$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3E054AE6D94411E98E28CD85C4F9AE02.roa File: 3E054AE6D94411E98E28CD85C4F9AE02.roa (raw, json) Hash identifier: AMb0DaRiwZGuNrwWoaC/6R02ajPN3UOcl8c+ZwWjpJ0= Subject key identifier: 6E:8F:70:44:F7:F6:95:13:42:E0:E2:8C:B2:25:88:6A:AD:02:30:E8 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 2512 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3E054AE6D94411E98E28CD85C4F9AE02.roa Signing time: Wed 16 Aug 2023 16:12:32 +0000 ROA not before: Wed 16 Aug 2023 16:12:32 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 24221 IP address blocks: 125.5.125.0/24 maxlen: 24 125.5.126.0/24 maxlen: 24 202.57.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:11:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9490 (0x2512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Aug 16 16:12:32 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64dcf570-f851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8d:34:6a:c2:30:87:00:c0:2b:ce:87:7e:fe: 31:c3:27:05:10:cd:bf:49:a8:89:c3:0f:41:bf:75: d4:c7:76:b0:7a:cc:6a:c6:ae:19:86:0f:2d:94:47: cb:dc:ce:20:d6:14:1f:a8:06:6c:7a:f9:ff:44:57: 5a:28:b8:97:bb:3f:cb:6f:75:6a:65:aa:1e:fa:56: eb:7b:df:e7:51:f0:b6:22:70:48:eb:35:6c:2d:09: 58:4d:b9:fe:51:b6:24:08:d6:5c:3a:4d:c5:f4:76: cd:fb:22:ed:49:86:95:67:b1:8f:19:f0:90:b7:d2: 35:7b:92:e7:d7:b8:ab:8a:42:e8:38:40:f2:37:86: 82:02:0e:9e:5e:2a:2e:09:55:c6:51:43:14:d9:da: 6a:33:8f:b5:45:bf:8b:e3:ca:e9:63:af:2a:98:e2: 22:15:d5:8e:88:24:d0:5b:03:9c:29:bd:31:a9:73: fd:6d:d2:29:83:54:8c:40:a5:6c:01:e3:32:c4:2d: cf:d4:4d:5c:a9:ae:19:89:0e:33:b3:d7:81:50:06: 82:d5:d7:ed:e4:20:48:f6:3b:fc:ca:19:86:f9:6e: 57:fa:ab:6b:3d:ad:ff:d0:60:a6:53:2d:e1:29:30: 42:d4:62:68:8e:5b:a0:e6:4e:16:fb:20:51:78:3a: aa:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:8F:70:44:F7:F6:95:13:42:E0:E2:8C:B2:25:88:6A:AD:02:30:E8 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3E054AE6D94411E98E28CD85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.125.0-125.5.126.255 202.57.109.0/24 Signature Algorithm: sha256WithRSAEncryption bb:e3:af:0c:a9:96:28:81:36:6c:40:bb:78:18:77:e1:cc:5b: fa:70:c4:1d:af:ec:9c:8d:5e:1b:f9:b5:28:a1:7d:8f:3f:5b: af:d5:ba:49:f1:96:05:63:9b:e7:4d:c7:95:8e:1d:e9:ff:28: 3c:85:ea:45:7f:cd:1b:fe:f9:03:c3:7b:85:7d:de:8b:28:45: 66:ef:c8:fe:24:1a:7b:79:17:da:7f:fb:79:be:09:c2:bd:a4: c8:74:59:70:48:c1:3c:05:f3:53:0b:0c:53:8b:29:8f:f6:e3: 2f:d6:cf:8c:d4:e2:00:b7:3b:b7:75:ed:cc:3d:4b:cc:be:a7: 28:52:12:54:d3:e3:16:b8:9b:b8:4a:05:7a:52:03:6a:95:f9: e7:cd:09:d3:91:b6:e6:a8:68:17:1f:18:24:2e:16:05:59:c7: 85:b2:2f:82:62:7d:81:fd:2b:79:de:a3:c6:48:a2:39:92:b2: 60:0a:cb:11:44:e6:c5:02:48:7f:c5:f2:d4:47:52:71:12:b6: 98:b4:a3:f6:45:35:9a:77:e4:f4:95:4a:7b:f9:2e:f0:56:8d: 57:c5:81:02:45:c3:98:f3:47:cb:d8:81:e6:68:0f:f6:0c:f4: c5:5f:64:e5:5f:08:24:1d:3f:11:97:ea:c8:57:0b:7a:7d:29: 80:01:de:87 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICJRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjMwODE2MTYxMjMyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRjZjU3MC1mODUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwo00asIwhwDAK86Hfv4xwycFEM2/SaiJww9Bv3XUx3awesxqxq4Zhg8tlEfL 3M4g1hQfqAZsevn/RFdaKLiXuz/Lb3VqZaoe+lbre9/nUfC2InBI6zVsLQlYTbn+ UbYkCNZcOk3F9HbN+yLtSYaVZ7GPGfCQt9I1e5Ln17irikLoOEDyN4aCAg6eXiou CVXGUUMU2dpqM4+1Rb+L48rpY68qmOIiFdWOiCTQWwOcKb0xqXP9bdIpg1SMQKVs AeMyxC3P1E1cqa4ZiQ4zs9eBUAaC1dft5CBI9jv8yhmG+W5X+qtrPa3/0GCmUy3h KTBC1GJojlug5k4W+yBReDqqPwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFG6PcET3 9pUTQuDijLIliGqtAjDoMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvM0UwNTRBRTZE OTQ0MTFFOThFMjhDRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAH0FfQMEAH0FfgMEAMo5bTANBgkqhkiG9w0BAQsFAAOC AQEAu+OvDKmWKIE2bEC7eBh34cxb+nDEHa/snI1eG/m1KKF9jz9br9W6SfGWBWOb 503HlY4d6f8oPIXqRX/NG/75A8N7hX3eiyhFZu/I/iQae3kX2n/7eb4Jwr2kyHRZ cEjBPAXzUwsMU4spj/bjL9bPjNTiALc7t3XtzD1LzL6nKFISVNPjFribuEoFelID apX5580J05G25qhoFx8YJC4WBVnHhbIvgmJ9gf0red6jxkiiOZKyYArLEUTmxQJI f8Xy1EdScRK2mLSj9kU1mnfk9JVKe/ku8FaNV8WBAkXDmPNHy9iB5mgP9gz0xV9k 5V8IJB0/EZfqyFcLen0pgAHehw== -----END CERTIFICATE-----Generated at Thu May 16 18:26:03 2024 by rpki-client on console-fra.rpki-client.org