$ rpki-client -vvf rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/1040CDC4EBB411EE9D86095BC4F9AE02.roa File: 1040CDC4EBB411EE9D86095BC4F9AE02.roa (raw, json) Hash identifier: ONnLvdYQIbTLtbVrwQpfNQIQVF7OagH6RPbHX1a91NY= Subject key identifier: 43:45:63:8A:5F:BE:08:9F:49:C7:F8:61:97:9E:BD:54:EE:C4:02:AB Certificate issuer: /CN=A9153490/serialNumber=137353D0E8C145A580CB00BC3222089C4048AE51 Certificate serial: D5 Authority key identifier: 13:73:53:D0:E8:C1:45:A5:80:CB:00:BC:32:22:08:9C:40:48:AE:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3NT0OjBRaWAywC8MiIInEBIrlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/1040CDC4EBB411EE9D86095BC4F9AE02.roa Signing time: Thu 27 Mar 2025 05:11:37 +0000 ROA not before: Thu 27 Mar 2025 05:11:37 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152470 IP address blocks: 2401:7f20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.crl rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3NT0OjBRaWAywC8MiIInEBIrlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153490 Validity Not Before: Mar 27 05:11:37 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e4de08-767c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:50:41:a5:b7:16:d0:2e:8f:ee:e0:13:50:c6: 93:f0:9b:c8:d0:36:83:af:38:08:7c:f8:68:18:38: d2:85:ae:b5:46:7b:9f:73:f9:cf:d7:d7:10:67:a4: ee:66:94:3c:df:28:f8:35:8c:c2:ed:a6:e9:7f:d4: f8:97:08:55:b5:55:d0:e3:96:63:bf:0d:2b:fd:15: 95:6f:b1:1a:53:fb:25:28:c5:ef:c9:96:b7:60:2a: a0:da:cb:c4:fe:04:0d:2c:db:bb:c2:7f:7d:d8:63: b3:6f:6b:e3:e5:e1:2d:cb:e2:e4:be:c4:57:0f:68: 10:84:0b:33:51:68:c3:85:2d:a2:03:51:de:78:fb: 3f:a7:d6:ab:20:7e:02:cb:22:08:03:b7:5a:8b:c3: bb:2a:30:59:d1:ae:fb:5b:5a:75:fd:d4:c6:7c:c7: 79:d6:84:62:3f:a9:6f:da:91:27:af:a4:bc:8f:a4: 6d:7b:8b:f0:a8:4a:c1:6f:28:db:16:ce:d4:ad:bf: d6:b3:1d:96:f9:91:06:d2:ec:05:59:20:cf:c2:5b: 24:fa:4d:dd:a7:de:c1:24:fc:30:e0:13:95:e3:43: c4:b7:6c:d9:00:b2:30:40:76:db:b5:96:e0:fb:f5: 05:bb:43:1a:e1:f8:dc:cf:a9:e9:9f:de:78:51:de: 27:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:45:63:8A:5F:BE:08:9F:49:C7:F8:61:97:9E:BD:54:EE:C4:02:AB X509v3 Authority Key Identifier: keyid:13:73:53:D0:E8:C1:45:A5:80:CB:00:BC:32:22:08:9C:40:48:AE:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3NT0OjBRaWAywC8MiIInEBIrlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/1040CDC4EBB411EE9D86095BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:7f20::/32 