$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B9FBA9CE04D311E9A6452047C4F9AE02.roa File: B9FBA9CE04D311E9A6452047C4F9AE02.roa (raw, json) Hash identifier: rlEGi3xjhJfP2u/ZUHFiWIlVgFz9xogRY/BfK8tfhx4= Subject key identifier: F3:03:76:BA:3F:5A:2B:6E:9F:8A:68:2A:26:49:0F:0E:32:AD:98:D5 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1E2D Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B9FBA9CE04D311E9A6452047C4F9AE02.roa Signing time: Fri 20 Sep 2024 16:35:01 +0000 ROA not before: Fri 20 Sep 2024 16:35:01 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 58461 IP address blocks: 125.124.0.0/16 maxlen: 16 218.0.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 16:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7725 (0x1e2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4 Validity Not Before: Sep 20 16:35:01 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eda435-4bfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:81:8d:15:5e:7d:c2:a2:4c:60:f4:b2:fc:a7: 14:fc:94:33:9a:fc:fc:c3:a2:b9:fd:05:d1:5c:28: be:c5:b1:e8:00:cf:1b:0d:83:77:29:09:76:80:25: 1e:74:ad:39:f1:b1:43:f7:ef:fc:7b:e9:16:1b:b0: 70:6e:3b:79:05:48:74:f7:1a:8d:d8:44:33:2b:7a: 20:cf:75:b0:d0:80:97:98:9e:f8:5d:06:da:ee:01: 76:5e:ec:1c:00:e0:c8:a0:d3:d8:28:38:ed:ee:9e: 0c:91:b8:b1:75:6f:36:12:fd:4a:30:e0:a8:57:29: e1:a0:80:cb:7b:11:30:65:18:09:47:be:30:52:9d: 91:af:43:f6:9d:3b:6a:de:7b:44:ea:27:bc:e7:9a: d1:28:00:06:e4:bd:a5:c6:17:49:93:06:38:e3:b6: 16:96:6e:31:1e:fa:31:fa:62:6f:19:b7:34:f5:98: 26:ce:5c:d8:1f:89:f8:92:34:82:ef:cb:49:e3:6e: 24:c1:fc:f6:83:e2:62:6c:59:ff:e3:7c:06:bf:c4: a4:24:4e:f6:42:94:09:55:98:46:ef:b5:55:04:07: a8:cb:32:70:71:02:70:6d:8b:90:cc:6e:96:0d:7b: e3:40:20:6e:23:64:fe:ed:ed:5c:b5:6e:19:ed:a1: d6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:03:76:BA:3F:5A:2B:6E:9F:8A:68:2A:26:49:0F:0E:32:AD:98:D5 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B9FBA9CE04D311E9A6452047C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.124.0.0/16 218.0.48.0/20 Signature Algorithm: sha256WithRSAEncryption 28:ef:48:ab:37:d0:41:a2:0b:f4:d3:c9:25:e9:6e:36:65:8d: 7f:a5:45:3a:2f:05:a7:ca:97:56:fc:3f:6f:cf:f5:fe:7f:11: bc:00:34:69:93:50:c8:6a:e3:ab:36:5c:d8:f2:e3:2a:ce:04: a5:68:8a:f2:f8:e7:93:8d:60:9d:7c:11:79:d4:7e:36:ea:a3: 28:ce:a3:f5:7a:43:0a:87:7c:d7:d1:b9:cc:48:dc:8a:85:78: 3d:31:0a:35:18:23:87:72:eb:ba:07:12:0a:24:72:46:0b:23: e3:e5:05:4f:c1:6c:eb:4b:47:80:d5:7f:25:cb:f6:ad:de:97: 2e:2b:71:f8:60:f4:66:ec:49:23:4e:a0:9a:fd:5e:43:76:24: 24:cd:5e:7a:57:7b:de:bf:8a:10:74:24:2a:13:8a:d7:1c:fd: 61:41:1c:f2:d8:99:01:4e:d8:1c:cd:2d:37:06:5e:5a:d1:f5: a7:ec:28:bc:74:a7:5d:ed:42:fd:7b:a5:39:7b:4a:f7:2d:06: 94:55:0a:65:f1:a8:5d:42:be:84:09:86:7a:66:80:0e:cd:c2: 13:67:b7:6d:92:35:bf:e6:e4:d4:58:ab:53:b8:cb:b5:93:c1: 1f:ab:50:c4:12:3d:72:2b:e6:c2:a5:b8:d7:20:3e:49:5a:9f: 88:6e:73:4c -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICHi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwOTIwMTYzNTAxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkYTQzNS00YmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYGNFV59wqJMYPSy/KcU/JQzmvz8w6K5/QXRXCi+xbHoAM8bDYN3KQl2gCUe dK058bFD9+/8e+kWG7Bwbjt5BUh09xqN2EQzK3ogz3Ww0ICXmJ74XQba7gF2Xuwc AODIoNPYKDjt7p4MkbixdW82Ev1KMOCoVynhoIDLexEwZRgJR74wUp2Rr0P2nTtq 3ntE6ie855rRKAAG5L2lxhdJkwY447YWlm4xHvox+mJvGbc09ZgmzlzYH4n4kjSC 78tJ424kwfz2g+JibFn/43wGv8SkJE72QpQJVZhG77VVBAeoyzJwcQJwbYuQzG6W DXvjQCBuI2T+7e1ctW4Z7aHWBQIDAQABo4ICmjCCApYwHQYDVR0OBBYEFPMDdro/ Witun4poKiZJDw4yrZjVMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQjlGQkE5Q0Uw NEQzMTFFOUE2NDUyMDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDAwB9fAMEBNoAMDANBgkqhkiG9w0BAQsFAAOCAQEAKO9IqzfQ QaIL9NPJJeluNmWNf6VFOi8Fp8qXVvw/b8/1/n8RvAA0aZNQyGrjqzZc2PLjKs4E pWiK8vjnk41gnXwRedR+NuqjKM6j9XpDCod819G5zEjcioV4PTEKNRgjh3LrugcS CiRyRgsj4+UFT8Fs60tHgNV/Jcv2rd6XLitx+GD0ZuxJI06gmv1eQ3YkJM1eeld7 3r+KEHQkKhOK1xz9YUEc8tiZAU7YHM0tNwZeWtH1p+wovHSnXe1C/XulOXtK9y0G lFUKZfGoXUK+hAmGemaADs3CE2e3bZI1v+bk1FirU7jLtZPBH6tQxBI9civmwqW4 1yA+SVqfiG5zTA== -----END CERTIFICATE-----Generated at Thu Mar 13 21:51:47 2025 by rpki-client