$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/8852B26A90E211EDB4035D5EC4F9AE02.roa File: 8852B26A90E211EDB4035D5EC4F9AE02.roa (raw, json) Hash identifier: 2LH0ispIN7u5zAw7KUaPux06FtTzJ6kH3/9LH+8tC2I= Subject key identifier: B2:E3:6A:AA:86:E5:BD:02:1F:A1:0D:9A:A6:25:B6:5C:F3:5E:1A:D4 Certificate issuer: /CN=A9125475/serialNumber=52FE2B6B7F497F94F1D492D1917B486478BF59D6 Certificate serial: 0124 Authority key identifier: 52:FE:2B:6B:7F:49:7F:94:F1:D4:92:D1:91:7B:48:64:78:BF:59:D6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/8852B26A90E211EDB4035D5EC4F9AE02.roa Signing time: Sat 02 Dec 2023 14:40:41 +0000 ROA not before: Sat 02 Dec 2023 14:40:41 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 131090 IP address blocks: 2.57.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.crl rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475/serialNumber=52FE2B6B7F497F94F1D492D1917B486478BF59D6 Validity Not Before: Dec 2 14:40:41 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656b41e9-33e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8a:db:7d:86:9a:aa:16:d1:43:e1:cd:d6:c8: ee:f9:93:eb:37:b4:6e:7a:11:63:6b:f8:fd:3c:ed: 84:13:b2:49:fa:01:11:8e:31:ca:16:72:12:aa:fa: fe:12:c4:67:20:f5:01:db:01:10:89:08:93:01:7d: 7d:c8:85:8b:39:ed:6c:ba:6f:5e:53:5a:ae:34:03: 3a:56:19:b2:b2:95:ea:a2:8b:1f:4d:a5:8e:14:59: 3e:fa:c2:41:2d:05:3e:f4:13:dd:93:7e:2d:2f:9f: 03:93:2f:a7:7b:7d:cf:1d:bc:10:55:dc:80:c9:f5: 6b:18:12:e0:b6:48:c7:6a:e6:13:6f:e1:80:cc:27: bd:1f:7b:e8:6d:ee:60:8e:ff:9c:d0:db:08:1f:a6: 9d:e0:a0:f6:22:85:d9:42:bb:99:cb:2c:18:0a:cc: 92:5b:53:bc:38:00:c6:b6:b4:b6:42:f2:0e:fb:d1: fc:8e:38:d1:80:de:e3:e6:35:c0:42:e2:e3:ef:75: 7b:4b:60:cb:81:d8:65:55:c5:5d:7b:a4:0f:1c:8c: 82:d9:e0:90:a3:7d:64:99:fe:98:12:12:5f:ae:50: 8e:b5:b5:e8:cd:60:7e:1b:16:13:97:70:04:83:39: ed:b1:64:ac:8a:b6:16:e0:2a:22:da:32:57:f1:18: 00:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E3:6A:AA:86:E5:BD:02:1F:A1:0D:9A:A6:25:B6:5C:F3:5E:1A:D4 X509v3 Authority Key Identifier: keyid:52:FE:2B:6B:7F:49:7F:94:F1:D4:92:D1:91:7B:48:64:78:BF:59:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/8852B26A90E211EDB4035D5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 2.57.124.0/22 Signature Algorithm: sha256WithRSAEncryption 99:70:a2:19:34:57:44:13:4a:02:f3:41:bb:60:10:f4:b6:c9: 2c:f8:54:58:e7:60:b3:26:e4:26:39:e0:96:4f:59:7e:d0:3d: cf:52:ee:df:00:b4:cd:3c:2b:6a:1d:75:30:e2:6c:99:63:40: b2:ec:73:56:06:26:48:55:6e:7f:b4:36:0f:5d:7d:3b:60:48: 2d:15:8e:29:b7:0e:55:b6:94:11:9d:12:6f:26:ae:f2:68:dc: 6d:d7:70:be:3b:95:f9:fd:be:6e:13:8a:4f:c6:98:b3:17:98: 60:98:f2:3d:5d:ef:c0:f4:b3:35:80:98:65:94:a1:e6:95:83: 01:c0:20:3f:ec:5f:0e:19:50:48:36:ba:a5:bf:89:89:08:08: 74:cd:c3:a2:72:db:37:22:74:5b:b5:6d:8c:b3:3c:9c:14:ed: 9d:14:90:46:02:fb:98:ee:ba:16:93:28:86:e7:86:0d:26:f8: 3e:41:6e:f1:a3:63:c0:bc:58:f6:4e:3a:d8:4b:fc:79:ed:fa: d3:3e:26:8c:d5:ad:c7:ab:bb:81:77:13:52:8e:8b:9a:05:47: 1d:49:ae:96:29:bc:ef:e2:95:ac:5e:28:63:5d:dd:ad:b8:e7: cf:a7:c1:da:5b:fb:06:47:65:b6:d2:b7:fe:b0:32:3a:3a:d8: 74:cf:35:9c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDUyRkUyQjZCN0Y0OTdGOTRGMUQ0OTJEMTkxN0I0ODY0 NzhCRjU5RDYwHhcNMjMxMjAyMTQ0MDQxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiNDFlOS0zM2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24rbfYaaqhbRQ+HN1sju+ZPrN7RuehFja/j9PO2EE7JJ+gERjjHKFnISqvr+ EsRnIPUB2wEQiQiTAX19yIWLOe1sum9eU1quNAM6VhmyspXqoosfTaWOFFk++sJB LQU+9BPdk34tL58Dky+ne33PHbwQVdyAyfVrGBLgtkjHauYTb+GAzCe9H3vobe5g jv+c0NsIH6ad4KD2IoXZQruZyywYCsySW1O8OADGtrS2QvIO+9H8jjjRgN7j5jXA QuLj73V7S2DLgdhlVcVde6QPHIyC2eCQo31kmf6YEhJfrlCOtbXozWB+GxYTl3AE gzntsWSsirYW4Coi2jJX8RgA8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLLjaqqG 5b0CH6ENmqYltlzzXhrUMB8GA1UdIwQYMBaAFFL+K2t/SX+U8dSS0ZF7SGR4v1nW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9DMTMxMTZGMjI4 RDMxMUVEOEZCRDZENkNDNEY5QUUwMi9VdjRyYTM5SmY1VHgxSkxSa1h0SVpIaV9X ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1V2NHJhMzlKZjVUeDFKTFJrWHRJWkhpX1dkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQzEzMTE2RjIyOEQzMTFFRDhGQkQ2RDZDQzRGOUFFMDIvODg1MkIyNkE5 MEUyMTFFREI0MDM1RDVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAICOXwwDQYJKoZIhvcNAQELBQADggEBAJlwohk0V0QTSgLz QbtgEPS2ySz4VFjnYLMm5CY54JZPWX7QPc9S7t8AtM08K2oddTDibJljQLLsc1YG JkhVbn+0Ng9dfTtgSC0Vjim3DlW2lBGdEm8mrvJo3G3XcL47lfn9vm4Tik/GmLMX mGCY8j1d78D0szWAmGWUoeaVgwHAID/sXw4ZUEg2uqW/iYkICHTNw6Jy2zcidFu1 bYyzPJwU7Z0UkEYC+5juuhaTKIbnhg0m+D5BbvGjY8C8WPZOOthL/Hnt+tM+JozV rceru4F3E1KOi5oFRx1JrpYpvO/ilaxeKGNd3a2458+nwdpb+wZHZbbSt/6wMjo6 2HTPNZw= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:15 2024 by rpki-client on console-ams.rpki-client.org