$ rpki-client -vvf rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/125E6676E15B11ECA05C9236C4F9AE02.roa File: 125E6676E15B11ECA05C9236C4F9AE02.roa (raw, json) Hash identifier: lPjfdwsG9MxSbp4hrYgWXk0XAJ3QHf0VRvCcBo4gZRI= Subject key identifier: 65:21:CE:AD:04:8C:68:A9:4D:D0:F0:65:29:CB:65:21:04:E0:8B:E5 Certificate issuer: /CN=A91853D3/serialNumber=4E1B840F5C66016CED7E62EEC61B8322A321B6B6 Certificate serial: 0486 Authority key identifier: 4E:1B:84:0F:5C:66:01:6C:ED:7E:62:EE:C6:1B:83:22:A3:21:B6:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ThuED1xmAWztfmLuxhuDIqMhtrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/125E6676E15B11ECA05C9236C4F9AE02.roa Signing time: Thu 23 May 2024 02:05:50 +0000 ROA not before: Thu 23 May 2024 02:05:50 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 2697 IP address blocks: 144.16.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/ThuED1xmAWztfmLuxhuDIqMhtrY.crl rsync://rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/ThuED1xmAWztfmLuxhuDIqMhtrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ThuED1xmAWztfmLuxhuDIqMhtrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1158 (0x486) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91853D3/serialNumber=4E1B840F5C66016CED7E62EEC61B8322A321B6B6 Validity Not Before: May 23 02:05:50 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=664ea47d-a09a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0a:f1:c6:d4:bd:27:29:c3:cb:aa:0c:e1:d9: 00:db:cb:1d:60:29:fd:76:b6:15:1b:a0:c1:f2:0f: a0:91:d8:a1:5e:70:fb:ac:9b:e0:ec:46:f4:21:69: f4:5c:ed:d2:74:b0:ae:10:5c:12:d3:85:0a:79:92: f9:cb:22:36:d3:65:e6:ab:f8:e0:e1:c9:8a:43:d1: a9:b4:a9:4b:e1:ee:63:35:c5:12:b0:88:af:4e:30: 26:0d:ee:03:fa:be:ac:a6:7e:e4:35:e2:15:25:d0: c7:d5:56:c3:c6:e5:b6:6f:e7:d5:70:a2:bd:f5:74: eb:b4:f6:89:6d:96:bf:73:77:2f:67:46:f6:05:e5: 45:37:72:68:79:7b:b8:5e:22:2a:dd:44:33:6d:91: ff:1c:1b:4b:8f:63:78:4d:20:86:53:86:20:aa:7e: 92:93:4a:f1:1b:f5:42:1a:fa:b6:8e:0d:ab:d9:5b: c1:d6:47:44:8e:9e:0e:13:ab:a5:ce:8e:44:70:2d: f5:51:a1:52:26:78:14:b6:15:6f:92:f2:9f:5a:2f: 79:03:e4:40:51:9a:3f:a2:4a:36:4c:6f:cc:a4:63: 1f:39:c4:bf:1a:5a:99:fe:76:5c:82:95:c8:7c:db: eb:56:79:11:64:2e:dd:9d:43:fd:c1:5e:82:88:5e: 20:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:21:CE:AD:04:8C:68:A9:4D:D0:F0:65:29:CB:65:21:04:E0:8B:E5 X509v3 Authority Key Identifier: keyid:4E:1B:84:0F:5C:66:01:6C:ED:7E:62:EE:C6:1B:83:22:A3:21:B6:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/ThuED1xmAWztfmLuxhuDIqMhtrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ThuED1xmAWztfmLuxhuDIqMhtrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/125E6676E15B11ECA05C9236C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 