$ rpki-client -vvf rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/A20C3500BE6811EEBFF35870C4F9AE02.roa File: A20C3500BE6811EEBFF35870C4F9AE02.roa (raw, json) Hash identifier: eLvQDqgzb8pzAvtiGB3lMpGAuC1qmsTh4Dk3DLhUIRc= Subject key identifier: BE:CF:5A:C7:7F:4C:61:1D:CC:AE:67:83:0B:80:46:ED:5A:E5:E0:1F Certificate issuer: /CN=A913C07A/serialNumber=30F0DB82D58F583E8488379BA00D35ACB3526110 Certificate serial: C4 Authority key identifier: 30:F0:DB:82:D5:8F:58:3E:84:88:37:9B:A0:0D:35:AC:B3:52:61:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPDbgtWPWD6EiDeboA01rLNSYRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/A20C3500BE6811EEBFF35870C4F9AE02.roa Signing time: Fri 17 Jan 2025 04:17:43 +0000 ROA not before: Fri 17 Jan 2025 04:17:43 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152447 IP address blocks: 2401:7ae0::/32 maxlen: 32 2401:7ae0::/36 maxlen: 36 2401:7ae0:4000::/36 maxlen: 36 2401:7ae0:4003::/48 maxlen: 48 2401:7ae0:8000::/36 maxlen: 36 2401:7ae0:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.crl rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPDbgtWPWD6EiDeboA01rLNSYRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:55:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C07A Validity Not Before: Jan 17 04:17:43 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6789d9e6-fd49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ea:e4:37:c4:c5:7e:72:92:da:e2:bf:90:c9: 40:03:84:b0:c7:1b:59:b4:12:fd:f0:7f:d9:de:f4: 98:90:a5:4f:0c:7a:9c:5d:cd:ad:0f:5e:c4:4e:8b: b9:f4:c9:f0:14:d6:f6:31:ac:90:45:c2:bc:ce:2d: 3b:bd:3c:83:0e:5b:4a:4d:f2:8d:a5:89:c8:9c:f0: d6:b0:c2:99:fd:8c:6a:d5:3c:ae:44:e4:d9:24:89: 0e:52:e5:4a:3f:a2:85:03:60:81:ce:1e:3b:4b:b7: 0a:9b:7b:2c:39:a6:22:20:a0:18:80:7c:56:b0:79: 8b:6d:44:1e:73:9d:c8:9e:53:18:64:53:f9:f7:2a: 3a:b9:85:36:7d:4f:03:2e:23:07:70:00:7a:21:4c: 1f:5b:69:69:c1:ba:4e:26:b4:db:87:0f:c4:c9:49: ae:bc:04:80:2e:62:48:5a:1f:ea:dd:85:e8:c9:f0: 3b:92:50:e9:2d:d2:13:10:4a:41:53:39:c9:54:04: 34:f6:df:cf:8c:c6:fc:e2:03:d7:1b:fd:5e:84:e6: f3:b0:db:f7:1b:0d:c8:dd:31:f0:51:f1:7d:3e:6a: c9:7b:47:c7:50:c5:0a:9e:f9:10:bb:5d:ea:5f:64: dd:8d:02:5a:93:02:6e:e0:f1:53:05:ef:be:95:29: 5c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:CF:5A:C7:7F:4C:61:1D:CC:AE:67:83:0B:80:46:ED:5A:E5:E0:1F X509v3 Authority Key Identifier: keyid:30:F0:DB:82:D5:8F:58:3E:84:88:37:9B:A0:0D:35:AC:B3:52:61:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPDbgtWPWD6EiDeboA01rLNSYRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/A20C3500BE6811EEBFF35870C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:7ae0::/32 