$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/26A143C291EB11EF8A024083C4F9AE02.roa File: 26A143C291EB11EF8A024083C4F9AE02.roa (raw, json) Hash identifier: B/XX1gy1rng//wLqtAZ0dbiuKH353JDnAfGOg4wukqE= Subject key identifier: E7:76:8D:8F:57:B9:E7:A0:07:D8:A2:A1:E6:A7:24:95:ED:37:9A:28 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 3589 Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/26A143C291EB11EF8A024083C4F9AE02.roa Signing time: Thu 24 Oct 2024 09:37:06 +0000 ROA not before: Thu 24 Oct 2024 09:37:06 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 198949 IP address blocks: 125.19.17.0/24 maxlen: 24 125.21.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13705 (0x3589) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: Oct 24 09:37:06 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=671a1542-abaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:40:53:a6:7e:19:ad:86:a2:34:77:b1:09:1f: e5:1d:ac:db:84:50:57:b4:7e:c4:cd:ac:2b:57:ec: c9:63:7c:d9:f2:cd:74:ba:dc:66:bb:4f:2a:00:bc: 38:a5:68:6e:d9:de:84:b3:df:b1:9e:a8:dc:40:72: 55:d2:32:87:6b:38:c2:5f:23:f9:99:74:0d:62:aa: c9:b1:e1:3e:c1:0d:14:ab:cb:b1:04:76:98:de:f8: f4:f7:d3:3b:94:0a:61:22:86:dc:96:99:4c:13:55: 99:30:6c:39:74:29:f4:ae:4f:f6:21:e5:8e:de:8e: c7:7f:41:cb:9a:fd:4c:b6:d9:88:63:e7:15:5c:42: 5f:3c:f8:0f:d5:71:b6:7f:54:3f:b8:3b:35:90:1e: 73:4e:f1:38:c1:c9:75:21:af:6c:f4:09:ef:fc:7e: d2:2c:05:ec:db:bc:3f:6a:7f:3c:70:a3:bc:cb:87: e8:b4:c3:42:13:49:97:b6:55:0c:48:0b:13:d2:13: 2e:1b:67:8f:ad:14:ae:c5:bc:7f:e4:a5:c4:1f:fb: 21:b7:5d:9e:67:07:df:24:eb:73:f4:19:b9:80:66: 2c:76:02:24:39:70:bf:98:10:59:ea:94:b2:af:ad: 1e:d8:0c:19:d7:7a:d4:24:52:25:da:3c:ee:8a:2f: 9b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:76:8D:8F:57:B9:E7:A0:07:D8:A2:A1:E6:A7:24:95:ED:37:9A:28 X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/26A143C291EB11EF8A024083C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.19.17.0/24 125.21.240.0/24 Signature Algorithm: sha256WithRSAEncryption c1:14:00:89:a0:73:28:21:1a:a3:36:d6:80:15:ac:73:09:d9: 98:8f:40:a4:e3:38:8a:91:ed:35:02:4a:a6:57:91:94:ff:8d: 6a:02:cd:d3:60:80:e6:25:69:9c:d0:97:5d:49:d8:98:a8:6f: 91:48:4a:a1:58:02:9e:0a:91:9f:c3:0e:96:c1:fc:e9:ca:43: 52:e5:c6:c3:4f:43:50:3e:19:f0:11:45:c4:f1:ff:4b:ed:07: ca:cc:4d:c9:6d:e3:83:5e:b3:37:46:8e:19:a2:7a:3c:10:66: 34:e0:7a:e4:cf:49:a4:7c:89:2a:15:0c:1a:99:d7:19:63:0d: f8:69:32:bb:8b:dd:a1:69:6e:cc:41:fe:9f:05:68:92:62:31: bc:d3:06:cf:eb:f4:bb:cc:90:9e:b8:64:96:03:48:a3:b2:6e: 64:4a:76:5d:37:e3:7f:4a:2c:24:54:c4:90:7f:41:c1:d8:fd: 9b:55:5b:2a:2e:86:12:2d:b3:e3:a0:c7:a1:9c:01:f2:24:57: e2:3c:ae:52:7e:55:0e:66:1b:d3:31:f9:e1:c5:c7:90:32:66: 1a:7d:1a:98:0b:c7:c7:62:43:55:c2:17:bf:ef:32:f5:0a:58: 2e:57:bd:6c:f8:ce:57:ee:dd:1c:ec:6b:33:e1:82:bf:53:32: 21:d0:85:92 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjQxMDI0MDkzNzA2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhMTU0Mi1hYmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA00BTpn4ZrYaiNHexCR/lHazbhFBXtH7EzawrV+zJY3zZ8s10utxmu08qALw4 pWhu2d6Es9+xnqjcQHJV0jKHazjCXyP5mXQNYqrJseE+wQ0Uq8uxBHaY3vj099M7 lAphIobclplME1WZMGw5dCn0rk/2IeWO3o7Hf0HLmv1MttmIY+cVXEJfPPgP1XG2 f1Q/uDs1kB5zTvE4wcl1Ia9s9Anv/H7SLAXs27w/an88cKO8y4fotMNCE0mXtlUM SAsT0hMuG2ePrRSuxbx/5KXEH/sht12eZwffJOtz9Bm5gGYsdgIkOXC/mBBZ6pSy r60e2AwZ13rUJFIl2jzuii+bvwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOd2jY9X ueegB9iioeanJJXtN5ooMB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0QjMvRTY1ODUxMTIxRDg0MTFFMkExQkEzMERCMDhCMDJDRDIvMjZBMTQzQzI5 MUVCMTFFRjhBMDI0MDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB9ExEDBAB9FfAwDQYJKoZIhvcNAQELBQADggEBAMEUAImg cyghGqM21oAVrHMJ2ZiPQKTjOIqR7TUCSqZXkZT/jWoCzdNggOYlaZzQl11J2Jio b5FISqFYAp4KkZ/DDpbB/OnKQ1LlxsNPQ1A+GfARRcTx/0vtB8rMTclt44NeszdG jhmiejwQZjTgeuTPSaR8iSoVDBqZ1xljDfhpMruL3aFpbsxB/p8FaJJiMbzTBs/r 9LvMkJ64ZJYDSKOybmRKdl03439KLCRUxJB/QcHY/ZtVWyouhhIts+Ogx6GcAfIk V+I8rlJ+VQ5mG9Mx+eHFx5AyZhp9GpgLx8diQ1XCF7/vMvUKWC5XvWz4zlfu3Rzs azPhgr9TMiHQhZI= -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:18 2024 by rpki-client on console-ams.rpki-client.org