$ rpki-client -vvf rpki.apnic.net/member_repository/A912559E/350AFEBEA47311EEBDFBB759C4F9AE02/AC218F2E2CDE11EFBC062E74C4F9AE02.roa File: AC218F2E2CDE11EFBC062E74C4F9AE02.roa (raw, json) Hash identifier: lEc4QJGwk5bvYmoYAomdEIkxOdB1PEJOkUqud1Iy0CI= Subject key identifier: 7D:B5:A3:C9:A0:C4:33:BE:AD:F7:74:CE:52:10:73:B8:9B:02:33:A7 Certificate issuer: /CN=A912559E/serialNumber=09407F70F9771600F4FBAA75C0FE9690D8C65A30 Certificate serial: D6 Authority key identifier: 09:40:7F:70:F9:77:16:00:F4:FB:AA:75:C0:FE:96:90:D8:C6:5A:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUB_cPl3FgD0-6p1wP6WkNjGWjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912559E/350AFEBEA47311EEBDFBB759C4F9AE02/AC218F2E2CDE11EFBC062E74C4F9AE02.roa Signing time: Sat 25 Jan 2025 04:07:56 +0000 ROA not before: Sat 25 Jan 2025 04:07:56 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 152192 IP address blocks: 2001:df3:50c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912559E/350AFEBEA47311EEBDFBB759C4F9AE02/CUB_cPl3FgD0-6p1wP6WkNjGWjA.crl rsync://rpki.apnic.net/member_repository/A912559E/350AFEBEA47311EEBDFBB759C4F9AE02/CUB_cPl3FgD0-6p1wP6WkNjGWjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUB_cPl3FgD0-6p1wP6WkNjGWjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912559E Validity Not Before: Jan 25 04:07:56 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6794639b-4c52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5c:a2:b0:8b:34:f6:72:95:fd:31:1d:9f:2f: 09:93:16:c6:ef:33:6f:b2:77:18:6c:6a:30:bd:cc: d2:61:e4:64:46:54:14:40:03:a2:c9:ab:86:50:65: ee:94:1f:6d:33:b2:7f:64:dc:27:f7:5a:88:2a:50: 0b:40:cb:5b:66:ca:ac:94:d3:7b:5a:93:75:d1:f3: d9:b4:fc:a8:1c:51:3c:d3:b6:93:36:dc:0e:74:19: 17:dc:02:7a:f8:29:0e:a1:73:fb:ab:74:4b:af:00: 74:67:c6:4a:af:6e:e6:e6:3c:58:3c:18:bc:fc:29: f2:b6:5b:db:ed:bc:42:77:46:36:d1:b7:5d:32:2b: d0:1b:af:f2:95:16:c8:7e:39:48:8b:66:43:cc:c6: 78:cb:2d:3c:a8:a5:ba:98:29:2a:b6:3c:45:e2:2e: c3:75:aa:fc:d7:20:e6:c9:6a:3c:3d:17:58:e3:fd: f7:76:a5:60:8f:a0:74:2d:0d:43:c7:fc:2e:17:16: f6:0d:5c:ef:a7:ce:6d:d9:63:93:98:f7:8c:51:ee: 15:55:08:5f:2d:06:5f:bf:a1:13:9c:29:b5:dd:a9: a8:c7:b0:ee:26:7b:92:dd:bd:21:4e:5c:be:eb:f5: 37:48:e4:f9:d4:d0:70:ae:d5:29:5b:12:fc:74:93: 92:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:B5:A3:C9:A0:C4:33:BE:AD:F7:74:CE:52:10:73:B8:9B:02:33:A7 X509v3 Authority Key Identifier: keyid:09:40:7F:70:F9:77:16:00:F4:FB:AA:75:C0:FE:96:90:D8:C6:5A:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912559E/350AFEBEA47311EEBDFBB759C4F9AE02/CUB_cPl3FgD0-6p1wP6WkNjGWjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUB_cPl3FgD0-6p1wP6WkNjGWjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912559E/350AFEBEA47311EEBDFBB759C4F9AE02/AC218F2E2CDE11EFBC062E74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:50c0::/48 