$ rpki-client -vvf rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/F66F50628A9C11EB9B2E044BC4F9AE02.roa File: F66F50628A9C11EB9B2E044BC4F9AE02.roa (raw, json) Hash identifier: BiDJ4XF6Ax6PI7rFoQvYoHT4M7blNEix6qUHG/hXUqg= Subject key identifier: A8:43:D5:36:56:73:A1:46:A5:D9:02:CB:C7:03:BF:1C:99:5D:5D:75 Certificate issuer: /CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Certificate serial: 04BD Authority key identifier: 85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/F66F50628A9C11EB9B2E044BC4F9AE02.roa Signing time: Tue 21 Mar 2023 01:51:27 +0000 ROA not before: Tue 21 Mar 2023 01:51:27 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141470 IP address blocks: 124.108.24.0/21 maxlen: 21 124.108.24.0/23 maxlen: 23 124.108.26.0/23 maxlen: 23 124.108.27.0/24 maxlen: 24 124.108.28.0/23 maxlen: 23 124.108.30.0/23 maxlen: 23 124.108.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 00:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1213 (0x4bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Validity Not Before: Mar 21 01:51:27 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64190d9f-3990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:94:e9:12:f2:25:61:5f:43:08:d5:66:d0:ce: bc:be:d2:cf:83:49:dc:9d:b1:8b:c1:98:99:6a:0e: a9:9f:7a:74:99:ec:45:d2:9f:b4:45:6c:f6:7b:33: 65:46:ed:34:d5:dc:17:d6:fb:26:1b:f6:da:28:4b: a0:20:1f:c5:fe:21:02:03:e4:8e:d6:ca:00:83:34: 2b:aa:67:cd:1e:95:5a:a0:a9:21:c1:dd:a1:55:b1: 6e:d4:d0:f4:8f:4b:58:71:49:cb:61:ab:b5:9c:b8: c3:55:63:91:8c:5e:ea:bb:51:86:8f:d6:1b:6e:2b: 10:07:ca:46:0b:88:f6:28:85:f2:15:c9:43:1c:be: f5:a9:88:56:f0:2d:65:b9:23:fa:07:dd:89:cd:12: a4:c9:bd:56:27:2e:61:dc:31:cc:81:3b:1c:3a:81: 70:84:80:23:92:3a:1f:f5:54:d8:14:20:39:a3:da: e2:2e:f1:69:b9:33:ec:8b:6e:7f:56:98:11:9d:4b: 69:46:5d:f1:07:d4:47:54:62:7c:f1:db:f3:a3:e4: 50:16:f7:bc:74:85:e4:18:cb:c8:c4:fb:8b:69:72: 6e:15:95:74:72:ab:32:24:d4:12:44:75:90:43:e1: 60:6c:6a:7a:f1:27:51:16:8e:65:e8:fe:a6:a4:95: ec:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:43:D5:36:56:73:A1:46:A5:D9:02:CB:C7:03:BF:1C:99:5D:5D:75 X509v3 Authority Key Identifier: keyid:85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/F66F50628A9C11EB9B2E044BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.108.24.0/21 Signature Algorithm: sha256WithRSAEncryption 1b:4f:63:86:56:18:2e:a6:ff:67:f1:e6:90:09:46:25:33:fc: e3:df:cf:8c:83:9c:d4:b9:e9:fa:2c:37:8a:f5:da:26:05:5c: dd:53:58:7f:b1:76:c2:7f:7c:34:64:cb:13:e5:46:30:cb:2c: ae:d1:a3:61:99:f6:37:80:8b:60:4a:95:c0:c6:82:02:ce:cd: 0c:a3:70:72:79:cb:50:46:1e:28:73:2b:80:b3:dc:99:bd:a9: 89:76:f9:0b:b5:04:ef:b0:ee:bd:f8:4d:41:e2:8b:2b:e0:7a: e0:18:14:87:df:ea:b5:69:8f:20:3c:f5:e1:fe:f0:25:b1:f4: 53:b7:f3:66:e6:d3:28:78:3e:9f:76:00:87:5a:ef:5d:ff:18: e4:71:ec:77:27:ff:9e:fb:7a:c3:51:ca:00:3f:68:5b:eb:8e: 7f:88:d7:99:01:6f:b1:a1:25:9c:28:44:de:7e:75:a8:a0:6b: 95:3b:d9:92:96:c5:04:80:6a:0e:a0:7e:0e:ae:54:d0:dc:4e: 8a:7e:b4:76:fe:cd:a7:fb:e1:20:67:6d:36:e5:00:9e:bf:a4: d0:6f:77:ff:a1:96:61:52:8b:69:de:56:68:03:9e:12:0d:4a: 27:02:06:ab:f9:27:db:79:39:70:82:c3:51:42:5a:64:26:9a: 80:4b:b0:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUyMjUxMTAvBgNVBAUTKDg1RDZGMTg0OTNEOEEwOENDNzJCMUIwOTFENEFGNTRG OEYwQTI4QjMwHhcNMjMwMzIxMDE1MTI3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDE5MGQ5Zi0zOTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2JTpEvIlYV9DCNVm0M68vtLPg0ncnbGLwZiZag6pn3p0mexF0p+0RWz2ezNl Ru001dwX1vsmG/baKEugIB/F/iECA+SO1soAgzQrqmfNHpVaoKkhwd2hVbFu1ND0 j0tYcUnLYau1nLjDVWORjF7qu1GGj9YbbisQB8pGC4j2KIXyFclDHL71qYhW8C1l uSP6B92JzRKkyb1WJy5h3DHMgTscOoFwhIAjkjof9VTYFCA5o9riLvFpuTPsi25/ VpgRnUtpRl3xB9RHVGJ88dvzo+RQFve8dIXkGMvIxPuLaXJuFZV0cqsyJNQSRHWQ Q+FgbGp68SdRFo5l6P6mpJXscwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKhD1TZW c6FGpdkCy8cDvxyZXV11MB8GA1UdIwQYMBaAFIXW8YST2KCMxysbCR1K9U+PCiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTIyNS9DQTY5MDQ0MjhB OUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9JekhLeHNKSFVyMVQ0OEtL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hkYnhoSlBZb0l6SEt4c0pIVXIxVDQ4S0tMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjUyMjUvQ0E2OTA0NDI4QTlBMTFFQjgwQzNFRDQ3QzRGOUFFMDIvRjY2RjUwNjI4 QTlDMTFFQjlCMkUwNDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN8bBgwDQYJKoZIhvcNAQELBQADggEBABtPY4ZWGC6m/2fx 5pAJRiUz/OPfz4yDnNS56fosN4r12iYFXN1TWH+xdsJ/fDRkyxPlRjDLLK7Ro2GZ 9jeAi2BKlcDGggLOzQyjcHJ5y1BGHihzK4Cz3Jm9qYl2+Qu1BO+w7r34TUHiiyvg euAYFIff6rVpjyA89eH+8CWx9FO382bm0yh4Pp92AIda713/GORx7Hcn/577esNR ygA/aFvrjn+I15kBb7GhJZwoRN5+daiga5U72ZKWxQSAag6gfg6uVNDcTop+tHb+ zaf74SBnbTblAJ6/pNBvd/+hlmFSi2neVmgDnhINSicCBqv5J9t5OXCCw1FCWmQm moBLsLU= -----END CERTIFICATE-----Generated at Thu May 23 01:36:28 2024 by rpki-client on console-fra.rpki-client.org