$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40397ED6D94411E98E28CD85C4F9AE02.roa File: 40397ED6D94411E98E28CD85C4F9AE02.roa (raw, json) Hash identifier: jEXHU40Vv1jkLWNwJgGy8tOTwQKDLakMV2TXsNim/vI= Subject key identifier: CE:FD:90:B8:C7:69:E4:E2:AD:75:C8:83:5D:FA:EE:6B:58:69:FA:7A Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 25FA Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40397ED6D94411E98E28CD85C4F9AE02.roa Signing time: Thu 26 Sep 2024 15:52:56 +0000 ROA not before: Thu 26 Sep 2024 15:52:56 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45791 IP address blocks: 125.5.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9722 (0x25fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Sep 26 15:52:56 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f58357-16aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:51:c6:60:16:22:e6:e6:0c:1b:da:86:14:d6: 71:8a:39:31:f2:f1:e6:a7:86:0b:ba:fe:d9:ff:e5: 0f:f2:f2:93:5e:72:7e:60:8a:37:3b:21:15:b2:19: 5a:7b:d2:87:4c:98:5d:2b:97:12:28:60:04:c5:65: d6:84:7b:d8:2a:6b:64:6d:83:21:21:32:63:50:0a: ec:10:61:9f:f0:0c:c7:cf:79:f6:92:a2:f9:36:50: 31:7f:dc:89:99:6a:40:21:00:59:55:ca:b9:09:8a: b1:f8:37:c9:8e:fe:7c:17:26:a4:4b:b7:c0:7a:a7: 72:93:fc:e6:7b:20:52:9e:05:c3:25:36:d6:08:ab: ca:a9:3b:b8:73:60:3b:71:85:83:fd:b8:d6:40:62: 26:44:70:0b:29:a9:96:68:c9:33:ae:98:41:b3:25: 27:b6:d7:9b:d9:6e:75:c5:53:f7:ef:70:b5:3f:fd: 88:c7:1d:c8:03:23:0b:5d:7f:27:95:31:20:cc:b6: 79:bf:29:ac:0d:99:ef:85:98:e5:31:1d:31:ec:d3: 62:72:39:17:ee:30:c6:0b:17:9d:0f:b3:ee:30:5d: 4f:6d:cf:5d:38:9c:f3:75:c9:64:1b:b9:4a:67:4f: f9:3b:37:4e:9e:6f:4b:ea:67:40:ec:00:a3:9e:58: ae:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:FD:90:B8:C7:69:E4:E2:AD:75:C8:83:5D:FA:EE:6B:58:69:FA:7A X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40397ED6D94411E98E28CD85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.108.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:f3:ea:ee:f8:2f:fc:d6:24:3c:fe:dc:85:7b:66:57:5f:83: d4:8f:f9:31:da:2b:46:b7:b0:bb:ca:85:f1:e2:38:c7:db:1e: 80:fd:74:24:57:a1:3b:4d:d2:15:05:7b:2f:57:e3:e3:91:7d: f7:9f:4c:c2:c8:62:60:53:60:31:a9:70:2d:cb:99:a0:f1:36: 16:62:bf:b9:ec:59:eb:e1:76:74:fa:2b:50:76:80:35:b5:96: 71:dc:29:26:81:35:99:b6:da:c2:38:ad:dc:1f:03:dd:10:be: 57:8a:cc:c1:39:84:88:9c:36:d7:1d:5c:e2:2c:c8:ac:0d:3e: 51:05:7c:49:00:ea:8f:03:ca:9f:d3:39:c2:fc:7c:15:5d:8d: a1:2b:9e:57:79:b1:3c:a1:10:01:03:80:b7:76:ba:19:ac:2b: 23:38:31:0b:09:a9:5e:d7:43:ef:db:3a:e9:1e:a8:a5:64:d2: 5a:1c:1d:24:b8:dc:77:25:95:47:c3:4d:d7:24:f3:68:d5:40: 07:ac:06:9a:2a:ed:c7:e2:46:ed:7f:1c:86:8d:72:1d:ca:10: 6b:26:78:02:88:5b:25:58:d8:f5:9a:fb:f0:10:ec:9b:ef:53: 52:56:6a:a1:f7:6f:55:88:fe:51:19:eb:a0:de:c4:90:0c:f2: 51:94:8e:e4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjQwOTI2MTU1MjU2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY1ODM1Ny0xNmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVHGYBYi5uYMG9qGFNZxijkx8vHmp4YLuv7Z/+UP8vKTXnJ+YIo3OyEVshla e9KHTJhdK5cSKGAExWXWhHvYKmtkbYMhITJjUArsEGGf8AzHz3n2kqL5NlAxf9yJ mWpAIQBZVcq5CYqx+DfJjv58FyakS7fAeqdyk/zmeyBSngXDJTbWCKvKqTu4c2A7 cYWD/bjWQGImRHALKamWaMkzrphBsyUntteb2W51xVP373C1P/2Ixx3IAyMLXX8n lTEgzLZ5vymsDZnvhZjlMR0x7NNicjkX7jDGCxedD7PuMF1Pbc9dOJzzdclkG7lK Z0/5OzdOnm9L6mdA7ACjnliuIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM79kLjH aeTirXXIg1367mtYafp6MB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvNDAzOTdFRDZE OTQ0MTFFOThFMjhDRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB9BWwwDQYJKoZIhvcNAQELBQADggEBAGrz6u74L/zWJDz+ 3IV7Zldfg9SP+THaK0a3sLvKhfHiOMfbHoD9dCRXoTtN0hUFey9X4+ORffefTMLI YmBTYDGpcC3LmaDxNhZiv7nsWevhdnT6K1B2gDW1lnHcKSaBNZm22sI4rdwfA90Q vleKzME5hIicNtcdXOIsyKwNPlEFfEkA6o8Dyp/TOcL8fBVdjaErnld5sTyhEAED gLd2uhmsKyM4MQsJqV7XQ+/bOukeqKVk0locHSS43HcllUfDTdck82jVQAesBpoq 7cfiRu1/HIaNch3KEGsmeAKIWyVY2PWa+/AQ7JvvU1JWaqH3b1WI/lEZ66DexJAM 8lGUjuQ= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:17 2024 by rpki-client on console-ams.rpki-client.org