$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/089CB7F8E41C11E9AD4A8D16C4F9AE02.roa File: 089CB7F8E41C11E9AD4A8D16C4F9AE02.roa (raw, json) Hash identifier: LW+TIr5v+G3CKRxsu0XP/t1VD2sS3Nf1hCjSfIn2mxw= Subject key identifier: A8:B9:D5:F2:C6:6A:8B:D5:D9:23:8E:FE:EF:D8:5C:C6:C5:62:BE:68 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 2514 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/089CB7F8E41C11E9AD4A8D16C4F9AE02.roa Signing time: Wed 16 Aug 2023 16:12:34 +0000 ROA not before: Wed 16 Aug 2023 16:12:34 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 38575 IP address blocks: 125.5.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9492 (0x2514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Aug 16 16:12:34 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64dcf572-98d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7d:22:fc:d3:a5:ab:88:24:22:7e:23:14:db: 18:d2:d3:e6:cf:2a:4f:04:96:c5:36:66:72:e3:d2: 22:69:bf:d9:0e:87:6a:46:70:51:80:0d:b9:f7:c0: fa:a1:4f:3d:f3:b3:cc:71:9c:e6:47:4c:44:f7:aa: fe:dd:ce:ec:cf:70:aa:69:df:bb:d8:3c:27:91:74: ab:39:c1:5c:1b:8c:87:f8:95:1d:2a:e9:37:8f:29: 0d:ec:e7:2a:9e:37:a6:b4:8c:62:0f:f4:99:c9:a9: 27:02:b8:f2:be:a7:c6:22:64:bb:a1:5b:65:70:a7: db:7a:41:29:ba:25:06:64:b9:a2:fd:01:17:e1:30: 37:e8:2b:8f:ca:d4:ea:d9:2e:71:12:74:ee:f5:42: 70:6b:8f:5f:0c:be:73:ac:5e:34:da:7f:74:1d:3f: f2:c4:3b:d9:d8:63:f4:a9:7f:df:8d:2b:7f:ed:b1: 82:e5:06:36:1b:5f:eb:59:46:37:cb:d0:31:b7:4a: f7:0e:04:2b:0b:96:cd:9c:fc:9e:d1:8d:7d:f5:36: c9:4b:24:d6:ca:4d:8a:06:d5:3c:93:2b:72:e1:ef: 19:5e:66:a4:12:a2:b1:bd:9f:fa:47:28:8f:a1:dc: d5:be:c0:95:b3:6d:f3:38:0b:0b:db:2e:cf:a8:12: 4b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:B9:D5:F2:C6:6A:8B:D5:D9:23:8E:FE:EF:D8:5C:C6:C5:62:BE:68 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/089CB7F8E41C11E9AD4A8D16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.8.0/24 Signature Algorithm: sha256WithRSAEncryption 56:fa:dc:ae:73:c1:7b:0a:c8:5e:b1:75:98:ab:a6:4e:d0:66: c6:26:03:3a:83:bd:35:f1:99:e7:06:7d:4a:0e:ce:eb:a8:86: 52:b0:89:48:52:5e:20:81:64:9f:8a:15:70:62:b7:70:14:92: 9a:76:52:cb:66:db:23:a1:e4:07:a1:e4:2c:d3:96:93:e2:0f: 97:8c:a6:5e:17:4c:2e:22:fb:8d:58:fd:64:75:85:ff:86:cc: 6e:a1:3d:9e:3c:95:8e:1a:0e:a9:33:66:13:da:ce:8e:56:91: d4:80:32:83:fd:7d:bc:e6:de:f9:6e:89:4c:9a:a2:d8:ad:f2: bd:21:20:0e:73:6d:2d:02:8b:6d:d4:62:83:5d:fd:75:a3:f3: eb:31:37:75:df:e3:86:c9:66:b9:97:30:89:1e:85:64:0f:1d: 8a:25:1f:06:2c:f2:91:0e:29:91:0c:70:90:78:10:7d:46:8b: d9:22:d1:3d:6d:ee:0b:79:47:24:dc:7f:74:35:bc:7f:35:ce: bc:5e:6a:d3:d9:ab:c6:3b:86:ec:81:c9:49:9d:b3:65:44:f1: 50:8c:1b:f2:52:d0:a5:35:86:3d:a7:7c:84:1b:db:bd:03:95: 6d:24:ae:2e:62:5d:8f:56:a1:6f:f2:75:ca:f8:e3:4b:5f:7d: 29:95:af:87 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjMwODE2MTYxMjM0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRjZjU3Mi05OGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuH0i/NOlq4gkIn4jFNsY0tPmzypPBJbFNmZy49Iiab/ZDodqRnBRgA2598D6 oU8987PMcZzmR0xE96r+3c7sz3Cqad+72DwnkXSrOcFcG4yH+JUdKuk3jykN7Ocq njemtIxiD/SZyaknArjyvqfGImS7oVtlcKfbekEpuiUGZLmi/QEX4TA36CuPytTq 2S5xEnTu9UJwa49fDL5zrF402n90HT/yxDvZ2GP0qX/fjSt/7bGC5QY2G1/rWUY3 y9Axt0r3DgQrC5bNnPye0Y199TbJSyTWyk2KBtU8kyty4e8ZXmakEqKxvZ/6RyiP odzVvsCVs23zOAsL2y7PqBJLNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKi51fLG aovV2SOO/u/YXMbFYr5oMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvMDg5Q0I3RjhF NDFDMTFFOUFENEE4RDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB9BQgwDQYJKoZIhvcNAQELBQADggEBAFb63K5zwXsKyF6x dZirpk7QZsYmAzqDvTXxmecGfUoOzuuohlKwiUhSXiCBZJ+KFXBit3AUkpp2Ustm 2yOh5Aeh5CzTlpPiD5eMpl4XTC4i+41Y/WR1hf+GzG6hPZ48lY4aDqkzZhPazo5W kdSAMoP9fbzm3vluiUyaotit8r0hIA5zbS0Ci23UYoNd/XWj8+sxN3Xf44bJZrmX MIkehWQPHYolHwYs8pEOKZEMcJB4EH1Gi9ki0T1t7gt5RyTcf3Q1vH81zrxeatPZ q8Y7huyByUmds2VE8VCMG/JS0KU1hj2nfIQb270DlW0kri5iXY9WoW/ydcr440tf fSmVr4c= -----END CERTIFICATE-----Generated at Thu May 16 17:51:19 2024 by rpki-client on console-ams.rpki-client.org