$ rpki-client -vvf rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/4D7DE09E9BFB11EF8E975D70C4F9AE02.roa File: 4D7DE09E9BFB11EF8E975D70C4F9AE02.roa (raw, json) Hash identifier: XzXF/8xfpuOMbcKhBzvfBK+CZWCno4sqp+r1zL1L1bM= Subject key identifier: B2:60:2D:67:23:43:90:83:10:B0:BD:55:98:8A:CE:69:4C:75:10:24 Certificate issuer: /CN=A9142489/serialNumber=AAE5759A7E98AA7458598DE3C19AA1797F00F5F5 Certificate serial: 27 Authority key identifier: AA:E5:75:9A:7E:98:AA:74:58:59:8D:E3:C1:9A:A1:79:7F:00:F5:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/quV1mn6YqnRYWY3jwZqheX8A9fU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/4D7DE09E9BFB11EF8E975D70C4F9AE02.roa Signing time: Tue 14 Jan 2025 11:44:05 +0000 ROA not before: Tue 14 Jan 2025 11:44:05 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 153393 IP address blocks: 2401:d4e0::/48 maxlen: 48 2401:d4e0:1::/48 maxlen: 48 2401:d4e0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.crl rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/quV1mn6YqnRYWY3jwZqheX8A9fU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142489 Validity Not Before: Jan 14 11:44:05 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67864e05-e6b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b4:82:2e:a9:1e:f5:24:12:4f:89:27:6a:c2: 2b:f9:93:6d:b9:1b:34:68:b0:85:78:10:1d:ca:d1: a0:1c:82:73:b1:79:ed:fe:3c:9c:20:01:57:2e:72: e8:cd:0d:c5:70:82:6e:e1:87:de:a2:c2:d2:04:cb: 65:c8:7b:a3:f6:8e:60:b5:7a:94:71:ad:af:2b:72: e4:94:ab:43:11:33:2f:d7:b3:86:ba:de:99:88:8c: ea:d7:a6:55:c5:d3:bc:08:42:6b:8e:a7:c8:71:4a: 78:5b:83:ed:d2:83:60:57:a6:be:cc:0a:45:fe:1b: d6:ca:a3:e4:f6:a0:9a:58:d3:d1:6b:d1:4c:15:2e: d5:7b:69:9a:d3:06:60:f4:0e:cd:0e:4f:80:ce:c2: be:42:a7:3f:a7:02:0c:d2:0c:a1:85:e0:d7:d7:39: df:cd:e2:35:35:4f:f4:33:64:19:21:24:1a:66:e5: 01:18:a6:33:90:08:bd:fa:ab:fe:a3:93:3b:28:ed: 28:f5:1e:6a:c8:99:9b:2c:c1:b7:f9:a8:05:50:a5: 83:a7:71:8a:64:3e:e0:05:c0:4e:72:56:65:74:15: 8d:c3:9d:fd:06:5d:cc:05:c6:b5:72:fd:4c:e3:67: 0d:44:12:c4:cf:29:3f:16:40:56:0d:ed:3f:7a:9e: 99:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:60:2D:67:23:43:90:83:10:B0:BD:55:98:8A:CE:69:4C:75:10:24 X509v3 Authority Key Identifier: keyid:AA:E5:75:9A:7E:98:AA:74:58:59:8D:E3:C1:9A:A1:79:7F:00:F5:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/quV1mn6YqnRYWY3jwZqheX8A9fU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/4D7DE09E9BFB11EF8E975D70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:d4e0::-2401:d4e0:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 