$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B9FBA9CE04D311E9A6452047C4F9AE02.roa File: B9FBA9CE04D311E9A6452047C4F9AE02.roa (raw, json) Hash identifier: e7SCS/LIUB/XpBleAEFKpKtzdQPdSdDK4N92QWmaqdQ= Subject key identifier: AF:09:53:88:4E:81:9E:3C:99:1A:E4:CC:C5:D1:5D:28:7F:6F:DF:01 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D37 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B9FBA9CE04D311E9A6452047C4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:39 +0000 ROA not before: Tue 02 Jan 2024 16:54:39 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 58461 IP address blocks: 125.124.0.0/16 maxlen: 16 218.0.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7479 (0x1d37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:39 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fce-8a7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:28:55:ee:66:85:3b:ab:d4:43:45:1b:d7:fa: bb:6f:c9:c7:83:a1:d2:43:60:3b:ec:6d:59:40:6a: 6e:a4:a7:77:42:7e:0f:f0:d4:1b:54:5a:8d:3a:d4: 6c:a2:1c:73:68:60:ec:44:b5:a4:99:a1:18:d9:61: bb:a2:e3:e1:eb:06:56:18:b9:51:b7:d8:d0:ad:d4: 7f:06:ab:16:e3:3e:14:32:9a:9a:41:c1:10:da:42: 8a:08:45:11:2a:bd:ec:3e:6a:28:49:b8:0a:bb:ac: c9:3b:93:f3:f8:ce:2c:10:86:e3:0e:82:f5:b4:44: ee:b1:37:e7:23:78:2f:24:32:73:c2:21:7c:58:f4: 77:e2:36:c6:05:26:99:9a:bd:0e:1f:81:d4:59:a2: a6:86:49:da:2d:66:5e:bf:0f:55:d9:c8:e6:c7:5d: a4:93:ab:b0:fa:5d:16:50:ff:7a:bf:82:e6:d9:32: f8:f4:c1:74:c0:e6:8d:03:d6:ed:cf:63:44:21:b9: c1:03:4f:41:18:77:7a:92:d3:68:b6:83:60:23:d4: ba:1f:23:22:15:2c:66:af:f7:38:72:2a:d2:b9:4e: a4:4c:3f:b9:7b:49:62:b5:39:6c:5b:a1:ed:50:44: c0:fa:37:9d:94:ff:4a:af:90:01:aa:2a:16:ab:45: e2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:09:53:88:4E:81:9E:3C:99:1A:E4:CC:C5:D1:5D:28:7F:6F:DF:01 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B9FBA9CE04D311E9A6452047C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.124.0.0/16 218.0.48.0/20 Signature Algorithm: sha256WithRSAEncryption 7a:81:ef:87:40:e4:67:ab:74:ec:a0:a5:ee:6c:16:9d:db:e8: 59:93:75:a8:44:2c:b9:7c:61:8e:d8:1d:db:b3:f3:fe:e5:1b: 44:69:cd:57:75:4d:89:b3:1f:7c:75:36:36:17:b4:ae:ea:15: 64:a4:83:93:6f:12:9f:bf:61:87:6a:2e:f7:0f:92:90:e8:fb: 19:bb:e9:21:03:ab:ef:05:f8:f1:86:b5:50:0b:9f:88:b1:85: 2b:0c:fa:58:51:70:46:51:b8:63:f5:a2:a8:34:95:54:bf:7d: 0a:d3:ef:88:c8:b5:91:1c:ef:4b:28:da:27:23:3d:c1:6b:c0: 73:a6:88:2b:e3:3c:21:57:f6:57:62:e1:ac:e1:2f:08:47:00: 1b:d8:bc:bb:4d:fc:47:1b:e4:41:71:72:bb:7a:f5:0c:01:65: e7:e9:4c:b9:19:87:3d:c6:0b:66:c9:f4:2c:49:06:07:a0:ce: 07:e6:5b:ab:90:24:d2:f9:bf:14:33:93:1a:92:68:1f:91:7b: af:57:f2:a6:a9:af:be:86:4e:17:2d:9d:c9:f0:95:af:ce:bc: d3:a8:e2:2f:1a:56:ba:34:52:e4:7f:c3:06:ed:73:e1:d8:33: d3:ca:11:02:21:68:6b:45:8c:20:b4:7c:a8:00:e1:ae:4c:e1: b1:ab:52:64 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICHTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDM5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZjZS04YTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxShV7maFO6vUQ0Ub1/q7b8nHg6HSQ2A77G1ZQGpupKd3Qn4P8NQbVFqNOtRs ohxzaGDsRLWkmaEY2WG7ouPh6wZWGLlRt9jQrdR/BqsW4z4UMpqaQcEQ2kKKCEUR Kr3sPmooSbgKu6zJO5Pz+M4sEIbjDoL1tETusTfnI3gvJDJzwiF8WPR34jbGBSaZ mr0OH4HUWaKmhknaLWZevw9V2cjmx12kk6uw+l0WUP96v4Lm2TL49MF0wOaNA9bt z2NEIbnBA09BGHd6ktNotoNgI9S6HyMiFSxmr/c4cirSuU6kTD+5e0litTlsW6Ht UETA+jedlP9Kr5ABqioWq0XiSQIDAQABo4ICmjCCApYwHQYDVR0OBBYEFK8JU4hO gZ48mRrkzMXRXSh/b98BMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQjlGQkE5Q0Uw NEQzMTFFOUE2NDUyMDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDAwB9fAMEBNoAMDANBgkqhkiG9w0BAQsFAAOCAQEAeoHvh0Dk Z6t07KCl7mwWndvoWZN1qEQsuXxhjtgd27Pz/uUbRGnNV3VNibMffHU2Nhe0ruoV ZKSDk28Sn79hh2ou9w+SkOj7GbvpIQOr7wX48Ya1UAufiLGFKwz6WFFwRlG4Y/Wi qDSVVL99CtPviMi1kRzvSyjaJyM9wWvAc6aIK+M8IVf2V2LhrOEvCEcAG9i8u038 RxvkQXFyu3r1DAFl5+lMuRmHPcYLZsn0LEkGB6DOB+Zbq5Ak0vm/FDOTGpJoH5F7 r1fypqmvvoZOFy2dyfCVr86806jiLxpWujRS5H/DBu1z4dgz08oRAiFoa0WMILR8 qADhrkzhsatSZA== -----END CERTIFICATE-----Generated at Sat May 18 18:21:36 2024 by rpki-client on console-ams.rpki-client.org