$ rpki-client -vvf rpki.apnic.net/member_repository/A9122B85/90E97D7089BE11EEBCF29A55C4F9AE02/0287BD068A3D11EEADFABF09C4F9AE02.roa File: 0287BD068A3D11EEADFABF09C4F9AE02.roa (raw, json) Hash identifier: zthvVJ0xeL5J9gMyWu/Onbxvo/kp68K5vsS8CZ3Wqh8= Subject key identifier: 2F:2C:C1:12:5D:E4:7C:6A:7B:EE:F9:EB:9F:B3:2D:78:14:9F:E0:94 Certificate issuer: /CN=A9122B85/serialNumber=69EA62E3F03E47C03719BEDB16B4CA273B8B3103 Certificate serial: D4 Authority key identifier: 69:EA:62:E3:F0:3E:47:C0:37:19:BE:DB:16:B4:CA:27:3B:8B:31:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aepi4_A-R8A3Gb7bFrTKJzuLMQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122B85/90E97D7089BE11EEBCF29A55C4F9AE02/0287BD068A3D11EEADFABF09C4F9AE02.roa Signing time: Sun 29 Dec 2024 03:57:06 +0000 ROA not before: Sun 29 Dec 2024 03:57:06 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 147009 IP address blocks: 180.94.26.0/24 maxlen: 24 2001:df3:2e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122B85/90E97D7089BE11EEBCF29A55C4F9AE02/aepi4_A-R8A3Gb7bFrTKJzuLMQM.crl rsync://rpki.apnic.net/member_repository/A9122B85/90E97D7089BE11EEBCF29A55C4F9AE02/aepi4_A-R8A3Gb7bFrTKJzuLMQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aepi4_A-R8A3Gb7bFrTKJzuLMQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 03:59:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122B85 Validity Not Before: Dec 29 03:57:06 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6770c892-c1cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:61:90:d8:4d:8b:20:52:86:bf:b6:a2:5c:d7: 27:86:e5:4b:59:31:7a:b3:11:1e:4b:d4:6f:c7:5f: ca:0f:f8:f0:a2:68:db:26:72:0a:62:f0:25:dc:90: 7a:d0:39:11:ac:a0:c0:7c:3f:e8:0a:ee:75:d4:15: 01:2a:82:a0:3b:dc:00:67:11:4e:a1:62:d8:60:74: 72:59:5a:84:c2:49:51:27:05:58:3b:87:75:ab:df: 10:2a:2f:b2:db:1a:04:2a:39:3b:ac:22:b9:45:83: a5:a2:c1:bd:26:16:6a:eb:82:3a:b4:93:a9:60:9f: a7:25:0c:0b:dd:be:e4:d4:f7:fb:23:b7:b6:b5:ea: e5:fb:21:46:9a:0c:05:88:a2:bb:83:5a:2e:d9:9d: fc:57:21:74:40:dc:1d:95:6c:29:19:69:f9:79:cc: b0:d8:85:9a:4f:35:8a:e5:3a:30:5b:04:73:dd:63: 23:bc:e7:d5:4a:e5:af:46:21:c6:43:b4:c6:dc:69: 75:e0:f0:e5:e2:e6:95:e6:1a:60:79:11:b1:f0:c4: a6:f2:7c:e6:90:80:39:c9:c5:51:af:90:d3:cc:c4: de:d6:48:ef:f0:04:86:44:82:7f:b4:5b:aa:a4:2d: fd:f2:c3:61:77:09:bc:32:39:f3:30:db:8d:ad:e3: 92:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:2C:C1:12:5D:E4:7C:6A:7B:EE:F9:EB:9F:B3:2D:78:14:9F:E0:94 X509v3 Authority Key Identifier: keyid:69:EA:62:E3:F0:3E:47:C0:37:19:BE:DB:16:B4:CA:27:3B:8B:31:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122B85/90E97D7089BE11EEBCF29A55C4F9AE02/aepi4_A-R8A3Gb7bFrTKJzuLMQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aepi4_A-R8A3Gb7bFrTKJzuLMQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122B85/90E97D7089BE11EEBCF29A55C4F9AE02/0287BD068A3D11EEADFABF09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.94.26.0/24 