$ rpki-client -vvf rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/7EBB570A296C11EBB7D88147C4F9AE02.roa File: 7EBB570A296C11EBB7D88147C4F9AE02.roa (raw, json) Hash identifier: Z2l3oGv/nfXDALPGn15LKGvh23XHiWzTGaSb6NfX+J8= Subject key identifier: 4D:3B:3E:87:C6:09:2E:68:AE:04:B0:20:DF:10:19:4C:53:6D:1C:3D Certificate issuer: /CN=A9139220/serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Certificate serial: 0615 Authority key identifier: E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/7EBB570A296C11EBB7D88147C4F9AE02.roa Signing time: Fri 22 Sep 2023 22:40:18 +0000 ROA not before: Fri 22 Sep 2023 22:40:18 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 17707 IP address blocks: 125.6.0.0/19 maxlen: 24 125.6.112.0/20 maxlen: 24 125.6.128.0/17 maxlen: 24 203.104.96.0/20 maxlen: 24 203.104.208.0/22 maxlen: 24 203.131.192.0/20 maxlen: 24 203.174.64.0/20 maxlen: 24 2407:3000::/32 maxlen: 32 2407:3000:6::/48 maxlen: 48 2407:3000:6a::/48 maxlen: 48 2407:3000:6d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1557 (0x615) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139220/serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Validity Not Before: Sep 22 22:40:18 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=650e17d2-03f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5c:42:23:96:28:df:13:a3:d0:e0:4f:d8:aa: 73:c6:8d:99:69:d0:fa:b6:aa:85:b6:2d:79:67:1b: 34:91:6e:58:e1:f7:2d:8f:22:58:fd:cd:62:3b:fa: b7:e2:11:57:6e:32:dd:52:e3:91:a7:b2:c1:f2:cd: 25:4d:63:8c:d7:53:4c:e0:fa:5e:41:f0:f9:87:31: 39:a3:83:0f:87:20:a3:f5:46:41:4d:7d:77:e2:45: 9c:f2:fb:f0:42:d6:8f:33:79:98:47:e7:0f:4a:35: d0:7c:31:ac:2f:16:a1:31:e8:54:75:6e:71:c3:f3: 99:23:e3:95:5b:38:3d:17:24:a3:b8:da:43:e2:4c: 8f:b8:d3:c8:95:9e:e3:f7:3d:25:ab:fb:30:34:35: 75:a4:92:c1:8b:f0:3c:95:55:e1:2c:1e:fd:b7:d6: 2b:fd:1d:68:64:d9:5d:a1:7c:3d:f6:02:6b:e5:19: b9:5f:a8:b6:7e:4c:e2:65:85:69:ce:04:89:49:73: 9b:a3:5b:26:ac:b5:be:82:e5:3f:6d:a7:73:85:e9: fb:8c:d5:94:16:bf:8d:21:76:ac:81:f8:21:c8:89: 23:78:eb:2b:5a:c0:30:03:d0:d5:26:70:04:9d:ca: 2c:fe:66:18:4b:5b:c8:7a:2b:17:2a:c6:23:2b:16: dd:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:3B:3E:87:C6:09:2E:68:AE:04:B0:20:DF:10:19:4C:53:6D:1C:3D X509v3 Authority Key Identifier: keyid:E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/7EBB570A296C11EBB7D88147C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.6.0.0/19 125.6.112.0-125.6.255.255 203.104.96.0/20 203.104.208.0/22 203.131.192.0/20 203.174.64.0/20 IPv6: 2407:3000::/32 Signature Algorithm: sha256WithRSAEncryption 