$ rpki-client -vvf rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/778B9FACE86411EEA020E37AC4F9AE02.roa File: 778B9FACE86411EEA020E37AC4F9AE02.roa (raw, json) Hash identifier: sFaQ2/BL/qL12qBhQN+3Nfl2luiS5IBqsoZ9GwMFuM8= Subject key identifier: 95:AE:99:33:94:25:59:3E:FD:B7:95:F3:23:A5:DF:40:7D:87:94:B9 Certificate issuer: /CN=A9121071/serialNumber=94C2F46A32D10775E1649BA250F697FF47AC063D Certificate serial: 019D Authority key identifier: 94:C2:F4:6A:32:D1:07:75:E1:64:9B:A2:50:F6:97:FF:47:AC:06:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lML0ajLRB3XhZJuiUPaX_0esBj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/778B9FACE86411EEA020E37AC4F9AE02.roa Signing time: Wed 29 Jan 2025 02:15:41 +0000 ROA not before: Wed 29 Jan 2025 02:15:41 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 150697 IP address blocks: 2001:df1:bac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/lML0ajLRB3XhZJuiUPaX_0esBj0.crl rsync://rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/lML0ajLRB3XhZJuiUPaX_0esBj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lML0ajLRB3XhZJuiUPaX_0esBj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:42:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121071 Validity Not Before: Jan 29 02:15:41 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67998f4d-a9f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b8:77:44:15:f4:c8:b3:a4:29:c4:00:d7:02: f2:06:42:e3:f5:c7:12:71:6e:e6:18:c9:29:a3:9e: d6:81:0a:d7:ef:67:43:24:44:e1:57:e6:45:34:da: 71:18:99:e9:93:fb:75:a0:2c:a6:3a:00:41:6d:92: ac:0f:2b:08:26:7c:2e:33:c9:ee:10:c4:e2:35:e9: 54:a5:2e:b4:31:c3:4e:bc:9f:aa:69:c9:c0:a9:23: 0a:0a:ee:51:69:d9:66:a5:82:e7:f8:d7:5e:7b:a9: c0:3b:bc:2e:f4:68:e9:0e:8e:1a:05:39:39:e7:22: 0f:a1:ce:b1:5b:79:fa:fc:01:82:01:3b:61:df:21: 3a:bc:6a:49:ab:84:24:69:b9:0c:ce:5d:ff:10:31: e0:39:57:8b:05:36:58:80:51:8d:74:27:53:df:dd: 45:d6:71:79:34:09:e4:ad:0e:a3:7e:37:a2:61:ae: de:af:7b:6f:14:be:c6:5c:7c:9f:60:cc:d1:65:e7: b0:3e:1c:99:1c:d8:33:86:1b:55:9f:7c:d5:03:7a: 33:8b:c3:e0:b3:ba:d9:67:a9:c7:38:b7:3d:12:36: ec:b3:9d:32:90:4c:d9:64:c5:29:15:3f:bf:41:1a: 2d:0b:14:44:77:63:08:b3:7c:d6:f3:74:ed:3e:e0: 2d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:AE:99:33:94:25:59:3E:FD:B7:95:F3:23:A5:DF:40:7D:87:94:B9 X509v3 Authority Key Identifier: keyid:94:C2:F4:6A:32:D1:07:75:E1:64:9B:A2:50:F6:97:FF:47:AC:06:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/lML0ajLRB3XhZJuiUPaX_0esBj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lML0ajLRB3XhZJuiUPaX_0esBj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/778B9FACE86411EEA020E37AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:bac0::/48 