$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/0C9C9680A34711EA996BB179C4F9AE02.roa File: 0C9C9680A34711EA996BB179C4F9AE02.roa (raw, json) Hash identifier: AB7ONpZx9XVpWPf/ZL1Zkpp0nWBsAXZmnaIKchQVfSQ= Subject key identifier: 05:09:F9:35:0E:FC:FE:3E:CF:2C:8B:77:08:8A:C0:40:85:F2:2A:4A Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Certificate serial: 3650 Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/0C9C9680A34711EA996BB179C4F9AE02.roa Signing time: Mon 02 Dec 2024 14:30:50 +0000 ROA not before: Mon 02 Dec 2024 14:30:50 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 99314 IP address blocks: 61.19.96.0/19 maxlen: 19 61.19.100.0/23 maxlen: 23 61.19.103.0/24 maxlen: 24 61.19.104.0/24 maxlen: 24 61.19.105.0/24 maxlen: 24 61.19.108.0/23 maxlen: 23 61.19.110.0/24 maxlen: 24 61.19.112.0/23 maxlen: 23 61.19.114.0/23 maxlen: 23 61.19.116.0/23 maxlen: 23 61.19.118.0/23 maxlen: 23 61.19.120.0/23 maxlen: 23 61.19.123.0/24 maxlen: 24 61.19.124.0/23 maxlen: 23 61.19.126.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13904 (0x3650) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475 Validity Not Before: Dec 2 14:30:50 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674dc49a-1d02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f1:f5:d1:37:df:fe:ea:c9:b1:23:55:c4:74: 93:91:54:ab:a6:f7:17:e4:d7:56:37:b6:ba:12:75: d4:59:51:14:d8:21:ef:09:9e:a1:29:21:32:6c:34: ce:c8:f7:18:a1:1a:dc:90:3d:cd:db:e4:e7:aa:35: f0:08:d3:76:a7:79:e6:64:d2:57:25:1c:42:c2:45: 15:1b:76:b5:ad:7c:62:4a:94:20:d0:a5:a1:3e:3a: f8:7c:0f:f0:cb:6a:7e:aa:7c:ff:c7:ad:d2:74:7b: b3:b9:f3:a0:2f:80:0d:5d:52:6d:60:a4:15:8c:5d: 3c:9a:08:99:80:66:16:ab:be:82:1c:27:a1:9a:85: fc:ea:49:66:4d:80:c7:43:c3:8e:9c:a2:44:59:3f: 85:fe:02:1f:4b:d5:06:45:e5:b2:e9:76:3e:56:0d: 71:fe:b1:32:30:97:a8:9c:ff:9f:02:71:ff:4e:4e: d2:99:53:c6:03:0d:1a:a8:ea:fc:0d:f8:ce:bd:6d: 0a:c4:49:d8:ee:5b:f8:6b:cd:74:95:b4:69:67:50: 77:c4:04:58:24:db:b6:eb:0a:01:39:bd:fd:e7:d2: b1:1c:55:e3:ec:48:ca:df:6c:28:8c:7a:cf:de:4c: b5:07:f2:e7:04:00:d6:ff:56:af:35:31:8d:35:b0: 2b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:09:F9:35:0E:FC:FE:3E:CF:2C:8B:77:08:8A:C0:40:85:F2:2A:4A X509v3 Authority Key Identifier: keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/0C9C9680A34711EA996BB179C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.19.96.0/19 Signature Algorithm: sha256WithRSAEncryption 71:75:93:e7:1f:e8:6a:97:45:99:46:d5:68:d7:91:df:66:56: b8:f1:69:94:e1:21:fe:12:68:3d:39:8a:77:8b:10:8d:e4:aa: 71:f4:98:f6:94:3f:6e:53:43:12:9e:46:00:ae:ef:3f:c8:23: 5a:7f:0a:ac:b7:50:d4:73:57:6d:c6:0a:98:76:3b:bb:bb:0c: ae:7e:d7:99:d4:02:0c:ff:a3:3f:0f:54:3f:73:6b:ab:b9:f8: 8b:33:f0:c8:3b:40:5c:af:0b:6d:76:4b:cc:34:3a:72:3e:4c: e7:e9:51:c1:95:0c:72:a9:5b:5d:5a:68:41:68:a8:a7:ca:51: 3c:d4:34:e2:4d:dc:3f:f0:bf:86:8a:ec:c3:f4:ee:82:b9:93: 04:7f:41:40:2b:a4:6a:3e:f6:48:39:27:4f:52:a3:46:cc:aa: 91:ea:72:26:70:ee:06:27:b7:2c:da:c6:76:59:d1:2c:8a:e4: 48:e2:8d:ba:34:93:f8:e7:48:8b:29:5a:6c:1e:44:6e:a5:f0: 40:24:68:aa:fa:f6:9f:de:91:d7:ae:b8:b4:29:92:d6:1b:95: 7b:de:40:a5:6d:1e:e7:99:54:47:9b:3d:e5:c1:3a:c5:17:b0: d9:b2:39:25:cc:56:61:c0:f9:bd:72:d3:0f:0c:b2:b4:22:2d: 03:b2:9e:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz M0E4ODc1MEUwHhcNMjQxMjAyMTQzMDUwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRkYzQ5YS0xZDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPH10Tff/urJsSNVxHSTkVSrpvcX5NdWN7a6EnXUWVEU2CHvCZ6hKSEybDTO yPcYoRrckD3N2+TnqjXwCNN2p3nmZNJXJRxCwkUVG3a1rXxiSpQg0KWhPjr4fA/w y2p+qnz/x63SdHuzufOgL4ANXVJtYKQVjF08mgiZgGYWq76CHCehmoX86klmTYDH Q8OOnKJEWT+F/gIfS9UGReWy6XY+Vg1x/rEyMJeonP+fAnH/Tk7SmVPGAw0aqOr8 DfjOvW0KxEnY7lv4a810lbRpZ1B3xARYJNu26woBOb3959KxHFXj7EjK32wojHrP 3ky1B/LnBADW/1avNTGNNbArvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAUJ+TUO /P4+zyyLdwiKwECF8ipKMB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvMEM5Qzk2ODBB MzQ3MTFFQTk5NkJCMTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAU9E2AwDQYJKoZIhvcNAQELBQADggEBAHF1k+cf6GqXRZlG 1WjXkd9mVrjxaZThIf4SaD05ineLEI3kqnH0mPaUP25TQxKeRgCu7z/II1p/Cqy3 UNRzV23GCph2O7u7DK5+15nUAgz/oz8PVD9za6u5+Isz8Mg7QFyvC212S8w0OnI+ TOfpUcGVDHKpW11aaEFoqKfKUTzUNOJN3D/wv4aK7MP07oK5kwR/QUArpGo+9kg5 J09So0bMqpHqciZw7gYntyzaxnZZ0SyK5Ejijbo0k/jnSIspWmweRG6l8EAkaKr6 9p/ekdeuuLQpktYblXveQKVtHueZVEebPeXBOsUXsNmyOSXMVmHA+b1y0w8MsrQi LQOynjw= -----END CERTIFICATE-----Generated at Sun Feb 16 20:21:45 2025 by rpki-client