$ rpki-client -vvf rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/7EBB570A296C11EBB7D88147C4F9AE02.roa File: 7EBB570A296C11EBB7D88147C4F9AE02.roa (raw, json) Hash identifier: By6Dq5HHVlEkvf0nTtSM0kJMMOYfz+8LI2/AK8Ixb68= Subject key identifier: C4:5E:9E:79:F8:C4:F8:F1:69:36:6C:5A:90:EA:B9:D9:42:5B:60:3D Certificate issuer: /CN=A9139220/serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Certificate serial: 06CE Authority key identifier: E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/7EBB570A296C11EBB7D88147C4F9AE02.roa Signing time: Sun 15 Sep 2024 00:00:55 +0000 ROA not before: Sun 15 Sep 2024 00:00:55 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 17707 IP address blocks: 125.6.0.0/19 maxlen: 24 125.6.112.0/20 maxlen: 24 125.6.128.0/17 maxlen: 24 203.104.96.0/20 maxlen: 24 203.104.208.0/22 maxlen: 24 203.131.192.0/20 maxlen: 24 203.174.64.0/20 maxlen: 24 2407:3000::/32 maxlen: 32 2407:3000:6::/48 maxlen: 48 2407:3000:6a::/48 maxlen: 48 2407:3000:6d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1742 (0x6ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139220/serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Validity Not Before: Sep 15 00:00:55 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e623b6-91a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bc:5a:06:42:d8:69:ca:eb:12:73:a5:75:8e: 6e:c7:62:8f:3c:5a:7e:93:6c:e9:b9:2d:8f:09:25: e6:d1:b8:c8:97:b0:48:46:c2:fa:ab:d0:8d:9a:1b: 9a:50:f2:41:37:95:0d:62:c4:19:9a:ea:a4:63:55: 43:3b:83:be:24:d1:e1:ab:5d:79:ba:60:18:64:69: ab:19:39:64:1e:02:3b:79:84:b7:68:6d:04:b1:36: 4f:cd:86:f4:fc:09:b0:11:e1:12:0e:f2:fa:af:fb: 96:12:cb:3b:aa:8b:99:91:5b:98:e4:35:a8:80:e2: a7:7e:42:a8:f9:59:1d:54:0e:16:72:cd:b6:ca:74: 59:d5:e0:48:6a:2f:3f:15:86:90:30:e8:8c:2b:a9: fe:41:d7:d1:0a:9b:99:0b:f3:9c:85:42:b7:b2:d7: 8a:ed:3d:93:a6:fc:59:e6:9e:7f:fd:40:47:04:d2: 39:fb:f9:3f:79:d7:31:6a:77:c8:cd:46:6d:42:fa: f7:60:5c:97:c0:8f:91:d4:de:6b:88:71:c2:3a:c2: f0:44:3a:d1:d2:4d:02:60:08:27:ea:ee:6a:59:ab: b9:85:64:92:c8:a7:69:6e:e8:92:63:89:c8:55:d9: a9:06:aa:2a:c6:56:46:9d:86:86:cb:2d:8d:23:17: 5f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:5E:9E:79:F8:C4:F8:F1:69:36:6C:5A:90:EA:B9:D9:42:5B:60:3D X509v3 Authority Key Identifier: keyid:E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/7EBB570A296C11EBB7D88147C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.6.0.0/19 125.6.112.0-125.6.255.255 203.104.96.0/20 203.104.208.0/22 203.131.192.0/20 203.174.64.0/20 IPv6: 2407:3000::/32 Signature Algorithm: sha256WithRSAEncryption 