$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/84094296EF5E11EF81B0790EC4F9AE02.roa File: 84094296EF5E11EF81B0790EC4F9AE02.roa (raw, json) Hash identifier: Ckg4hw6DabBO2d7okoEF2pancj6gViKBZRAEfAu13oo= Subject key identifier: 42:A5:8C:9C:A9:7B:50:8A:E5:1D:5D:E4:1B:EF:B0:90:33:94:71:0C Certificate issuer: /CN=A9125475/serialNumber=52FE2B6B7F497F94F1D492D1917B486478BF59D6 Certificate serial: 0215 Authority key identifier: 52:FE:2B:6B:7F:49:7F:94:F1:D4:92:D1:91:7B:48:64:78:BF:59:D6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/84094296EF5E11EF81B0790EC4F9AE02.roa Signing time: Thu 20 Feb 2025 07:44:30 +0000 ROA not before: Thu 20 Feb 2025 07:44:30 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 131090 IP address blocks: 2.57.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.crl rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475 Validity Not Before: Feb 20 07:44:30 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67b6dd5d-9bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:00:02:88:dc:ae:89:51:58:eb:ee:49:19:5b: 9a:56:1d:c6:cf:ce:b8:42:54:f0:9f:07:59:8e:5c: 26:e5:8e:a9:df:0f:9a:e2:21:aa:cf:ae:a6:2f:e3: 6f:a0:41:c4:e6:5d:2d:79:e7:69:ec:32:8e:5e:74: 94:7b:1f:8b:d9:8e:cf:d1:f9:ad:be:1e:3c:8a:9d: 90:08:ff:2a:d5:17:36:95:6c:53:9b:ea:ad:49:8b: 80:cc:85:8d:f1:80:89:34:82:a0:f6:be:a2:03:57: 4d:d7:bb:0c:71:49:2e:38:91:12:d0:0f:20:cf:d6: bc:20:d8:01:f5:c6:fb:85:e3:1c:c7:27:44:35:d5: a6:cc:94:21:5c:1c:fd:6d:f7:1b:35:72:86:18:39: 5b:b6:ae:2b:f1:3b:95:45:a8:3e:56:40:84:47:08: a8:a1:6a:5e:99:88:a9:9e:9b:1e:44:d3:9f:d3:43: 28:76:cc:67:36:84:8a:f5:e8:5b:2e:50:d7:94:27: a3:30:a1:99:e4:f1:96:81:dc:f0:ae:e0:2b:38:c5: 1d:ae:51:82:8c:50:9c:e0:de:e0:6a:56:30:44:de: 38:c8:41:1f:bb:86:3e:7d:44:91:7f:d3:93:ee:19: 23:19:ca:7c:c7:e8:51:30:ae:87:e5:59:bf:8c:31: 5d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:A5:8C:9C:A9:7B:50:8A:E5:1D:5D:E4:1B:EF:B0:90:33:94:71:0C X509v3 Authority Key Identifier: keyid:52:FE:2B:6B:7F:49:7F:94:F1:D4:92:D1:91:7B:48:64:78:BF:59:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/84094296EF5E11EF81B0790EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 2.57.124.0/22 Signature Algorithm: sha256WithRSAEncryption b9:c0:32:3b:c8:17:b0:88:f2:60:ed:58:4b:4a:b7:12:77:15: 4b:c0:e8:c8:67:e6:2e:49:09:40:d4:1e:c9:6f:a6:77:b8:ae: 0a:a9:e9:d3:7f:9f:9e:64:75:eb:79:80:e8:96:a2:8f:77:0c: 6a:37:21:2f:ed:57:0f:2b:49:45:67:68:3a:18:9b:b0:d8:c5: 0d:b8:23:ef:72:64:bd:62:de:f3:8e:95:09:9f:e3:fa:af:36: a6:41:b9:c2:71:15:f6:f8:fe:c9:e1:44:62:85:c9:60:2d:f6: 26:c5:9c:1b:4a:39:c2:3e:7a:df:5d:e6:a0:d5:8a:8f:ac:0b: f8:3c:19:27:23:a4:20:34:11:b3:39:f8:a6:85:1a:83:79:d5: 37:c1:24:39:59:31:32:ae:0a:65:8e:3b:98:c0:fd:b8:12:10: 7d:b8:37:d6:0a:66:b4:40:b2:95:39:ee:af:3e:a1:2a:fe:91: 26:6c:f7:02:86:60:2e:6c:3f:a4:2d:39:8d:5d:be:06:43:59: 8e:b1:f9:8a:82:a3:91:12:de:0b:ee:5b:9f:33:5f:55:18:82: cf:63:a6:d4:fd:81:97:66:be:33:85:32:58:5d:6f:a0:54:4c: 7e:18:e7:1e:13:30:aa:10:50:44:f9:0f:38:43:c8:1e:e2:8d: 6d:dd:ca:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDUyRkUyQjZCN0Y0OTdGOTRGMUQ0OTJEMTkxN0I0ODY0 NzhCRjU5RDYwHhcNMjUwMjIwMDc0NDMwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I2ZGQ1ZC05YmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4AACiNyuiVFY6+5JGVuaVh3Gz864QlTwnwdZjlwm5Y6p3w+a4iGqz66mL+Nv oEHE5l0teedp7DKOXnSUex+L2Y7P0fmtvh48ip2QCP8q1Rc2lWxTm+qtSYuAzIWN 8YCJNIKg9r6iA1dN17sMcUkuOJES0A8gz9a8INgB9cb7heMcxydENdWmzJQhXBz9 bfcbNXKGGDlbtq4r8TuVRag+VkCERwiooWpemYipnpseRNOf00ModsxnNoSK9ehb LlDXlCejMKGZ5PGWgdzwruArOMUdrlGCjFCc4N7galYwRN44yEEfu4Y+fUSRf9OT 7hkjGcp8x+hRMK6H5Vm/jDFdOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEKljJyp e1CK5R1d5BvvsJAzlHEMMB8GA1UdIwQYMBaAFFL+K2t/SX+U8dSS0ZF7SGR4v1nW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9DMTMxMTZGMjI4 RDMxMUVEOEZCRDZENkNDNEY5QUUwMi9VdjRyYTM5SmY1VHgxSkxSa1h0SVpIaV9X ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1V2NHJhMzlKZjVUeDFKTFJrWHRJWkhpX1dkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQzEzMTE2RjIyOEQzMTFFRDhGQkQ2RDZDQzRGOUFFMDIvODQwOTQyOTZF RjVFMTFFRjgxQjA3OTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAICOXwwDQYJKoZIhvcNAQELBQADggEBALnAMjvIF7CI8mDt WEtKtxJ3FUvA6Mhn5i5JCUDUHslvpne4rgqp6dN/n55kdet5gOiWoo93DGo3IS/t Vw8rSUVnaDoYm7DYxQ24I+9yZL1i3vOOlQmf4/qvNqZBucJxFfb4/snhRGKFyWAt 9ibFnBtKOcI+et9d5qDVio+sC/g8GScjpCA0EbM5+KaFGoN51TfBJDlZMTKuCmWO O5jA/bgSEH24N9YKZrRAspU57q8+oSr+kSZs9wKGYC5sP6QtOY1dvgZDWY6x+YqC o5ES3gvuW58zX1UYgs9jptT9gZdmvjOFMlhdb6BUTH4Y5x4TMKoQUET5DzhDyB7i jW3dymI= -----END CERTIFICATE-----Generated at Sat Apr 5 08:17:06 2025 by rpki-client