$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/C3EFE564C2A311EABB1BA61FC4F9AE02.roa File: C3EFE564C2A311EABB1BA61FC4F9AE02.roa (raw, json) Hash identifier: kDYbhZ84Pz76HgS//MqCq9M2gnUXhJrSOb9631G+Wwo= Subject key identifier: 9D:47:48:19:0A:28:6D:6F:AC:B3:74:BE:A7:10:48:6C:E5:9D:31:52 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D21 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/C3EFE564C2A311EABB1BA61FC4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:17 +0000 ROA not before: Tue 02 Jan 2024 16:54:17 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 134768 IP address blocks: 125.76.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7457 (0x1d21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:17 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fb9-a6bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ae:09:b0:25:8e:6a:5f:aa:1f:79:c6:01:c8: 9e:51:af:69:e0:22:90:ae:f4:e7:79:96:46:68:bd: a4:c1:f3:cd:2a:7b:11:e1:5a:e5:ad:d5:d9:ad:04: f9:c4:0e:52:c3:64:b8:43:7a:38:16:6c:fe:b6:06: 41:2d:46:71:89:0d:fb:3c:e5:ee:85:c3:70:ea:06: 02:c4:9d:62:1f:db:b0:7c:ef:e2:90:61:6b:ca:4f: b3:52:dd:0a:8d:af:5b:e8:d6:39:20:f0:d0:c4:d4: 26:fd:6e:71:35:98:40:a9:99:d8:e6:77:da:59:cd: 54:12:74:ef:2f:95:ea:68:13:c3:e7:19:05:26:ba: 50:8d:f2:da:df:13:9f:da:9d:d0:f1:8d:bb:87:ac: a3:82:9e:38:83:36:59:7d:d7:cf:42:6a:3d:af:31: f7:0f:f6:88:54:aa:db:2f:db:7d:f1:61:a6:32:b8: cc:86:b5:06:e4:db:98:72:1f:e6:23:d9:92:2b:95: 5a:e0:0c:0f:b6:1d:5d:40:d3:e9:1d:ea:61:1c:34: a1:5f:16:f9:d2:cd:f7:10:82:42:f0:28:20:ff:2c: 1c:25:8a:32:3c:0e:7b:9f:7b:d5:90:8d:95:26:9a: ec:d4:64:aa:e3:ac:ed:12:15:d0:bc:77:c1:de:6b: 94:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:47:48:19:0A:28:6D:6F:AC:B3:74:BE:A7:10:48:6C:E5:9D:31:52 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/C3EFE564C2A311EABB1BA61FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.76.156.0/22 Signature Algorithm: sha256WithRSAEncryption a2:e3:4c:35:79:9c:8a:70:32:55:0d:f4:12:1d:72:16:56:e0: 2f:1c:79:d3:af:f4:b1:9e:11:b1:6a:30:22:b3:11:ce:37:39: c1:de:ad:c0:5e:f5:c0:4c:30:41:ce:c1:ef:e2:e8:63:4b:47: af:bc:27:fc:ac:e3:50:a6:2d:44:a0:d0:0c:b3:9e:66:c4:69: 06:ac:e2:a9:aa:c6:d3:11:39:85:bb:ae:7d:03:90:36:8e:e5: d2:af:6d:3f:47:87:31:e1:77:12:b0:77:f6:5f:a5:b4:92:4e: d1:7d:b7:48:b4:92:a4:51:ec:9f:97:94:e6:18:f6:d4:06:c6: 7f:02:34:c7:d7:09:3d:04:f4:cd:08:ef:38:b4:c2:f2:f7:47: d4:5b:bd:52:54:60:fc:6f:e0:48:34:2a:11:05:81:67:de:14: fe:03:f8:d6:a0:14:45:19:f4:c0:42:2d:0a:43:41:f1:ca:8d: 46:8f:39:cc:33:ff:d0:92:ca:e5:ae:d5:21:af:97:71:83:1c: 4f:67:1c:52:a8:e2:3b:bc:a1:c2:64:70:bf:a0:e9:01:e4:98: fc:56:1e:cd:94:cc:78:8d:bc:e1:23:c1:b2:a2:1a:08:8e:ff: 48:a1:af:57:35:5a:78:46:85:f9:03:10:9f:03:9a:ba:28:75: fe:a9:fb:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDE3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZiOS1hNmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv64JsCWOal+qH3nGAcieUa9p4CKQrvTneZZGaL2kwfPNKnsR4VrlrdXZrQT5 xA5Sw2S4Q3o4Fmz+tgZBLUZxiQ37POXuhcNw6gYCxJ1iH9uwfO/ikGFryk+zUt0K ja9b6NY5IPDQxNQm/W5xNZhAqZnY5nfaWc1UEnTvL5XqaBPD5xkFJrpQjfLa3xOf 2p3Q8Y27h6yjgp44gzZZfdfPQmo9rzH3D/aIVKrbL9t98WGmMrjMhrUG5NuYch/m I9mSK5Va4AwPth1dQNPpHephHDShXxb50s33EIJC8Cgg/ywcJYoyPA57n3vVkI2V Jprs1GSq46ztEhXQvHfB3muUDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ1HSBkK KG1vrLN0vqcQSGzlnTFSMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQzNFRkU1NjRD MkEzMTFFQUJCMUJBNjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ9TJwwDQYJKoZIhvcNAQELBQADggEBAKLjTDV5nIpwMlUN 9BIdchZW4C8cedOv9LGeEbFqMCKzEc43OcHercBe9cBMMEHOwe/i6GNLR6+8J/ys 41CmLUSg0AyznmbEaQas4qmqxtMROYW7rn0DkDaO5dKvbT9HhzHhdxKwd/ZfpbSS TtF9t0i0kqRR7J+XlOYY9tQGxn8CNMfXCT0E9M0I7zi0wvL3R9RbvVJUYPxv4Eg0 KhEFgWfeFP4D+NagFEUZ9MBCLQpDQfHKjUaPOcwz/9CSyuWu1SGvl3GDHE9nHFKo 4ju8ocJkcL+g6QHkmPxWHs2UzHiNvOEjwbKiGgiO/0ihr1c1WnhGhfkDEJ8Dmroo df6p+yU= -----END CERTIFICATE-----Generated at Sat May 18 18:21:36 2024 by rpki-client on console-ams.rpki-client.org