$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/EC5BF06C8A3411EFBF173E5BC4F9AE02.roa File: EC5BF06C8A3411EFBF173E5BC4F9AE02.roa (raw, json) Hash identifier: i+JBJIzZJZAPpJglPpaCoZ4ou09zbYt49Tml7mgvv98= Subject key identifier: DF:E9:D4:19:1A:79:7D:12:EA:1C:A1:AB:18:0D:BD:47:43:29:9C:72 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 26CF Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/EC5BF06C8A3411EFBF173E5BC4F9AE02.roa Signing time: Mon 14 Oct 2024 14:02:50 +0000 ROA not before: Mon 14 Oct 2024 14:02:50 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 38491 IP address blocks: 121.127.4.0/24 maxlen: 24 121.127.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9935 (0x26cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Oct 14 14:02:50 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670d248a-c9d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f3:40:36:c9:84:6e:5a:f8:c7:1e:bb:4d:62: 26:55:01:c8:e4:3d:42:fa:4d:f1:b2:1d:16:c5:86: fd:33:bf:9f:05:71:6e:58:62:bb:17:b8:1e:cc:4c: 75:27:63:7a:d2:8a:54:0b:03:86:e4:63:a5:f9:d3: c7:cc:69:e7:fb:7c:e9:7c:ef:2b:c3:f4:88:e5:a8: 75:ac:28:78:2b:3b:78:ff:e8:85:7e:39:70:99:69: e5:1d:f4:83:f0:79:d9:aa:da:14:d7:bf:6d:7b:e2: 0d:66:c5:7c:d2:49:d7:0c:cf:eb:2b:16:0b:e1:cf: 3e:65:b4:a8:41:4f:0f:1f:51:27:9e:f8:85:c5:ea: e8:66:f0:5d:de:88:c0:29:8d:70:3d:a7:d1:0d:25: a0:44:55:75:6a:65:87:95:8e:1b:6d:c6:9e:0d:90: ac:9e:bd:d4:d6:78:f9:68:62:76:11:a6:dc:84:e4: ae:eb:00:f3:f8:0d:a5:5f:16:fe:13:32:38:96:97: 34:27:3e:f5:b4:7f:ca:7c:99:00:fd:18:b8:a2:72: f9:a8:7b:09:f5:90:40:93:59:43:af:bc:72:6c:c2: 1e:a6:b2:b7:dc:47:87:32:5f:c7:6e:86:b1:61:b9: 47:a6:77:8a:0a:c3:58:94:60:05:78:39:e2:e3:5c: 96:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E9:D4:19:1A:79:7D:12:EA:1C:A1:AB:18:0D:BD:47:43:29:9C:72 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/EC5BF06C8A3411EFBF173E5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.127.4.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:5d:18:bd:aa:b3:d8:ad:5c:2f:f6:83:e7:b1:9c:30:21:ef: 40:52:e4:b8:bc:d7:05:0b:6c:09:46:4f:02:51:4e:24:ad:c9: 60:d3:0b:f7:0f:76:63:44:5f:e8:ce:0a:0c:15:94:75:fd:05: 9d:1b:e8:e9:36:ff:34:5d:90:f3:43:73:2b:bc:40:46:da:f8: 52:5e:41:86:5b:be:9c:2b:02:37:b1:60:70:84:87:c4:db:f1: 1b:2b:fc:c9:17:1a:90:1a:93:25:a9:a8:b6:38:19:5f:11:ab: ad:89:6b:a8:99:0f:88:3f:96:55:59:f5:82:20:5d:57:60:38: 2a:77:eb:cc:60:5d:fb:5e:1b:8f:92:95:1d:15:86:84:45:0e: 43:49:f1:13:5b:09:a7:c6:1f:4e:0f:06:d2:25:4d:cb:d9:29: 65:18:c7:0a:95:c0:89:b8:5c:9c:b8:0f:4f:92:bc:23:73:16: 96:71:cd:10:7d:4e:64:6e:45:99:39:f4:ec:87:18:84:36:4c: f4:6e:1f:76:47:4d:87:6b:f3:3c:a5:a0:11:3f:79:50:72:48: 0b:94:6a:f8:16:0c:84:52:39:f8:af:10:04:a1:20:2c:4a:5b: 29:ef:a8:a5:76:67:f4:5c:2d:7d:cd:3c:bc:fc:60:9e:e1:68: 79:cc:cf:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjQxMDE0MTQwMjUwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkMjQ4YS1jOWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfNANsmEblr4xx67TWImVQHI5D1C+k3xsh0WxYb9M7+fBXFuWGK7F7gezEx1 J2N60opUCwOG5GOl+dPHzGnn+3zpfO8rw/SI5ah1rCh4Kzt4/+iFfjlwmWnlHfSD 8HnZqtoU179te+INZsV80knXDM/rKxYL4c8+ZbSoQU8PH1EnnviFxeroZvBd3ojA KY1wPafRDSWgRFV1amWHlY4bbcaeDZCsnr3U1nj5aGJ2EabchOSu6wDz+A2lXxb+ EzI4lpc0Jz71tH/KfJkA/Ri4onL5qHsJ9ZBAk1lDr7xybMIeprK33EeHMl/Hboax YblHpneKCsNYlGAFeDni41yW8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFN/p1Bka eX0S6hyhqxgNvUdDKZxyMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvRUM1QkYwNkM4 QTM0MTFFRkJGMTczRTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF5fwQwDQYJKoZIhvcNAQELBQADggEBAI1dGL2qs9itXC/2 g+exnDAh70BS5Li81wULbAlGTwJRTiStyWDTC/cPdmNEX+jOCgwVlHX9BZ0b6Ok2 /zRdkPNDcyu8QEba+FJeQYZbvpwrAjexYHCEh8Tb8Rsr/MkXGpAakyWpqLY4GV8R q62Ja6iZD4g/llVZ9YIgXVdgOCp368xgXfteG4+SlR0VhoRFDkNJ8RNbCafGH04P BtIlTcvZKWUYxwqVwIm4XJy4D0+SvCNzFpZxzRB9TmRuRZk59OyHGIQ2TPRuH3ZH TYdr8zyloBE/eVBySAuUavgWDIRSOfivEAShICxKWynvqKV2Z/RcLX3NPLz8YJ7h aHnMz+M= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:18 2024 by rpki-client on console-ams.rpki-client.org