$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/0722D856931111EDB92FFC5FC4F9AE02.roa File: 0722D856931111EDB92FFC5FC4F9AE02.roa (raw, json) Hash identifier: 7dbxR4gR6b4iL0edOOJstgfP/HsQqg2y54IOaM0DIP0= Subject key identifier: C2:CF:92:61:13:1A:3D:33:FC:E3:D9:92:75:F7:C9:70:A2:80:AF:CC Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 25B5 Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/0722D856931111EDB92FFC5FC4F9AE02.roa Signing time: Sat 08 Feb 2025 17:55:34 +0000 ROA not before: Sat 08 Feb 2025 17:55:34 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 141384 IP address blocks: 2001:df0:5580::/52 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:47:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9653 (0x25b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805 Validity Not Before: Feb 8 17:55:34 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67a79a96-eb27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9b:22:18:f7:49:53:c4:7e:d5:5e:a8:db:20: 74:5b:9c:7b:f7:db:f9:df:b6:85:45:ff:e4:71:0d: a8:21:69:37:01:3a:7d:f4:e8:cb:b2:ab:c9:dc:ec: e9:8b:ea:bc:c2:e6:b5:26:00:69:b2:d6:67:66:65: bd:ca:7e:5c:69:34:a7:e7:b9:7a:b4:8c:d2:cc:a6: 64:23:1f:7f:87:16:5f:e2:9c:18:11:5b:0a:a0:55: 73:e2:05:cc:3d:54:e7:19:38:c3:4f:e3:ca:51:21: d2:88:28:1b:16:e2:2e:cc:fe:26:55:88:07:da:7d: db:2c:7d:e5:67:69:d5:3d:2e:25:9e:29:a5:03:92: 46:50:6b:65:49:59:aa:97:c0:2a:e5:3c:1b:78:0c: a2:d3:c7:e1:e5:2c:b8:d3:03:a0:3b:3a:bf:4c:09: c2:84:d4:80:30:d8:ee:48:a7:21:ba:ca:9b:c2:af: 72:09:18:e7:5f:d7:5a:da:a3:ce:a0:03:04:55:5d: e7:c7:72:7a:d8:8d:74:36:4e:5f:f8:da:70:1c:25: 04:4f:02:7f:f4:23:ea:6a:89:6d:e7:e6:29:a7:33: d3:af:f5:65:e4:12:60:5f:3d:22:cd:6b:89:28:f9: c0:21:08:45:88:15:3c:28:05:1c:31:81:46:84:ce: 9b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:CF:92:61:13:1A:3D:33:FC:E3:D9:92:75:F7:C9:70:A2:80:AF:CC X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/0722D856931111EDB92FFC5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:5580::/52 Signature Algorithm: sha256WithRSAEncryption 54:3f:a8:65:1c:4b:31:a5:d2:a8:93:30:c9:95:57:20:a6:bc: ba:09:ab:46:62:5e:c1:56:84:40:76:c2:aa:12:31:d3:e4:31: 4e:13:39:7e:4a:db:8a:ae:89:62:6b:79:86:1a:1e:14:55:96: 51:f0:b7:92:01:c5:eb:60:9e:40:c3:46:ff:77:7b:a4:e6:33: de:85:92:af:d6:55:ac:c7:78:8b:a4:39:06:2a:43:e6:3f:35: 96:2a:b6:88:47:d3:4b:fc:ec:be:c6:ce:13:42:da:3a:00:8a: cd:7c:b5:01:01:7d:c3:0b:65:7a:b6:5b:62:5b:e2:69:e5:4e: 5b:f5:6e:83:ef:5f:1a:b3:6e:0a:be:e1:7c:96:b8:40:4f:9a: 96:09:ce:92:e1:34:46:ce:9a:41:0a:1c:28:3b:ed:f4:0d:0a: 30:77:2c:25:c0:6c:27:0a:70:e2:69:bc:89:b2:db:55:95:5a: f2:5d:57:88:39:24:07:83:70:fa:37:01:44:93:a0:9f:b2:b6: d0:cb:74:b7:bf:9a:92:55:40:1b:d2:46:3c:78:81:14:14:e7: ff:50:71:87:bc:48:9b:78:2a:9e:19:40:b9:81:10:79:7a:57: 0c:9b:67:50:c3:ce:f3:3e:5e:4e:17:6f:62:f2:18:03:71:82: d1:34:f8:01 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgICJbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjUwMjA4MTc1NTM0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E3OWE5Ni1lYjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZsiGPdJU8R+1V6o2yB0W5x799v537aFRf/kcQ2oIWk3ATp99OjLsqvJ3Ozp i+q8wua1JgBpstZnZmW9yn5caTSn57l6tIzSzKZkIx9/hxZf4pwYEVsKoFVz4gXM PVTnGTjDT+PKUSHSiCgbFuIuzP4mVYgH2n3bLH3lZ2nVPS4lnimlA5JGUGtlSVmq l8Aq5TwbeAyi08fh5Sy40wOgOzq/TAnChNSAMNjuSKchusqbwq9yCRjnX9da2qPO oAMEVV3nx3J62I10Nk5f+NpwHCUETwJ/9CPqaolt5+YppzPTr/Vl5BJgXz0izWuJ KPnAIQhFiBU8KAUcMYFGhM6bMQIDAQABo4ICmTCCApUwHQYDVR0OBBYEFMLPkmET Gj0z/OPZknX3yXCigK/MMB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvMDcyMkQ4NTY5 MzExMTFFREI5MkZGQzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIwYIKwYBBQUHAQcBAf8E FDASMBAEAgACMAoDCAQgAQ3wVYAAMA0GCSqGSIb3DQEBCwUAA4IBAQBUP6hlHEsx pdKokzDJlVcgpry6CatGYl7BVoRAdsKqEjHT5DFOEzl+StuKrolia3mGGh4UVZZR 8LeSAcXrYJ5Aw0b/d3uk5jPehZKv1lWsx3iLpDkGKkPmPzWWKraIR9NL/Oy+xs4T Qto6AIrNfLUBAX3DC2V6tltiW+Jp5U5b9W6D718as24KvuF8lrhAT5qWCc6S4TRG zppBChwoO+30DQowdywlwGwnCnDiabyJsttVlVryXVeIOSQHg3D6NwFEk6CfsrbQ y3S3v5qSVUAb0kY8eIEUFOf/UHGHvEibeCqeGUC5gRB5elcMm2dQw87zPl5OF29i 8hgDcYLRNPgB -----END CERTIFICATE-----Generated at Sat Apr 5 07:10:25 2025 by rpki-client