IPv6: 2001:df3:2e40::/48 Signature Algorithm: sha256WithRSAEncryption 99:45:23:9b:48:84:96:46:0b:f2:3e:2c:4e:b2:98:f9:d7:cb: e5:c8:81:3d:c5:e5:3d:71:47:1e:44:c8:4a:ac:51:4b:6c:08: 6b:8c:13:7e:c8:3f:fb:f7:b8:e3:d4:a4:33:88:d2:b5:6e:9b: 43:a0:7a:86:e3:72:d0:54:e0:7a:78:da:ae:74:5d:44:aa:12: 8a:84:e2:9f:18:c6:3a:10:4d:6e:0e:7b:67:37:4e:6c:b5:26: 43:43:47:e9:89:6d:dd:90:7e:14:e6:20:d6:1e:23:dd:e6:e8: 9e:6f:e5:1e:e7:db:79:08:7f:1c:9f:4b:80:18:a3:ee:fc:0e: f4:29:ae:86:ff:5a:a4:d3:29:9b:be:01:04:0e:b2:4b:64:fd: 65:23:15:c1:32:b0:40:d7:62:a0:fa:c0:66:44:a0:49:98:0c: a7:ed:71:5c:87:e1:59:1a:90:bd:a2:78:1c:02:c5:8d:f8:51: 24:d4:3c:c5:26:42:36:11:f4:be:bb:a1:e6:7e:68:35:f1:7d: af:f2:f3:2a:98:bf:14:af:96:fc:07:6f:b5:55:8b:d3:0d:62: 7c:ea:37:2b:6d:51:a7:02:67:30:c8:0c:6b:b3:12:37:4f:b0: 55:8d:03:ae:96:89:98:7c:38:2d:af:b0:37:2e:13:18:35:d4: af:94:15:03 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJCODUxMTAvBgNVBAUTKDY5RUE2MkUzRjAzRTQ3QzAzNzE5QkVEQjE2QjRDQTI3 M0I4QjMxMDMwHhcNMjQxMjI5MDM1NzA2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcwYzg5Mi1jMWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWGQ2E2LIFKGv7aiXNcnhuVLWTF6sxEeS9Rvx1/KD/jwomjbJnIKYvAl3JB6 0DkRrKDAfD/oCu511BUBKoKgO9wAZxFOoWLYYHRyWVqEwklRJwVYO4d1q98QKi+y 2xoEKjk7rCK5RYOlosG9JhZq64I6tJOpYJ+nJQwL3b7k1Pf7I7e2terl+yFGmgwF iKK7g1ou2Z38VyF0QNwdlWwpGWn5ecyw2IWaTzWK5TowWwRz3WMjvOfVSuWvRiHG Q7TG3Gl14PDl4uaV5hpgeRGx8MSm8nzmkIA5ycVRr5DTzMTe1kjv8ASGRIJ/tFuq pC398sNhdwm8MjnzMNuNreOSiwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFC8swRJd 5Hxqe+7565+zLXgUn+CUMB8GA1UdIwQYMBaAFGnqYuPwPkfANxm+2xa0yic7izED MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkI4NS85MEU5N0Q3MDg5 QkUxMUVFQkNGMjlBNTVDNEY5QUUwMi9hZXBpNF9BLVI4QTNHYjdiRnJUS0p6dUxN UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FlcGk0X0EtUjhBM0diN2JGclRLSnp1TE1RTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJCODUvOTBFOTdENzA4OUJFMTFFRUJDRjI5QTU1QzRGOUFFMDIvMDI4N0JEMDY4 QTNEMTFFRUFERkFCRjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAC0XhowDwQCAAIwCQMHACABDfMuQDANBgkqhkiG9w0BAQsF AAOCAQEAmUUjm0iElkYL8j4sTrKY+dfL5ciBPcXlPXFHHkTISqxRS2wIa4wTfsg/ +/e449SkM4jStW6bQ6B6huNy0FTgenjarnRdRKoSioTinxjGOhBNbg57ZzdObLUm Q0NH6Ylt3ZB+FOYg1h4j3ebonm/lHufbeQh/HJ9LgBij7vwO9Cmuhv9apNMpm74B BA6yS2T9ZSMVwTKwQNdioPrAZkSgSZgMp+1xXIfhWRqQvaJ4HALFjfhRJNQ8xSZC NhH0vruh5n5oNfF9r/LzKpi/FK+W/AdvtVWL0w1ifOo3K21RpwJnMMgMa7MSN0+w VY0DrpaJmHw4La+wNy4TGDXUr5QVAw== -----END CERTIFICATE-----Generated at Fri Apr 11 23:34:33 2025 by rpki-client