$ rpki-client -vvf rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/AF15C412FE6011EFAFF42229C4F9AE02.roa File: AF15C412FE6011EFAFF42229C4F9AE02.roa (raw, json) Hash identifier: Zty1bn2BsN/snB9VGkQhUq28AUtgUeboa8WWql41r6s= Subject key identifier: AD:17:E7:EA:0B:2F:A7:55:A6:88:9B:FD:BD:58:BA:A6:79:82:E2:A4 Certificate issuer: /CN=A9145456/serialNumber=3FB0A56E20F194C7749879D4D225B3F97E9EBECF Certificate serial: 076D Authority key identifier: 3F:B0:A5:6E:20:F1:94:C7:74:98:79:D4:D2:25:B3:F9:7E:9E:BE:CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7ClbiDxlMd0mHnU0iWz-X6evs8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/AF15C412FE6011EFAFF42229C4F9AE02.roa Signing time: Tue 11 Mar 2025 10:07:48 +0000 ROA not before: Tue 11 Mar 2025 10:07:48 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138915 IP address blocks: 139.135.124.0/23 maxlen: 24 139.135.126.0/23 maxlen: 23 139.135.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/P7ClbiDxlMd0mHnU0iWz-X6evs8.crl rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/P7ClbiDxlMd0mHnU0iWz-X6evs8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7ClbiDxlMd0mHnU0iWz-X6evs8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 18:52:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1901 (0x76d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145456 Validity Not Before: Mar 11 10:07:48 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67d00b74-7a6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e1:d0:f1:ad:f9:89:e0:3e:09:7d:c9:9f:79: f0:7b:9a:60:7f:3e:b1:66:11:64:95:55:d1:d2:25: c5:26:67:f3:c4:69:f5:d5:18:8d:7a:4e:cb:43:a5: 09:e7:6d:93:42:f1:38:7f:fb:35:10:83:94:a5:e6: 79:f0:5f:ad:23:98:7d:99:9a:b6:2a:05:ef:c7:14: 84:e8:26:4a:64:8d:5c:6b:eb:da:68:f1:87:58:97: 84:67:69:43:64:26:56:79:31:3f:c5:83:ce:20:6f: d6:8a:78:f0:41:88:2f:00:9b:5f:1c:b7:f8:60:44: 84:1d:01:6b:51:25:c8:82:86:77:a7:cb:77:66:32: d4:1f:fd:0f:e2:de:d2:4c:a5:2e:cf:ce:91:fb:7f: 7e:1b:22:c6:3e:7c:d3:e3:e4:2d:00:be:ed:37:c4: 76:e1:da:0b:4c:96:49:bd:ee:c7:4c:0c:b8:46:0d: f8:12:4d:25:28:31:f9:a2:f5:9f:30:68:cc:bc:e5: da:cd:20:19:15:91:e7:94:4b:a1:a6:30:33:8a:03: 6d:9e:21:f5:cd:c3:52:37:7b:98:0e:96:58:65:d3: e2:15:21:89:15:e0:df:4a:93:9c:71:ba:20:64:4c: 5e:56:c2:1a:ae:c9:f8:4d:16:32:29:05:4b:13:d7: 07:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:17:E7:EA:0B:2F:A7:55:A6:88:9B:FD:BD:58:BA:A6:79:82:E2:A4 X509v3 Authority Key Identifier: keyid:3F:B0:A5:6E:20:F1:94:C7:74:98:79:D4:D2:25:B3:F9:7E:9E:BE:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/P7ClbiDxlMd0mHnU0iWz-X6evs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7ClbiDxlMd0mHnU0iWz-X6evs8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/AF15C412FE6011EFAFF42229C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.135.124.0/22 