5a:67:8d:6e:fd:b8:2b:b8:9c:e6:53:75:f0:25:85:64:1d:8d: e3:82:40:d7:e1:d2:82:78:3e:99:61:d8:13:28:77:e2:eb:b7: bb:23:66:89:4a:49:d3:86:e0:4c:0a:11:3d:b0:95:53:60:d9: f0:be:7f:f5:c8:1e:75:95:a7:6f:90:76:e6:1c:35:67:0c:ca: ae:0a:9f:d5:64:09:29:df:d1:a0:fc:b6:9e:39:22:9b:5c:bf: bb:85:86:66:fe:40:3c:d8:ba:81:55:17:8a:31:de:92:e8:3d: 22:b4:08:5c:3d:df:c0:1f:2b:5d:40:39:43:c3:fe:c6:5a:43: 63:85:0c:7f:78:a9:86:0d:0f:bc:83:41:cf:75:3c:06:ce:18: 43:28:59:9b:52:c2:ba:32:d2:64:f7:3d:47:55:55:5e:e4:b7: 4b:f9:a9:a3:49:9e:91:a4:f9:a5:d3:79:79:99:19:ad:8b:18: 2d:49:8c:01:34:8a:6b:99:ab:f2:40:52:97:c5:3b:f1:48:89: 8c:ef:73:b9:25:c7:88:d1:1e:f4:6c:78:5c:9e:1c:c9:b5:d6: c0:a8:67:b6:4f:23:c3:e5:77:fb:93:ba:56:1a:8e:df:58:b4: 4a:ab:c6:53:08:c9:1b:bf:19:54:13:06:27:ca:79:b7:77:3a: 69:78:2f:4f -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgICBhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkyMjAxMTAvBgNVBAUTKEUyQ0ZDNDJCNkEwODE1MEFFRkVGRTcxODlCRTVBRjJC RTU2OEY4QzEwHhcNMjMwOTIyMjI0MDE4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBlMTdkMi0wM2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAolxCI5Yo3xOj0OBP2Kpzxo2ZadD6tqqFti15Zxs0kW5Y4fctjyJY/c1iO/q3 4hFXbjLdUuORp7LB8s0lTWOM11NM4PpeQfD5hzE5o4MPhyCj9UZBTX134kWc8vvw QtaPM3mYR+cPSjXQfDGsLxahMehUdW5xw/OZI+OVWzg9FySjuNpD4kyPuNPIlZ7j 9z0lq/swNDV1pJLBi/A8lVXhLB79t9Yr/R1oZNldoXw99gJr5Rm5X6i2fkziZYVp zgSJSXObo1smrLW+guU/badzhen7jNWUFr+NIXasgfghyIkjeOsrWsAwA9DVJnAE ncos/mYYS1vIeisXKsYjKxbdmQIDAQABo4ICyTCCAsUwHQYDVR0OBBYEFE07PofG CS5orgSwIN8QGUxTbRw9MB8GA1UdIwQYMBaAFOLPxCtqCBUK7+/nGJvlryvlaPjB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTIyMC8xNUNEMUMyMjI4 QjAxMUVCQjQ0NjlFMUVDNEY5QUUwMi80c19FSzJvSUZRcnY3LWNZbS1XdkstVm8t TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRzX0VLMm9JRlFydjctY1ltLVd2Sy1Wby1NRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkyMjAvMTVDRDFDMjIyOEIwMTFFQkI0NDY5RTFFQzRGOUFFMDIvN0VCQjU3MEEy OTZDMTFFQkI3RDg4MTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUwYIKwYBBQUHAQcBAf8E RDBCMDEEAgABMCsDBAV9BgAwCwMEBH0GcAMDAH0GAwQEy2hgAwQCy2jQAwQEy4PA AwQEy65AMA0EAgACMAcDBQAkBzAAMA0GCSqGSIb3DQEBCwUAA4IBAQBaZ41u/bgr uJzmU3XwJYVkHY3jgkDX4dKCeD6ZYdgTKHfi67e7I2aJSknThuBMChE9sJVTYNnw vn/1yB51ladvkHbmHDVnDMquCp/VZAkp39Gg/LaeOSKbXL+7hYZm/kA82LqBVReK Md6S6D0itAhcPd/AHytdQDlDw/7GWkNjhQx/eKmGDQ+8g0HPdTwGzhhDKFmbUsK6 MtJk9z1HVVVe5LdL+amjSZ6RpPml03l5mRmtixgtSYwBNIprmavyQFKXxTvxSImM 73O5JceI0R70bHhcnhzJtdbAqGe2TyPD5Xf7k7pWGo7fWLRKq8ZTCMkbvxlUEwYn ynm3dzppeC9P -----END CERTIFICATE-----Generated at Fri May 17 00:24:20 2024 by rpki-client on console-fra.rpki-client.org