$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3C670256D94411E98E28CD85C4F9AE02.roa File: 3C670256D94411E98E28CD85C4F9AE02.roa (raw, json) Hash identifier: TWvt97QJNblBs1b65wdl3fIK9/JihUPSIHDyYTz6ibM= Subject key identifier: 93:3B:B1:CA:52:F8:0E:1B:62:A8:A8:87:B0:CD:F1:CC:B4:87:2C:39 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 25F3 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3C670256D94411E98E28CD85C4F9AE02.roa Signing time: Thu 26 Sep 2024 15:52:50 +0000 ROA not before: Thu 26 Sep 2024 15:52:50 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132156 IP address blocks: 125.5.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:45:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9715 (0x25f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Sep 26 15:52:50 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f58351-7dd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c9:57:f8:93:4a:fa:84:48:92:3a:3c:14:a5: fe:d1:94:86:e9:25:e1:7d:ed:78:78:64:2b:6a:ff: 4b:56:ce:95:eb:bd:04:60:7c:75:6a:40:d5:53:af: 96:33:0a:20:37:c3:bd:e6:9d:39:67:1f:02:83:26: e8:7e:bf:31:d8:78:ae:69:95:6f:f5:1f:3e:71:15: 33:7c:5e:5c:31:f8:43:0c:ed:54:6e:67:1a:e1:18: 68:b1:fe:9a:ef:01:31:e9:d3:60:dc:2a:24:47:55: c2:82:fe:b9:d6:79:3a:b1:cd:ef:cd:ec:0c:f6:cd: 3e:e9:16:cb:aa:97:d2:23:3b:9b:5d:74:ad:2f:b9: f6:8c:8b:10:85:87:c0:2e:b5:f8:20:66:db:e2:c7: 0f:75:0d:22:d3:a7:77:ec:6e:f9:01:87:3f:87:91: 11:fc:82:e6:05:59:36:2d:99:59:a6:2b:71:52:31: 6a:55:e2:c0:e9:fa:16:81:30:3a:df:8d:e7:f3:5a: fc:84:52:1c:4e:9a:15:d2:0d:b3:76:23:16:70:97: 1e:3d:cc:97:aa:a4:54:6a:e5:3a:03:5c:f8:8f:15: e8:c7:8b:a3:77:7f:d6:7f:09:dc:45:7a:cf:2c:2c: 33:a5:5c:64:59:0b:9b:33:0f:75:fa:5a:39:c1:98: b6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:3B:B1:CA:52:F8:0E:1B:62:A8:A8:87:B0:CD:F1:CC:B4:87:2C:39 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3C670256D94411E98E28CD85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.11.0/24 Signature Algorithm: sha256WithRSAEncryption 54:8b:49:8f:8f:42:ad:c4:18:44:4d:ee:e8:cd:97:3d:20:da: e1:28:6a:b3:9c:8d:a3:ee:f2:83:7d:57:ca:5c:a8:99:15:4e: 99:f6:bb:3a:27:a0:28:a8:80:89:62:15:0d:e5:d0:62:54:88: 44:e2:d1:3e:6d:3d:51:0c:44:95:ca:26:2d:97:11:84:2e:ad: dc:1b:d5:21:d9:c2:39:d1:94:58:75:c0:9f:4e:6c:98:a0:4a: 7c:26:5c:49:82:d9:be:c5:7c:48:c1:c1:b2:2a:23:a8:60:b5: 02:93:ae:53:35:bb:0e:7e:0d:d8:c1:dc:09:fe:15:c7:b6:e5: 92:e5:dd:37:e6:07:b0:d6:d3:ce:af:1c:23:1e:c6:b0:d6:22: b6:0a:b1:40:0b:32:ea:ef:83:e8:d5:82:62:09:b0:1a:c8:bf: 07:86:ee:13:83:cf:0a:89:50:75:85:d0:53:48:a9:14:d4:74: d4:88:2a:bc:55:d4:a9:22:f3:87:4f:65:e1:d8:89:82:21:7d: 86:9e:63:1a:e7:a1:2f:ad:63:92:28:88:c2:93:fb:72:6f:aa: 67:42:0a:f4:1d:24:0f:31:7a:2e:d2:fc:2e:e4:17:c5:9f:e4: 55:c0:ba:6b:da:76:2f:cd:ec:98:da:a4:0c:62:a4:95:56:98: 72:e1:2c:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjQwOTI2MTU1MjUwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY1ODM1MS03ZGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8lX+JNK+oRIkjo8FKX+0ZSG6SXhfe14eGQrav9LVs6V670EYHx1akDVU6+W MwogN8O95p05Zx8Cgybofr8x2HiuaZVv9R8+cRUzfF5cMfhDDO1Ubmca4Rhosf6a 7wEx6dNg3CokR1XCgv651nk6sc3vzewM9s0+6RbLqpfSIzubXXStL7n2jIsQhYfA LrX4IGbb4scPdQ0i06d37G75AYc/h5ER/ILmBVk2LZlZpitxUjFqVeLA6foWgTA6 343n81r8hFIcTpoV0g2zdiMWcJcePcyXqqRUauU6A1z4jxXox4ujd3/WfwncRXrP LCwzpVxkWQubMw91+lo5wZi2YwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJM7scpS +A4bYqioh7DN8cy0hyw5MB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvM0M2NzAyNTZE OTQ0MTFFOThFMjhDRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB9BQswDQYJKoZIhvcNAQELBQADggEBAFSLSY+PQq3EGERN 7ujNlz0g2uEoarOcjaPu8oN9V8pcqJkVTpn2uzonoCiogIliFQ3l0GJUiETi0T5t PVEMRJXKJi2XEYQurdwb1SHZwjnRlFh1wJ9ObJigSnwmXEmC2b7FfEjBwbIqI6hg tQKTrlM1uw5+DdjB3An+Fce25ZLl3TfmB7DW086vHCMexrDWIrYKsUALMurvg+jV gmIJsBrIvweG7hODzwqJUHWF0FNIqRTUdNSIKrxV1Kki84dPZeHYiYIhfYaeYxrn oS+tY5IoiMKT+3JvqmdCCvQdJA8xei7S/C7kF8Wf5FXAumvadi/N7JjapAxipJVW mHLhLDk= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:42 2024 by rpki-client on console-fra.rpki-client.org