$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/35E6778C902C11EA898EFD7FC4F9AE02.roa File: 35E6778C902C11EA898EFD7FC4F9AE02.roa (raw, json) Hash identifier: iLCML5NbSaRD8kDEAs93AJjB8u+iJHUDcG8J2vYU9sc= Subject key identifier: F4:EE:8D:31:C7:46:95:3C:F5:7B:37:9D:3C:16:99:B0:95:A6:3E:5D Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Certificate serial: 3638 Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/35E6778C902C11EA898EFD7FC4F9AE02.roa Signing time: Mon 02 Dec 2024 14:30:27 +0000 ROA not before: Mon 02 Dec 2024 14:30:27 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 135635 IP address blocks: 61.19.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13880 (0x3638) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475 Validity Not Before: Dec 2 14:30:27 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674dc483-b376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ff:0f:b0:41:83:22:85:bc:2f:03:85:0e:db: 3e:f1:a7:b4:f4:f9:2c:56:24:df:96:ae:cb:e9:76: 3e:65:aa:20:38:dd:b6:b2:2d:ec:e2:b1:31:c7:1f: 89:b9:ea:c9:16:c2:ee:ad:53:1c:c7:7e:1d:be:26: 5a:57:c9:5f:73:f5:42:4b:70:b2:db:fa:bb:16:15: 1a:12:fd:08:ca:09:48:57:cc:19:1e:df:d1:b1:0e: e0:0c:ff:7c:d9:ca:a9:14:43:7d:3f:12:c0:4a:ea: 93:9d:61:ba:f4:ee:52:f3:f1:b1:0d:f3:57:b8:27: 62:f6:6f:04:dd:57:ce:35:c5:41:1e:bb:bf:13:b2: 5c:ec:45:24:65:72:10:e0:38:f5:ae:4e:3f:c0:b9: df:80:fa:41:2b:84:9b:c7:75:6e:dd:f6:0f:f9:09: 2a:46:12:7e:ac:78:90:ee:01:21:0d:e1:1b:64:2c: c1:86:d4:6b:8b:82:9e:28:bb:b4:f6:7e:97:35:99: 29:b0:e4:f3:87:a4:ef:79:0f:c3:37:09:a3:71:4e: 1b:e8:fe:35:54:d9:50:56:dd:8a:e4:65:48:be:3a: 2c:05:50:42:40:b0:38:ef:83:2a:43:fa:a0:16:f8: 07:fb:20:1a:78:aa:24:c4:75:18:fb:aa:07:eb:d4: e6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:EE:8D:31:C7:46:95:3C:F5:7B:37:9D:3C:16:99:B0:95:A6:3E:5D X509v3 Authority Key Identifier: keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/35E6778C902C11EA898EFD7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.19.204.0/24 Signature Algorithm: sha256WithRSAEncryption 41:f8:df:59:33:21:3b:61:ff:01:5e:f2:aa:df:10:21:31:9b: c2:f7:32:b4:6b:79:82:d0:7e:e2:a4:19:48:a0:e3:42:50:2a: 58:51:a0:41:07:ee:58:a4:d6:52:26:96:99:a4:3a:3e:53:e7: b0:20:69:17:4b:9c:65:33:df:c1:25:b4:d7:cc:3c:35:b7:b2: db:55:e7:36:57:98:87:d1:cd:6d:62:71:58:de:3f:45:c3:4a: b5:99:42:ca:a2:5a:43:d4:0d:d5:9f:0f:25:d5:74:bf:7f:42: 42:62:19:a1:c4:db:81:7e:9a:06:c5:dc:a7:5a:65:fa:da:30: e1:d2:61:80:45:38:dd:e4:8a:f6:09:23:46:3c:74:dc:91:54: 0b:f0:78:ca:41:4b:f2:26:f2:92:ef:71:0e:6b:62:07:8f:98: 64:a1:6d:00:04:11:5c:72:3a:fb:e2:0f:d9:a0:16:6d:24:06: 51:23:d4:a8:67:c6:20:15:16:ce:53:d0:aa:fd:8c:24:82:cf: 06:f9:ec:2b:13:4c:ff:49:f8:84:02:8d:d1:83:2b:85:fb:8d: a0:a6:de:e8:05:24:7f:0c:10:11:10:1f:ea:c9:9e:dd:13:c7: f8:60:87:38:f5:94:20:bf:5d:4f:91:11:c7:ea:cc:93:fb:13: 25:a3:c8:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz M0E4ODc1MEUwHhcNMjQxMjAyMTQzMDI3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRkYzQ4My1iMzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/8PsEGDIoW8LwOFDts+8ae09PksViTflq7L6XY+ZaogON22si3s4rExxx+J uerJFsLurVMcx34dviZaV8lfc/VCS3Cy2/q7FhUaEv0IyglIV8wZHt/RsQ7gDP98 2cqpFEN9PxLASuqTnWG69O5S8/GxDfNXuCdi9m8E3VfONcVBHru/E7Jc7EUkZXIQ 4Dj1rk4/wLnfgPpBK4Sbx3Vu3fYP+QkqRhJ+rHiQ7gEhDeEbZCzBhtRri4KeKLu0 9n6XNZkpsOTzh6TveQ/DNwmjcU4b6P41VNlQVt2K5GVIvjosBVBCQLA474MqQ/qg FvgH+yAaeKokxHUY+6oH69TmJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPTujTHH RpU89Xs3nTwWmbCVpj5dMB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvMzVFNjc3OEM5 MDJDMTFFQTg5OEVGRDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9E8wwDQYJKoZIhvcNAQELBQADggEBAEH431kzITth/wFe 8qrfECExm8L3MrRreYLQfuKkGUig40JQKlhRoEEH7lik1lImlpmkOj5T57AgaRdL nGUz38EltNfMPDW3sttV5zZXmIfRzW1icVjeP0XDSrWZQsqiWkPUDdWfDyXVdL9/ QkJiGaHE24F+mgbF3KdaZfraMOHSYYBFON3kivYJI0Y8dNyRVAvweMpBS/Im8pLv cQ5rYgePmGShbQAEEVxyOvviD9mgFm0kBlEj1KhnxiAVFs5T0Kr9jCSCzwb57CsT TP9J+IQCjdGDK4X7jaCm3ugFJH8MEBEQH+rJnt0Tx/hghzj1lCC/XU+REcfqzJP7 EyWjyH4= -----END CERTIFICATE-----Generated at Sun Feb 16 20:30:19 2025 by rpki-client