$ rpki-client -vvf rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/79986EE8FE3D11EFB763F62EC4F9AE02.roa File: 79986EE8FE3D11EFB763F62EC4F9AE02.roa (raw, json) Hash identifier: oPWHOSVVHxMTlEOgiAm0tO2SzI3zA9mMs78DXNw+B34= Subject key identifier: 69:CA:4D:92:3C:75:F0:06:7D:1C:BD:72:DC:F9:5D:1A:11:82:E3:C8 Certificate issuer: /CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Certificate serial: 07E5 Authority key identifier: E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/79986EE8FE3D11EFB763F62EC4F9AE02.roa Signing time: Tue 11 Mar 2025 05:55:46 +0000 ROA not before: Tue 11 Mar 2025 05:55:46 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 37904 IP address blocks: 126.209.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2021 (0x7e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D1EA Validity Not Before: Mar 11 05:55:46 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67cfd062-6c69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f5:28:6a:9e:c4:b0:76:3b:f2:67:5c:fb:ef: ee:86:4c:73:b7:1d:71:e1:c5:bd:70:c9:eb:8e:87: f5:c7:6f:dd:d9:5e:5d:c6:1d:35:9f:fd:28:4e:37: 5c:63:c7:33:a2:93:24:9f:cb:ec:9f:46:75:9d:a3: 9f:0e:9f:ed:92:10:44:14:b4:37:b0:8c:19:93:83: 37:93:f7:80:af:fd:0a:5d:89:f1:71:be:a8:21:86: 0a:bc:ba:a4:ce:7f:36:af:50:13:99:00:da:3d:fa: f1:b4:29:05:e3:24:3b:7d:c7:09:47:59:dc:7a:eb: 64:59:87:61:53:08:ed:6e:bf:df:f9:7d:44:29:4a: 0b:08:ab:54:ba:fb:48:00:e8:18:48:84:5e:30:cb: 05:32:a4:21:ed:d7:32:35:47:5c:46:b7:2c:16:61: df:60:3a:66:cd:2b:02:ca:18:24:6c:4e:3e:09:b2: 71:0f:1d:19:57:3f:74:7d:85:7a:5e:f7:a1:b3:d8: 77:3b:c9:d2:97:d5:4e:30:f6:2b:80:46:7b:64:08: 86:c1:68:ac:1d:fc:b1:4b:c2:b2:fa:f8:88:04:8a: 63:5b:65:e0:f7:44:b7:85:53:fc:0c:33:e1:79:cf: f0:aa:2d:bb:ac:5c:55:a1:45:23:ce:3b:4c:52:df: 9c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CA:4D:92:3C:75:F0:06:7D:1C:BD:72:DC:F9:5D:1A:11:82:E3:C8 X509v3 Authority Key Identifier: keyid:E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/79986EE8FE3D11EFB763F62EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 126.209.94.0/24 Signature Algorithm: sha256WithRSAEncryption 96:c8:4b:2e:cb:2e:4b:47:93:af:c3:05:a3:64:9f:48:87:c7: 04:d6:4d:1d:20:4d:72:69:8f:26:6c:cc:59:e6:20:c6:f1:53: 41:0b:b8:64:c8:04:f4:39:dd:e1:36:60:4f:44:6c:23:79:0c: 6b:3f:a3:f6:e2:e2:91:25:16:b7:f1:c6:bb:31:a8:bd:a8:67: 20:98:51:a4:71:a2:73:3f:d2:6c:81:59:4a:0b:bc:a1:a3:e7: c6:4c:ec:25:f4:97:35:78:4a:ad:59:40:0f:84:ac:34:19:85: a3:84:20:06:26:9a:74:8d:f9:f0:02:ef:65:2a:ff:b4:69:66: 57:e8:d5:ea:f9:1c:15:2c:88:71:48:33:15:44:36:95:a2:1e: fe:ef:47:9d:34:82:cd:19:f5:0a:a9:b9:53:70:04:5c:d6:7e: bf:1f:1f:7c:a6:db:d2:a7:06:b5:6e:e1:6b:b7:30:ff:48:dc: 2e:33:9d:79:3d:bc:78:99:ab:72:79:fb:5f:d9:ac:33:bd:67: 9e:7e:7e:3b:15:0f:12:fa:f0:d0:41:eb:aa:2b:e2:89:6a:7a: 65:8d:ac:7e:1e:3b:13:bf:ec:c4:e6:58:f0:23:db:dc:28:05: f0:2f:fd:97:79:d2:9e:00:64:aa:45:2f:6a:60:00:5a:8d:c4: f3:dc:50:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxRUExMTAvBgNVBAUTKEU2OTJDNUI2MEIzRUYxQzIwNDQ0MzlGQzM5MEFENTZE QzNDQkNENjMwHhcNMjUwMzExMDU1NTQ2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmZDA2Mi02YzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2PUoap7EsHY78mdc++/uhkxztx1x4cW9cMnrjof1x2/d2V5dxh01n/0oTjdc Y8czopMkn8vsn0Z1naOfDp/tkhBEFLQ3sIwZk4M3k/eAr/0KXYnxcb6oIYYKvLqk zn82r1ATmQDaPfrxtCkF4yQ7fccJR1nceutkWYdhUwjtbr/f+X1EKUoLCKtUuvtI AOgYSIReMMsFMqQh7dcyNUdcRrcsFmHfYDpmzSsCyhgkbE4+CbJxDx0ZVz90fYV6 Xvehs9h3O8nSl9VOMPYrgEZ7ZAiGwWisHfyxS8Ky+viIBIpjW2Xg90S3hVP8DDPh ec/wqi27rFxVoUUjzjtMUt+cUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGnKTZI8 dfAGfRy9ctz5XRoRguPIMB8GA1UdIwQYMBaAFOaSxbYLPvHCBEQ5/DkK1W3Dy81j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDFFQS85QzkzMkI0ODE3 M0ExMUVCQTNCOTdFN0ZDNEY5QUUwMi81cExGdGdzLThjSUVSRG44T1FyVmJjUEx6 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVwTEZ0Z3MtOGNJRVJEbjhPUXJWYmNQTHpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QxRUEvOUM5MzJCNDgxNzNBMTFFQkEzQjk3RTdGQzRGOUFFMDIvNzk5ODZFRThG RTNEMTFFRkI3NjNGNjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB+0V4wDQYJKoZIhvcNAQELBQADggEBAJbISy7LLktHk6/D BaNkn0iHxwTWTR0gTXJpjyZszFnmIMbxU0ELuGTIBPQ53eE2YE9EbCN5DGs/o/bi 4pElFrfxxrsxqL2oZyCYUaRxonM/0myBWUoLvKGj58ZM7CX0lzV4Sq1ZQA+ErDQZ haOEIAYmmnSN+fAC72Uq/7RpZlfo1er5HBUsiHFIMxVENpWiHv7vR500gs0Z9Qqp uVNwBFzWfr8fH3ym29KnBrVu4Wu3MP9I3C4znXk9vHiZq3J5+1/ZrDO9Z55+fjsV DxL68NBB66or4olqemWNrH4eOxO/7MTmWPAj29woBfAv/Zd50p4AZKpFL2pgAFqN xPPcUPY= -----END CERTIFICATE-----Generated at Sat Apr 5 02:15:59 2025 by rpki-client