$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/234074FA00DD11EE95AF6F7CC4F9AE02.roa File: 234074FA00DD11EE95AF6F7CC4F9AE02.roa (raw, json) Hash identifier: h1m9sLre/7LN5ad1i+1GbnT3wM3IJOvLq7MEJkLNy3c= Subject key identifier: A3:D6:29:BB:A9:B6:07:C7:49:F1:58:ED:EB:07:1A:35:2F:D2:DA:75 Certificate issuer: /CN=A9125C3D/serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Certificate serial: A4 Authority key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/234074FA00DD11EE95AF6F7CC4F9AE02.roa Signing time: Wed 03 Apr 2024 04:05:53 +0000 ROA not before: Wed 03 Apr 2024 04:05:53 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136964 IP address blocks: 167.179.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C3D/serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Validity Not Before: Apr 3 04:05:53 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660cd5a1-0aa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a7:0b:0c:76:f7:a4:0f:f1:cd:93:a3:90:88: d8:ce:f7:ba:aa:e2:22:73:c9:42:69:a3:59:83:66: 12:f6:08:99:5e:10:c2:14:d4:ce:82:b2:63:17:58: c7:41:6a:67:d0:ee:bc:c9:dd:43:e2:f4:7a:47:64: e4:7d:e5:c7:a1:1c:a7:32:b6:b4:4c:ab:20:68:d0: ce:82:53:db:3b:da:df:86:cf:b7:86:07:51:e0:bd: c0:9b:65:b5:b1:ba:e7:b6:35:cb:f7:19:12:e3:7d: 1e:72:63:1b:30:19:97:a6:70:cd:43:a7:c2:4e:82: bc:0e:57:ac:ed:0f:ef:ec:65:20:8b:b8:46:7e:a3: 27:6b:f6:d5:ba:40:85:5c:d2:36:78:af:60:ec:18: f4:6f:2b:22:1c:52:72:95:e6:51:48:a8:f5:9a:a9: 37:9e:1b:6c:35:56:54:22:b6:5e:8c:da:e6:e0:cb: 33:64:d6:79:30:80:ea:c9:cc:1c:a6:29:41:44:4e: c0:24:38:f2:79:1a:73:b2:fc:88:60:2b:19:55:eb: d7:92:2b:bf:93:e1:ec:b2:d8:be:b9:90:69:85:b2: 90:cc:a6:fb:45:90:49:ba:b4:c7:1d:36:56:f3:74: 05:4c:23:98:21:b1:2f:78:02:81:66:fc:2c:11:65: 43:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D6:29:BB:A9:B6:07:C7:49:F1:58:ED:EB:07:1A:35:2F:D2:DA:75 X509v3 Authority Key Identifier: keyid:53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/234074FA00DD11EE95AF6F7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.179.2.0/24 Signature Algorithm: sha256WithRSAEncryption 44:5b:91:2e:7f:65:40:8a:b9:33:7c:b5:bc:83:89:41:fa:1f: 64:af:74:09:d1:4f:d3:5a:99:a4:f3:d1:eb:99:34:c8:28:94: 67:23:05:9b:3d:cd:4d:c7:cd:0e:8b:3c:ae:9c:4d:03:26:e5: fe:2a:c3:0c:57:92:db:2b:55:ef:f0:ec:ec:78:cb:3e:25:8e: e5:8f:28:d6:c0:0c:87:e2:b2:e9:22:29:e1:70:df:7c:4c:46: 27:c2:1d:82:e7:69:8e:39:42:2d:b5:ae:ff:76:ef:cc:0f:26: 7f:5a:d4:5e:6d:09:c5:08:89:d7:a8:d2:a9:d6:29:3c:cc:51: 1b:bd:65:6f:b8:f0:30:cf:05:83:f0:f2:22:c5:22:41:03:fd: 42:21:db:f0:75:c2:cf:b0:d7:45:0b:2c:d0:f8:56:81:cf:9c: 3f:06:0b:e7:0d:22:c9:fb:62:94:68:cb:3f:d3:05:22:09:3d: a5:ce:dd:d5:e5:e7:ba:44:31:31:27:fe:c8:61:c6:ed:4e:b4: 30:36:77:e2:bb:59:d9:4b:3f:ed:53:0a:e2:7f:aa:f6:58:85: a6:b3:ff:cb:e3:a2:e6:f1:8f:07:65:07:83:a3:b3:c0:15:c5: a8:8d:c9:2b:4b:54:4f:50:ab:df:d3:c3:69:d0:6f:a2:18:2f: 47:26:7b:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDM0QxMTAvBgNVBAUTKDUzNkI5MUIxN0I2RTFCQjE2MzhDODM1OEEwRkE1RUE1 RDBFQkVGQjcwHhcNMjQwNDAzMDQwNTUzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjZDVhMS0wYWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqcLDHb3pA/xzZOjkIjYzve6quIic8lCaaNZg2YS9giZXhDCFNTOgrJjF1jH QWpn0O68yd1D4vR6R2TkfeXHoRynMra0TKsgaNDOglPbO9rfhs+3hgdR4L3Am2W1 sbrntjXL9xkS430ecmMbMBmXpnDNQ6fCToK8Dles7Q/v7GUgi7hGfqMna/bVukCF XNI2eK9g7Bj0bysiHFJyleZRSKj1mqk3nhtsNVZUIrZejNrm4MszZNZ5MIDqycwc pilBRE7AJDjyeRpzsvyIYCsZVevXkiu/k+Hssti+uZBphbKQzKb7RZBJurTHHTZW 83QFTCOYIbEveAKBZvwsEWVDGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKPWKbup tgfHSfFY7esHGjUv0tp1MB8GA1UdIwQYMBaAFFNrkbF7bhuxY4yDWKD6XqXQ6++3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzRC8yMzIzRkQ4MDAw RDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3RmpqSU5Zb1BwZXBkRHI3 N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1UydVJzWHR1RzdGampJTllvUHBlcGREcjc3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjVDM0QvMjMyM0ZEODAwMEQ3MTFFRTkzQ0IwRjdFQzRGOUFFMDIvMjM0MDc0RkEw MEREMTFFRTk1QUY2RjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACnswIwDQYJKoZIhvcNAQELBQADggEBAERbkS5/ZUCKuTN8 tbyDiUH6H2SvdAnRT9NamaTz0euZNMgolGcjBZs9zU3HzQ6LPK6cTQMm5f4qwwxX ktsrVe/w7Ox4yz4ljuWPKNbADIfisukiKeFw33xMRifCHYLnaY45Qi21rv9278wP Jn9a1F5tCcUIideo0qnWKTzMURu9ZW+48DDPBYPw8iLFIkED/UIh2/B1ws+w10UL LND4VoHPnD8GC+cNIsn7YpRoyz/TBSIJPaXO3dXl57pEMTEn/shhxu1OtDA2d+K7 WdlLP+1TCuJ/qvZYhaaz/8vjoubxjwdlB4Ojs8AVxaiNyStLVE9Qq9/Tw2nQb6IY L0cme2I= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:52 2024 by rpki-client on console-fra.rpki-client.org