$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/35E6778C902C11EA898EFD7FC4F9AE02.roa File: 35E6778C902C11EA898EFD7FC4F9AE02.roa (raw, json) Hash identifier: W8rKPjq3K/VStCMYuKznPuXRhYh6gAlFaPS1tobcayE= Subject key identifier: 37:37:BA:72:42:CA:78:0F:36:5F:A5:5D:37:26:28:5B:77:FC:6B:ED Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Certificate serial: 3528 Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/35E6778C902C11EA898EFD7FC4F9AE02.roa Signing time: Sat 02 Dec 2023 14:40:21 +0000 ROA not before: Sat 02 Dec 2023 14:40:21 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 135635 IP address blocks: 61.19.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13608 (0x3528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Validity Not Before: Dec 2 14:40:21 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656b41d5-5c3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5e:68:45:c6:b4:c9:cf:af:1a:d7:b2:08:a3: cf:82:43:d9:99:54:88:4a:93:9f:7d:9a:8f:bf:a6: cf:02:d4:ea:4e:8f:c0:6c:a3:eb:1b:c0:94:75:55: 80:5a:9e:9e:e0:f7:95:83:00:aa:5a:59:c0:74:61: c1:35:02:e8:f0:6e:c8:38:44:82:6f:4c:30:a5:6a: 5c:1b:29:c2:dd:9c:7e:15:e6:60:5b:4a:bb:39:0b: bc:1f:07:4f:4c:df:54:0e:9f:42:9b:39:9b:0c:86: 18:b8:be:d0:e5:bb:a3:02:99:28:1d:55:ab:ad:3c: cf:ff:0e:c0:bd:d9:05:1b:c6:2a:93:76:68:96:f3: c1:4e:82:34:d0:ed:4d:4a:31:3c:1a:62:77:95:3d: c0:d2:ce:b4:d9:fd:c4:ef:8d:6f:37:3a:2a:dc:fb: 0d:14:ec:47:fa:95:1b:65:ab:f8:61:8d:47:a3:da: 26:d2:e1:40:af:a6:94:9e:c5:54:cd:64:15:53:e7: 81:65:c5:60:66:30:ed:15:1c:9f:7d:9f:39:8c:38: 72:e9:01:63:18:e5:1d:76:be:2f:a5:93:45:97:2b: 82:25:4d:7f:52:a9:76:33:d0:28:72:1c:0c:42:4f: 6c:74:40:d0:da:76:91:2a:47:3e:74:95:10:c0:b3: 09:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:37:BA:72:42:CA:78:0F:36:5F:A5:5D:37:26:28:5B:77:FC:6B:ED X509v3 Authority Key Identifier: keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/35E6778C902C11EA898EFD7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.19.204.0/24 Signature Algorithm: sha256WithRSAEncryption 70:71:a8:95:f9:ea:ad:00:6a:7b:34:68:3d:4d:ce:e3:a6:9a: 67:41:0f:df:12:9c:a3:aa:b4:97:b3:97:f7:3e:a4:a4:b4:f7: 2f:10:3f:ad:94:49:80:20:d3:43:09:8c:b2:4a:4a:9a:8e:20: 3c:b0:50:63:75:37:bf:02:ee:5e:d5:c2:84:a0:88:60:18:fd: 27:56:3c:2d:36:3b:da:28:f6:e8:19:b0:aa:76:20:e0:26:2f: 75:f7:8c:25:fb:39:7d:9f:36:e4:74:36:14:d0:f4:59:03:07: 0c:a0:4a:bc:ae:6d:a4:e9:6c:50:86:85:33:3f:2c:b3:d9:92: 7c:4d:03:df:21:e0:95:7c:1e:05:9e:b0:c1:eb:42:20:b6:a6: 9a:a2:2b:e0:e5:52:e5:b6:69:d3:33:db:97:7e:ac:5e:10:44: 65:a7:b7:ec:7e:3c:18:32:aa:2f:85:fd:7d:eb:18:e7:e3:43: d3:76:a9:4b:05:39:7e:aa:35:14:ef:82:35:84:4a:1d:67:92: e6:f6:0e:e4:f3:e5:3f:39:8e:20:2a:9f:f4:04:bf:cc:a6:65: e5:62:45:5e:ad:11:2d:43:9b:67:6b:b8:a5:0a:91:f1:81:48: ac:d2:14:6f:3d:75:23:a3:e4:52:91:d4:a5:99:17:b8:82:06: 81:ea:0d:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz M0E4ODc1MEUwHhcNMjMxMjAyMTQ0MDIxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiNDFkNS01YzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz15oRca0yc+vGteyCKPPgkPZmVSISpOffZqPv6bPAtTqTo/AbKPrG8CUdVWA Wp6e4PeVgwCqWlnAdGHBNQLo8G7IOESCb0wwpWpcGynC3Zx+FeZgW0q7OQu8HwdP TN9UDp9CmzmbDIYYuL7Q5bujApkoHVWrrTzP/w7AvdkFG8Yqk3ZolvPBToI00O1N SjE8GmJ3lT3A0s602f3E741vNzoq3PsNFOxH+pUbZav4YY1Ho9om0uFAr6aUnsVU zWQVU+eBZcVgZjDtFRyffZ85jDhy6QFjGOUddr4vpZNFlyuCJU1/Uql2M9AochwM Qk9sdEDQ2naRKkc+dJUQwLMJjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDc3unJC yngPNl+lXTcmKFt3/GvtMB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvMzVFNjc3OEM5 MDJDMTFFQTg5OEVGRDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9E8wwDQYJKoZIhvcNAQELBQADggEBAHBxqJX56q0Aans0 aD1NzuOmmmdBD98SnKOqtJezl/c+pKS09y8QP62USYAg00MJjLJKSpqOIDywUGN1 N78C7l7VwoSgiGAY/SdWPC02O9oo9ugZsKp2IOAmL3X3jCX7OX2fNuR0NhTQ9FkD BwygSryubaTpbFCGhTM/LLPZknxNA98h4JV8HgWesMHrQiC2ppqiK+DlUuW2adMz 25d+rF4QRGWnt+x+PBgyqi+F/X3rGOfjQ9N2qUsFOX6qNRTvgjWESh1nkub2DuTz 5T85jiAqn/QEv8ymZeViRV6tES1Dm2druKUKkfGBSKzSFG89dSOj5FKR1KWZF7iC BoHqDeA= -----END CERTIFICATE-----Generated at Thu May 16 16:14:30 2024 by rpki-client on console-fra.rpki-client.org