Signature Algorithm: sha256WithRSAEncryption 51:7a:d4:e1:f8:02:4e:86:3b:ae:46:0f:9f:2c:b6:9e:53:4c: b4:dd:4d:ce:13:06:93:9b:dd:53:23:8d:6d:68:1a:6b:d3:8b: 7e:0c:b5:33:db:8c:a2:b9:6b:73:e9:a6:a0:25:ca:e4:b4:04: f6:3f:92:67:f7:0d:d9:d3:eb:7b:0e:3a:c2:e2:77:f6:39:24: eb:f6:a8:bf:07:87:5f:b2:d4:88:d3:2b:2b:92:8b:37:67:d5: ee:e5:89:4d:18:4e:65:e8:01:aa:0c:bf:79:54:c9:15:5f:92: 6f:5f:68:f2:04:99:87:3f:28:48:5d:9f:86:bc:e6:b7:b9:88: f7:bd:44:ec:21:c1:7e:0f:a2:db:66:57:a3:de:42:93:f0:2c: 4c:11:86:c1:ba:85:27:b0:79:67:61:61:1d:83:9b:7f:a5:39: 93:7e:1d:23:75:78:36:4a:16:d5:58:bd:73:ae:76:ed:c1:7d: 99:8c:57:26:0a:2a:96:c4:c6:fe:86:40:25:30:83:0b:98:b4: 53:86:b1:4e:7f:f5:08:83:1f:b7:77:b7:8e:9f:3e:79:41:dd: 86:16:91:01:7b:13:49:e4:27:0c:84:2a:40:21:08:1e:57:90: 0d:6c:d3:a9:3f:b5:d5:20:5d:19:35:b9:4e:15:b2:fd:bd:58: eb:d9:77:2f -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0OTAxMTAvBgNVBAUTKDEzNzM1M0QwRThDMTQ1QTU4MENCMDBCQzMyMjIwODlD NDA0OEFFNTEwHhcNMjUwMzI3MDUxMTM3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0ZGUwOC03NjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFBBpbcW0C6P7uATUMaT8JvI0DaDrzgIfPhoGDjSha61Rnufc/nP19cQZ6Tu ZpQ83yj4NYzC7abpf9T4lwhVtVXQ45Zjvw0r/RWVb7EaU/slKMXvyZa3YCqg2svE /gQNLNu7wn992GOzb2vj5eEty+LkvsRXD2gQhAszUWjDhS2iA1HeePs/p9arIH4C yyIIA7dai8O7KjBZ0a77W1p1/dTGfMd51oRiP6lv2pEnr6S8j6Rte4vwqErBbyjb Fs7Urb/Wsx2W+ZEG0uwFWSDPwlsk+k3dp97BJPww4BOV40PEt2zZALIwQHbbtZbg +/UFu0Ma4fjcz6npn954Ud4nyQIDAQABo4ICljCCApIwHQYDVR0OBBYEFENFY4pf vgifScf4YZeevVTuxAKrMB8GA1UdIwQYMBaAFBNzU9DowUWlgMsAvDIiCJxASK5R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQ5MC85OTE5OEYxMkQw NTQxMUVFQUY3OTlGMTZDNEY5QUUwMi9FM05UME9qQlJhV0F5d0M4TWlJSW5FQkly bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UzTlQwT2pCUmFXQXl3QzhNaUlJbkVCSXJsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM0OTAvOTkxOThGMTJEMDU0MTFFRUFGNzk5RjE2QzRGOUFFMDIvMTA0MENEQzRF QkI0MTFFRTlEODYwOTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAX8gMA0GCSqGSIb3DQEBCwUAA4IBAQBRetTh+AJOhjuu Rg+fLLaeU0y03U3OEwaTm91TI41taBpr04t+DLUz24yiuWtz6aagJcrktAT2P5Jn 9w3Z0+t7DjrC4nf2OSTr9qi/B4dfstSI0ysrkos3Z9Xu5YlNGE5l6AGqDL95VMkV X5JvX2jyBJmHPyhIXZ+GvOa3uYj3vUTsIcF+D6LbZlej3kKT8CxMEYbBuoUnsHln YWEdg5t/pTmTfh0jdXg2ShbVWL1zrnbtwX2ZjFcmCiqWxMb+hkAlMIMLmLRThrFO f/UIgx+3d7eOnz55Qd2GFpEBexNJ5CcMhCpAIQgeV5ANbNOpP7XVIF0ZNblOFbL9 vVjr2Xcv -----END CERTIFICATE-----Generated at Sun Apr 6 21:11:39 2025 by rpki-client