$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/39F7B4EE902C11EA898EFD7FC4F9AE02.roa File: 39F7B4EE902C11EA898EFD7FC4F9AE02.roa (raw, json) Hash identifier: ViLxILuMa3CBIFauG3NtJHg9AZOzslFDPDkZtOMmV6c= Subject key identifier: 7A:2A:2F:1E:8F:89:4E:F3:95:C5:80:67:C3:86:22:D0:9D:7B:BF:F7 Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Certificate serial: 3643 Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/39F7B4EE902C11EA898EFD7FC4F9AE02.roa Signing time: Mon 02 Dec 2024 14:30:38 +0000 ROA not before: Mon 02 Dec 2024 14:30:38 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 24042 IP address blocks: 61.19.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13891 (0x3643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475 Validity Not Before: Dec 2 14:30:38 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674dc48e-92ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:de:6f:43:9a:70:a0:d7:a1:be:ac:08:38:76: 32:92:a5:1a:40:c7:7e:81:ae:63:46:bb:76:85:b5: 5e:85:c8:9f:d8:1c:3d:b5:f6:c6:7b:ce:d8:c3:20: d2:67:db:e6:06:cf:8e:da:cb:ee:33:9a:ed:67:21: 63:b7:5e:3f:7f:2c:8e:76:03:c1:1f:83:30:bf:c2: f4:ba:39:9e:f6:1a:2b:48:cc:fc:af:17:6e:58:e7: ab:02:9d:46:87:19:74:db:fc:7e:12:82:c3:34:79: 8e:25:5b:39:ac:6c:db:93:f0:21:40:4a:76:54:a2: 49:aa:b5:47:47:31:33:a8:0f:3d:4a:86:c5:5e:0b: 80:40:07:77:56:22:d5:26:24:56:6d:a0:c3:62:d8: 01:d3:20:ac:af:91:a3:b0:a2:ac:91:3d:23:87:a9: 38:98:0e:09:9b:b1:67:52:6c:ee:b4:21:5e:3c:8b: b0:a8:ea:fb:1e:8c:84:af:e3:98:c7:ec:81:0a:5d: 12:99:dd:5a:00:cb:ce:3b:91:cb:97:6f:15:7a:70: c7:1f:5d:7a:61:25:0e:0e:1f:19:87:23:4c:43:f1: f1:2e:14:0d:63:8c:95:f8:b7:14:04:04:f9:a3:2d: 44:52:c4:af:6d:31:7f:47:6b:11:af:ca:d0:7a:be: e0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:2A:2F:1E:8F:89:4E:F3:95:C5:80:67:C3:86:22:D0:9D:7B:BF:F7 X509v3 Authority Key Identifier: keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/39F7B4EE902C11EA898EFD7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.19.225.0/24 Signature Algorithm: sha256WithRSAEncryption 41:56:69:cb:f8:39:22:35:60:ef:a5:89:61:3d:df:1d:78:0d: 11:a5:3c:36:69:45:46:6d:41:d1:2e:a6:b1:e7:2c:fa:83:4d: c1:c2:df:f5:db:af:a8:d5:88:9e:b5:6d:61:66:2c:68:00:2b: 2d:94:e1:5f:43:14:33:af:3d:2a:bc:02:5e:67:af:1a:da:c8: b4:4f:c9:8a:f6:03:c1:19:c4:23:a2:95:66:f9:9b:f7:5f:50: eb:c2:0a:e4:35:08:91:5e:6f:75:8c:72:43:ad:e7:d6:57:a3: eb:d7:60:87:ec:2c:2c:07:1d:a4:22:dc:71:22:00:a8:35:0a: bc:1d:7a:69:71:ac:d3:d3:d2:d4:00:48:56:bb:8f:b2:84:25: 85:8e:5d:76:d6:8a:dd:ba:74:57:f9:78:71:2b:e7:6f:76:0e: 2b:90:71:8d:f3:e8:04:a5:f0:56:62:53:8d:ca:57:13:92:3d: 72:92:bf:9b:26:af:12:39:c5:6c:69:7a:d3:29:27:20:e9:98: 26:65:cd:ff:df:bb:a7:e0:c7:2b:e9:0c:a5:e6:b2:12:ae:9a: e6:20:d3:8a:94:1f:a9:98:23:25:9b:31:52:66:0d:b5:95:dd: 93:30:1c:ce:f5:51:35:b7:b5:15:c0:89:de:0a:c4:29:04:34: 48:ee:d6:22 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz M0E4ODc1MEUwHhcNMjQxMjAyMTQzMDM4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRkYzQ4ZS05MmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz95vQ5pwoNehvqwIOHYykqUaQMd+ga5jRrt2hbVehcif2Bw9tfbGe87YwyDS Z9vmBs+O2svuM5rtZyFjt14/fyyOdgPBH4Mwv8L0ujme9horSMz8rxduWOerAp1G hxl02/x+EoLDNHmOJVs5rGzbk/AhQEp2VKJJqrVHRzEzqA89SobFXguAQAd3ViLV JiRWbaDDYtgB0yCsr5GjsKKskT0jh6k4mA4Jm7FnUmzutCFePIuwqOr7HoyEr+OY x+yBCl0Smd1aAMvOO5HLl28VenDHH116YSUODh8ZhyNMQ/HxLhQNY4yV+LcUBAT5 oy1EUsSvbTF/R2sRr8rQer7gwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHoqLx6P iU7zlcWAZ8OGItCde7/3MB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvMzlGN0I0RUU5 MDJDMTFFQTg5OEVGRDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9E+EwDQYJKoZIhvcNAQELBQADggEBAEFWacv4OSI1YO+l iWE93x14DRGlPDZpRUZtQdEuprHnLPqDTcHC3/Xbr6jViJ61bWFmLGgAKy2U4V9D FDOvPSq8Al5nrxrayLRPyYr2A8EZxCOilWb5m/dfUOvCCuQ1CJFeb3WMckOt59ZX o+vXYIfsLCwHHaQi3HEiAKg1CrwdemlxrNPT0tQASFa7j7KEJYWOXXbWit26dFf5 eHEr5292DiuQcY3z6ASl8FZiU43KVxOSPXKSv5smrxI5xWxpetMpJyDpmCZlzf/f u6fgxyvpDKXmshKumuYg04qUH6mYIyWbMVJmDbWV3ZMwHM71UTW3tRXAid4KxCkE NEju1iI= -----END CERTIFICATE-----Generated at Sun Feb 16 20:18:19 2025 by rpki-client