$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/C3EFE564C2A311EABB1BA61FC4F9AE02.roa File: C3EFE564C2A311EABB1BA61FC4F9AE02.roa (raw, json) Hash identifier: FoZW+AGU8CXyeV1RdM6UrgzlFyF1dMho749ia7IWur8= Subject key identifier: 23:62:3F:78:AD:E2:F6:F2:50:A6:2B:9F:B5:D6:AE:8F:13:86:B0:7D Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1E15 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/C3EFE564C2A311EABB1BA61FC4F9AE02.roa Signing time: Fri 20 Sep 2024 16:34:40 +0000 ROA not before: Fri 20 Sep 2024 16:34:40 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134768 IP address blocks: 125.76.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7701 (0x1e15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4 Validity Not Before: Sep 20 16:34:40 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eda41f-d825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fc:7d:3d:c5:38:b8:bc:f6:3b:d8:9c:01:c1: 40:35:9b:96:a7:d8:88:3e:92:86:18:f5:1b:df:83: 16:13:dd:85:9f:37:cf:03:01:61:04:19:0c:fd:17: 35:81:bc:46:cd:ba:34:47:aa:7c:a2:d2:e6:3d:05: 75:ed:6e:9b:87:1c:63:c4:25:7c:25:b2:de:55:63: d8:b4:dd:ae:84:73:30:45:32:43:e7:16:a7:43:01: a8:ab:4c:cc:16:3a:8c:88:b9:4a:e9:8a:27:dc:bd: a4:30:77:7b:a3:22:1b:e7:54:ed:c2:f5:9f:ed:1c: 6d:e1:90:5f:e9:ed:84:68:30:45:38:23:a3:2f:a8: d9:91:92:6d:62:72:d5:76:f5:5d:8d:af:1f:ee:93: dc:81:94:5e:d5:1f:4c:03:ef:1c:fc:c8:68:c9:4e: f1:b8:4b:4a:28:a6:f1:bc:5b:89:98:ff:c3:27:c1: 21:7f:02:ad:b9:df:8d:b2:3c:34:a9:b1:e5:dd:f0: 57:e0:d8:a1:c1:5d:a6:6f:14:64:e3:ae:30:e8:a9: 93:a7:bf:6e:d7:9c:5c:5b:e9:e3:3a:51:84:c7:5f: 2f:b8:c3:42:2a:ac:16:e0:29:74:b1:1f:21:5f:2d: ea:dd:52:ec:ae:40:76:dc:ea:60:1d:11:4e:68:72: 93:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:62:3F:78:AD:E2:F6:F2:50:A6:2B:9F:B5:D6:AE:8F:13:86:B0:7D X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/C3EFE564C2A311EABB1BA61FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.76.156.0/22 Signature Algorithm: sha256WithRSAEncryption 56:47:dd:e5:6b:76:80:ee:90:65:89:a3:0d:2a:a1:6e:fd:60: 4f:4e:32:d6:bc:c8:0c:84:9f:f1:fd:a3:b6:3c:03:2e:06:23: bd:17:d6:c9:ce:8f:01:9c:48:fa:a1:a5:c0:d6:39:16:55:63: 39:27:f3:fc:83:fe:07:fc:3a:a8:7e:ba:bf:ca:6c:42:eb:00: 04:c2:e3:f3:e6:9b:5d:c5:e8:c0:c8:1c:f6:d6:e7:3a:b5:33: a2:22:49:b5:65:d0:db:95:15:0f:17:c7:ae:90:fc:0e:8a:2b: 10:2e:9a:70:15:97:bc:b2:d6:9e:2c:ec:54:37:eb:17:26:ed: 89:54:60:91:c0:b2:9d:c0:ba:ab:53:10:0c:b8:08:8d:d4:9f: 38:84:1d:c9:dd:15:48:06:8e:38:4b:e3:ed:46:45:75:73:6a: d2:ac:e4:a9:b1:3c:5b:c6:2a:6f:52:69:e6:1d:b3:8a:ff:2e: 46:0e:6c:49:61:8a:df:50:bb:09:ca:e8:6d:76:f8:54:39:58: a8:37:7b:13:9d:5b:18:56:21:fb:3a:f7:c1:23:fb:b8:d6:4c: 5a:02:7a:ff:38:f8:97:db:e5:85:dc:5b:f5:50:66:41:a6:0c: 2d:b7:de:79:76:e9:1d:33:a6:aa:dc:ec:9f:79:b9:e2:09:24: 00:9f:22:5f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwOTIwMTYzNDQwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkYTQxZi1kODI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvx9PcU4uLz2O9icAcFANZuWp9iIPpKGGPUb34MWE92FnzfPAwFhBBkM/Rc1 gbxGzbo0R6p8otLmPQV17W6bhxxjxCV8JbLeVWPYtN2uhHMwRTJD5xanQwGoq0zM FjqMiLlK6Yon3L2kMHd7oyIb51TtwvWf7Rxt4ZBf6e2EaDBFOCOjL6jZkZJtYnLV dvVdja8f7pPcgZRe1R9MA+8c/MhoyU7xuEtKKKbxvFuJmP/DJ8EhfwKtud+Nsjw0 qbHl3fBX4NihwV2mbxRk464w6KmTp79u15xcW+njOlGEx18vuMNCKqwW4Cl0sR8h Xy3q3VLsrkB23OpgHRFOaHKToQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCNiP3it 4vbyUKYrn7XWro8ThrB9MB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQzNFRkU1NjRD MkEzMTFFQUJCMUJBNjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ9TJwwDQYJKoZIhvcNAQELBQADggEBAFZH3eVrdoDukGWJ ow0qoW79YE9OMta8yAyEn/H9o7Y8Ay4GI70X1snOjwGcSPqhpcDWORZVYzkn8/yD /gf8Oqh+ur/KbELrAATC4/Pmm13F6MDIHPbW5zq1M6IiSbVl0NuVFQ8Xx66Q/A6K KxAumnAVl7yy1p4s7FQ36xcm7YlUYJHAsp3AuqtTEAy4CI3UnziEHcndFUgGjjhL 4+1GRXVzatKs5KmxPFvGKm9SaeYds4r/LkYObElhit9QuwnK6G12+FQ5WKg3exOd WxhWIfs698Ej+7jWTFoCev84+Jfb5YXcW/VQZkGmDC233nl26R0zpqrc7J95ueIJ JACfIl8= -----END CERTIFICATE-----Generated at Sun Feb 16 22:08:41 2025 by rpki-client