$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/7C7AF8E6E67011EEB76DCB76C4F9AE02.roa File: 7C7AF8E6E67011EEB76DCB76C4F9AE02.roa (raw, json) Hash identifier: tBwNVvJX12RI1rw1ArvMyaYybwsSqQmw1mHttd1wbm0= Subject key identifier: D8:0A:F3:40:0E:97:A9:01:9F:B3:D1:E7:C7:E9:D4:59:43:12:BE:9D Certificate issuer: /CN=A913F0DF/serialNumber=9D08BF38A0D38B8CAB7CFD88F5D8C4ED66778CC1 Certificate serial: D7 Authority key identifier: 9D:08:BF:38:A0:D3:8B:8C:AB:7C:FD:88:F5:D8:C4:ED:66:77:8C:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/7C7AF8E6E67011EEB76DCB76C4F9AE02.roa Signing time: Sat 25 Jan 2025 04:07:42 +0000 ROA not before: Sat 25 Jan 2025 04:07:42 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 152155 IP address blocks: 36.50.76.0/24 maxlen: 24 2001:df3:4440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.crl rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0DF Validity Not Before: Jan 25 04:07:42 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6794638e-073d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:01:69:91:92:ab:05:b8:fc:c7:99:de:82:a8: 62:15:c9:db:11:f1:ae:3a:e1:86:cb:c7:78:16:dc: 72:a7:a6:77:89:ab:93:40:5f:1a:5f:fd:dc:a9:33: b4:2b:f7:10:a9:98:fe:d5:53:7d:f5:1d:41:2a:a5: 85:92:46:19:f7:ae:d0:f1:4e:cc:c1:aa:87:91:4e: fa:5c:e5:82:92:6a:61:b8:0f:2e:52:36:14:b5:5b: 14:08:3c:ee:45:a2:05:16:d2:4e:1a:e9:c8:19:51: 1a:7c:b6:26:32:53:73:3e:45:2f:70:f5:6a:34:cd: 3f:02:45:a3:fd:74:8a:c0:06:0d:ef:69:18:49:5a: 76:6d:b0:4e:2b:ec:91:92:18:82:66:e1:70:93:49: 29:1a:10:85:4c:29:38:1f:de:3d:e6:b1:1a:30:93: 32:68:68:c5:51:a5:cd:6e:06:c9:24:f2:a1:4c:2e: 41:5f:63:96:da:70:5f:4d:5b:84:d1:5a:ca:5b:8a: ee:77:c0:ef:a6:52:7a:d7:0f:54:d5:3f:13:b9:3d: f8:86:5f:d2:35:40:ed:bc:c9:20:94:93:0d:87:98: 7a:1b:d5:bd:79:b7:5f:12:af:cb:57:42:5a:e4:bb: 7d:c9:b1:0d:3c:9a:e0:34:8b:e7:a8:65:4d:5b:a5: 1c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:0A:F3:40:0E:97:A9:01:9F:B3:D1:E7:C7:E9:D4:59:43:12:BE:9D X509v3 Authority Key Identifier: keyid:9D:08:BF:38:A0:D3:8B:8C:AB:7C:FD:88:F5:D8:C4:ED:66:77:8C:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/7C7AF8E6E67011EEB76DCB76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.76.0/24 IPv6: 2001:df3:4440::/48 Signature Algorithm: sha256WithRSAEncryption 35:33:46:4c:50:ff:1d:8b:35:e7:13:7d:cd:93:dd:fd:4a:0d: 6b:e4:ab:c3:39:05:59:bc:17:e5:4f:72:28:ba:c2:5e:62:7a: 