$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/976CE5744E2611EFA302D279C4F9AE02.roa File: 976CE5744E2611EFA302D279C4F9AE02.roa (raw, json) Hash identifier: UOFsEyRUeoUA0A9/Nio2knAXvgMc2yvIGUft0ltmKhI= Subject key identifier: 33:6F:B5:E8:C3:5F:BE:65:94:5A:37:F4:51:5F:31:D9:3E:2B:F0:C6 Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Certificate serial: 363A Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/976CE5744E2611EFA302D279C4F9AE02.roa Signing time: Mon 02 Dec 2024 14:30:30 +0000 ROA not before: Mon 02 Dec 2024 14:30:30 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 137058 IP address blocks: 61.19.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 14:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13882 (0x363a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475 Validity Not Before: Dec 2 14:30:30 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674dc485-a4e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9d:e1:5f:fb:86:7e:1b:22:f8:9f:98:50:82: a5:26:4d:ec:80:53:3c:cd:1a:13:be:13:4a:ea:91: 30:0a:24:1c:a0:38:f4:16:a8:68:bd:ad:bc:0d:63: 12:7d:d1:bc:53:f6:cf:19:ea:88:37:e2:a5:5a:e6: 13:03:75:da:b6:70:d4:ac:52:5c:23:35:e5:e8:b9: 6f:f7:8e:eb:42:a0:7f:b8:da:23:df:84:aa:fc:33: 12:8c:78:43:30:27:50:07:63:9d:20:24:ea:18:30: 04:4f:6f:5d:30:59:23:b3:e8:7a:89:b6:32:c6:af: ec:e1:d3:16:20:e2:26:4c:e6:03:5c:2c:c0:a2:60: 94:51:01:94:ed:b6:ef:21:fc:ec:37:6e:51:d0:3b: c0:c5:67:e7:3f:69:09:08:84:3e:e0:4f:73:01:71: e0:70:26:e0:0c:ab:41:7e:10:57:66:ac:c7:30:e5: ab:71:d4:04:ca:76:49:a0:b5:a9:52:9b:1d:c0:e0: 1f:8f:e6:9a:61:b8:4e:ed:61:7b:ac:b5:35:3a:71: 5f:df:e4:cd:28:f0:8f:14:7a:2d:f3:81:7a:8c:73: 02:86:ec:80:de:6e:04:0b:ac:32:dd:39:7f:9c:f5: c6:ba:9e:a2:54:a7:56:f5:4a:66:e1:2b:dc:96:45: e3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:6F:B5:E8:C3:5F:BE:65:94:5A:37:F4:51:5F:31:D9:3E:2B:F0:C6 X509v3 Authority Key Identifier: keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/976CE5744E2611EFA302D279C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.19.16.0/24 Signature Algorithm: sha256WithRSAEncryption 76:9e:7e:81:03:cd:57:29:c6:d2:7c:59:23:a1:bf:23:bd:6d: b3:82:b0:f2:5b:10:56:e2:a0:73:60:01:ee:74:a7:58:fd:99: 3a:91:94:7f:86:47:f3:a5:f9:0a:1c:e5:6a:df:88:f7:d2:b1: 0c:8e:24:5e:dc:71:b5:75:8c:52:91:6e:18:c2:f7:83:ea:71: ce:85:6e:20:06:93:f7:bb:de:26:40:bf:29:e0:46:9a:a3:2d: d0:91:c9:11:62:40:88:34:66:8a:6d:5a:9c:8f:6f:60:85:f2: 5f:34:d8:25:dd:fa:f5:d1:f1:1b:03:0c:fe:78:4d:88:36:53: e8:f7:f5:86:8d:0e:e2:fd:0f:6b:fa:fa:4a:0e:84:57:a7:fe: 0f:8c:90:e3:90:4e:3e:2b:57:24:ff:9d:6b:32:43:a2:d1:b4: 19:c1:6d:0a:56:fc:eb:07:58:d6:24:dd:6c:6f:9f:3b:ee:17: 41:a5:bf:95:ea:3b:13:f4:d3:e6:df:f2:72:13:7b:e5:4d:cc: f8:79:61:e3:60:c1:76:fd:2a:a5:e2:c1:cf:be:95:9d:79:4b: 7c:ec:43:39:cf:62:24:67:3b:ec:56:5f:98:c4:67:dc:92:95: bf:5e:5c:dc:f4:61:2a:9d:64:a3:8f:9f:e1:fe:2c:c2:7e:9c: 95:ab:12:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz M0E4ODc1MEUwHhcNMjQxMjAyMTQzMDMwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRkYzQ4NS1hNGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZ3hX/uGfhsi+J+YUIKlJk3sgFM8zRoTvhNK6pEwCiQcoDj0Fqhova28DWMS fdG8U/bPGeqIN+KlWuYTA3XatnDUrFJcIzXl6Llv947rQqB/uNoj34Sq/DMSjHhD MCdQB2OdICTqGDAET29dMFkjs+h6ibYyxq/s4dMWIOImTOYDXCzAomCUUQGU7bbv IfzsN25R0DvAxWfnP2kJCIQ+4E9zAXHgcCbgDKtBfhBXZqzHMOWrcdQEynZJoLWp UpsdwOAfj+aaYbhO7WF7rLU1OnFf3+TNKPCPFHot84F6jHMChuyA3m4EC6wy3Tl/ nPXGup6iVKdW9Upm4SvclkXjZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDNvtejD X75llFo39FFfMdk+K/DGMB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvOTc2Q0U1NzQ0 RTI2MTFFRkEzMDJEMjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9ExAwDQYJKoZIhvcNAQELBQADggEBAHaefoEDzVcpxtJ8 WSOhvyO9bbOCsPJbEFbioHNgAe50p1j9mTqRlH+GR/Ol+Qoc5WrfiPfSsQyOJF7c cbV1jFKRbhjC94Pqcc6FbiAGk/e73iZAvyngRpqjLdCRyRFiQIg0ZoptWpyPb2CF 8l802CXd+vXR8RsDDP54TYg2U+j39YaNDuL9D2v6+koOhFen/g+MkOOQTj4rVyT/ nWsyQ6LRtBnBbQpW/OsHWNYk3WxvnzvuF0Glv5XqOxP00+bf8nITe+VNzPh5YeNg wXb9KqXiwc++lZ15S3zsQznPYiRnO+xWX5jEZ9ySlb9eXNz0YSqdZKOPn+H+LMJ+ nJWrEio= -----END CERTIFICATE-----Generated at Mon Apr 7 16:35:47 2025 by rpki-client