$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8D76CA462E9511E9896EFA1DC4F9AE02.roa File: 8D76CA462E9511E9896EFA1DC4F9AE02.roa (raw, json) Hash identifier: uqBg3EfYSkP8xrpkIoXRk79rOz8VHiKa+sc7sMHbX+4= Subject key identifier: 07:26:C6:F6:D0:1F:5F:DE:5C:09:06:60:1A:B1:3F:45:96:97:EA:AF Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 102F Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8D76CA462E9511E9896EFA1DC4F9AE02.roa Signing time: Tue 30 Apr 2024 18:26:32 +0000 ROA not before: Tue 30 Apr 2024 18:26:32 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 38301 IP address blocks: 125.212.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4143 (0x102f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: Apr 30 18:26:32 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663137d7-6bc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b6:03:9a:ca:5c:19:b1:86:99:5b:dd:0c:04: 61:83:a6:b9:2a:42:c5:05:ff:a5:32:8f:d0:dc:9b: be:f5:a4:f3:a8:f7:fe:ed:9f:c9:0d:21:6b:e0:46: 8e:a9:a2:ef:11:c5:6c:f3:42:36:fe:de:a5:90:38: f6:07:38:8b:18:24:e0:23:12:68:b7:c3:44:77:fe: ee:09:3c:05:5b:f8:ad:df:52:58:7d:d9:f2:11:8e: e8:2a:db:62:e4:92:83:ec:fb:ee:37:14:d1:2c:96: 7a:c7:4b:93:c9:db:f3:52:2a:2b:ac:f2:33:ad:7e: 53:ff:df:16:3c:e9:5a:0c:9a:d1:2d:02:bb:a2:91: c8:79:b6:a4:62:97:82:fe:aa:ac:b0:4f:51:23:65: ac:75:9d:97:31:70:e7:33:15:d0:79:b5:d1:ce:91: 25:7f:e7:53:cb:de:86:8e:d2:51:b8:10:47:00:56: b0:4a:ea:fb:c9:a8:7a:31:cf:20:04:09:e6:8f:b1: f8:e1:6a:e7:48:3d:86:65:ba:4c:b8:a4:d7:89:8a: ee:ba:80:6a:9a:f8:2b:69:51:66:dc:5d:d8:6a:d8: 99:bf:e0:1f:7f:26:51:6a:97:70:25:42:e2:77:38: 40:70:db:1a:dd:32:23:39:10:70:5f:48:b4:ed:4e: 59:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:26:C6:F6:D0:1F:5F:DE:5C:09:06:60:1A:B1:3F:45:96:97:EA:AF X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8D76CA462E9511E9896EFA1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.212.63.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:7d:68:91:98:4b:73:08:de:83:c4:c1:27:8b:13:a9:2b:40: 27:9d:ff:2d:99:33:09:ab:b0:66:10:08:42:93:1d:13:c5:84: 47:dc:0f:3a:71:6d:ac:f2:d6:63:2c:19:3f:a8:59:19:d6:46: c6:72:55:9a:1c:fd:57:88:b7:ad:f5:1f:9c:75:ba:00:7b:e5: 5c:07:4c:eb:52:82:78:cf:2f:e5:8f:3d:fc:a2:71:24:d1:da: 24:f2:3b:3b:f0:8b:33:65:d9:10:f4:9a:de:8d:48:5b:b1:0b: b2:a1:06:61:fe:34:71:49:53:e2:f0:ba:a5:a2:f4:a5:8a:c5: f9:b7:cb:c8:b8:63:82:c5:c1:d7:0b:0c:62:94:a9:b6:38:62: 70:1b:38:7e:b5:ec:11:ad:9f:89:3a:30:66:27:38:c1:71:ac: cf:d2:32:f1:5c:2e:c2:2f:b0:b1:43:31:60:44:06:cb:8a:d6: 08:de:7e:bf:65:46:49:a6:7f:9d:8a:8f:ed:0b:c5:64:de:68: de:e3:6c:d0:63:9e:ec:26:a9:b1:27:0e:17:ba:0d:9b:ab:6d: 28:63:f3:0a:61:7d:4c:6d:dc:06:98:57:ff:f8:0d:76:0c:c9: 3d:8f:f3:cc:2d:ae:aa:a8:56:38:3f:88:b1:b2:07:2f:90:02: 18:f2:c2:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjQwNDMwMTgyNjMyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMzdkNy02YmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7YDmspcGbGGmVvdDARhg6a5KkLFBf+lMo/Q3Ju+9aTzqPf+7Z/JDSFr4EaO qaLvEcVs80I2/t6lkDj2BziLGCTgIxJot8NEd/7uCTwFW/it31JYfdnyEY7oKtti 5JKD7PvuNxTRLJZ6x0uTydvzUiorrPIzrX5T/98WPOlaDJrRLQK7opHIebakYpeC /qqssE9RI2WsdZ2XMXDnMxXQebXRzpElf+dTy96GjtJRuBBHAFawSur7yah6Mc8g BAnmj7H44WrnSD2GZbpMuKTXiYruuoBqmvgraVFm3F3YatiZv+AffyZRapdwJULi dzhAcNsa3TIjORBwX0i07U5ZrQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAcmxvbQ H1/eXAkGYBqxP0WWl+qvMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvOEQ3NkNBNDYy RTk1MTFFOTg5NkVGQTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB91D8wDQYJKoZIhvcNAQELBQADggEBAG99aJGYS3MI3oPE wSeLE6krQCed/y2ZMwmrsGYQCEKTHRPFhEfcDzpxbazy1mMsGT+oWRnWRsZyVZoc /VeIt631H5x1ugB75VwHTOtSgnjPL+WPPfyicSTR2iTyOzvwizNl2RD0mt6NSFux C7KhBmH+NHFJU+LwuqWi9KWKxfm3y8i4Y4LFwdcLDGKUqbY4YnAbOH617BGtn4k6 MGYnOMFxrM/SMvFcLsIvsLFDMWBEBsuK1gjefr9lRkmmf52Kj+0LxWTeaN7jbNBj nuwmqbEnDhe6DZurbShj8wphfUxt3AaYV//4DXYMyT2P88wtrqqoVjg/iLGyBy+Q AhjywiY= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org