$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/7125C7DE611411ECBF66B385C4F9AE02.roa File: 7125C7DE611411ECBF66B385C4F9AE02.roa (raw, json) Hash identifier: fQeMexksrWbmj3MqUO1/5SrQnRCI+pFaupppGDL+jic= Subject key identifier: 52:5C:51:57:1B:C2:85:7C:53:7C:25:F4:0F:2B:CA:DB:3A:06:2D:94 Certificate issuer: /CN=A9140BD4/serialNumber=F13BCA804F8F198176F99E7BC9AEA98CAFC0B8B1 Certificate serial: 0395 Authority key identifier: F1:3B:CA:80:4F:8F:19:81:76:F9:9E:7B:C9:AE:A9:8C:AF:C0:B8:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/7125C7DE611411ECBF66B385C4F9AE02.roa Signing time: Sat 29 Jun 2024 02:54:59 +0000 ROA not before: Sat 29 Jun 2024 02:54:59 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 17792 IP address blocks: 202.21.130.0/24 maxlen: 24 202.50.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.crl rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 917 (0x395) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BD4/serialNumber=F13BCA804F8F198176F99E7BC9AEA98CAFC0B8B1 Validity Not Before: Jun 29 02:54:59 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667f7782-ed53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f4:7f:d4:60:79:be:93:75:7a:37:41:37:6b: d4:21:ea:ee:98:7d:26:77:99:0d:88:e5:e1:76:b2: e3:ff:f5:1c:fd:04:5c:d2:b4:b9:7e:e4:ed:cf:80: f8:b7:7a:9d:2a:ef:b4:37:1b:3f:f6:ea:24:cb:2e: 42:ee:18:0d:db:3b:97:e2:f2:00:dd:23:04:cd:25: 4e:27:8f:1d:fd:6b:78:12:a4:a2:40:31:1a:6a:f8: 39:5c:d2:d8:fe:43:6b:2c:6e:e9:90:32:45:28:ce: 81:9b:19:0d:1d:9e:ed:51:6c:ee:21:65:80:61:f7: e2:0a:53:50:5e:6e:44:6e:c4:2a:9b:0f:5a:30:54: 12:ae:45:05:c2:2f:f5:4d:37:d0:a9:59:33:a0:b7: d1:9c:21:fe:9f:f8:9f:a2:62:3b:4e:a4:14:f0:ae: e2:38:bd:48:b1:44:8c:e1:a7:06:d5:6b:49:e9:a1: ee:d9:a8:ff:14:38:ba:16:3a:82:94:d1:fe:ad:f9: fc:fa:94:30:15:5b:0b:cc:e3:93:74:ad:d6:77:0d: ec:58:8a:de:3f:24:55:77:bd:05:a5:bc:4d:ad:08: 7c:7e:1d:52:5b:80:5c:ae:39:e9:1f:b0:82:e3:3f: 79:8d:40:ba:33:55:28:64:20:97:2c:de:0d:f0:1b: 6c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:5C:51:57:1B:C2:85:7C:53:7C:25:F4:0F:2B:CA:DB:3A:06:2D:94 X509v3 Authority Key Identifier: keyid:F1:3B:CA:80:4F:8F:19:81:76:F9:9E:7B:C9:AE:A9:8C:AF:C0:B8:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/7125C7DE611411ECBF66B385C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.21.130.0/24 202.50.192.