Signature Algorithm: sha256WithRSAEncryption 4b:ac:44:47:75:73:7e:d8:be:f0:ec:02:a6:32:4c:f6:36:ec: 41:7d:18:1a:64:eb:0e:87:ae:f8:95:1e:81:72:72:ac:ad:e1: 1c:de:d3:48:57:53:ca:03:2f:8b:de:53:dd:c9:e7:c0:22:2e: d5:ea:c9:94:13:d8:b0:37:9a:71:eb:38:74:95:12:6f:f6:27: a7:4a:37:ca:14:8d:fa:fa:4b:72:48:79:91:e7:94:ee:cc:b0: 51:a5:fe:d0:22:e0:7d:bd:ff:27:62:a6:4f:10:cd:dd:1a:ea: 66:df:0e:ee:96:34:45:88:a0:04:bf:d7:fe:06:9c:f3:94:e7: 82:b4:49:53:5a:62:15:64:6d:f3:07:a5:88:b3:28:3c:a3:74: 68:c6:7c:c0:4b:d9:e0:d3:e1:1c:80:bf:bc:89:f1:d9:2f:b0: f2:b5:63:8d:6e:38:6c:02:0c:56:de:72:53:f1:96:7f:39:7e: 32:91:a5:1a:75:9a:43:36:e8:e4:62:b3:ab:f7:b5:26:fe:51: 62:4a:db:54:e0:46:ac:37:6b:be:04:74:da:77:4b:83:ee:78: 60:0c:27:e1:2d:b7:ab:5d:c8:28:ca:56:4f:40:fa:fb:82:c2: c9:e5:40:6d:69:1a:07:c7:24:32:1e:8e:71:13:79:67:69:50: c6:b3:58:20 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU1OUUxMTAvBgNVBAUTKDA5NDA3RjcwRjk3NzE2MDBGNEZCQUE3NUMwRkU5Njkw RDhDNjVBMzAwHhcNMjUwMTI1MDQwNzU2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0NjM5Yi00YzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlyisIs09nKV/TEdny8JkxbG7zNvsncYbGowvczSYeRkRlQUQAOiyauGUGXu lB9tM7J/ZNwn91qIKlALQMtbZsqslNN7WpN10fPZtPyoHFE807aTNtwOdBkX3AJ6 +CkOoXP7q3RLrwB0Z8ZKr27m5jxYPBi8/Cnytlvb7bxCd0Y20bddMivQG6/ylRbI fjlIi2ZDzMZ4yy08qKW6mCkqtjxF4i7Ddar81yDmyWo8PRdY4/33dqVgj6B0LQ1D x/wuFxb2DVzvp85t2WOTmPeMUe4VVQhfLQZfv6ETnCm13amox7DuJnuS3b0hTly+ 6/U3SOT51NBwrtUpWxL8dJOSuwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFH21o8mg xDO+rfd0zlIQc7ibAjOnMB8GA1UdIwQYMBaAFAlAf3D5dxYA9PuqdcD+lpDYxlow MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTU5RS8zNTBBRkVCRUE0 NzMxMUVFQkRGQkI3NTlDNEY5QUUwMi9DVUJfY1BsM0ZnRDAtNnAxd1A2V2tOakdX akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVQl9jUGwzRmdEMC02cDF3UDZXa05qR1dqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU1OUUvMzUwQUZFQkVBNDczMTFFRUJERkJCNzU5QzRGOUFFMDIvQUMyMThGMkUy Q0RFMTFFRkJDMDYyRTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zUMAwDQYJKoZIhvcNAQELBQADggEBAEusREd1c37Y vvDsAqYyTPY27EF9GBpk6w6HrviVHoFycqyt4Rze00hXU8oDL4veU93J58AiLtXq yZQT2LA3mnHrOHSVEm/2J6dKN8oUjfr6S3JIeZHnlO7MsFGl/tAi4H29/ydipk8Q zd0a6mbfDu6WNEWIoAS/1/4GnPOU54K0SVNaYhVkbfMHpYizKDyjdGjGfMBL2eDT 4RyAv7yJ8dkvsPK1Y41uOGwCDFbeclPxln85fjKRpRp1mkM26ORis6v3tSb+UWJK 21TgRqw3a74EdNp3S4PueGAMJ+Ett6tdyCjKVk9A+vuCwsnlQG1pGgfHJDIejnET eWdpUMazWCA= -----END CERTIFICATE-----Generated at Sat Apr 5 02:20:14 2025 by rpki-client