5c:b0:de:ec:a6:69:cc:ab:9e:3e:38:3e:40:f0:3b:35:8b:fc: 57:2d:2a:e2:6d:5e:71:1e:05:11:e5:0a:4d:68:7e:18:26:cd: ca:0c:cc:67:7c:6b:e8:3c:b1:f4:ec:1e:89:fa:b8:6a:de:c6: 95:73:61:58:fd:c9:1c:8a:18:b2:b7:df:b9:7f:45:5d:84:15: 41:c3:16:13:d2:e2:66:14:4c:a2:6d:89:d4:e0:70:e9:88:0e: 48:6e:39:72:aa:ad:c4:bc:53:3d:18:82:99:69:b9:59:59:e4: 3f:be:27:0b:aa:6c:1d:4f:12:e8:74:b7:47:df:3d:4d:ab:f6: 37:af:aa:58:f3:b9:51:65:92:3c:74:62:42:9d:03:6d:b6:cc: 4d:98:f6:81:5f:e9:8b:16:c9:8d:6d:c8:c9:aa:d5:8f:e1:7e: e5:ca:d2:7f:7e:b3:ff:2a:d7:9e:ef:f7:4c:52:9d:3c:37:fb: ca:8c:46:44:7f:33:95:35:22:83:36:56:2d:d5:5f:b5:e5:20: d6:e9:f7:cd:84:58:5a:f0:df:66:fa:55:35:1c:c6:80:50:51: 55:1a:c8:eb:bb:68:37:31:69:6e:a2:d6:7e:a5:3f:ba:9a:46: 85:b0:34:c5:ca:bc:95:06:3b:dd:2c:2f:33:6e:0b:7d:6d:c5: ed:f8:37:95 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgICBs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkyMjAxMTAvBgNVBAUTKEUyQ0ZDNDJCNkEwODE1MEFFRkVGRTcxODlCRTVBRjJC RTU2OEY4QzEwHhcNMjQwOTE1MDAwMDU1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU2MjNiNi05MWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrxaBkLYacrrEnOldY5ux2KPPFp+k2zpuS2PCSXm0bjIl7BIRsL6q9CNmhua UPJBN5UNYsQZmuqkY1VDO4O+JNHhq115umAYZGmrGTlkHgI7eYS3aG0EsTZPzYb0 /AmwEeESDvL6r/uWEss7qouZkVuY5DWogOKnfkKo+VkdVA4Wcs22ynRZ1eBIai8/ FYaQMOiMK6n+QdfRCpuZC/OchUK3steK7T2TpvxZ5p5//UBHBNI5+/k/edcxanfI zUZtQvr3YFyXwI+R1N5riHHCOsLwRDrR0k0CYAgn6u5qWau5hWSSyKdpbuiSY4nI VdmpBqoqxlZGnYaGyy2NIxdf1QIDAQABo4ICyTCCAsUwHQYDVR0OBBYEFMRennn4 xPjxaTZsWpDqudlCW2A9MB8GA1UdIwQYMBaAFOLPxCtqCBUK7+/nGJvlryvlaPjB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTIyMC8xNUNEMUMyMjI4 QjAxMUVCQjQ0NjlFMUVDNEY5QUUwMi80c19FSzJvSUZRcnY3LWNZbS1XdkstVm8t TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRzX0VLMm9JRlFydjctY1ltLVd2Sy1Wby1NRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkyMjAvMTVDRDFDMjIyOEIwMTFFQkI0NDY5RTFFQzRGOUFFMDIvN0VCQjU3MEEy OTZDMTFFQkI3RDg4MTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUwYIKwYBBQUHAQcBAf8E RDBCMDEEAgABMCsDBAV9BgAwCwMEBH0GcAMDAH0GAwQEy2hgAwQCy2jQAwQEy4PA AwQEy65AMA0EAgACMAcDBQAkBzAAMA0GCSqGSIb3DQEBCwUAA4IBAQBcsN7spmnM q54+OD5A8Ds1i/xXLSribV5xHgUR5QpNaH4YJs3KDMxnfGvoPLH07B6J+rhq3saV c2FY/ckcihiyt9+5f0VdhBVBwxYT0uJmFEyibYnU4HDpiA5Ibjlyqq3EvFM9GIKZ ablZWeQ/vicLqmwdTxLodLdH3z1Nq/Y3r6pY87lRZZI8dGJCnQNttsxNmPaBX+mL FsmNbcjJqtWP4X7lytJ/frP/Ktee7/dMUp08N/vKjEZEfzOVNSKDNlYt1V+15SDW 6ffNhFha8N9m+lU1HMaAUFFVGsjru2g3MWluotZ+pT+6mkaFsDTFyryVBjvdLC8z bgt9bcXt+DeV -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:37 2024 by rpki-client on console-ams.rpki-client.org