56:37:1c:f0:70:92:ec:d2:68:d7:c9:0f:32:c6:a9:cf:f8:dc: de:b4:31:f2:84:55:82:2e:78:bc:d4:50:cf:30:52:e8:f0:91: 86:d4:0c:ec:d8:04:74:9e:22:01:4e:99:04:19:ac:6a:04:21: d4:88:0e:1c:51:bf:df:35:c8:63:e2:aa:15:cc:84:36:fa:49: 85:bd:81:8c:b7:c5:1c:de:38:15:47:23:c0:1e:8d:88:a2:77: d3:50:f9:b1:d7:90:e2:dd:a3:07:1c:9c:4a:e4:20:1d:db:49: 12:ee:6b:81:31:92:5c:4b:17:df:6d:6e:87:a4:a4:33:7c:0a: 3c:a4:e3:70:10:78:bf:0e:8d:ee:91:96:52:6f:81:2e:93:d4: e9:73:8f:d5:4c:29:c3:c9:a4:98:9c:c8:53:e6:a5:d8:d3:08: 04:0c:e2:3e:c9:e3:5a:33:f8:01:34:87:15:ab:b5:a0:21:c7: 1d:ee:ea:12:aa:b7:ca:e4:e3:2f:03:d1:aa:d0:b3:5a:7c:e5: b8:b9:fa:b7:ee:91:7a:33:21:ba:e0:b3:b7:c9:5f:7d:ab:ff: 29:fb:f8:20 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwREYxMTAvBgNVBAUTKDlEMDhCRjM4QTBEMzhCOENBQjdDRkQ4OEY1RDhDNEVE NjY3NzhDQzEwHhcNMjUwMTI1MDQwNzQyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0NjM4ZS0wNzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmAFpkZKrBbj8x5negqhiFcnbEfGuOuGGy8d4Ftxyp6Z3iauTQF8aX/3cqTO0 K/cQqZj+1VN99R1BKqWFkkYZ967Q8U7MwaqHkU76XOWCkmphuA8uUjYUtVsUCDzu RaIFFtJOGunIGVEafLYmMlNzPkUvcPVqNM0/AkWj/XSKwAYN72kYSVp2bbBOK+yR khiCZuFwk0kpGhCFTCk4H9495rEaMJMyaGjFUaXNbgbJJPKhTC5BX2OW2nBfTVuE 0VrKW4rud8DvplJ61w9U1T8TuT34hl/SNUDtvMkglJMNh5h6G9W9ebdfEq/LV0Ja 5Lt9ybENPJrgNIvnqGVNW6UcVQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNgK80AO l6kBn7PR58fp1FlDEr6dMB8GA1UdIwQYMBaAFJ0Ivzig04uMq3z9iPXYxO1md4zB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBERi9FNTA4MzY0ODk5 MjgxMUVFQkJDQUU4N0FDNEY5QUUwMi9uUWlfT0tEVGk0eXJmUDJJOWRqRTdXWjNq TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25RaV9PS0RUaTR5cmZQMkk5ZGpFN1daM2pNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0YwREYvRTUwODM2NDg5OTI4MTFFRUJCQ0FFODdBQzRGOUFFMDIvN0M3QUY4RTZF NjcwMTFFRUI3NkRDQjc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAAkMkwwDwQCAAIwCQMHACABDfNEQDANBgkqhkiG9w0BAQsF AAOCAQEANTNGTFD/HYs15xN9zZPd/UoNa+SrwzkFWbwX5U9yKLrCXmJ6Vjcc8HCS 7NJo18kPMsapz/jc3rQx8oRVgi54vNRQzzBS6PCRhtQM7NgEdJ4iAU6ZBBmsagQh 1IgOHFG/3zXIY+KqFcyENvpJhb2BjLfFHN44FUcjwB6NiKJ301D5sdeQ4t2jBxyc SuQgHdtJEu5rgTGSXEsX321uh6SkM3wKPKTjcBB4vw6N7pGWUm+BLpPU6XOP1Uwp w8mkmJzIU+al2NMIBAziPsnjWjP4ATSHFau1oCHHHe7qEqq3yuTjLwPRqtCzWnzl uLn6t+6RejMhuuCzt8lffav/Kfv4IA== -----END CERTIFICATE-----Generated at Sun Apr 6 06:39:43 2025 by rpki-client