$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/C3923CE6EFD811EEB93EE009C4F9AE02.roa File: C3923CE6EFD811EEB93EE009C4F9AE02.roa (raw, json) Hash identifier: EgTNqiKvmZXEy9LjOSG2dN0ynTpnYuhjXlrpPTL50KA= Subject key identifier: 32:B2:97:BA:D4:02:B9:4C:1B:7E:1A:90:B5:C3:2A:7A:6A:E7:4F:67 Certificate issuer: /CN=A9125475/serialNumber=52FE2B6B7F497F94F1D492D1917B486478BF59D6 Certificate serial: 01EA Authority key identifier: 52:FE:2B:6B:7F:49:7F:94:F1:D4:92:D1:91:7B:48:64:78:BF:59:D6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/C3923CE6EFD811EEB93EE009C4F9AE02.roa Signing time: Mon 02 Dec 2024 14:30:51 +0000 ROA not before: Mon 02 Dec 2024 14:30:51 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 4651 IP address blocks: 193.36.112.0/22 maxlen: 22 193.36.112.0/24 maxlen: 24 193.36.113.0/24 maxlen: 24 193.36.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.crl rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475 Validity Not Before: Dec 2 14:30:51 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674dc49b-d8b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:25:a4:49:23:95:c5:18:e6:e1:98:d5:57:b2: d6:6a:3d:ca:d7:95:14:52:2d:39:a7:63:47:0b:31: 47:a4:f8:45:56:37:05:05:57:8b:10:f3:eb:99:7f: 55:3d:fe:5a:9d:3f:d8:10:f3:a7:ff:13:9b:29:0d: bf:0e:88:dd:ec:ae:ed:5c:44:cc:4a:64:33:64:cc: b7:41:4e:fd:e8:f0:bd:4f:2d:89:e2:5c:c8:fe:31: 8e:95:ef:a0:d6:1f:35:03:07:91:91:42:d7:6e:5a: a6:50:ab:a9:ee:f8:9e:ea:e8:d4:b7:d2:d8:23:59: 8b:7d:42:ad:f5:fc:f4:3a:81:9f:31:ff:3d:ab:30: ee:21:93:8c:56:c6:0a:de:f6:6a:3b:45:ed:08:f0: 9e:a7:5b:b1:b6:91:72:2b:d2:aa:fe:53:74:10:64: fa:fd:27:af:06:f4:c8:f7:64:18:b8:a6:52:b6:a6: 17:6c:b0:09:93:f2:ce:66:d5:f7:ef:61:78:3b:86: e8:0c:0b:22:63:68:2a:4c:b5:87:9d:95:9b:73:ee: 90:fa:37:57:4c:db:4f:f8:30:34:53:f1:75:fa:e5: aa:55:25:3c:4b:99:4f:5d:c0:6f:dd:7e:be:c6:25: 5e:e1:bc:71:13:31:41:79:9e:71:e5:38:40:c6:8f: 52:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B2:97:BA:D4:02:B9:4C:1B:7E:1A:90:B5:C3:2A:7A:6A:E7:4F:67 X509v3 Authority Key Identifier: keyid:52:FE:2B:6B:7F:49:7F:94:F1:D4:92:D1:91:7B:48:64:78:BF:59:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Uv4ra39Jf5Tx1JLRkXtIZHi_WdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/C13116F228D311ED8FBD6D6CC4F9AE02/C3923CE6EFD811EEB93EE009C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 193.36.112.