$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/3C9733B4902C11EA898EFD7FC4F9AE02.roa File: 3C9733B4902C11EA898EFD7FC4F9AE02.roa (raw, json) Hash identifier: nrEqm9HZU0c/RvqP949b7KD5H0U+8J/rR/0Xw0WVZM0= Subject key identifier: 4E:B5:A1:D3:1D:61:D3:C9:C5:CE:BF:1A:AB:F0:FC:17:64:62:D6:82 Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Certificate serial: 3535 Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/3C9733B4902C11EA898EFD7FC4F9AE02.roa Signing time: Sat 02 Dec 2023 14:40:31 +0000 ROA not before: Sat 02 Dec 2023 14:40:31 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 38296 IP address blocks: 122.155.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13621 (0x3535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Validity Not Before: Dec 2 14:40:31 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656b41df-2e9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b7:dd:a9:8b:af:55:7a:a7:64:79:5a:49:e0: 41:7f:c5:39:28:fa:c0:45:80:b7:51:87:e8:48:47: f4:7c:9f:11:f7:88:26:c1:6f:45:36:8c:19:fb:74: 26:ce:d1:0d:2a:eb:1f:24:11:c8:64:26:f8:be:be: 95:ae:ea:39:6f:af:9f:56:f3:ef:53:4c:2c:9b:c6: 4e:d6:3b:32:90:62:ee:86:e9:f9:28:d4:eb:7e:a5: f8:0a:e7:c3:bb:3d:9f:57:22:ce:1b:8e:99:82:d1: 8f:9c:3c:f6:19:9b:24:50:bb:66:d8:d5:8d:ad:38: d3:ee:90:bb:6c:65:e2:bb:9f:bb:e5:fc:e4:7a:7e: a9:e2:22:d2:08:bf:09:83:08:82:4b:59:57:31:76: 4e:4d:82:69:75:03:63:00:15:eb:9f:81:b9:db:8a: f6:4c:65:eb:f8:5f:ee:41:59:b3:ae:09:76:72:15: b5:f1:98:a7:2e:56:53:68:1b:25:7a:3f:f9:09:0a: d3:a0:c3:5c:46:2b:7e:bd:c5:bc:31:cb:4e:73:01: a9:76:b8:09:71:23:c2:c6:6a:e3:ed:ac:37:d0:d1: 00:ba:18:6b:9a:b1:70:e2:eb:d2:a2:a4:cb:29:38: a7:8a:98:52:46:aa:be:95:36:f2:9f:0d:ff:e7:90: 06:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B5:A1:D3:1D:61:D3:C9:C5:CE:BF:1A:AB:F0:FC:17:64:62:D6:82 X509v3 Authority Key Identifier: keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/3C9733B4902C11EA898EFD7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.155.95.0/24 Signature Algorithm: sha256WithRSAEncryption 73:6c:6d:b5:fc:19:f1:5c:67:c1:29:87:4e:0f:d4:ef:c1:d7: 1d:2f:fe:a4:54:6e:0a:86:81:56:38:59:c8:ac:87:99:93:aa: 39:de:c5:a9:88:a3:44:34:5b:0a:a1:b5:f1:04:fc:40:67:fd: d7:39:90:6d:81:b1:dc:b4:0b:59:68:66:45:29:62:39:38:b7: 62:0e:f1:18:08:92:f8:ed:9f:2e:11:86:99:73:ce:ea:b1:fe: 5e:58:8d:bb:db:9b:b4:7f:f4:3a:dd:56:4d:89:30:20:70:f3: 5d:44:a2:7a:a3:1f:6c:38:62:02:ed:81:2a:30:16:6f:1c:87: a8:d8:fc:c3:83:32:a3:94:17:84:d4:12:c7:77:95:b5:a5:cd: c6:da:82:b6:ac:cd:0d:a1:a3:4a:88:38:ae:5c:87:6d:6c:83: da:75:d9:fa:38:43:d3:b0:9b:b3:7a:cb:fa:f1:f0:f0:3e:2f: 63:88:08:02:b5:78:ec:6a:83:ab:34:ba:9a:05:2e:95:31:dc: 82:07:73:9f:a1:d2:6d:6f:c2:4b:50:c6:56:e5:c0:71:03:64: d8:c0:fe:8c:a3:91:ac:22:36:bc:81:00:5c:8e:c2:bc:a0:a8: 14:53:dc:dc:8e:2a:4d:01:f6:44:5a:3b:1a:af:db:ba:e0:96: ee:0f:ae:aa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz M0E4ODc1MEUwHhcNMjMxMjAyMTQ0MDMxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiNDFkZi0yZTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLfdqYuvVXqnZHlaSeBBf8U5KPrARYC3UYfoSEf0fJ8R94gmwW9FNowZ+3Qm ztENKusfJBHIZCb4vr6Vruo5b6+fVvPvU0wsm8ZO1jsykGLuhun5KNTrfqX4CufD uz2fVyLOG46ZgtGPnDz2GZskULtm2NWNrTjT7pC7bGXiu5+75fzken6p4iLSCL8J gwiCS1lXMXZOTYJpdQNjABXrn4G524r2TGXr+F/uQVmzrgl2chW18ZinLlZTaBsl ej/5CQrToMNcRit+vcW8MctOcwGpdrgJcSPCxmrj7aw30NEAuhhrmrFw4uvSoqTL KTiniphSRqq+lTbynw3/55AGVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE61odMd YdPJxc6/Gqvw/BdkYtaCMB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvM0M5NzMzQjQ5 MDJDMTFFQTg5OEVGRDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB6m18wDQYJKoZIhvcNAQELBQADggEBAHNsbbX8GfFcZ8Ep h04P1O/B1x0v/qRUbgqGgVY4Wcish5mTqjnexamIo0Q0WwqhtfEE/EBn/dc5kG2B sdy0C1loZkUpYjk4t2IO8RgIkvjtny4Rhplzzuqx/l5Yjbvbm7R/9DrdVk2JMCBw 811EonqjH2w4YgLtgSowFm8ch6jY/MODMqOUF4TUEsd3lbWlzcbagraszQ2ho0qI OK5ch21sg9p12fo4Q9Owm7N6y/rx8PA+L2OICAK1eOxqg6s0upoFLpUx3IIHc5+h 0m1vwktQxlblwHEDZNjA/oyjkawiNryBAFyOwrygqBRT3NyOKk0B9kRaOxqv27rg lu4Prqo= -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:06 2024 by rpki-client on console-ams.rpki-client.org