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:68:df:32:96:bd:7b:d4:e3:0c:2b:1d:59:66:d5:ac:6d:21: aa:8e:8b:a0:e4:3b:cd:43:e0:42:29:67:97:dc:a2:ce:bc:ed: 15:cd:5e:ce:ad:d5:97:ca:7f:ba:13:ae:d3:91:61:76:4b:93: 45:c1:a4:46:cc:1b:6e:2c:4f:19:7c:a6:49:dc:a9:2d:b9:ea: 7a:37:bd:23:58:5b:0d:9b:b1:c9:36:f1:9b:ae:59:e4:0e:29: 7b:e0:0a:a1:7a:dc:fc:6e:d1:e8:29:74:cd:87:67:83:48:d2: 99:fd:14:0c:34:91:27:59:30:95:e4:ae:cc:8b:57:07:4b:6f: 1b:48:9e:a3:31:72:4c:84:ea:29:82:dd:b2:1c:b6:44:e7:85: e5:6c:66:8b:ed:0a:fb:4d:37:fe:e3:d3:30:5c:cd:99:f1:bb: 6b:0e:bb:e4:fd:4f:f1:e2:fa:39:58:b7:a6:2d:a8:51:d3:70: fc:7e:93:98:da:5a:98:d3:1a:d5:bb:08:2f:c1:e3:70:2b:39: 95:2e:cf:04:b9:1a:16:8b:cc:19:4d:13:d2:69:fc:16:7d:92: 30:d7:c2:fa:41:be:7b:4a:2a:75:f6:09:54:43:5a:ce:ec:32: 0b:67:a3:8d:fd:54:1e:50:cd:ae:21:bb:11:32:5d:6f:f9:c7: 49:d6:98:da -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRDQxMTAvBgNVBAUTKEYxM0JDQTgwNEY4RjE5ODE3NkY5OUU3QkM5QUVBOThD QUZDMEI4QjEwHhcNMjQwNjI5MDI1NDU5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdmNzc4Mi1lZDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2vR/1GB5vpN1ejdBN2vUIerumH0md5kNiOXhdrLj//Uc/QRc0rS5fuTtz4D4 t3qdKu+0Nxs/9uokyy5C7hgN2zuX4vIA3SMEzSVOJ48d/Wt4EqSiQDEaavg5XNLY /kNrLG7pkDJFKM6BmxkNHZ7tUWzuIWWAYffiClNQXm5EbsQqmw9aMFQSrkUFwi/1 TTfQqVkzoLfRnCH+n/ifomI7TqQU8K7iOL1IsUSM4acG1WtJ6aHu2aj/FDi6FjqC lNH+rfn8+pQwFVsLzOOTdK3Wdw3sWIrePyRVd70FpbxNrQh8fh1SW4BcrjnpH7CC 4z95jUC6M1UoZCCXLN4N8BtsawIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFJcUVcb woV8U3wl9A8ryts6Bi2UMB8GA1UdIwQYMBaAFPE7yoBPjxmBdvmee8muqYyvwLix MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJENC80ODY1QkQ0ODYx MTExMUVDOTg0RTNFN0ZDNEY5QUUwMi84VHZLZ0UtUEdZRjItWjU3eWE2cGpLX0F1 TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhUdktnRS1QR1lGMi1aNTd5YTZwaktfQXVMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBCRDQvNDg2NUJENDg2MTExMTFFQzk4NEUzRTdGQzRGOUFFMDIvNzEyNUM3REU2 MTE0MTFFQ0JGNjZCMzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKFYIDBALKMsAwDQYJKoZIhvcNAQELBQADggEBAJ1o3zKW vXvU4wwrHVlm1axtIaqOi6DkO81D4EIpZ5fcos687RXNXs6t1ZfKf7oTrtORYXZL k0XBpEbMG24sTxl8pkncqS256no3vSNYWw2bsck28ZuuWeQOKXvgCqF63Pxu0egp dM2HZ4NI0pn9FAw0kSdZMJXkrsyLVwdLbxtInqMxckyE6imC3bIctkTnheVsZovt CvtNN/7j0zBczZnxu2sOu+T9T/Hi+jlYt6YtqFHTcPx+k5jaWpjTGtW7CC/B43Ar OZUuzwS5GhaLzBlNE9Jp/BZ9kjDXwvpBvntKKnX2CVRDWs7sMgtno439VB5Qza4h uxEyXW/5x0nWmNo= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:33 2024 by rpki-client on console-fra.rpki-client.org