Signature Algorithm: sha256WithRSAEncryption 87:a7:9d:4e:5f:a6:a6:d2:fa:55:99:86:48:47:ef:3c:64:82: 1b:98:10:47:16:17:72:94:42:f8:3f:72:c7:0a:84:c3:1e:d7: c0:9c:38:04:18:43:5c:ce:5d:39:c2:97:33:17:4e:09:0f:e3: 44:64:f5:d4:13:43:6e:21:50:db:59:ce:f6:dc:55:0a:f0:1c: a5:46:3c:a5:a4:53:bd:e7:4b:c4:cb:5a:e7:2f:5b:01:d3:e7: 21:05:32:ae:3d:40:e7:af:33:ee:c0:9c:54:e6:4a:c6:ec:d4: 73:42:9a:a9:f2:37:d1:b8:eb:79:72:57:92:c4:4a:d3:32:2d: 98:80:74:71:52:66:1c:cd:90:e9:e9:d7:23:cf:88:9d:34:ee: 44:22:e7:3e:7d:7f:87:57:15:fd:e4:34:60:00:ff:6e:6e:bd: a4:ed:9f:39:96:6f:14:ef:dc:de:e2:e3:3d:e4:7c:68:0c:e1: f1:02:40:e8:ab:26:3a:69:fb:82:f2:0c:94:1f:95:48:ce:3a: ef:f2:5b:30:ec:1a:92:d9:7c:2f:77:07:97:44:6e:5d:5e:58: 83:e0:34:50:97:09:be:cf:de:87:54:41:f5:8a:a0:65:a9:54: 6a:be:b4:60:b7:68:95:13:d2:65:79:6b:62:86:fc:46:70:2b: 2d:c6:b9:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NTYxMTAvBgNVBAUTKDNGQjBBNTZFMjBGMTk0Qzc3NDk4NzlENEQyMjVCM0Y5 N0U5RUJFQ0YwHhcNMjUwMzExMTAwNzQ4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02N2QwMGI3NC03YTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuHQ8a35ieA+CX3Jn3nwe5pgfz6xZhFklVXR0iXFJmfzxGn11RiNek7LQ6UJ 522TQvE4f/s1EIOUpeZ58F+tI5h9mZq2KgXvxxSE6CZKZI1ca+vaaPGHWJeEZ2lD ZCZWeTE/xYPOIG/WinjwQYgvAJtfHLf4YESEHQFrUSXIgoZ3p8t3ZjLUH/0P4t7S TKUuz86R+39+GyLGPnzT4+QtAL7tN8R24doLTJZJve7HTAy4Rg34Ek0lKDH5ovWf MGjMvOXazSAZFZHnlEuhpjAzigNtniH1zcNSN3uYDpZYZdPiFSGJFeDfSpOccbog ZExeVsIarsn4TRYyKQVLE9cHbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFK0X5+oL L6dVpoib/b1YuqZ5guKkMB8GA1UdIwQYMBaAFD+wpW4g8ZTHdJh51NIls/l+nr7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ1Ni83NzE5QzcxMDMw NjYxMUVCODUyNTEzNTVDNEY5QUUwMi9QN0NsYmlEeGxNZDBtSG5VMGlXei1YNmV2 czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3Q2xiaUR4bE1kMG1IblUwaVd6LVg2ZXZzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NTYvNzcxOUM3MTAzMDY2MTFFQjg1MjUxMzU1QzRGOUFFMDIvQUYxNUM0MTJG RTYwMTFFRkFGRjQyMjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKLh3wwDQYJKoZIhvcNAQELBQADggEBAIennU5fpqbS+lWZ hkhH7zxkghuYEEcWF3KUQvg/cscKhMMe18CcOAQYQ1zOXTnClzMXTgkP40Rk9dQT Q24hUNtZzvbcVQrwHKVGPKWkU73nS8TLWucvWwHT5yEFMq49QOevM+7AnFTmSsbs 1HNCmqnyN9G463lyV5LEStMyLZiAdHFSZhzNkOnp1yPPiJ007kQi5z59f4dXFf3k NGAA/25uvaTtnzmWbxTv3N7i4z3kfGgM4fECQOirJjpp+4LyDJQflUjOOu/yWzDs GpLZfC93B5dEbl1eWIPgNFCXCb7P3odUQfWKoGWpVGq+tGC3aJUT0mV5a2KG/EZw Ky3GuS4= -----END CERTIFICATE-----Generated at Mon Apr 7 01:50:29 2025 by rpki-client