$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/1B1DEA4A04D511E98BFF354BC4F9AE02.roa File: 1B1DEA4A04D511E98BFF354BC4F9AE02.roa (raw, json) Hash identifier: h+61cE316jdyJms49d8rx/J9NlBMFuT2IEXk2m0zViw= Subject key identifier: 99:02:E3:E9:42:50:EE:14:A3:7D:0A:25:31:87:4C:BC:76:70:B9:EC Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D3E Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/1B1DEA4A04D511E98BFF354BC4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:45 +0000 ROA not before: Tue 02 Jan 2024 16:54:45 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 7908 IP address blocks: 125.125.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7486 (0x1d3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:45 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fd5-c11b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:01:cc:3d:26:db:b4:c7:a1:1f:22:ff:b1:b8: 78:dd:e4:0a:f2:67:36:26:17:bb:19:06:56:6c:fa: 5b:55:1e:eb:b9:49:d9:37:cc:2b:a3:1d:a6:77:06: d2:d9:fe:d4:e9:7b:0f:2f:db:01:b6:00:c5:da:d4: 85:bc:8b:19:a4:08:13:23:e4:c1:6c:f0:13:6e:43: c0:c1:40:a6:47:ff:0e:b9:37:26:cd:93:01:06:c9: 38:eb:29:66:03:15:84:a2:9f:b2:3a:f1:0e:d9:a3: 11:d9:44:1d:c3:31:86:94:b1:d5:17:40:45:90:8e: 01:b5:7c:aa:b0:f9:88:cb:06:90:4a:ac:b0:b8:af: 8a:39:bd:56:05:dc:5a:c4:1b:c3:09:42:f5:95:dc: f5:f0:15:79:fe:06:3e:74:b9:50:68:2f:5d:2f:f1: eb:82:10:54:9d:9f:78:28:e6:48:59:81:ab:18:e5: 54:a8:34:66:bb:89:9c:58:67:c2:a8:6b:6a:36:d6: ab:2e:b5:b6:68:e1:61:64:03:a5:b5:ff:45:b2:a4: 6b:3b:aa:ad:f1:2e:37:12:39:d5:a9:4c:5f:1a:cc: 05:94:d7:55:ec:c4:bb:5c:aa:02:52:c5:ff:b8:47: bc:9b:60:b0:b5:d1:01:7b:6d:18:b8:1f:38:f2:23: ea:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:02:E3:E9:42:50:EE:14:A3:7D:0A:25:31:87:4C:BC:76:70:B9:EC X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/1B1DEA4A04D511E98BFF354BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.125.125.0/24 Signature Algorithm: sha256WithRSAEncryption b3:6f:4e:6f:2c:88:e2:77:19:37:75:de:0e:68:e4:f3:b0:03: 67:81:bf:24:e3:d9:0e:7b:e3:b6:ce:ef:6e:41:4d:82:85:8d: ef:c7:7c:75:51:48:b8:a2:37:17:1e:29:0e:1f:09:77:0d:58: 5a:ca:29:ab:15:39:1b:f1:d2:47:64:5f:ea:12:29:51:81:bd: a0:69:9c:c4:e6:f8:40:19:14:7c:a0:38:a8:34:ff:83:59:e1: 3b:22:a6:60:05:58:6d:4a:df:0a:04:9d:ff:bc:3c:a1:da:a2: a1:73:05:86:71:73:fd:1e:ea:56:1c:f3:99:d4:1a:e6:02:90: 09:6f:eb:6a:1a:d6:ed:bb:66:50:b9:f6:69:c7:5d:1b:7b:a7: ad:7d:f6:3a:24:c1:05:9e:c2:17:5a:76:cb:16:14:1f:12:9e: fc:b2:ff:d8:c0:17:a2:46:2b:dc:0f:fd:9a:23:0a:d5:ff:88: cb:68:f8:10:1f:6b:b0:e4:fb:ca:5a:53:86:a9:e8:9a:26:88: 94:6d:f9:7a:1e:dc:ac:c1:50:9a:1e:d3:99:0a:88:e8:63:83: bd:a8:6b:62:44:f1:3a:57:76:0e:19:7e:f5:44:38:99:2f:4c: b3:9b:4e:f3:74:a0:e6:b3:36:79:65:5a:19:76:a3:b4:b5:f5: 65:c4:df:ad -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDQ1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZkNS1jMTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1QHMPSbbtMehHyL/sbh43eQK8mc2Jhe7GQZWbPpbVR7ruUnZN8wrox2mdwbS 2f7U6XsPL9sBtgDF2tSFvIsZpAgTI+TBbPATbkPAwUCmR/8OuTcmzZMBBsk46ylm AxWEop+yOvEO2aMR2UQdwzGGlLHVF0BFkI4BtXyqsPmIywaQSqywuK+KOb1WBdxa xBvDCUL1ldz18BV5/gY+dLlQaC9dL/HrghBUnZ94KOZIWYGrGOVUqDRmu4mcWGfC qGtqNtarLrW2aOFhZAOltf9FsqRrO6qt8S43EjnVqUxfGswFlNdV7MS7XKoCUsX/ uEe8m2CwtdEBe20YuB848iPq5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJkC4+lC UO4Uo30KJTGHTLx2cLnsMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvMUIxREVBNEEw NEQ1MTFFOThCRkYzNTRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB9fX0wDQYJKoZIhvcNAQELBQADggEBALNvTm8siOJ3GTd1 3g5o5POwA2eBvyTj2Q5747bO725BTYKFje/HfHVRSLiiNxceKQ4fCXcNWFrKKasV ORvx0kdkX+oSKVGBvaBpnMTm+EAZFHygOKg0/4NZ4TsipmAFWG1K3woEnf+8PKHa oqFzBYZxc/0e6lYc85nUGuYCkAlv62oa1u27ZlC59mnHXRt7p6199jokwQWewhda dssWFB8Snvyy/9jAF6JGK9wP/ZojCtX/iMto+BAfa7Dk+8paU4ap6JomiJRt+Xoe 3KzBUJoe05kKiOhjg72oa2JE8TpXdg4ZfvVEOJkvTLObTvN0oOazNnllWhl2o7S1 9WXE360= -----END CERTIFICATE-----Generated at Sat May 18 18:21:36 2024 by rpki-client on console-ams.rpki-client.org