$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/39B47F4AC5F611EEBE0B7960C4F9AE02/8B7FA748C5F911EE8D0FDF82C4F9AE02.roa File: 8B7FA748C5F911EE8D0FDF82C4F9AE02.roa (raw, json) Hash identifier: b3y+yqQZHBTfkBDVadEGnUf7c6xDOQSv+IeavRvLzwE= Subject key identifier: 3F:A3:C5:D2:EE:D6:FD:F1:9C:D3:63:20:44:16:6E:A4:0C:1A:46:34 Certificate issuer: /CN=A913B018/serialNumber=CF6B550A2F0C642BDCD4D8BEA503849B2D450F98 Certificate serial: BD Authority key identifier: CF:6B:55:0A:2F:0C:64:2B:DC:D4:D8:BE:A5:03:84:9B:2D:45:0F:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2tVCi8MZCvc1Ni-pQOEmy1FD5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/39B47F4AC5F611EEBE0B7960C4F9AE02/8B7FA748C5F911EE8D0FDF82C4F9AE02.roa Signing time: Fri 07 Feb 2025 04:17:49 +0000 ROA not before: Fri 07 Feb 2025 04:17:49 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 152297 IP address blocks: 2401:70a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/39B47F4AC5F611EEBE0B7960C4F9AE02/z2tVCi8MZCvc1Ni-pQOEmy1FD5g.crl rsync://rpki.apnic.net/member_repository/A913B018/39B47F4AC5F611EEBE0B7960C4F9AE02/z2tVCi8MZCvc1Ni-pQOEmy1FD5g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2tVCi8MZCvc1Ni-pQOEmy1FD5g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:47:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018 Validity Not Before: Feb 7 04:17:49 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a5896d-9e00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ec:ae:4c:1e:bf:50:cc:98:fa:a4:ce:91:80: bd:fb:0a:f1:48:02:eb:f8:7d:aa:6a:0f:a2:3d:ef: b0:e3:12:6e:f9:9e:98:1d:e3:df:84:ac:85:e9:57: 2a:47:86:2c:14:b6:4d:a4:6e:81:f3:6e:9a:52:d7: 0a:35:f7:48:99:4d:05:8a:62:20:96:dc:fe:b2:b6: cd:a2:8b:cb:db:6a:31:3c:1d:54:3c:ba:99:1d:82: 6d:b0:1e:82:7a:52:54:2f:83:6f:67:95:fc:12:10: 13:40:2e:25:d0:11:ae:1b:ee:69:1f:ab:24:07:c9: 76:d4:93:b2:16:49:5f:26:a2:15:30:63:31:ae:4e: 16:9b:05:dd:8c:e4:6c:45:1c:84:5b:bb:75:33:58: b4:57:61:8f:a2:78:2f:1e:c6:72:6e:0e:3d:17:2f: 75:51:4b:a5:ea:97:44:f1:cb:9e:4b:8b:9f:b0:a5: e4:08:ab:4b:59:7f:12:02:6a:3d:2b:1c:68:36:f0: e5:35:34:e4:6d:4a:a0:2e:44:11:df:b0:c6:58:bd: 26:ed:61:f8:c0:20:2f:dc:42:2a:3b:0a:8d:7d:bd: d5:88:a5:f6:80:6f:45:c0:e3:33:27:d2:d7:77:6b: b6:e6:f4:56:af:f4:fa:0c:cb:3e:cd:a9:df:66:07: 7f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A3:C5:D2:EE:D6:FD:F1:9C:D3:63:20:44:16:6E:A4:0C:1A:46:34 X509v3 Authority Key Identifier: keyid:CF:6B:55:0A:2F:0C:64:2B:DC:D4:D8:BE:A5:03:84:9B:2D:45:0F:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/39B47F4AC5F611EEBE0B7960C4F9AE02/z2tVCi8MZCvc1Ni-pQOEmy1FD5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2tVCi8MZCvc1Ni-pQOEmy1FD5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/39B47F4AC5F611EEBE0B7960C4F9AE02/8B7FA748C5F911EE8D0FDF82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:70a0::/32 