$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3D7A10E8D94411E98E28CD85C4F9AE02.roa File: 3D7A10E8D94411E98E28CD85C4F9AE02.roa (raw, json) Hash identifier: yG/I2mAqJpjKOayp1Q7VdbrAfMnbfz44sPipJGfWDUQ= Subject key identifier: 80:D8:80:9E:3E:76:FD:0E:2A:9A:A7:E8:FB:86:03:E0:3A:0F:8A:39 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 2511 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3D7A10E8D94411E98E28CD85C4F9AE02.roa Signing time: Wed 16 Aug 2023 16:12:31 +0000 ROA not before: Wed 16 Aug 2023 16:12:31 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 24131 IP address blocks: 125.5.109.0/24 maxlen: 24 125.5.123.0/24 maxlen: 24 125.5.124.0/24 maxlen: 24 125.5.127.0/24 maxlen: 24 202.163.204.64/26 maxlen: 26 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9489 (0x2511) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Aug 16 16:12:31 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64dcf56f-c888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1c:0f:e7:7b:c9:ac:b9:71:c4:7b:59:8c:f1: 5a:c4:18:8a:70:c9:39:47:9a:76:43:09:17:9e:d9: d6:d1:70:fe:56:4a:ae:54:ac:bf:2a:18:31:53:d3: f8:3c:0b:a7:a4:c3:36:4a:8a:50:16:b8:43:cf:16: 1d:22:ff:35:b3:aa:40:aa:a3:5a:10:35:b0:31:cd: fc:a0:56:e8:fc:d2:2e:3d:cb:84:42:60:4a:8e:db: 1d:ee:63:2d:7c:f2:6d:1e:8e:49:39:06:ff:db:40: 5e:23:97:04:0c:0f:8e:c8:b4:82:03:13:8a:89:f5: ce:16:87:42:64:0e:7d:a0:7c:c3:22:0e:23:bc:4e: de:5d:38:67:86:a1:a0:26:76:d0:35:8d:09:48:27: 28:9c:55:e0:dd:66:77:83:e6:2c:fc:de:41:c2:f2: 5d:fb:d1:39:b3:f9:d6:8b:64:ef:69:41:c1:04:44: 61:66:e5:51:bc:6e:33:2c:7f:a5:c2:09:f0:2f:0b: 85:9f:2d:04:1c:2e:bb:7c:94:c1:22:a7:ee:8c:65: a2:ba:6a:71:dd:9e:b0:9c:8e:2e:b8:6d:cd:a6:ba: 5c:d0:00:68:e5:b7:9e:d2:b3:68:92:64:59:c7:ee: 09:1c:7d:ad:35:80:24:8c:73:4c:09:57:33:ce:ed: 86:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:D8:80:9E:3E:76:FD:0E:2A:9A:A7:E8:FB:86:03:E0:3A:0F:8A:39 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3D7A10E8D94411E98E28CD85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.109.0/24 125.5.123.0-125.5.124.255 125.5.127.0/24 202.163.204.64/26 Signature Algorithm: sha256WithRSAEncryption 55:dc:cd:fc:6b:dd:51:60:7b:83:2a:9b:ce:fe:ac:0f:68:3c: 66:19:71:2f:29:35:1a:02:77:5c:76:18:18:61:fa:27:fd:a9: 79:6b:de:9a:5a:e5:b5:39:d3:01:60:33:84:89:fc:63:4b:6b: 01:e0:0a:d9:f1:47:17:1c:9f:14:96:e0:a6:5e:50:ba:e9:38: 32:95:36:66:cd:65:92:00:a1:21:4b:c6:77:e6:6d:6d:b8:60: fc:0c:ad:0b:40:c2:61:b1:fe:2c:18:2f:88:45:44:11:2c:30: fa:76:d6:30:a8:5c:9b:74:f5:0d:8b:d4:c6:ff:ba:ba:3b:23: f8:13:1a:23:36:30:df:11:49:1d:fa:23:db:c7:4e:1d:c9:03: 95:a2:78:02:e6:64:4a:de:0b:dc:f1:2e:8c:89:ea:76:54:bf: a7:63:45:af:bc:ab:b9:a1:7a:26:79:3e:b7:ca:19:a2:33:69: c4:af:00:b2:1e:56:d9:f5:29:cc:2c:28:2b:09:8b:e1:ff:4d: e2:e8:2c:31:eb:29:71:ca:fc:9e:4e:04:49:0d:ef:2f:5f:e0: 8b:3a:7d:fe:23:65:1e:e2:5c:7f:63:a0:da:ee:5d:02:87:a1: ff:0c:7b:84:e5:f0:a6:53:b3:2e:cb:4b:74:ba:34:4a:27:da: 60:3c:58:b9 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICJREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjMwODE2MTYxMjMxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRjZjU2Zi1jODg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBwP53vJrLlxxHtZjPFaxBiKcMk5R5p2QwkXntnW0XD+VkquVKy/KhgxU9P4 PAunpMM2SopQFrhDzxYdIv81s6pAqqNaEDWwMc38oFbo/NIuPcuEQmBKjtsd7mMt fPJtHo5JOQb/20BeI5cEDA+OyLSCAxOKifXOFodCZA59oHzDIg4jvE7eXThnhqGg JnbQNY0JSCconFXg3WZ3g+Ys/N5BwvJd+9E5s/nWi2TvaUHBBERhZuVRvG4zLH+l wgnwLwuFny0EHC67fJTBIqfujGWiumpx3Z6wnI4uuG3Nprpc0ABo5bee0rNokmRZ x+4JHH2tNYAkjHNMCVczzu2GpwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFIDYgJ4+ dv0OKpqn6PuGA+A6D4o5MB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvM0Q3QTEwRThE OTQ0MTFFOThFMjhDRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMCcEAgABMCEDBAB9BW0wDAMEAH0FewMEAH0FfAMEAH0FfwMFBsqjzEAwDQYJ KoZIhvcNAQELBQADggEBAFXczfxr3VFge4Mqm87+rA9oPGYZcS8pNRoCd1x2GBhh +if9qXlr3ppa5bU50wFgM4SJ/GNLawHgCtnxRxccnxSW4KZeULrpODKVNmbNZZIA oSFLxnfmbW24YPwMrQtAwmGx/iwYL4hFRBEsMPp21jCoXJt09Q2L1Mb/uro7I/gT GiM2MN8RSR36I9vHTh3JA5WieALmZEreC9zxLoyJ6nZUv6djRa+8q7mheiZ5PrfK GaIzacSvALIeVtn1KcwsKCsJi+H/TeLoLDHrKXHK/J5OBEkN7y9f4Is6ff4jZR7i XH9joNruXQKHof8Me4Tl8KZTsy7LS3S6NEon2mA8WLk= -----END CERTIFICATE-----Generated at Thu May 16 17:51:19 2024 by rpki-client on console-ams.rpki-client.org