$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/D8E0EC82927711E985E0423AC4F9AE02.roa File: D8E0EC82927711E985E0423AC4F9AE02.roa (raw, json) Hash identifier: +fJoTern1FEL3hWeQl1ij5UIzJGzXQGhkR014UlHjWU= Subject key identifier: 38:72:36:19:FD:10:7F:29:1A:F6:2F:FE:2C:E6:97:82:52:14:92:9D Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 12B0 Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/D8E0EC82927711E985E0423AC4F9AE02.roa Signing time: Wed 04 Dec 2024 17:25:04 +0000 ROA not before: Wed 04 Dec 2024 17:25:04 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139233 IP address blocks: 2403:cfc0:1007::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:12:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4784 (0x12b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE Validity Not Before: Dec 4 17:25:04 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67509070-e6a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ca:2d:47:0b:17:d1:7f:34:84:eb:0d:85:43: 71:98:b1:41:c7:1c:36:a2:5a:52:37:91:97:f6:7a: eb:bf:10:33:12:b7:ea:b5:37:c6:23:29:ba:2e:df: 89:8a:10:a7:0c:47:4a:0f:4f:ff:c1:44:76:42:81: e4:ef:ed:c0:7f:6e:a7:ce:16:6f:37:0e:0c:78:8c: 5f:d9:92:6d:62:aa:6d:a4:6c:ce:10:68:5c:68:4a: fd:51:e5:1a:91:55:a9:9f:bd:74:d9:64:72:93:73: 65:b9:52:08:de:4a:b7:f5:17:17:8c:5a:f0:32:f5: f2:a5:b6:e3:a1:df:b6:cf:aa:59:7f:1b:48:63:72: 89:eb:38:c4:28:a7:80:c8:a1:7d:0b:fe:e5:01:e3: d3:cb:d8:9e:fd:90:fc:98:77:6c:5b:86:6d:e1:e6: 91:0f:15:5c:86:53:2e:87:01:ca:d4:96:16:11:20: 91:f6:47:90:f4:5c:94:dd:a1:13:81:32:a4:29:37: f5:cd:4b:a3:d5:b8:59:9d:a0:e2:5f:fb:ac:8a:76: f9:31:64:d0:b8:ad:92:83:e6:0a:90:32:a9:99:11: 8b:2a:ef:2f:41:59:0d:69:4c:a1:77:7b:88:34:45: 86:81:03:8b:6f:74:22:62:c1:72:cf:05:9a:eb:d8: 99:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:72:36:19:FD:10:7F:29:1A:F6:2F:FE:2C:E6:97:82:52:14:92:9D X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/D8E0EC82927711E985E0423AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cfc0:1007::/48 Signature Algorithm: sha256WithRSAEncryption 98:ae:07:33:bb:3e:ba:2d:6e:a0:1d:a7:7d:2e:b7:6d:d5:92: 8c:c9:5c:b7:e3:19:c7:44:8b:4c:0e:2d:cb:09:2b:ff:a9:fc: 98:48:4e:16:63:4e:ba:2b:b7:71:4c:19:24:c8:d3:63:fb:bf: 92:98:54:c4:c3:72:41:99:da:88:2b:5d:ea:30:b9:2b:7b:a9: 11:27:2f:f7:dd:9a:f3:84:59:51:31:84:8f:72:f1:5a:1d:9d: c3:b3:f4:e1:44:49:22:9a:6a:16:87:32:4b:57:be:97:d3:2b: 07:a2:e8:14:37:de:5d:49:1c:7c:bf:1f:2a:84:9c:58:ec:5e: e1:23:db:7b:c7:3e:e9:c5:0f:15:06:16:79:d0:74:9c:a7:0d: 7a:1f:7b:73:25:b5:94:dc:77:a6:c5:bc:c9:48:3d:70:d8:ce: b0:a2:b9:9b:e2:58:36:d8:a8:78:b2:ca:73:60:ee:ef:cd:90: 5d:77:bc:13:11:ae:4d:d0:b0:90:89:e3:dd:03:c4:2e:a4:a6: b5:1e:57:5b:e1:b0:da:b4:58:9d:28:9f:a8:5b:0a:68:39:4d: bb:14:5a:09:5f:c8:fa:41:0e:a1:11:ed:23:53:e0:8b:bb:23: ce:e9:40:0c:13:cf:e7:3c:2c:e7:af:34:a5:e8:46:b6:fe:69: 9a:7c:4c:c8 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICErAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjQxMjA0MTcyNTA0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwOTA3MC1lNmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMotRwsX0X80hOsNhUNxmLFBxxw2olpSN5GX9nrrvxAzErfqtTfGIym6Lt+J ihCnDEdKD0//wUR2QoHk7+3Af26nzhZvNw4MeIxf2ZJtYqptpGzOEGhcaEr9UeUa kVWpn7102WRyk3NluVII3kq39RcXjFrwMvXypbbjod+2z6pZfxtIY3KJ6zjEKKeA yKF9C/7lAePTy9ie/ZD8mHdsW4Zt4eaRDxVchlMuhwHK1JYWESCR9keQ9FyU3aET gTKkKTf1zUuj1bhZnaDiX/usinb5MWTQuK2Sg+YKkDKpmRGLKu8vQVkNaUyhd3uI NEWGgQOLb3QiYsFyzwWa69iZ5QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDhyNhn9 EH8pGvYv/izml4JSFJKdMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNjE2NjZDMEVENjg5MTFFOEI2ODExNDMzQzRGOUFFMDIvRDhFMEVDODI5 Mjc3MTFFOTg1RTA0MjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkA8/AEAcwDQYJKoZIhvcNAQELBQADggEBAJiuBzO7Prot bqAdp30ut23VkozJXLfjGcdEi0wOLcsJK/+p/JhIThZjTrort3FMGSTI02P7v5KY VMTDckGZ2ogrXeowuSt7qREnL/fdmvOEWVExhI9y8VodncOz9OFESSKaahaHMktX vpfTKwei6BQ33l1JHHy/HyqEnFjsXuEj23vHPunFDxUGFnnQdJynDXofe3MltZTc d6bFvMlIPXDYzrCiuZviWDbYqHiyynNg7u/NkF13vBMRrk3QsJCJ490DxC6kprUe V1vhsNq0WJ0on6hbCmg5TbsUWglfyPpBDqER7SNT4Iu7I87pQAwTz+c8LOevNKXo Rrb+aZp8TMg= -----END CERTIFICATE-----Generated at Sat Apr 5 07:20:47 2025 by rpki-client