$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/1B1DEA4A04D511E98BFF354BC4F9AE02.roa File: 1B1DEA4A04D511E98BFF354BC4F9AE02.roa (raw, json) Hash identifier: TkNn+MTjqvGvnFe4zWqgI2u8ZNVhGw30Qsbe/rkSamA= Subject key identifier: 2F:B1:4B:F3:D0:90:B9:81:AE:27:43:02:53:E5:C9:86:84:FB:56:6E Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1E36 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/1B1DEA4A04D511E98BFF354BC4F9AE02.roa Signing time: Fri 20 Sep 2024 16:35:11 +0000 ROA not before: Fri 20 Sep 2024 16:35:11 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 7908 IP address blocks: 125.125.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:53:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7734 (0x1e36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Sep 20 16:35:11 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eda43f-8fd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a9:fb:32:be:2e:37:28:00:31:62:a3:7d:92: ae:62:d5:a2:2a:f8:3b:31:b4:43:47:10:61:44:6e: db:53:3c:6c:ed:f6:1b:cd:e5:45:2a:29:bd:08:72: ee:66:8a:b2:a6:f2:7d:83:e2:9e:92:88:73:31:e8: 37:94:b6:11:65:c7:bb:db:63:f4:6c:18:22:a4:0b: 5b:36:54:e6:8d:01:f6:97:b1:84:ee:6e:b9:4f:26: c4:28:4c:ba:00:43:e0:7c:90:7f:e9:03:d0:b9:59: 7b:d7:bc:70:22:90:c1:58:82:32:e7:18:7a:6f:0f: d1:ae:26:00:9e:2d:e6:44:5b:1a:de:3b:8a:11:d4: e6:23:c6:14:a8:7a:3d:0c:be:54:ef:2f:77:b9:6f: c8:e0:43:7f:88:9e:bc:8d:23:f6:65:fc:2f:bb:a9: 30:da:2a:4b:58:3a:c6:f9:99:03:6d:19:aa:bf:73: 60:80:84:8b:03:5e:33:c5:4c:19:10:60:6b:d1:d2: 7b:b3:e3:aa:2c:32:62:0c:24:c9:d2:ed:11:7f:2c: 3a:f3:b8:14:4c:84:f9:3b:91:47:65:48:42:69:46: bb:58:6c:3a:bb:47:c5:d6:c3:77:77:aa:10:e6:3c: 59:09:a9:f1:09:fc:de:4a:01:84:c5:fe:a6:19:60: 26:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B1:4B:F3:D0:90:B9:81:AE:27:43:02:53:E5:C9:86:84:FB:56:6E X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/1B1DEA4A04D511E98BFF354BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.125.125.0/24 Signature Algorithm: sha256WithRSAEncryption 76:fd:58:c8:98:86:4a:30:fc:94:52:85:4a:9f:b7:94:cb:54: 88:33:58:cd:63:64:c9:24:dd:b5:c6:43:bd:38:89:d1:49:c4: a9:4b:89:ac:52:fe:31:33:82:05:22:ae:a6:7d:88:32:82:4c: 3a:92:03:84:5f:e5:98:4d:eb:b8:6e:60:53:79:7b:21:ba:0e: 6f:9a:cc:81:a6:32:31:43:26:aa:31:fb:ff:a6:3e:16:3c:37: 3f:59:2b:2e:a1:81:51:1f:5e:6e:03:a2:49:9c:21:1f:be:37: 24:bd:ad:0c:78:6a:e4:e4:70:2c:87:3f:c8:30:df:05:1b:d7: 47:50:50:8b:d5:28:ee:1d:e2:86:a2:0c:0b:0f:4e:39:dc:f3: 2c:49:78:09:f0:d6:05:80:2a:9d:20:78:a1:23:df:63:fe:25: 11:bd:54:98:60:14:4b:b1:e4:17:d1:65:c0:c9:41:fe:f0:8f: 28:34:a0:84:55:af:d9:76:17:0a:42:94:8b:f4:e9:24:fe:63: 59:ff:ef:04:70:78:92:21:cd:63:a7:f0:9e:28:67:09:12:27: 2e:f5:48:c9:0d:fd:eb:43:96:3d:a5:df:e0:8f:99:bd:2d:66: 8c:7c:a7:59:72:03:a7:4d:27:fe:b8:24:77:79:be:5c:83:77: 6f:e1:58:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwOTIwMTYzNTExWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkYTQzZi04ZmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoqn7Mr4uNygAMWKjfZKuYtWiKvg7MbRDRxBhRG7bUzxs7fYbzeVFKim9CHLu ZoqypvJ9g+KekohzMeg3lLYRZce722P0bBgipAtbNlTmjQH2l7GE7m65TybEKEy6 AEPgfJB/6QPQuVl717xwIpDBWIIy5xh6bw/RriYAni3mRFsa3juKEdTmI8YUqHo9 DL5U7y93uW/I4EN/iJ68jSP2Zfwvu6kw2ipLWDrG+ZkDbRmqv3NggISLA14zxUwZ EGBr0dJ7s+OqLDJiDCTJ0u0Rfyw687gUTIT5O5FHZUhCaUa7WGw6u0fF1sN3d6oQ 5jxZCanxCfzeSgGExf6mGWAmAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC+xS/PQ kLmBridDAlPlyYaE+1ZuMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvMUIxREVBNEEw NEQ1MTFFOThCRkYzNTRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB9fX0wDQYJKoZIhvcNAQELBQADggEBAHb9WMiYhkow/JRS hUqft5TLVIgzWM1jZMkk3bXGQ704idFJxKlLiaxS/jEzggUirqZ9iDKCTDqSA4Rf 5ZhN67huYFN5eyG6Dm+azIGmMjFDJqox+/+mPhY8Nz9ZKy6hgVEfXm4DokmcIR++ NyS9rQx4auTkcCyHP8gw3wUb10dQUIvVKO4d4oaiDAsPTjnc8yxJeAnw1gWAKp0g eKEj32P+JRG9VJhgFEux5BfRZcDJQf7wjyg0oIRVr9l2FwpClIv06ST+Y1n/7wRw eJIhzWOn8J4oZwkSJy71SMkN/etDlj2l3+CPmb0tZox8p1lyA6dNJ/64JHd5vlyD d2/hWFM= -----END CERTIFICATE-----Generated at Fri Nov 22 03:53:01 2024 by rpki-client on console-fra.rpki-client.org