Wkwzo= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:32 2024 by rpki-client on console-ams.rpki-client.org