$ rpki-client -vvf rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/A48892E4DE4A11EFACE66748C4F9AE02.roa File: A48892E4DE4A11EFACE66748C4F9AE02.roa (raw, json) Hash identifier: pAKMszCIjt6MmJA/GOLnpRTl7JGqEZooCz2JSaSabrA= Subject key identifier: 78:D7:C8:7E:15:E4:DA:C8:1B:CF:D7:99:F4:7B:25:2E:7F:EF:E9:CF Certificate issuer: /CN=A912E87E/serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Certificate serial: 2C Authority key identifier: CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/A48892E4DE4A11EFACE66748C4F9AE02.roa Signing time: Wed 29 Jan 2025 14:09:24 +0000 ROA not before: Wed 29 Jan 2025 14:09:24 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139921 IP address blocks: 2001:df4:8440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E87E Validity Not Before: Jan 29 14:09:24 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=679a3694-7acd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ee:32:42:9a:3b:33:d8:e6:10:7e:b9:79:9c: ac:1a:49:27:0b:43:35:d1:86:29:57:6f:eb:e5:66: b6:cd:cf:e3:bb:22:50:1f:1f:7e:5e:06:da:48:8b: 26:93:fd:a7:03:1f:6c:d0:d4:49:59:3b:47:b0:6a: 37:18:31:70:37:f4:50:8d:5f:2c:d9:e5:96:64:e4: c2:c0:9d:9d:0a:fd:2c:6e:42:76:7a:ae:c2:ed:2f: a6:8f:f5:41:a5:a9:5c:d3:7a:40:38:4c:f3:ec:ff: d5:8b:3d:23:c6:b7:e9:9b:1d:02:02:06:64:79:e3: 21:d2:6c:44:6a:de:26:3b:9a:73:95:45:5e:95:e6: 8b:bb:49:12:05:21:74:b9:d2:5a:ad:0d:b8:d6:32: a5:f6:a7:33:88:f8:f3:09:42:4e:23:df:84:d9:d6: b8:c3:33:24:1c:f1:71:7d:d1:2b:a2:1a:ba:28:2a: 02:5d:0b:ac:23:c2:f0:ad:f7:ff:75:55:3e:dd:f5: a7:4b:65:ef:5a:ff:9a:bd:99:a0:c2:cf:16:ca:18: 09:71:49:0f:d9:e3:6f:57:70:f4:ee:0a:01:7f:8a: e3:4e:e4:30:6e:c0:71:3f:22:4d:8c:ee:fc:62:05: 2e:33:d7:fb:df:01:8c:31:be:4a:db:b8:64:97:6d: 19:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D7:C8:7E:15:E4:DA:C8:1B:CF:D7:99:F4:7B:25:2E:7F:EF:E9:CF X509v3 Authority Key Identifier: keyid:CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/A48892E4DE4A11EFACE66748C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:8440::/48 Signature Algorithm: sha256WithRSAEncryption 4f:0b:ee:71:7e:31:59:70:88:e5:c4:c3:23:13:78:05:13:65: a5:83:80:ad:3c:74:3f:b5:ec:c2:af:a4:fd:8a:f5:d2:4a:3b: 09:40:0f:29:11:60:7b:17:4e:2e:11:4e:22:f1:1e:25:46:87: 0b:86:67:bc:f4:2a:c3:5b:f6:6b:0b:2f:f5:ab:18:db:6e:8c: 50:f4:d6:48:22:13:e8:8e:84:9c:a3:13:25:cc:58:56:2f:6e: 93:f7:f5:a0:3c:7c:94:2b:10:de:a0:37:3c:a9:34:e8:27:35: 99:89:b1:bf:2d:b1:e8:4c:c5:e1:e0:19:8a:a9:4c:b6:cd:d3: 34:bd:5c:87:ac:50:71:22:db:3c:9f:d1:99:75:3f:3d:0e:a0: 01:fa:8d:00:c9:fe:5e:2b:2a:2d:b1:94:2a:1e:65:ae:5d:fa: 0a:b3:e5:38:b9:9e:e0:d1:37:cb:aa:e3:5d:2b:5d:8c:96:5d: 1b:f3:9b:76:3d:25:6b:14:49:65:c9:08:79:2b:0e:d0:c2:31: 8b:15:7e:f3:85:c6:89:fd:d6:42:e4:06:c7:f0:c4:cc:a7:1f: fb:7b:fd:bd:50:ca:2b:d7:84:e0:71:6c:88:94:43:e6:b5:82: 3b:07:97:6d:f8:cc:6c:fd:4a:54:49:8a:65:52:b0:df:2e:79: 37:d4:bf:a7 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTg3RTExMC8GA1UEBRMoQ0Y3OUM2NUY0QjU1MDEwRkIyNUNFNkM0NUI4QzkxOURC MDkzQTMyRDAeFw0yNTAxMjkxNDA5MjRaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OWEzNjk0LTdhY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDI7jJCmjsz2OYQfrl5nKwaSScLQzXRhilXb+vlZrbNz+O7IlAfH35eBtpIiyaT /acDH2zQ1ElZO0ewajcYMXA39FCNXyzZ5ZZk5MLAnZ0K/SxuQnZ6rsLtL6aP9UGl qVzTekA4TPPs/9WLPSPGt+mbHQICBmR54yHSbERq3iY7mnOVRV6V5ou7SRIFIXS5 0lqtDbjWMqX2pzOI+PMJQk4j34TZ1rjDMyQc8XF90SuiGrooKgJdC6wjwvCt9/91 VT7d9adLZe9a/5q9maDCzxbKGAlxSQ/Z429XcPTuCgF/iuNO5DBuwHE/Ik2M7vxi BS4z1/vfAYwxvkrbuGSXbRlpAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUeNfIfhXk 2sgbz9eZ9HslLn/v6c8wHwYDVR0jBBgwFoAUz3nGX0tVAQ+yXObEW4yRnbCToy0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFODdFLzg0MjhCOUU2QTFD RjExRUY4NzhFNjA2MUM0RjlBRTAyL3ozbkdYMHRWQVEteVhPYkVXNHlSbmJDVG95 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvejNuR1gwdFZBUS15WE9iRVc0eVJuYkNUb3kwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTg3RS84NDI4QjlFNkExQ0YxMUVGODc4RTYwNjFDNEY5QUUwMi9BNDg4OTJFNERF NEExMUVGQUNFNjY3NDhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfSEQDANBgkqhkiG9w0BAQsFAAOCAQEATwvucX4xWXCI 5cTDIxN4BRNlpYOArTx0P7Xswq+k/Yr10ko7CUAPKRFgexdOLhFOIvEeJUaHC4Zn vPQqw1v2awsv9asY226MUPTWSCIT6I6EnKMTJcxYVi9uk/f1oDx8lCsQ3qA3PKk0 6Cc1mYmxvy2x6EzF4eAZiqlMts3TNL1ch6xQcSLbPJ/RmXU/PQ6gAfqNAMn+Xisq LbGUKh5lrl36CrPlOLme4NE3y6rjXStdjJZdG/Obdj0laxRJZckIeSsO0MIxixV+ 84XGif3WQuQGx/DEzKcf+3v9vVDKK9eE4HFsiJRD5rWCOweXbfjMbP1KVEmKZVKw 3y55N9S/pw== -----END CERTIFICATE-----Generated at Sat Apr 5 05:55:14 2025 by rpki-client