Signature Algorithm: sha256WithRSAEncryption 54:bc:38:b5:35:de:a5:5f:a2:04:b5:8e:bc:f5:fe:3a:c5:ca: 9a:93:1d:c4:cf:23:99:f7:1c:16:53:52:b4:70:ee:16:3f:58: d0:c8:c9:f3:52:29:63:c3:0a:bf:63:64:15:6a:a2:0a:3b:f4: 02:39:7c:18:6d:2e:d0:d1:6d:62:9f:86:d5:89:c4:03:ba:9a: b9:ed:eb:4a:6e:bc:78:aa:b0:0e:0d:39:94:69:a2:27:b3:62: cc:84:93:32:78:1c:d4:6a:1a:c1:6f:f5:8d:c1:e1:8f:07:91: 90:4b:3b:98:e8:a5:e4:6f:06:87:4b:6c:f0:74:5d:0a:89:b5: 70:a2:67:a0:6a:c4:42:90:ac:29:43:7f:27:7b:7d:7f:84:51: d1:3e:17:dd:47:60:99:b4:95:b2:63:6e:a7:50:b7:6a:bf:83: 4d:d8:22:6c:93:c2:77:d9:35:02:32:30:c3:25:bd:17:ab:ea: b8:d1:7d:ba:ac:34:43:27:7a:8a:ec:7e:68:99:51:32:e7:ba: 50:c6:da:9f:43:ab:3b:c2:f6:a0:ce:6f:6c:f3:3e:d7:1f:88: 76:ba:2e:b5:21:eb:dc:4d:bd:00:2d:48:84:b2:13:ae:d4:14: 07:4d:62:5e:1a:49:18:c7:93:58:24:2b:11:43:df:c7:98:fb: b8:fa:71:08 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0MwN0ExMTAvBgNVBAUTKDMwRjBEQjgyRDU4RjU4M0U4NDg4Mzc5QkEwMEQzNUFD QjM1MjYxMTAwHhcNMjUwMTE3MDQxNzQzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg5ZDllNi1mZDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1urkN8TFfnKS2uK/kMlAA4SwxxtZtBL98H/Z3vSYkKVPDHqcXc2tD17ETou5 9MnwFNb2MayQRcK8zi07vTyDDltKTfKNpYnInPDWsMKZ/Yxq1TyuROTZJIkOUuVK P6KFA2CBzh47S7cKm3ssOaYiIKAYgHxWsHmLbUQec53InlMYZFP59yo6uYU2fU8D LiMHcAB6IUwfW2lpwbpOJrTbhw/EyUmuvASALmJIWh/q3YXoyfA7klDpLdITEEpB UznJVAQ09t/PjMb84gPXG/1ehObzsNv3Gw3I3THwUfF9PmrJe0fHUMUKnvkQu13q X2TdjQJakwJu4PFTBe++lSlckQIDAQABo4ICljCCApIwHQYDVR0OBBYEFL7PWsd/ TGEdzK5ngwuARu1a5eAfMB8GA1UdIwQYMBaAFDDw24LVj1g+hIg3m6ANNayzUmEQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzA3QS9GQjE4Mjk5OEJF NjcxMUVFQjMzQzZENkVDNEY5QUUwMi9NUERiZ3RXUFdENkVpRGVib0EwMXJMTlNZ UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01QRGJndFdQV0Q2RWlEZWJvQTAxckxOU1lSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0MwN0EvRkIxODI5OThCRTY3MTFFRUIzM0M2RDZFQzRGOUFFMDIvQTIwQzM1MDBC RTY4MTFFRUJGRjM1ODcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAXrgMA0GCSqGSIb3DQEBCwUAA4IBAQBUvDi1Nd6lX6IE tY689f46xcqakx3EzyOZ9xwWU1K0cO4WP1jQyMnzUiljwwq/Y2QVaqIKO/QCOXwY bS7Q0W1in4bVicQDupq57etKbrx4qrAODTmUaaIns2LMhJMyeBzUahrBb/WNweGP B5GQSzuY6KXkbwaHS2zwdF0KibVwomegasRCkKwpQ38ne31/hFHRPhfdR2CZtJWy Y26nULdqv4NN2CJsk8J32TUCMjDDJb0Xq+q40X26rDRDJ3qK7H5omVEy57pQxtqf Q6s7wvagzm9s8z7XH4h2ui61IevcTb0ALUiEshOu1BQHTWJeGkkYx5NYJCsRQ9/H mPu4+nEI -----END CERTIFICATE-----Generated at Sat Apr 5 02:07:45 2025 by rpki-client