$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/68356576B0F311E5AB30F151C4F9AE02.roa File: 68356576B0F311E5AB30F151C4F9AE02.roa (raw, json) Hash identifier: /WRBpD0V7/kqLnLcmvhw5evAsBewQiteejiqIEiIgmw= Subject key identifier: 54:11:24:49:39:98:80:B5:B8:29:4B:3F:EA:3C:F7:E7:9E:D9:CD:E0 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 25F4 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/68356576B0F311E5AB30F151C4F9AE02.roa Signing time: Thu 26 Sep 2024 15:52:51 +0000 ROA not before: Thu 26 Sep 2024 15:52:51 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132206 IP address blocks: 125.5.13.0/24 maxlen: 24 125.5.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:45:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9716 (0x25f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Sep 26 15:52:51 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f58352-a987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:44:53:c5:ec:17:4c:f9:c9:ca:cb:67:3f:ad: c3:8f:5c:20:8a:17:40:0d:ac:7f:46:ed:56:fc:b9: a9:61:1f:ee:1e:78:66:e3:0f:a8:f6:e5:ae:a4:58: 62:dd:4b:35:8b:c5:f2:6e:71:75:54:3a:77:90:b2: 76:9c:d3:fc:28:e4:e1:34:14:b2:7e:29:95:ec:c3: d1:45:78:ea:55:33:d8:21:76:e0:93:d7:b3:b1:bf: 34:03:de:31:9e:f0:2a:7e:f6:37:54:78:eb:01:d6: a8:87:c5:12:0f:04:8f:bb:9b:0d:60:e1:ef:3d:97: 37:8f:50:2e:e1:55:13:ae:27:fb:d7:70:1f:08:c7: f5:53:83:ab:07:16:4f:55:32:ef:00:c9:67:54:2e: 1b:59:95:fc:dc:a1:5e:36:c6:34:9e:9b:30:a2:57: db:03:6f:30:54:cb:fe:d5:3b:3c:4b:28:99:a2:5d: 97:24:0a:4c:13:be:76:53:57:2d:48:0c:6b:e8:61: 5c:2b:df:68:aa:d9:d9:9b:e9:21:03:b2:1c:c6:13: 84:25:24:6a:15:06:31:d2:a1:08:4a:f9:38:60:4c: dc:4a:4b:c7:35:7f:45:df:83:11:f5:db:56:1a:5b: fa:0a:7a:3c:86:3b:34:8d:ef:40:eb:97:98:c0:06: a9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:11:24:49:39:98:80:B5:B8:29:4B:3F:EA:3C:F7:E7:9E:D9:CD:E0 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/68356576B0F311E5AB30F151C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.13.0/24 125.5.176.0/24 Signature Algorithm: sha256WithRSAEncryption 29:54:ab:e4:72:64:66:36:4a:78:7b:00:ea:c9:c3:65:98:24: 8e:81:52:44:d4:6e:df:3b:06:4b:68:d2:a7:0d:d5:cf:07:88: 1b:c7:21:a6:08:3d:50:a5:8f:75:f2:ca:77:b9:f1:46:58:6a: 88:29:d9:44:64:ed:8c:4d:b2:34:14:02:1a:6e:9b:67:1a:97: cb:2a:c2:9d:84:5d:7c:b7:67:a2:3b:3e:84:d8:69:fa:96:ba: 16:ba:f6:55:b4:25:3a:76:cd:40:07:19:1c:bc:5f:4e:8d:c9: 35:b8:54:6a:e8:bd:a9:f9:16:2a:60:f4:8c:2f:ad:62:53:e7: 12:f4:77:9e:4b:f2:61:ae:e2:9e:b7:0a:36:5d:88:95:46:9f: c4:c0:67:f8:b9:4b:05:69:d3:55:18:73:07:35:34:47:30:79: 69:93:2f:ed:c2:b8:00:f4:61:f3:31:c2:55:42:c6:e5:14:2c: c2:d8:ed:f9:86:c9:f7:2f:0c:e8:60:4a:c9:ba:2c:0c:0f:fb: a5:2f:2e:fa:8a:87:a2:c8:73:e5:c0:f9:35:11:f7:8c:06:39: ab:ba:fa:8c:5b:4a:bc:ff:9b:65:d2:f0:80:04:05:c3:d8:6a: 4e:ec:69:eb:67:22:93:0f:ee:e7:8a:20:cf:6d:2a:e3:e4:28: 99:01:6f:e6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjQwOTI2MTU1MjUxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY1ODM1Mi1hOTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0RTxewXTPnJystnP63Dj1wgihdADax/Ru1W/LmpYR/uHnhm4w+o9uWupFhi 3Us1i8XybnF1VDp3kLJ2nNP8KOThNBSyfimV7MPRRXjqVTPYIXbgk9ezsb80A94x nvAqfvY3VHjrAdaoh8USDwSPu5sNYOHvPZc3j1Au4VUTrif713AfCMf1U4OrBxZP VTLvAMlnVC4bWZX83KFeNsY0npswolfbA28wVMv+1Ts8SyiZol2XJApME752U1ct SAxr6GFcK99oqtnZm+khA7IcxhOEJSRqFQYx0qEISvk4YEzcSkvHNX9F34MR9dtW Glv6Cno8hjs0je9A65eYwAapeQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFQRJEk5 mIC1uClLP+o89+ee2c3gMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvNjgzNTY1NzZC MEYzMTFFNUFCMzBGMTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB9BQ0DBAB9BbAwDQYJKoZIhvcNAQELBQADggEBAClUq+Ry ZGY2Snh7AOrJw2WYJI6BUkTUbt87Bkto0qcN1c8HiBvHIaYIPVClj3Xyyne58UZY aogp2URk7YxNsjQUAhpum2cal8sqwp2EXXy3Z6I7PoTYafqWuha69lW0JTp2zUAH GRy8X06NyTW4VGrovan5Fipg9IwvrWJT5xL0d55L8mGu4p63CjZdiJVGn8TAZ/i5 SwVp01UYcwc1NEcweWmTL+3CuAD0YfMxwlVCxuUULMLY7fmGyfcvDOhgSsm6LAwP +6UvLvqKh6LIc+XA+TUR94wGOau6+oxbSrz/m2XS8IAEBcPYak7saetnIpMP7ueK IM9tKuPkKJkBb+Y= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:42 2024 by rpki-client on console-fra.rpki-client.org