$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3D7A10E8D94411E98E28CD85C4F9AE02.roa File: 3D7A10E8D94411E98E28CD85C4F9AE02.roa (raw, json) Hash identifier: x4jM5fVgOmC4FS689RT9WM4PR/RwO+npBSeWjRd1A54= Subject key identifier: 15:9E:FE:CF:3A:8F:29:E9:DC:57:1D:7F:C4:CF:14:04:A1:6E:1A:AF Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 25F6 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3D7A10E8D94411E98E28CD85C4F9AE02.roa Signing time: Thu 26 Sep 2024 15:52:52 +0000 ROA not before: Thu 26 Sep 2024 15:52:52 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 24131 IP address blocks: 125.5.109.0/24 maxlen: 24 125.5.123.0/24 maxlen: 24 125.5.124.0/24 maxlen: 24 125.5.127.0/24 maxlen: 24 202.163.204.64/26 maxlen: 26 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:45:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9718 (0x25f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Sep 26 15:52:52 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f58354-7a00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a4:8d:f4:04:a6:5d:f8:71:2b:95:6b:15:9f: 54:8b:d3:02:73:02:b7:4e:96:d7:df:06:d0:c2:86: bf:96:77:ff:c4:48:86:6b:ec:5a:e6:f3:57:0e:86: e2:6a:2b:f6:4e:2f:86:5c:f9:00:bd:18:63:f5:e0: e3:12:42:f7:5b:f4:22:9e:80:af:ad:ad:1b:2d:d1: 0a:9d:b6:e3:56:c9:3f:73:bc:71:72:31:a7:79:12: 71:ba:18:85:6e:50:26:9a:1f:09:97:bd:83:f2:11: d0:64:86:ad:ac:27:3b:bf:e6:52:e2:d2:c3:8e:7e: a6:9d:79:8f:f6:14:f8:dc:6f:b9:98:23:74:91:9f: 32:70:0b:e1:e0:12:3b:76:e3:ed:5d:ec:b8:01:63: b1:48:2e:fa:e5:c0:39:02:2b:b0:37:c3:e3:4f:e9: da:5d:9b:52:77:5f:77:a9:27:1f:fa:ec:e2:c0:ab: c0:1a:6c:af:70:af:09:ca:66:28:99:a1:ca:58:f4: a2:fd:5c:df:0d:4a:a6:de:2c:15:8b:a6:a9:36:f1: 5a:4a:49:db:b3:c6:fd:18:c2:b2:af:17:82:56:6a: c5:c4:2c:eb:9d:55:57:b1:d9:d1:3d:c4:3c:88:5c: e3:0e:72:b9:47:99:c0:f2:44:4b:86:83:22:12:a6: 7e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:9E:FE:CF:3A:8F:29:E9:DC:57:1D:7F:C4:CF:14:04:A1:6E:1A:AF X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3D7A10E8D94411E98E28CD85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.109.0/24 125.5.123.0-125.5.124.255 125.5.127.0/24 202.163.204.64/26 Signature Algorithm: sha256WithRSAEncryption 4c:8b:c4:33:33:6e:e1:80:a0:9a:02:55:ef:f2:b4:60:34:ef: bf:8c:0a:22:4d:ba:2f:a2:5b:13:c6:a0:49:b3:3d:d0:08:3f: 78:60:6b:1b:bd:8e:a5:89:e3:e1:aa:1d:0c:46:79:ed:be:96: 71:cf:8c:be:19:fd:11:e3:d1:cf:ca:85:69:15:37:84:d9:dc: ba:39:82:b4:9d:05:4f:eb:bd:4a:71:2e:83:ef:43:11:99:38: 3b:d2:43:d7:c8:82:32:a0:3b:fe:50:aa:81:c6:1e:ed:67:e5: f5:08:be:8a:67:99:d8:75:46:96:f2:58:18:5a:a3:1c:e9:b5: 8e:56:e6:13:46:35:0b:02:b3:db:4d:5b:a0:86:24:21:9d:4a: a3:aa:90:c0:c3:b6:7b:df:7f:e5:e3:bd:86:62:be:ed:d2:9b: 50:e0:50:2a:72:ab:37:22:3e:32:13:01:d9:1b:10:71:fd:2d: 77:bf:f3:91:66:3c:a9:4a:ce:80:16:e1:16:74:ee:ca:ea:a6: 84:97:d4:f9:50:68:fc:14:8a:91:6b:6a:33:d5:93:86:e0:41: 71:2c:0e:51:ad:d8:27:ab:ad:35:ae:a8:59:d7:25:1b:2b:1a: f3:b8:62:de:35:9a:56:b1:2c:1e:a5:5c:52:1d:21:ae:bf:ae: 32:9f:c8:1b -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICJfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjQwOTI2MTU1MjUyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY1ODM1NC03YTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aSN9ASmXfhxK5VrFZ9Ui9MCcwK3TpbX3wbQwoa/lnf/xEiGa+xa5vNXDobi aiv2Ti+GXPkAvRhj9eDjEkL3W/QinoCvra0bLdEKnbbjVsk/c7xxcjGneRJxuhiF blAmmh8Jl72D8hHQZIatrCc7v+ZS4tLDjn6mnXmP9hT43G+5mCN0kZ8ycAvh4BI7 duPtXey4AWOxSC765cA5AiuwN8PjT+naXZtSd193qScf+uziwKvAGmyvcK8JymYo maHKWPSi/VzfDUqm3iwVi6apNvFaSknbs8b9GMKyrxeCVmrFxCzrnVVXsdnRPcQ8 iFzjDnK5R5nA8kRLhoMiEqZ+cwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFBWe/s86 jynp3Fcdf8TPFAShbhqvMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvM0Q3QTEwRThE OTQ0MTFFOThFMjhDRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMCcEAgABMCEDBAB9BW0wDAMEAH0FewMEAH0FfAMEAH0FfwMFBsqjzEAwDQYJ KoZIhvcNAQELBQADggEBAEyLxDMzbuGAoJoCVe/ytGA077+MCiJNui+iWxPGoEmz PdAIP3hgaxu9jqWJ4+GqHQxGee2+lnHPjL4Z/RHj0c/KhWkVN4TZ3Lo5grSdBU/r vUpxLoPvQxGZODvSQ9fIgjKgO/5QqoHGHu1n5fUIvopnmdh1RpbyWBhaoxzptY5W 5hNGNQsCs9tNW6CGJCGdSqOqkMDDtnvff+XjvYZivu3Sm1DgUCpyqzciPjITAdkb EHH9LXe/85FmPKlKzoAW4RZ07srqpoSX1PlQaPwUipFrajPVk4bgQXEsDlGt2Cer rTWuqFnXJRsrGvO4Yt41mlaxLB6lXFIdIa6/rjKfyBs= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:42 2024 by rpki-client on console-fra.rpki-client.org