$ rpki-client -vvf rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/2BAB8262C3E011EEB2428870C4F9AE02.roa File: 2BAB8262C3E011EEB2428870C4F9AE02.roa (raw, json) Hash identifier: l8LmNf7dw4lpE2t1iEeA/WiUyOVT0TclK1VikhzrofY= Subject key identifier: 85:BF:17:E9:53:27:B5:61:FD:4A:2C:9A:06:EB:1D:1D:67:3D:93:8C Certificate issuer: /CN=A9126DA8/serialNumber=BC137C2777E51DE7BD1ACE80D868FD93A1EC7A43 Certificate serial: 0222 Authority key identifier: BC:13:7C:27:77:E5:1D:E7:BD:1A:CE:80:D8:68:FD:93:A1:EC:7A:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBN8J3flHee9Gs6A2Gj9k6HsekM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/2BAB8262C3E011EEB2428870C4F9AE02.roa Signing time: Wed 05 Jun 2024 05:21:45 +0000 ROA not before: Wed 05 Jun 2024 05:21:45 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 393506 IP address blocks: 103.25.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/vBN8J3flHee9Gs6A2Gj9k6HsekM.crl rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/vBN8J3flHee9Gs6A2Gj9k6HsekM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBN8J3flHee9Gs6A2Gj9k6HsekM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 546 (0x222) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126DA8/serialNumber=BC137C2777E51DE7BD1ACE80D868FD93A1EC7A43 Validity Not Before: Jun 5 05:21:45 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665ff5e9-7a54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f0:c7:d8:c4:d6:78:70:dd:cd:58:68:88:40: a5:bc:00:0d:bf:04:23:93:fa:56:2e:14:1b:f8:d0: 4a:1b:3f:5f:40:7f:0d:08:1e:b4:c8:42:a7:f1:3b: 71:66:4a:5e:b8:28:d5:59:d8:60:53:89:9e:b4:21: f7:00:a9:9b:fa:37:ae:04:43:8b:d7:07:6b:fc:7d: ab:b5:84:22:ef:7e:50:c5:57:93:7a:e3:b2:dc:28: b0:a2:7a:c5:b0:52:b2:83:96:42:2c:41:18:67:02: 85:ec:a5:ff:c1:48:5a:d4:64:b2:de:1c:cf:af:a7: 4e:71:c0:e3:f2:6a:99:85:4b:91:af:91:cf:67:0e: 85:f5:4f:be:e6:ab:f7:f3:00:2c:df:de:80:21:f0: d4:2b:6e:08:ab:f5:c3:56:2c:93:79:c2:cd:fa:7c: b6:da:c2:43:c7:48:2f:d6:00:c7:ca:0e:8b:59:d4: 66:85:33:45:6f:1c:5f:7d:76:92:ba:f4:55:77:5f: 35:86:79:fd:43:2c:70:4d:6c:aa:95:1b:4b:a9:a1: b6:57:57:d1:01:96:22:e2:14:89:d2:af:56:34:81: 60:e7:d5:ea:b3:09:50:f9:69:04:5b:be:f7:ce:1d: 77:98:79:14:42:ef:2d:29:0c:69:9b:e2:e8:a8:98: a0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:BF:17:E9:53:27:B5:61:FD:4A:2C:9A:06:EB:1D:1D:67:3D:93:8C X509v3 Authority Key Identifier: keyid:BC:13:7C:27:77:E5:1D:E7:BD:1A:CE:80:D8:68:FD:93:A1:EC:7A:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/vBN8J3flHee9Gs6A2Gj9k6HsekM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBN8J3flHee9Gs6A2Gj9k6HsekM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/2BAB8262C3E011EEB2428870C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.25.125.