Signature Algorithm: sha256WithRSAEncryption 6c:9f:bc:f1:79:3d:5a:be:01:f7:ce:33:5d:33:8e:6e:71:7a: 91:5c:69:29:9f:59:5c:77:aa:9c:eb:34:cf:9a:6d:fd:4f:0f: 92:a9:41:70:6e:f3:3b:98:2d:8f:c8:2b:90:62:20:27:91:8f: 52:e9:62:60:42:02:cc:2f:1a:47:41:dd:19:45:62:02:47:50: 03:8a:79:92:71:50:db:a3:34:3a:28:1b:33:64:76:a6:25:76: b3:d1:36:16:b8:66:53:b4:9f:69:09:4a:31:b9:cc:1b:6d:14: 5c:2b:9d:77:36:bd:44:98:e1:df:4e:f8:93:0e:6b:73:d7:81: cc:44:be:bc:98:d4:ab:a3:d4:1d:ba:19:cb:a5:61:d9:f8:a0: e0:06:8c:14:d4:bc:a6:7f:90:ec:31:fd:9a:12:94:e9:bf:04: b6:bf:16:2d:19:1c:cb:83:41:c0:4a:6d:b4:e1:15:b7:ea:a4: ad:d1:b7:e8:ee:48:d5:00:e0:46:4d:aa:00:01:52:59:8f:f5: f3:b2:3d:b0:eb:87:b8:77:4a:2a:78:d0:03:b3:5f:9f:20:f4: c8:4a:31:8c:75:53:b0:9b:bf:fb:39:6f:6d:fa:05:de:65:cf: ec:c0:63:14:1c:61:be:44:d9:24:89:83:3b:41:07:75:6b:3c: b3:31:4f:15 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjEwNzExMTAvBgNVBAUTKDk0QzJGNDZBMzJEMTA3NzVFMTY0OUJBMjUwRjY5N0ZG NDdBQzA2M0QwHhcNMjUwMTI5MDIxNTQxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk5OGY0ZC1hOWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Lh3RBX0yLOkKcQA1wLyBkLj9ccScW7mGMkpo57WgQrX72dDJEThV+ZFNNpx GJnpk/t1oCymOgBBbZKsDysIJnwuM8nuEMTiNelUpS60McNOvJ+qacnAqSMKCu5R adlmpYLn+Ndee6nAO7wu9GjpDo4aBTk55yIPoc6xW3n6/AGCATth3yE6vGpJq4Qk abkMzl3/EDHgOVeLBTZYgFGNdCdT391F1nF5NAnkrQ6jfjeiYa7er3tvFL7GXHyf YMzRZeewPhyZHNgzhhtVn3zVA3ozi8Pgs7rZZ6nHOLc9Ejbss50ykEzZZMUpFT+/ QRotCxREd2MIs3zW83TtPuAtrwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJWumTOU JVk+/beV8yOl30B9h5S5MB8GA1UdIwQYMBaAFJTC9Goy0Qd14WSbolD2l/9HrAY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTA3MS8yRjBGN0E0ODg2 QjYxMUVEQUEzQjJCMzNDNEY5QUUwMi9sTUwwYWpMUkIzWGhaSnVpVVBhWF8wZXNC ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNTDBhakxSQjNYaFpKdWlVUGFYXzBlc0JqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjEwNzEvMkYwRjdBNDg4NkI2MTFFREFBM0IyQjMzQzRGOUFFMDIvNzc4QjlGQUNF ODY0MTFFRUEwMjBFMzdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3xusAwDQYJKoZIhvcNAQELBQADggEBAGyfvPF5PVq+ AffOM10zjm5xepFcaSmfWVx3qpzrNM+abf1PD5KpQXBu8zuYLY/IK5BiICeRj1Lp YmBCAswvGkdB3RlFYgJHUAOKeZJxUNujNDooGzNkdqYldrPRNha4ZlO0n2kJSjG5 zBttFFwrnXc2vUSY4d9O+JMOa3PXgcxEvryY1Kuj1B26GculYdn4oOAGjBTUvKZ/ kOwx/ZoSlOm/BLa/Fi0ZHMuDQcBKbbThFbfqpK3Rt+juSNUA4EZNqgABUlmP9fOy PbDrh7h3Sip40AOzX58g9MhKMYx1U7Cbv/s5b236Bd5lz+zAYxQcYb5E2SSJgztB B3VrPLMxTxU= -----END CERTIFICATE-----Generated at Sat Apr 5 19:48:49 2025 by rpki-client