$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/4F8D63203EBF11EBA940A946C4F9AE02.roa File: 4F8D63203EBF11EBA940A946C4F9AE02.roa (raw, json) Hash identifier: 0TqUmQGE+hp1bAha/REIBD7FqnSC8+MYeNCKfqOEapo= Subject key identifier: 54:F2:BC:18:EA:25:C4:C5:5C:82:9D:0B:15:3D:51:41:C2:11:7D:77 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 2510 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/4F8D63203EBF11EBA940A946C4F9AE02.roa Signing time: Wed 16 Aug 2023 16:12:31 +0000 ROA not before: Wed 16 Aug 2023 16:12:31 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 24071 IP address blocks: 125.5.6.0/24 maxlen: 24 125.5.17.0/24 maxlen: 24 125.5.25.0/24 maxlen: 24 125.5.26.0/24 maxlen: 24 125.5.254.0/27 maxlen: 27 202.57.108.0/24 maxlen: 24 202.163.206.0/24 maxlen: 24 203.131.76.0/27 maxlen: 27 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9488 (0x2510) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Aug 16 16:12:31 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64dcf56e-a8a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b4:d7:a3:8b:a0:17:d8:50:5a:63:6b:32:65: 7b:a7:30:40:c2:6c:ad:e1:62:1f:ca:be:46:68:34: 31:58:09:a4:4e:02:27:82:dd:b1:5f:7d:28:18:1f: 58:64:94:ba:98:8d:fc:5e:72:ea:31:f9:15:22:9d: 88:a7:02:b4:db:c7:17:ce:31:65:26:a8:50:03:76: a7:74:6a:b6:2e:89:75:f1:d6:95:a1:b4:32:29:69: 03:af:1f:0a:4b:21:bd:bc:c2:fd:96:5c:e7:5e:ec: 07:e8:f7:2a:d0:7a:d9:a4:7f:d0:59:69:77:d1:fb: e3:a6:90:eb:f2:ed:54:5b:85:20:7a:b6:41:b2:13: 80:e3:59:f5:0a:19:c3:fc:af:ba:e7:31:ad:31:c4: 7f:39:ee:14:09:b5:c9:8b:49:7e:e6:f8:a7:7d:22: 98:8a:7d:0e:8d:c7:72:ad:1a:56:29:46:66:6d:e9: 29:5a:c5:60:07:2d:68:e3:4f:4c:a9:85:b8:94:55: 13:c4:5a:dc:82:4c:5d:20:48:c9:23:03:12:cd:dd: 40:9a:26:71:d0:e2:55:b6:93:18:25:82:98:01:f4: ee:13:be:50:85:f6:0d:44:96:f7:bb:be:f6:eb:56: f9:73:3d:f3:8f:00:fb:c2:95:9d:d6:92:9f:a6:7e: 23:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:F2:BC:18:EA:25:C4:C5:5C:82:9D:0B:15:3D:51:41:C2:11:7D:77 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/4F8D63203EBF11EBA940A946C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.6.0/24 125.5.17.0/24 125.5.25.0-125.5.26.255 125.5.254.0/27 202.57.108.0/24 202.163.206.0/24 203.131.76.0/27 Signature Algorithm: sha256WithRSAEncryption 7b:56:a3:d7:eb:24:e5:a4:25:8e:b6:32:84:a7:54:87:c0:d3: bd:4c:76:dd:c3:dc:e7:b1:9a:e7:4a:93:94:74:80:e6:57:82: a2:c2:f2:1c:73:94:78:b5:8a:01:f8:5e:27:ae:3e:dd:49:ac: f7:d2:bf:ac:53:d2:81:12:23:4e:e6:2a:2c:1b:c3:45:59:15: b6:9e:ab:1e:78:03:54:bb:01:63:a0:bd:bf:63:7f:4b:50:f5: b4:b1:61:c2:da:76:18:6a:dd:8a:1b:be:04:1d:5a:95:9f:ba: 06:42:8f:c2:7b:d1:b5:35:8c:c8:c9:3b:9c:8c:1c:9a:cc:c8: 31:93:89:ef:83:82:ec:6a:8b:2d:95:c0:02:f2:03:99:ef:b7: 78:9d:d5:66:60:2e:2b:e8:c3:df:e8:c1:5f:13:fe:0a:a0:85: d6:23:f1:ce:ca:5b:4a:0d:1d:f7:a7:79:a2:54:fa:8d:b4:c3: 2e:25:0b:1c:5f:bd:27:5c:d2:b7:d9:42:be:f5:c3:98:f5:da: 11:79:f7:69:25:23:f5:54:81:0d:b8:9a:02:19:9b:f5:e2:1a: 2b:62:7e:e2:03:b1:fd:65:09:b0:9e:ea:05:02:19:ff:18:ff: 12:d1:d5:9e:1b:45:dc:d4:58:4c:5c:0f:07:ec:39:e1:cf:a6: e4:9c:82:1c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICJRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjMwODE2MTYxMjMxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRjZjU2ZS1hOGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoLTXo4ugF9hQWmNrMmV7pzBAwmyt4WIfyr5GaDQxWAmkTgIngt2xX30oGB9Y ZJS6mI38XnLqMfkVIp2IpwK028cXzjFlJqhQA3andGq2Lol18daVobQyKWkDrx8K SyG9vML9llznXuwH6Pcq0HrZpH/QWWl30fvjppDr8u1UW4UgerZBshOA41n1ChnD /K+65zGtMcR/Oe4UCbXJi0l+5vinfSKYin0OjcdyrRpWKUZmbekpWsVgBy1o409M qYW4lFUTxFrcgkxdIEjJIwMSzd1AmiZx0OJVtpMYJYKYAfTuE75QhfYNRJb3u772 61b5cz3zjwD7wpWd1pKfpn4jBQIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFFTyvBjq JcTFXIKdCxU9UUHCEX13MB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvNEY4RDYzMjAz RUJGMTFFQkE5NDBBOTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MDoEAgABMDQDBAB9BQYDBAB9BREwDAMEAH0FGQMEAH0FGgMFBX0F/gADBADK OWwDBADKo84DBQXLg0wAMA0GCSqGSIb3DQEBCwUAA4IBAQB7VqPX6yTlpCWOtjKE p1SHwNO9THbdw9znsZrnSpOUdIDmV4KiwvIcc5R4tYoB+F4nrj7dSaz30r+sU9KB EiNO5iosG8NFWRW2nqseeANUuwFjoL2/Y39LUPW0sWHC2nYYat2KG74EHVqVn7oG Qo/Ce9G1NYzIyTucjByazMgxk4nvg4LsaostlcAC8gOZ77d4ndVmYC4r6MPf6MFf E/4KoIXWI/HOyltKDR33p3miVPqNtMMuJQscX70nXNK32UK+9cOY9doRefdpJSP1 VIENuJoCGZv14horYn7iA7H9ZQmwnuoFAhn/GP8S0dWeG0Xc1FhMXA8H7Dnhz6bk nIIc -----END CERTIFICATE-----Generated at Thu May 16 17:51:19 2024 by rpki-client on console-ams.rpki-client.org