Signature Algorithm: sha256WithRSAEncryption 0b:29:b7:c7:61:1f:b6:ef:65:f7:cb:d1:38:54:72:60:2d:2d: a4:55:fa:eb:1d:5e:2e:77:9a:12:bf:d8:df:24:28:5e:c3:c2: c1:b7:26:5e:43:57:04:95:29:de:68:b6:0a:0f:a4:e2:77:c8: 07:65:7a:b1:9e:b6:c8:f4:da:1b:90:70:f9:e3:5a:f5:01:45: 8f:bf:37:0c:fb:d3:db:d6:aa:18:eb:5e:f1:c8:7c:b9:d0:81: 93:d3:31:1e:ac:a0:a2:8f:29:d4:71:17:fe:cc:a0:56:f0:f7: d8:ba:cf:cd:f1:06:79:59:a8:65:c9:f2:82:b2:c7:14:7a:a2: 79:d5:e2:f7:a5:69:99:9f:fa:78:1b:e0:13:52:5d:ce:9c:6f: 4c:57:ce:8a:6f:91:8f:65:28:cc:38:5a:33:71:68:8e:c1:91: 7f:51:b0:04:df:a6:fc:98:b9:78:4d:f5:c2:26:58:6a:3c:97: 5a:08:e1:05:63:79:b8:76:08:92:e2:18:b2:51:b8:ae:d2:2f: 15:e3:58:e2:ad:16:e7:78:fe:0a:af:49:01:9a:24:c1:c1:ef: ab:9b:3b:14:73:e7:00:04:23:6e:94:89:a1:43:8d:12:18:41: 38:d1:63:4c:46:9b:f7:da:19:eb:0a:7b:fc:d4:66:bc:cc:ea: 9a:57:2c:66 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwMTgxMTAvBgNVBAUTKENGNkI1NTBBMkYwQzY0MkJEQ0Q0RDhCRUE1MDM4NDlC MkQ0NTBGOTgwHhcNMjUwMjA3MDQxNzQ5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E1ODk2ZC05ZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOyuTB6/UMyY+qTOkYC9+wrxSALr+H2qag+iPe+w4xJu+Z6YHePfhKyF6Vcq R4YsFLZNpG6B826aUtcKNfdImU0FimIgltz+srbNoovL22oxPB1UPLqZHYJtsB6C elJUL4NvZ5X8EhATQC4l0BGuG+5pH6skB8l21JOyFklfJqIVMGMxrk4WmwXdjORs RRyEW7t1M1i0V2GPongvHsZybg49Fy91UUul6pdE8cueS4ufsKXkCKtLWX8SAmo9 KxxoNvDlNTTkbUqgLkQR37DGWL0m7WH4wCAv3EIqOwqNfb3ViKX2gG9FwOMzJ9LX d2u25vRWr/T6DMs+zanfZgd/cQIDAQABo4ICljCCApIwHQYDVR0OBBYEFD+jxdLu 1v3xnNNjIEQWbqQMGkY0MB8GA1UdIwQYMBaAFM9rVQovDGQr3NTYvqUDhJstRQ+Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjAxOC8zOUI0N0Y0QUM1 RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi96MnRWQ2k4TVpDdmMxTmktcFFPRW15MUZE NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3oydFZDaThNWkN2YzFOaS1wUU9FbXkxRkQ1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0IwMTgvMzlCNDdGNEFDNUY2MTFFRUJFMEI3OTYwQzRGOUFFMDIvOEI3RkE3NDhD NUY5MTFFRThEMEZERjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAXCgMA0GCSqGSIb3DQEBCwUAA4IBAQALKbfHYR+272X3 y9E4VHJgLS2kVfrrHV4ud5oSv9jfJChew8LBtyZeQ1cElSneaLYKD6Tid8gHZXqx nrbI9NobkHD541r1AUWPvzcM+9Pb1qoY617xyHy50IGT0zEerKCijynUcRf+zKBW 8PfYus/N8QZ5WahlyfKCsscUeqJ51eL3pWmZn/p4G+ATUl3OnG9MV86Kb5GPZSjM OFozcWiOwZF/UbAE36b8mLl4TfXCJlhqPJdaCOEFY3m4dgiS4hiyUbiu0i8V41ji rRbneP4Kr0kBmiTBwe+rmzsUc+cABCNulImhQ40SGEE40WNMRpv32hnrCnv81Ga8 zOqaVyxm -----END CERTIFICATE-----Generated at Sat Apr 5 03:34:11 2025 by rpki-client