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:17:8c:57:60:7e:dc:52:d7:ef:38:07:a7:af:51:55:cb:a3: e8:d5:0b:23:33:59:86:18:bc:08:e8:b0:03:78:85:05:88:ec: 34:ab:aa:6a:63:a1:b7:c4:a1:b4:42:d8:15:d5:36:4c:17:f9: c0:0f:c9:4a:35:1f:89:23:92:79:c2:25:c9:6d:b0:38:ba:99: 1e:75:7c:4f:af:8e:c9:a2:89:66:31:ad:58:5e:91:aa:f0:dd: d4:ae:34:da:3f:ed:88:e8:a0:9d:eb:8f:29:b4:40:ae:06:ac: 36:26:e0:c6:ed:b3:99:c9:52:5c:77:ac:7c:d5:a9:18:6b:1f: b0:f1:5c:cb:3c:59:2c:5a:5c:9d:16:70:4d:63:3e:95:84:55: 3f:d9:af:c6:b4:07:08:e7:ee:89:4b:f6:4b:b7:95:c7:38:04: c8:f5:3d:05:4f:8c:89:6d:2f:1d:03:6c:fe:22:1f:01:05:99: d6:75:c8:ec:19:47:7c:36:8c:36:d1:14:f1:74:00:a8:26:1f: 4f:15:52:38:e8:76:8b:8e:43:b2:2a:50:da:f6:7e:14:f1:de: 13:ef:b7:5a:85:03:dc:f1:88:77:b0:a2:82:ed:20:64:c0:b5: ef:cc:8b:cc:45:5b:82:4d:a7:76:da:5b:d5:fb:1b:c5:60:e6: 5d:43:9b:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZEQTgxMTAvBgNVBAUTKEJDMTM3QzI3NzdFNTFERTdCRDFBQ0U4MEQ4NjhGRDkz QTFFQzdBNDMwHhcNMjQwNjA1MDUyMTQ1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVmZjVlOS03YTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPDH2MTWeHDdzVhoiEClvAANvwQjk/pWLhQb+NBKGz9fQH8NCB60yEKn8Ttx ZkpeuCjVWdhgU4metCH3AKmb+jeuBEOL1wdr/H2rtYQi735QxVeTeuOy3CiwonrF sFKyg5ZCLEEYZwKF7KX/wUha1GSy3hzPr6dOccDj8mqZhUuRr5HPZw6F9U++5qv3 8wAs396AIfDUK24Iq/XDViyTecLN+ny22sJDx0gv1gDHyg6LWdRmhTNFbxxffXaS uvRVd181hnn9QyxwTWyqlRtLqaG2V1fRAZYi4hSJ0q9WNIFg59XqswlQ+WkEW773 zh13mHkUQu8tKQxpm+LoqJigNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIW/F+lT J7Vh/UosmgbrHR1nPZOMMB8GA1UdIwQYMBaAFLwTfCd35R3nvRrOgNho/ZOh7HpD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkRBOC83NkVENDRFRTAx RUIxMUVEOTlBMzFBMUZDNEY5QUUwMi92Qk44SjNmbEhlZTlHczZBMkdqOWs2SHNl a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZCTjhKM2ZsSGVlOUdzNkEyR2o5azZIc2VrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjZEQTgvNzZFRDQ0RUUwMUVCMTFFRDk5QTMxQTFGQzRGOUFFMDIvMkJBQjgyNjJD M0UwMTFFRUIyNDI4ODcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnGX0wDQYJKoZIhvcNAQELBQADggEBACsXjFdgftxS1+84 B6evUVXLo+jVCyMzWYYYvAjosAN4hQWI7DSrqmpjobfEobRC2BXVNkwX+cAPyUo1 H4kjknnCJcltsDi6mR51fE+vjsmiiWYxrVhekarw3dSuNNo/7YjooJ3rjym0QK4G rDYm4Mbts5nJUlx3rHzVqRhrH7DxXMs8WSxaXJ0WcE1jPpWEVT/Zr8a0Bwjn7olL 9ku3lcc4BMj1PQVPjIltLx0DbP4iHwEFmdZ1yOwZR3w2jDbRFPF0AKgmH08VUjjo douOQ7IqUNr2fhTx3hPvt1qFA9zxiHewooLtIGTAte/Mi8xFW4JNp3baW9X7G8Vg 5l1Dm+0= -----END CERTIFICATE-----Generated at Mon Nov 25 02:48:52 2024 by rpki-client on console-ams.rpki-client.org