$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/353A7194902C11EA898EFD7FC4F9AE02.roa File: 353A7194902C11EA898EFD7FC4F9AE02.roa (raw, json) Hash identifier: pCZkPuBFHsSu/4sLLOtoITD4qq/HQqQZRN16R/bkpiU= Subject key identifier: CA:97:D3:5D:62:3C:AA:2E:3D:30:1C:B3:8F:F8:AC:6D:19:F6:2C:9A Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Certificate serial: 3636 Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/353A7194902C11EA898EFD7FC4F9AE02.roa Signing time: Mon 02 Dec 2024 14:30:26 +0000 ROA not before: Mon 02 Dec 2024 14:30:26 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 134695 IP address blocks: 122.155.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13878 (0x3636) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475 Validity Not Before: Dec 2 14:30:26 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674dc481-432d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:26:fe:0c:8a:7d:1f:c9:23:59:a3:2b:d0:b9: 8c:94:e9:de:79:ce:91:92:14:03:7d:d5:b6:a1:65: b4:14:e8:ce:44:23:ba:95:34:3b:7e:ea:67:b9:36: 11:93:e1:cd:1d:94:a4:0d:b4:4a:2d:b0:9e:82:e1: da:04:a6:8c:56:2f:3e:a6:11:6e:6a:b0:2b:fa:6d: 9d:89:f1:c9:37:b5:07:64:31:76:4a:0c:a5:83:af: 28:1b:13:39:2d:fe:7f:54:d7:83:d8:13:43:38:cd: be:80:d5:2b:2c:67:a1:e3:9b:69:42:e6:67:42:16: c9:97:02:71:b5:00:ad:20:95:8e:18:ad:85:e8:2f: 69:77:9a:d6:e4:b4:15:8a:4a:73:19:62:81:b7:bb: 6a:36:3a:da:fe:84:96:f9:f3:d8:bd:ed:18:dc:9c: 51:48:f2:e8:41:78:92:8d:41:4b:0c:d4:d9:a8:1f: 50:e9:9a:85:bf:a8:be:44:61:a9:c8:7b:c2:34:ca: 64:56:be:30:b7:b4:b9:27:1e:7d:38:c2:d3:a4:88: 43:d7:fd:2c:d3:6e:6b:b9:4e:a1:73:de:29:63:65: 79:a2:31:04:18:2d:20:9b:d2:2b:c5:f6:60:e5:38: 21:51:53:bd:68:4a:c4:7d:08:1b:f9:43:2b:63:36: 6a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:97:D3:5D:62:3C:AA:2E:3D:30:1C:B3:8F:F8:AC:6D:19:F6:2C:9A X509v3 Authority Key Identifier: keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/353A7194902C11EA898EFD7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.155.83.0/24 Signature Algorithm: sha256WithRSAEncryption a5:62:f7:90:7b:60:d1:78:02:f1:7d:9c:99:a3:4a:87:ee:98: f6:1e:52:23:e4:c1:16:54:ac:39:cd:6b:05:fd:7d:c2:19:cd: 6a:06:03:8f:d5:fa:72:06:cf:fb:65:de:a1:81:bf:9b:ce:ba: 70:48:51:95:21:9f:57:b6:53:8d:22:cd:1e:8a:02:01:56:6e: b6:5d:fe:c8:62:d4:58:50:84:9c:14:1e:19:cb:08:d9:33:7a: 46:66:71:70:05:60:1a:d6:91:34:a6:85:f7:d8:4c:5e:89:20: c7:f1:d6:8c:c4:f7:2f:aa:0f:fc:6b:52:74:2a:71:90:3b:cd: d5:96:b8:f6:1c:8d:53:1b:c4:e3:8f:ff:ea:7d:61:b0:e8:d8: f0:45:80:5f:0d:73:25:3b:14:36:05:fd:97:92:0a:05:6a:36: b2:12:54:bd:ac:cf:f2:07:df:a8:d6:46:1f:a4:e1:a5:72:04: e7:87:72:4a:81:42:68:1e:44:9a:ab:b0:3e:64:2b:a9:64:72: 17:1a:57:67:a1:d5:de:a0:ef:b2:00:b6:ac:d2:ac:90:8c:02: 7d:94:a5:9b:71:17:ae:bd:97:ac:73:bd:30:58:be:0d:a5:c9: 7b:85:7a:24:0f:e9:d9:14:7e:e6:79:d1:0a:59:e5:ba:04:c9: 0b:35:3e:fc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz M0E4ODc1MEUwHhcNMjQxMjAyMTQzMDI2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRkYzQ4MS00MzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCb+DIp9H8kjWaMr0LmMlOneec6RkhQDfdW2oWW0FOjORCO6lTQ7fupnuTYR k+HNHZSkDbRKLbCeguHaBKaMVi8+phFuarAr+m2difHJN7UHZDF2Sgylg68oGxM5 Lf5/VNeD2BNDOM2+gNUrLGeh45tpQuZnQhbJlwJxtQCtIJWOGK2F6C9pd5rW5LQV ikpzGWKBt7tqNjra/oSW+fPYve0Y3JxRSPLoQXiSjUFLDNTZqB9Q6ZqFv6i+RGGp yHvCNMpkVr4wt7S5Jx59OMLTpIhD1/0s025ruU6hc94pY2V5ojEEGC0gm9IrxfZg 5TghUVO9aErEfQgb+UMrYzZqHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMqX011i PKouPTAcs4/4rG0Z9iyaMB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvMzUzQTcxOTQ5 MDJDMTFFQTg5OEVGRDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB6m1MwDQYJKoZIhvcNAQELBQADggEBAKVi95B7YNF4AvF9 nJmjSofumPYeUiPkwRZUrDnNawX9fcIZzWoGA4/V+nIGz/tl3qGBv5vOunBIUZUh n1e2U40izR6KAgFWbrZd/shi1FhQhJwUHhnLCNkzekZmcXAFYBrWkTSmhffYTF6J IMfx1ozE9y+qD/xrUnQqcZA7zdWWuPYcjVMbxOOP/+p9YbDo2PBFgF8NcyU7FDYF /ZeSCgVqNrISVL2sz/IH36jWRh+k4aVyBOeHckqBQmgeRJqrsD5kK6lkchcaV2eh 1d6g77IAtqzSrJCMAn2UpZtxF669l6xzvTBYvg2lyXuFeiQP6dkUfuZ50QpZ5boE yQs1Pvw= -----END CERTIFICATE-----Generated at Sun Feb 16 20:36:53 2025 by rpki-client