82:f6:c6:99:2d:7c:ef:91:f5:a0:c4:52:46:c1:6d:af:53:73: 39:0d:1b:25:22:87:e9:7b:ad:19:fa:45:b4:41:b9:ee:62:3b: e9:24:d3:19:d8:1d:74:60:f6:97:e1:38:bf:4c:b0:19:39:61: ae:04:f3:1b:12:a1:7b:28:73:1f:36:2a:08:e2:36:f6:eb:2c: 84:ec:5c:f8:c4:4b:ae:d0:97:74:29:b3:ae:a0:c4:a7:1f:6c: ce:b8:be:e8:02:6a:8c:91:fc:4f:2f:c5:93:67:e2:85:13:17: a8:b8:37:43:5a:30:bc:16:1a:8c:8f:c0:d9:13:c8:75:50:a9: 03:cf:36:07:9d:8f:3d:20:17:7d:20:7d:e6:3f:8c:07:95:3d: 7e:a8:cb:b5:59:bb:d7:08:ca:92:97:23:92:1f:30:7b:bb:6a: f8:bb:76:8c:a0:94:4f:ae:fe:9a:19:5f:4b:5e:5d:21:3d:36: 2a:75:3a:38:e3:4a:eb:f1:21:d8:95:4d:5e:1f:70:d8:6d:e7: 66:17:fa:21:ec:b6:01:df:05:7f:b7:10:9a:41:aa:3c:89:0e: eb:9c:81:bf:3c:af:1a:3e:f9:c0:38:b1:20:46:ff:88:2b:76: 12:95:c4:38:18:aa:e0:43:46:8a:36:f3:68:f8:21:0d:61:12: 6d:5a:91:1f -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjQ4OTExMC8GA1UEBRMoQUFFNTc1OUE3RTk4QUE3NDU4NTk4REUzQzE5QUExNzk3 RjAwRjVGNTAeFw0yNTAxMTQxMTQ0MDVaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODY0ZTA1LWU2YjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgtIIuqR71JBJPiSdqwiv5k225GzRosIV4EB3K0aAcgnOxee3+PJwgAVcucujN DcVwgm7hh96iwtIEy2XIe6P2jmC1epRxra8rcuSUq0MRMy/Xs4a63pmIjOrXplXF 07wIQmuOp8hxSnhbg+3Sg2BXpr7MCkX+G9bKo+T2oJpY09Fr0UwVLtV7aZrTBmD0 Ds0OT4DOwr5Cpz+nAgzSDKGF4NfXOd/N4jU1T/QzZBkhJBpm5QEYpjOQCL36q/6j kzso7Sj1HmrImZsswbf5qAVQpYOncYpkPuAFwE5yVmV0FY3Dnf0GXcwFxrVy/Uzj Zw1EEsTPKT8WQFYN7T96npkfAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUsmAtZyND kIMQsL1VmIrOaUx1ECQwHwYDVR0jBBgwFoAUquV1mn6YqnRYWY3jwZqheX8A9fUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyNDg5LzNBM0YyODM2OUJG QTExRUZCRUI5ODQ2RUM0RjlBRTAyL3F1VjFtbjZZcW5SWVdZM2p3WnFoZVg4QTlm VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcXVWMW1uNllxblJZV1kzandacWhlWDhBOWZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjQ4OS8zQTNGMjgzNjlCRkExMUVGQkVCOTg0NkVDNEY5QUUwMi80RDdERTA5RTlC RkIxMUVGOEU5NzVENzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAIwEjAQAwUFJAHU4AMHACQB1OAAAjANBgkqhkiG9w0BAQsFAAOCAQEA gvbGmS1875H1oMRSRsFtr1NzOQ0bJSKH6XutGfpFtEG57mI76STTGdgddGD2l+E4 v0ywGTlhrgTzGxKheyhzHzYqCOI29usshOxc+MRLrtCXdCmzrqDEpx9szri+6AJq jJH8Ty/Fk2fihRMXqLg3Q1owvBYajI/A2RPIdVCpA882B52PPSAXfSB95j+MB5U9 fqjLtVm71wjKkpcjkh8we7tq+Lt2jKCUT67+mhlfS15dIT02KnU6OONK6/Eh2JVN Xh9w2G3nZhf6Iey2Ad8Ff7cQmkGqPIkO65yBvzyvGj75wDixIEb/iCt2EpXEOBiq 4ENGijbzaPghDWESbVqRHw== -----END CERTIFICATE-----Generated at Sat Apr 5 03:36:37 2025 by rpki-client