144.16.0.0/16 Signature Algorithm: sha256WithRSAEncryption 36:5d:23:d0:d3:2f:b7:96:26:de:04:ed:0a:0f:f5:34:bc:54: 50:69:36:fb:86:64:a6:cb:4e:ca:40:4d:4c:28:8c:fa:bd:60: 12:8e:95:bf:35:aa:e4:21:3e:43:a6:b6:35:68:2d:f0:46:61: 75:9f:23:27:d2:ad:c8:e9:8d:54:dc:7a:bf:2f:24:54:34:d3: 71:0b:88:0c:f4:6b:7d:2a:19:6e:40:4f:3c:58:ec:f7:8f:b6: 0d:1a:24:f2:86:de:44:08:b4:6f:3a:24:96:b0:d3:dd:35:b0: 05:be:8f:8e:e3:85:46:7d:5a:99:40:09:90:96:94:d3:5e:d6: 83:87:6b:7c:80:a3:9e:6e:59:da:f7:0d:ab:e6:e3:b4:af:56: a2:f0:47:46:8f:f2:69:f8:ce:85:c8:51:26:02:90:f2:72:80: 7e:20:c6:fe:b5:88:01:2d:cd:29:c7:a4:73:eb:f9:95:90:f4: dd:62:53:a0:f7:f8:de:63:e3:bc:23:83:54:77:8c:bd:1e:08: 39:f0:bd:05:14:ab:12:46:3e:57:a5:49:d2:50:9f:27:17:5e: 93:f0:89:13:f4:a4:d1:bd:87:d2:7e:b5:a2:27:bf:4e:89:d6: 1a:1a:16:b1:09:cb:2b:95:ec:b1:19:21:1d:8a:27:dc:7e:c7: df:a7:cf:04 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICBIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUzRDMxMTAvBgNVBAUTKDRFMUI4NDBGNUM2NjAxNkNFRDdFNjJFRUM2MUI4MzIy QTMyMUI2QjYwHhcNMjQwNTIzMDIwNTUwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRlYTQ3ZC1hMDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0grxxtS9JynDy6oM4dkA28sdYCn9drYVG6DB8g+gkdihXnD7rJvg7Eb0IWn0 XO3SdLCuEFwS04UKeZL5yyI202Xmq/jg4cmKQ9GptKlL4e5jNcUSsIivTjAmDe4D +r6spn7kNeIVJdDH1VbDxuW2b+fVcKK99XTrtPaJbZa/c3cvZ0b2BeVFN3JoeXu4 XiIq3UQzbZH/HBtLj2N4TSCGU4Ygqn6Sk0rxG/VCGvq2jg2r2VvB1kdEjp4OE6ul zo5EcC31UaFSJngUthVvkvKfWi95A+RAUZo/oko2TG/MpGMfOcS/GlqZ/nZcgpXI fNvrVnkRZC7dnUP9wV6CiF4gyQIDAQABo4IClDCCApAwHQYDVR0OBBYEFGUhzq0E jGipTdDwZSnLZSEE4IvlMB8GA1UdIwQYMBaAFE4bhA9cZgFs7X5i7sYbgyKjIba2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTNEMy82NDgyREI3QzAw MEExMUVDOEMyODcyNTJDNEY5QUUwMi9UaHVFRDF4bUFXenRmbUx1eGh1RElxTWh0 clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RodUVEMXhtQVd6dGZtTHV4aHVESXFNaHRyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODUzRDMvNjQ4MkRCN0MwMDBBMTFFQzhDMjg3MjUyQzRGOUFFMDIvMTI1RTY2NzZF MTVCMTFFQ0EwNUM5MjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCQEDANBgkqhkiG9w0BAQsFAAOCAQEANl0j0NMvt5Ym3gTt Cg/1NLxUUGk2+4ZkpstOykBNTCiM+r1gEo6VvzWq5CE+Q6a2NWgt8EZhdZ8jJ9Kt yOmNVNx6vy8kVDTTcQuIDPRrfSoZbkBPPFjs94+2DRok8obeRAi0bzoklrDT3TWw Bb6PjuOFRn1amUAJkJaU017Wg4drfICjnm5Z2vcNq+bjtK9WovBHRo/yafjOhchR JgKQ8nKAfiDG/rWIAS3NKcekc+v5lZD03WJToPf43mPjvCODVHeMvR4IOfC9BRSr EkY+V6VJ0lCfJxdek/CJE/Sk0b2H0n61oie/TonWGhoWsQnLK5XssRkhHYon3H7H 36fPBA== -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org