$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/4C9925F2A4C911E782854F50C4F9AE02.roa File: 4C9925F2A4C911E782854F50C4F9AE02.roa (raw, json) Hash identifier: vV5Yr/BkXALl7LzgLGethZCdonSKacfw4uRlE5AN9Mc= Subject key identifier: 93:21:72:4B:4C:49:97:5B:37:84:A5:20:37:D7:57:EF:C3:6F:8E:1D Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 34AD Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/4C9925F2A4C911E782854F50C4F9AE02.roa Signing time: Fri 08 Dec 2023 14:40:34 +0000 ROA not before: Fri 08 Dec 2023 14:40:34 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 18190 IP address blocks: 111.125.84.0/24 maxlen: 24 121.58.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:28:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13485 (0x34ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Dec 8 14:40:34 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65732ae2-8882 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:26:4d:1c:f5:67:0b:0b:e0:9b:9b:d6:bd:b1: 38:77:cb:52:fe:10:b6:8d:96:da:3e:13:b5:74:ce: d1:0b:3d:29:f6:ce:8f:fe:f2:dc:3d:b8:e4:47:03: 9a:0f:54:8c:7c:f3:e1:73:b4:df:61:22:eb:79:9a: 97:cf:ea:4c:24:71:97:90:d5:42:22:57:5e:50:96: 21:2d:37:4a:8a:76:99:b3:9e:38:a4:14:f4:26:e4: 2b:31:f3:3b:da:32:da:ba:a6:09:3e:2f:67:23:fd: 26:b7:34:b3:3a:f8:a1:fa:18:32:b6:22:f0:06:84: 03:4d:50:52:8a:43:ba:d6:37:d3:83:a4:73:99:e8: 18:58:ae:a5:ea:6b:b1:35:55:5a:0c:d0:b2:07:5a: 03:6a:e6:48:cd:57:58:08:90:c0:c3:03:9d:44:31: c6:5e:30:12:78:e5:ec:12:b0:e5:32:c0:fa:2b:cd: 4b:94:5b:73:fb:0e:0f:f3:89:19:2c:14:19:6e:cb: 17:0c:28:dd:21:39:53:bd:46:22:07:d7:40:c4:5f: 1c:6e:0c:f6:07:7c:2e:b7:3c:b6:64:7b:8a:f1:68: 85:07:6c:b0:ea:16:69:de:e2:a7:87:1f:57:43:b3: 8f:18:8f:e1:ad:53:55:42:80:75:7d:c3:24:94:53: 04:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:21:72:4B:4C:49:97:5B:37:84:A5:20:37:D7:57:EF:C3:6F:8E:1D X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/4C9925F2A4C911E782854F50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.125.84.0/24 121.58.198.0/24 Signature Algorithm: sha256WithRSAEncryption 57:e4:00:10:ab:48:ba:09:b7:97:6e:1b:31:26:52:6f:1b:b8: 8b:46:d0:c9:3a:1a:cc:2b:04:5c:13:f9:38:06:0f:5c:76:e0: d0:d7:2e:7c:1a:ab:a5:2b:82:ce:45:00:f8:db:3b:db:c0:12: 78:7d:82:c4:b6:be:90:96:09:05:46:a6:bc:7e:8c:4c:7c:f1: dd:16:ab:db:3f:be:56:51:54:37:21:ae:a7:4b:18:0c:17:54: f4:d3:20:9f:02:7c:48:9f:26:5e:61:9c:86:ce:ed:ae:e8:b0: ad:4b:f1:38:19:d4:20:97:02:03:e1:16:79:41:65:db:38:8f: e9:43:f2:fd:16:93:2e:38:12:c8:6d:fb:70:b1:1f:b3:0e:a2: 69:4e:35:82:8f:3b:a9:aa:08:e7:69:8a:1f:20:97:c6:88:83: c6:f3:20:a9:ad:00:50:a3:d4:f8:ce:9a:f7:19:1e:8e:00:e3: bb:b6:08:36:f1:a3:d6:f9:45:20:1d:f5:4e:20:b1:89:09:70: b7:d7:23:e0:63:f6:24:22:85:62:12:b4:69:8d:61:46:db:97: d6:ea:27:49:91:70:f0:10:d2:65:ea:01:ba:e1:8a:d6:96:a1: 4a:0d:3d:ec:66:52:71:9e:65:df:41:9d:56:cd:4b:22:12:7a: d8:5d:a7:95 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjMxMjA4MTQ0MDM0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczMmFlMi04ODgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxiZNHPVnCwvgm5vWvbE4d8tS/hC2jZbaPhO1dM7RCz0p9s6P/vLcPbjkRwOa D1SMfPPhc7TfYSLreZqXz+pMJHGXkNVCIldeUJYhLTdKinaZs544pBT0JuQrMfM7 2jLauqYJPi9nI/0mtzSzOvih+hgytiLwBoQDTVBSikO61jfTg6RzmegYWK6l6mux NVVaDNCyB1oDauZIzVdYCJDAwwOdRDHGXjASeOXsErDlMsD6K81LlFtz+w4P84kZ LBQZbssXDCjdITlTvUYiB9dAxF8cbgz2B3wutzy2ZHuK8WiFB2yw6hZp3uKnhx9X Q7OPGI/hrVNVQoB1fcMklFMEyQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJMhcktM SZdbN4SlIDfXV+/Db44dMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI0NTQvRDRDMzBCNDIxRDg3MTFFMkExOTgyMkUwMDhCMDJDRDIvNEM5OTI1RjJB NEM5MTFFNzgyODU0RjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABvfVQDBAB5OsYwDQYJKoZIhvcNAQELBQADggEBAFfkABCr SLoJt5duGzEmUm8buItG0Mk6GswrBFwT+TgGD1x24NDXLnwaq6Urgs5FAPjbO9vA Enh9gsS2vpCWCQVGprx+jEx88d0Wq9s/vlZRVDchrqdLGAwXVPTTIJ8CfEifJl5h nIbO7a7osK1L8TgZ1CCXAgPhFnlBZds4j+lD8v0Wky44Esht+3CxH7MOomlONYKP O6mqCOdpih8gl8aIg8bzIKmtAFCj1PjOmvcZHo4A47u2CDbxo9b5RSAd9U4gsYkJ cLfXI+Bj9iQihWIStGmNYUbbl9bqJ0mRcPAQ0mXqAbrhitaWoUoNPexmUnGeZd9B nVbNSyISethdp5U= -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:44 2024 by rpki-client on console-fra.rpki-client.org