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:34:36:17:5a:e8:42:2f:cc:c9:69:52:23:53:75:de:0c:9c: 5d:eb:8f:a4:a8:2b:5b:7d:56:e4:25:f1:6a:d0:12:9c:06:69: db:14:5c:b5:51:a5:4f:eb:b5:ad:5d:72:78:67:ee:56:ef:21: 3e:78:8f:3a:bf:fa:c4:0c:23:d5:4a:e3:4c:bf:73:1c:c1:14: 8d:1e:af:c5:33:35:40:a6:13:36:43:c9:03:21:e2:cc:3e:64: ec:e5:11:43:f2:91:ad:0e:cc:59:24:36:14:06:29:4c:af:27: c9:98:c0:ad:b7:82:63:4f:3b:6c:b7:77:ec:6c:6a:ee:20:55: d8:74:fa:ad:33:cb:d0:44:f9:00:7e:df:44:ae:ea:c5:fa:4c: a4:26:80:6e:5f:77:98:70:82:ea:9d:59:24:c9:e0:10:d9:e4: e8:a7:f8:cd:1f:6b:c3:f2:0d:1d:25:77:cc:95:cf:b3:f1:e7: ec:54:f3:0e:75:d4:28:73:95:5c:6d:f9:f5:59:6f:40:17:75: ca:20:20:21:f8:a1:3d:83:94:ac:7e:14:45:71:28:b0:4c:57: fa:64:4d:a9:4e:61:1a:b3:3b:a5:63:2d:a9:65:a7:68:5f:47: df:65:47:71:68:a8:d0:78:b4:66:5e:26:b6:73:cf:5f:12:08: 29:9b:c9:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDUyRkUyQjZCN0Y0OTdGOTRGMUQ0OTJEMTkxN0I0ODY0 NzhCRjU5RDYwHhcNMjQxMjAyMTQzMDUxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRkYzQ5Yi1kOGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryWkSSOVxRjm4ZjVV7LWaj3K15UUUi05p2NHCzFHpPhFVjcFBVeLEPPrmX9V Pf5anT/YEPOn/xObKQ2/Dojd7K7tXETMSmQzZMy3QU796PC9Ty2J4lzI/jGOle+g 1h81AweRkULXblqmUKup7vie6ujUt9LYI1mLfUKt9fz0OoGfMf89qzDuIZOMVsYK 3vZqO0XtCPCep1uxtpFyK9Kq/lN0EGT6/SevBvTI92QYuKZStqYXbLAJk/LOZtX3 72F4O4boDAsiY2gqTLWHnZWbc+6Q+jdXTNtP+DA0U/F1+uWqVSU8S5lPXcBv3X6+ xiVe4bxxEzFBeZ5x5ThAxo9SwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDKyl7rU ArlMG34akLXDKnpq509nMB8GA1UdIwQYMBaAFFL+K2t/SX+U8dSS0ZF7SGR4v1nW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9DMTMxMTZGMjI4 RDMxMUVEOEZCRDZENkNDNEY5QUUwMi9VdjRyYTM5SmY1VHgxSkxSa1h0SVpIaV9X ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1V2NHJhMzlKZjVUeDFKTFJrWHRJWkhpX1dkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQzEzMTE2RjIyOEQzMTFFRDhGQkQ2RDZDQzRGOUFFMDIvQzM5MjNDRTZF RkQ4MTFFRUI5M0VFMDA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALBJHAwDQYJKoZIhvcNAQELBQADggEBAF80Nhda6EIvzMlp UiNTdd4MnF3rj6SoK1t9VuQl8WrQEpwGadsUXLVRpU/rta1dcnhn7lbvIT54jzq/ +sQMI9VK40y/cxzBFI0er8UzNUCmEzZDyQMh4sw+ZOzlEUPyka0OzFkkNhQGKUyv J8mYwK23gmNPO2y3d+xsau4gVdh0+q0zy9BE+QB+30Su6sX6TKQmgG5fd5hwguqd WSTJ4BDZ5Oin+M0fa8PyDR0ld8yVz7Px5+xU8w511ChzlVxt+fVZb0AXdcogICH4 oT2DlKx+FEVxKLBMV/pkTalOYRqzO6VjLallp2hfR99lR3FoqNB4tGZeJrZzz18S CCmbyUQ= -----END CERTIFICATE-----Generated at Sun Feb 16 21:52:26 2025 by rpki-client