$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40E8489ED94411E98E28CD85C4F9AE02.roa File: 40E8489ED94411E98E28CD85C4F9AE02.roa (raw, json) Hash identifier: iND9o18eqcZPfyUOd1YGb3LhJrXmj/B/zX4GmAqgssM= Subject key identifier: 31:5C:D3:D8:3D:A6:E3:82:E0:7E:E3:E5:4D:2D:10:E1:C3:09:DE:54 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 2519 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40E8489ED94411E98E28CD85C4F9AE02.roa Signing time: Wed 16 Aug 2023 16:12:38 +0000 ROA not before: Wed 16 Aug 2023 16:12:38 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 9256 IP address blocks: 125.5.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:11:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9497 (0x2519) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Aug 16 16:12:38 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64dcf576-b542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c4:f1:06:0f:c1:e3:7a:bc:40:8f:18:03:e3: 1d:03:ca:8b:c9:84:fa:af:7d:78:09:2d:eb:a8:a7: 25:0a:6c:cd:72:ff:9d:46:9e:59:29:86:f4:d3:68: e6:35:d9:aa:28:a1:7f:23:2b:c6:7f:17:67:5f:dc: 68:c0:45:85:1e:72:0e:a9:b2:bd:46:8d:5a:54:87: c2:c0:d5:4d:73:51:e6:52:09:7d:1f:a0:ea:a9:c8: 65:4b:4e:9d:66:02:a2:5d:49:84:6c:1a:bc:e3:66: d9:bf:0a:2d:c3:60:ea:29:8a:af:89:88:01:03:74: 1c:0e:a7:b3:18:ab:25:8e:19:40:ff:ad:10:e6:60: 7f:29:f9:9a:8f:46:42:8c:af:fb:d5:f4:bc:ed:14: 84:d2:3c:26:eb:0e:15:3b:ed:54:e4:12:a3:e8:ff: 7e:08:b0:e0:81:cc:8d:10:26:ab:2d:28:84:05:69: 3f:80:73:0b:d2:e4:73:d4:4d:69:47:69:3d:17:1f: a7:37:b3:31:af:93:e3:09:76:9b:46:1d:19:07:c4: 2f:b0:10:2a:5d:35:81:86:b1:8b:49:d9:a9:8f:23: 3e:31:62:36:07:34:d8:72:fc:a8:8f:97:24:71:9f: 77:38:1f:e2:09:c2:45:be:09:b2:e6:b1:79:37:c0: 20:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:5C:D3:D8:3D:A6:E3:82:E0:7E:E3:E5:4D:2D:10:E1:C3:09:DE:54 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40E8489ED94411E98E28CD85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.99.0/24 Signature Algorithm: sha256WithRSAEncryption b6:46:c7:15:55:8b:45:fd:07:f5:6e:cb:b8:16:4c:7b:8d:be: b6:8c:51:3e:f0:e3:0e:54:35:6c:d7:ab:a6:73:41:0a:76:29: 37:db:79:09:fb:67:b4:34:33:74:6b:5a:11:4b:00:24:39:42: d3:47:fd:9c:ea:1a:8f:d3:c1:10:62:61:79:2f:ec:33:26:20: b5:f0:e2:7d:bb:1c:03:62:a3:57:ae:6d:47:54:ca:4c:db:ab: eb:1b:25:02:9a:4d:df:10:8f:72:16:25:8b:3d:ac:24:ea:3b: 4e:62:ea:fc:46:52:24:e2:04:41:2c:b2:53:64:92:5a:dd:38: 71:a8:6d:96:2e:13:78:f1:8f:ed:ac:b3:4a:d9:f7:96:74:2c: 06:25:4f:19:b4:2b:01:3a:9a:a0:e3:33:1b:2d:67:6f:2d:85: d7:6c:35:59:fd:26:ec:e0:0c:a4:9c:2c:9f:cf:ce:ec:3b:c9: 43:06:7e:88:d4:18:89:58:8c:78:a2:ca:e2:10:6a:be:81:f1: aa:8d:1f:fe:62:f6:48:bf:3d:ca:67:e7:d3:05:d0:40:0e:62: 3c:90:29:c0:2e:cf:cd:65:32:b9:bf:0b:44:ac:66:f6:81:eb: 93:1b:95:50:3d:69:8d:a8:10:24:4b:39:39:35:3c:f2:40:c9: ec:5b:2a:8e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjMwODE2MTYxMjM4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRjZjU3Ni1iNTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAncTxBg/B43q8QI8YA+MdA8qLyYT6r314CS3rqKclCmzNcv+dRp5ZKYb002jm NdmqKKF/IyvGfxdnX9xowEWFHnIOqbK9Ro1aVIfCwNVNc1HmUgl9H6DqqchlS06d ZgKiXUmEbBq842bZvwotw2DqKYqviYgBA3QcDqezGKsljhlA/60Q5mB/Kfmaj0ZC jK/71fS87RSE0jwm6w4VO+1U5BKj6P9+CLDggcyNECarLSiEBWk/gHML0uRz1E1p R2k9Fx+nN7Mxr5PjCXabRh0ZB8QvsBAqXTWBhrGLSdmpjyM+MWI2BzTYcvyoj5ck cZ93OB/iCcJFvgmy5rF5N8AgIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDFc09g9 puOC4H7j5U0tEOHDCd5UMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvNDBFODQ4OUVE OTQ0MTFFOThFMjhDRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB9BWMwDQYJKoZIhvcNAQELBQADggEBALZGxxVVi0X9B/Vu y7gWTHuNvraMUT7w4w5UNWzXq6ZzQQp2KTfbeQn7Z7Q0M3RrWhFLACQ5QtNH/Zzq Go/TwRBiYXkv7DMmILXw4n27HANio1eubUdUykzbq+sbJQKaTd8Qj3IWJYs9rCTq O05i6vxGUiTiBEEsslNkklrdOHGobZYuE3jxj+2ss0rZ95Z0LAYlTxm0KwE6mqDj MxstZ28thddsNVn9JuzgDKScLJ/Pzuw7yUMGfojUGIlYjHiiyuIQar6B8aqNH/5i 9ki/Pcpn59MF0EAOYjyQKcAuz81lMrm/C0SsZvaB65MblVA9aY2oECRLOTk1PPJA yexbKo4= -----END CERTIFICATE-----Generated at Thu May 16 18:26:03 2024 by rpki-client on console-fra.rpki-client.org