$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/BB09B220085111EFA54E4D54C4F9AE02.roa File: BB09B220085111EFA54E4D54C4F9AE02.roa (raw, json) Hash identifier: 11TByYSsblneUXhUk+j5cqeZWCsrnJ0LEBcJaF4T/h8= Subject key identifier: DB:0A:31:C0:77:A8:1E:89:B1:BD:3D:29:56:78:04:FD:D8:96:BB:F7 Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Certificate serial: 363F Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/BB09B220085111EFA54E4D54C4F9AE02.roa Signing time: Mon 02 Dec 2024 14:30:35 +0000 ROA not before: Mon 02 Dec 2024 14:30:35 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 152463 IP address blocks: 122.154.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13887 (0x363f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475 Validity Not Before: Dec 2 14:30:35 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674dc48b-7b01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:02:be:f9:0f:c2:fc:1f:a6:ba:48:88:21:29: bc:71:4f:06:5d:8f:42:0b:2f:51:23:5e:d0:54:b2: ae:a2:6d:fa:7a:1d:7d:54:81:9b:57:f5:08:93:21: 1b:93:17:e7:1b:93:aa:f7:b7:7c:cb:d7:ec:a1:76: 74:74:e8:a0:4e:13:39:de:51:50:32:fd:81:d3:95: b1:18:05:b6:8f:8c:8b:8f:1d:ca:1c:ef:ca:6e:ca: 1f:29:00:2e:2a:14:fb:98:2d:8e:5a:34:ce:7e:99: a8:e6:f1:45:02:80:e9:28:64:c6:b9:1b:44:19:36: 5a:1d:7d:f3:0d:e2:f7:a5:87:87:5f:db:6c:bb:70: 51:29:b1:76:11:90:98:ef:17:9f:61:86:a1:1c:ed: 47:02:68:6b:f9:33:36:8c:25:b9:24:0a:2f:c6:ec: 66:2b:fe:7f:44:8e:06:4b:8d:18:5b:ca:b3:ae:4b: 88:6f:f0:a5:88:23:5a:d0:6f:f2:1c:8a:6d:b4:8a: f6:09:31:bd:b8:64:2a:97:c9:f4:50:e6:4b:e8:75: 37:4f:f3:bb:43:ca:cc:a9:66:53:9b:df:32:a5:44: 73:e6:5d:2c:77:f1:13:3c:67:c0:f6:60:bb:9f:fa: c0:cc:04:ff:e5:aa:ee:1c:d1:86:d4:3f:c5:6d:e2: 56:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:0A:31:C0:77:A8:1E:89:B1:BD:3D:29:56:78:04:FD:D8:96:BB:F7 X509v3 Authority Key Identifier: keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/BB09B220085111EFA54E4D54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.154.115.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:2f:2f:91:08:dd:da:92:41:5b:03:ee:52:ff:34:6f:67:72: 40:8c:63:74:c4:da:25:a2:1c:fb:ca:ba:12:2b:f2:f4:a6:bf: 1b:5d:18:81:a0:0d:82:49:2d:8f:d8:6d:fa:5c:63:55:12:a6: c5:5a:ef:0d:d4:c3:4e:6e:ad:86:4d:23:02:c9:b4:91:78:ae: 65:cd:af:31:96:e3:e0:bb:47:2f:fc:76:30:ad:49:bd:ba:b2: 89:23:9d:60:9b:0a:6f:26:d1:0b:22:3b:8a:7f:2e:50:80:36: 0c:ea:1b:ff:96:fb:52:04:5b:23:d8:cc:d3:29:27:0e:b0:b2: d4:8f:af:c3:78:44:70:9c:2c:02:4c:af:9c:1a:e9:b3:a2:93: 8c:da:51:dc:72:25:78:c9:d1:7d:3f:5b:a8:64:06:a3:a9:24: b0:cb:a0:d2:5f:41:05:95:16:b5:30:b2:49:7b:41:69:97:72: c7:0e:c9:46:0a:46:d3:33:f6:93:1d:85:e9:33:a4:13:bc:b1: 9b:c5:f2:5c:60:ae:57:aa:1c:0f:b8:d7:a2:16:91:18:49:f6: ce:65:cf:e3:a1:74:39:29:37:35:67:88:b7:b3:d4:79:a8:9f: 1b:5f:4c:78:e9:de:3b:61:ee:65:ce:e7:8e:5e:d3:8e:dd:1a: 6f:7e:d8:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz M0E4ODc1MEUwHhcNMjQxMjAyMTQzMDM1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRkYzQ4Yi03YjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5QK++Q/C/B+mukiIISm8cU8GXY9CCy9RI17QVLKuom36eh19VIGbV/UIkyEb kxfnG5Oq97d8y9fsoXZ0dOigThM53lFQMv2B05WxGAW2j4yLjx3KHO/KbsofKQAu KhT7mC2OWjTOfpmo5vFFAoDpKGTGuRtEGTZaHX3zDeL3pYeHX9tsu3BRKbF2EZCY 7xefYYahHO1HAmhr+TM2jCW5JAovxuxmK/5/RI4GS40YW8qzrkuIb/CliCNa0G/y HIpttIr2CTG9uGQql8n0UOZL6HU3T/O7Q8rMqWZTm98ypURz5l0sd/ETPGfA9mC7 n/rAzAT/5aruHNGG1D/FbeJWHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNsKMcB3 qB6Jsb09KVZ4BP3Ylrv3MB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvQkIwOUIyMjAw ODUxMTFFRkE1NEU0RDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB6mnMwDQYJKoZIhvcNAQELBQADggEBAHovL5EI3dqSQVsD 7lL/NG9nckCMY3TE2iWiHPvKuhIr8vSmvxtdGIGgDYJJLY/YbfpcY1USpsVa7w3U w05urYZNIwLJtJF4rmXNrzGW4+C7Ry/8djCtSb26sokjnWCbCm8m0QsiO4p/LlCA NgzqG/+W+1IEWyPYzNMpJw6wstSPr8N4RHCcLAJMr5wa6bOik4zaUdxyJXjJ0X0/ W6hkBqOpJLDLoNJfQQWVFrUwskl7QWmXcscOyUYKRtMz9pMdhekzpBO8sZvF8lxg rleqHA+416IWkRhJ9s5lz+OhdDkpNzVniLez1HmonxtfTHjp3jth7mXO545e047d Gm9+2Hs= -----END CERTIFICATE-----Generated at Sun Feb 16 20:46:38 2025 by rpki-client