$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/5460143AD34011ECBC1DA40EC4F9AE02.roa File: 5460143AD34011ECBC1DA40EC4F9AE02.roa (raw, json) Hash identifier: mSHVgOgebMql2vVyUMQtDn8MbI5cBn29yqk8tb1nlIk= Subject key identifier: 03:D5:23:5D:6E:31:FE:13:AD:2A:7A:52:D4:CA:0F:AF:E3:41:2D:9E Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2405 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/5460143AD34011ECBC1DA40EC4F9AE02.roa Signing time: Fri 26 Jul 2024 16:33:39 +0000 ROA not before: Fri 26 Jul 2024 16:33:39 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 24429 IP address blocks: 1.37.35.128/25 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9221 (0x2405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207 Validity Not Before: Jul 26 16:33:39 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a3cfe2-8f16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1a:f7:7c:25:b9:3f:c7:5e:d2:19:41:e3:60: b5:57:1d:5a:39:d7:92:e7:7e:65:ea:84:fb:7e:f2: 1c:30:b2:13:7f:b4:c1:37:ca:79:a9:50:b9:d2:a0: 34:fe:7a:f5:cf:3b:44:3e:f2:88:f3:07:33:54:ce: bf:3a:95:d1:1d:d6:af:df:f9:5e:e8:f3:f3:fc:a9: 78:9b:b3:59:5c:86:b0:3d:d2:92:05:3d:61:88:43: 11:a2:c0:f0:bb:3c:70:ae:3c:0c:e5:61:ac:8f:f0: 8e:aa:2e:fa:8c:0e:2e:9b:05:3f:ac:7c:1f:9d:7b: ac:ae:7c:e2:85:4e:62:c5:a8:21:31:62:73:3b:f8: 2e:53:01:99:d1:2d:e8:51:f9:20:0e:bd:db:f4:dd: 45:df:b6:74:53:37:2e:65:64:44:0d:93:1e:02:be: 07:23:2d:88:9e:1c:cd:99:7b:cd:46:44:57:5b:24: ac:42:b8:8b:84:2b:2f:51:46:e6:22:bc:11:79:61: 68:fe:00:79:48:79:09:2e:e5:4c:d1:10:59:d1:60: cd:d9:2f:69:70:b9:d0:9c:c1:38:c1:b0:91:95:8b: 2f:89:52:4e:38:73:99:5e:2c:fe:3e:80:4d:09:95: 11:9c:56:77:52:af:9b:35:eb:d5:c8:2a:1c:93:2d: ab:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D5:23:5D:6E:31:FE:13:AD:2A:7A:52:D4:CA:0F:AF:E3:41:2D:9E X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/5460143AD34011ECBC1DA40EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.37.35.128/25 Signature Algorithm: sha256WithRSAEncryption 60:00:ca:bd:c4:19:00:2a:15:cb:83:77:3f:93:c9:7d:b4:52: fe:b1:f0:3f:54:10:5d:f4:78:86:72:dc:50:f2:6a:30:cd:84: b8:32:80:9c:b6:11:10:53:f0:ad:dc:74:73:ab:b8:56:3f:fb: 2c:d6:45:b0:29:e0:56:38:71:f7:4b:f6:3a:75:89:1c:dc:e4: 3b:2b:1e:e1:a2:ae:c9:ea:e6:4a:4f:74:e8:fe:f0:56:0f:b0: cf:af:ed:8e:24:61:5f:93:65:a5:91:e2:f1:a7:24:e0:d2:e6: f9:38:e7:79:e6:8e:2f:3e:af:33:e1:91:74:39:02:25:4c:66: 0a:e2:66:b3:73:de:97:ce:f3:65:8d:b6:ae:1d:25:c5:f6:d8: 89:db:8c:06:7f:86:a9:b1:63:6b:91:7c:3d:7d:60:7c:61:37: cf:75:35:84:f3:4a:8d:02:a3:13:fa:c3:0d:a4:da:01:21:cc: 82:d9:70:c6:d8:7c:fb:2b:be:79:3f:f2:f5:f0:98:69:7e:f9: 17:d6:11:da:ff:93:79:fc:e0:9f:55:72:ac:14:c9:3b:6e:04: 1b:6e:60:14:b4:62:28:61:43:70:65:74:5e:0a:b3:72:8b:95: 12:22:5a:d2:4c:32:d8:81:d5:02:a0:c0:1a:f3:8c:80:67:15: 9e:b8:43:11 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICJAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjQwNzI2MTYzMzM5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmEzY2ZlMi04ZjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhr3fCW5P8de0hlB42C1Vx1aOdeS535l6oT7fvIcMLITf7TBN8p5qVC50qA0 /nr1zztEPvKI8wczVM6/OpXRHdav3/le6PPz/Kl4m7NZXIawPdKSBT1hiEMRosDw uzxwrjwM5WGsj/COqi76jA4umwU/rHwfnXusrnzihU5ixaghMWJzO/guUwGZ0S3o UfkgDr3b9N1F37Z0UzcuZWREDZMeAr4HIy2InhzNmXvNRkRXWySsQriLhCsvUUbm IrwReWFo/gB5SHkJLuVM0RBZ0WDN2S9pcLnQnME4wbCRlYsviVJOOHOZXiz+PoBN CZURnFZ3Uq+bNevVyCocky2rgwIDAQABo4ICljCCApIwHQYDVR0OBBYEFAPVI11u Mf4TrSp6UtTKD6/jQS2eMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvNTQ2MDE0M0FE MzQwMTFFQ0JDMURBNDBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgABMAcDBQcBJSOAMA0GCSqGSIb3DQEBCwUAA4IBAQBgAMq9xBkAKhXL g3c/k8l9tFL+sfA/VBBd9HiGctxQ8mowzYS4MoCcthEQU/Ct3HRzq7hWP/ss1kWw KeBWOHH3S/Y6dYkc3OQ7Kx7hoq7J6uZKT3To/vBWD7DPr+2OJGFfk2WlkeLxpyTg 0ub5OOd55o4vPq8z4ZF0OQIlTGYK4mazc96XzvNljbauHSXF9tiJ24wGf4apsWNr kXw9fWB8YTfPdTWE80qNAqMT+sMNpNoBIcyC2XDG2Hz7K755P/L18JhpfvkX1hHa /5N5/OCfVXKsFMk7bgQbbmAUtGIoYUNwZXReCrNyi5USIlrSTDLYgdUCoMAa84yA ZxWeuEMR -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:51 2025 by rpki-client