$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/36AA48F2D55E11EAB56B562AC4F9AE02.roa File: 36AA48F2D55E11EAB56B562AC4F9AE02.roa (raw, json) Hash identifier: g9KNetV5gZIclIa3Tn5Z//Qo3scBB3j7I2stbX5nfnI= Subject key identifier: DC:2B:54:BC:B7:9F:E2:EC:51:35:57:30:EA:3C:7D:1B:52:56:B0:70 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1E10 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/36AA48F2D55E11EAB56B562AC4F9AE02.roa Signing time: Fri 20 Sep 2024 16:34:34 +0000 ROA not before: Fri 20 Sep 2024 16:34:34 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 133775 IP address blocks: 125.77.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7696 (0x1e10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4 Validity Not Before: Sep 20 16:34:34 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eda41a-a04c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f3:4b:26:c2:ff:17:ef:cc:a4:ae:f3:32:28: d3:73:33:51:27:f9:8d:0b:70:7f:14:a7:ba:91:6f: 46:f1:b0:7e:bb:70:dd:df:17:7d:82:97:50:6d:0e: c7:aa:63:9f:f9:ff:8b:61:a9:ad:f8:83:f1:a6:38: 0d:cb:79:60:84:f4:93:14:77:86:9a:f7:61:92:ca: 33:0f:5d:eb:14:59:6f:f4:7d:72:d3:29:c6:28:1f: 1f:2c:b1:1f:a3:27:60:fb:e4:27:13:8d:16:88:82: c4:a5:f8:fe:54:91:4b:35:9f:71:5f:18:7a:63:00: 45:ad:5f:70:62:3d:d8:d1:67:f0:af:59:19:90:c1: c7:9f:73:71:35:15:75:4f:1d:5a:cc:89:95:2b:80: c0:3c:99:f7:aa:aa:a0:a4:1a:df:6e:39:71:7a:9b: d1:c6:ef:c5:1a:f0:2b:c3:a8:b8:62:be:45:2d:98: e0:bc:ac:eb:92:b6:e8:18:09:c4:f7:90:84:75:5c: 0d:07:ce:ce:6d:3c:50:2e:65:72:43:ee:b1:ab:14: 45:74:8e:3f:15:3c:69:24:20:21:4d:a2:3f:35:42: 60:69:26:a4:fe:c4:32:fc:19:19:2f:82:00:7e:40: 11:71:07:48:f5:6a:f9:95:36:4a:51:af:06:9f:30: e4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:2B:54:BC:B7:9F:E2:EC:51:35:57:30:EA:3C:7D:1B:52:56:B0:70 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/36AA48F2D55E11EAB56B562AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.77.192.0/21 Signature Algorithm: sha256WithRSAEncryption 3d:2d:dc:d9:7d:cb:54:3a:2c:a0:89:7d:83:ec:b8:ea:a2:2f: 56:9f:ee:fa:e4:9b:4d:8c:7e:12:de:8c:4f:d8:1b:84:61:48: 3a:58:ac:5f:56:33:9b:29:22:5e:90:63:66:36:5b:73:b6:40: b8:3a:b8:0d:4e:53:6b:0e:1b:83:fc:fc:4b:50:1c:25:d0:ff: 89:74:dd:55:71:94:33:60:9e:d9:ef:fb:0f:12:11:96:ba:d7: 44:ce:43:fa:05:75:f0:b2:be:8b:d8:ad:15:1f:e3:3a:1b:9e: b2:7c:98:ee:2c:00:8d:f0:8a:69:9a:a5:66:31:66:f4:b3:40: 4e:a9:4b:49:cd:80:07:5d:c4:61:5a:9f:26:c4:d8:58:6e:9f: d9:a3:09:87:75:0f:d0:b7:e4:21:62:2e:b6:f6:ee:73:d6:82: c9:03:95:83:4a:45:27:68:71:23:98:e0:0a:24:17:43:8a:f0: c0:61:ce:e1:2d:b4:1f:cf:7a:f2:a3:c2:22:cc:fc:1d:4e:08: 2d:ec:4b:fe:4d:48:c1:1a:cd:3c:9b:2f:4c:e4:75:1d:76:bb: cd:b0:0a:3e:15:f8:0a:ba:50:e9:b9:32:99:44:98:f4:04:3e: da:e6:fc:9b:08:a4:91:30:79:d9:98:1e:1d:94:f9:f8:c7:31: 75:e4:60:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwOTIwMTYzNDM0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkYTQxYS1hMDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/NLJsL/F+/MpK7zMijTczNRJ/mNC3B/FKe6kW9G8bB+u3Dd3xd9gpdQbQ7H qmOf+f+LYamt+IPxpjgNy3lghPSTFHeGmvdhksozD13rFFlv9H1y0ynGKB8fLLEf oydg++QnE40WiILEpfj+VJFLNZ9xXxh6YwBFrV9wYj3Y0Wfwr1kZkMHHn3NxNRV1 Tx1azImVK4DAPJn3qqqgpBrfbjlxepvRxu/FGvArw6i4Yr5FLZjgvKzrkrboGAnE 95CEdVwNB87ObTxQLmVyQ+6xqxRFdI4/FTxpJCAhTaI/NUJgaSak/sQy/BkZL4IA fkARcQdI9Wr5lTZKUa8GnzDkNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNwrVLy3 n+LsUTVXMOo8fRtSVrBwMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvMzZBQTQ4RjJE NTVFMTFFQUI1NkI1NjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN9TcAwDQYJKoZIhvcNAQELBQADggEBAD0t3Nl9y1Q6LKCJ fYPsuOqiL1af7vrkm02MfhLejE/YG4RhSDpYrF9WM5spIl6QY2Y2W3O2QLg6uA1O U2sOG4P8/EtQHCXQ/4l03VVxlDNgntnv+w8SEZa610TOQ/oFdfCyvovYrRUf4zob nrJ8mO4sAI3wimmapWYxZvSzQE6pS0nNgAddxGFanybE2Fhun9mjCYd1D9C35CFi Lrb27nPWgskDlYNKRSdocSOY4AokF0OK8MBhzuEttB/PevKjwiLM/B1OCC3sS/5N SMEazTybL0zkdR12u82wCj4V+Aq6UOm5MplEmPQEPtrm/JsIpJEwedmYHh2U+fjH MXXkYI0= -----END CERTIFICATE-----Generated at Sun Feb 16 22:22:38 2025 by rpki-client