$ rpki-client -vvf rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/355D028E4AB511EF87AB161BC4F9AE02.roa File: 355D028E4AB511EF87AB161BC4F9AE02.roa (raw, json) Hash identifier: xnTxVBzuqpyQgM9jdgicco4JNCk9XP1Efnj6SZnRf34= Subject key identifier: 34:ED:A6:94:3F:B1:AC:01:71:AD:93:AE:CB:3B:BE:23:1E:80:FC:2B Certificate issuer: /CN=A9190D72/serialNumber=1EB9AE8BF5959FE8BF2EB82B923B717EFF3106C5 Certificate serial: D3 Authority key identifier: 1E:B9:AE:8B:F5:95:9F:E8:BF:2E:B8:2B:92:3B:71:7E:FF:31:06:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/355D028E4AB511EF87AB161BC4F9AE02.roa Signing time: Thu 27 Mar 2025 05:11:48 +0000 ROA not before: Thu 27 Mar 2025 05:11:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136557 IP address blocks: 2401:8360:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.crl rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:05:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190D72 Validity Not Before: Mar 27 05:11:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e4de13-7849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:53:14:03:6b:b9:ad:7e:14:10:0f:de:f6:27: 84:ee:15:13:ad:4c:8f:ce:9c:0c:71:5e:e0:fb:ec: c3:ce:52:45:8a:5b:3a:a5:a0:29:35:c1:1f:a2:c9: db:7f:4c:88:fb:12:5a:b4:b2:7d:f3:e6:35:c5:8e: 46:eb:6c:df:15:96:58:85:4b:de:3d:f7:c9:10:11: 0c:1d:f9:1d:d8:8b:7f:cb:c8:3a:1b:72:9a:dd:57: bc:3d:a1:96:76:4d:db:c2:6d:b6:e7:aa:d8:ee:6a: 0f:46:69:98:bd:3d:74:56:37:c8:4c:02:ce:39:43: cc:2d:6d:d3:b3:d1:f5:0f:51:3c:2a:da:46:49:6c: f7:8f:ca:5b:aa:89:77:14:f8:99:1d:c5:c5:a4:d1: 04:7a:c0:20:ef:a1:a1:90:48:b8:21:bd:ac:2b:4e: 2e:10:ac:32:68:b6:6c:9c:4d:44:19:38:5c:6d:b4: 85:ed:de:1e:bf:dd:d6:40:c1:1b:b1:fd:70:c6:1c: 15:75:8e:ff:55:d3:f2:10:de:cd:76:24:f4:f3:7c: 9b:4c:a8:70:df:b7:17:76:31:e3:de:fa:57:b1:6a: 4f:1d:db:ae:54:e2:60:e2:e9:1e:b3:e0:ba:06:c7: 95:13:5e:a9:5b:ed:bc:4f:1a:cb:db:b8:46:d0:3c: 6f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:ED:A6:94:3F:B1:AC:01:71:AD:93:AE:CB:3B:BE:23:1E:80:FC:2B X509v3 Authority Key Identifier: keyid:1E:B9:AE:8B:F5:95:9F:E8:BF:2E:B8:2B:92:3B:71:7E:FF:31:06:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/355D028E4AB511EF87AB161BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:8360:1::/48 Signature Algorithm: sha256WithRSAEncryption c3:44:b3:68:6c:5f:57:2c:af:79:4e:e8:31:a1:6d:17:ea:c5: c0:1f:ed:f4:ec:e8:1b:a8:e8:8b:8a:a4:d2:5e:6d:a8:68:1c: 67:7f:f2:10:2c:54:58:9f:ea:70:8b:0e:2e:04:b2:58:86:dd: 59:e7:ad:f3:dc:eb:81:0b:4e:e1:45:ff:ef:3a:3e:98:68:79: 53:c1:97:94:c0:82:59:d6:8b:ad:b4:18:2b:6b:85:67:e1:e3: 47:23:6f:6e:4b:4f:37:95:bd:40:c8:56:45:98:3c:5b:53:34: 59:52:6e:00:32:0c:0d:68:47:38:f7:83:5c:0e:20:aa:b5:a5: 79:59:94:9d:c3:0c:2f:d6:4a:b2:4c:84:e2:88:39:ab:89:fd: be:85:0e:7a:73:0e:fd:6b:98:62:d3:18:85:b8:f8:12:89:f1: 29:c1:54:ee:07:47:0b:33:b7:12:e4:2f:68:be:29:f5:0e:a3: 7c:bf:8d:cf:f3:a4:1d:3a:2f:da:7d:1e:86:a6:8e:b1:02:13: 3e:b6:6e:f9:db:e2:9d:a2:30:46:ac:93:ad:a6:ae:09:f3:33: 5a:a8:91:4c:85:52:b2:ae:64:aa:5e:10:1c:77:ec:41:64:20: e5:48:5c:45:66:69:f9:18:7d:76:3e:24:ad:83:8a:d0:e2:8a: f2:c9:7c:62 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBENzIxMTAvBgNVBAUTKDFFQjlBRThCRjU5NTlGRThCRjJFQjgyQjkyM0I3MTdF RkYzMTA2QzUwHhcNMjUwMzI3MDUxMTQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0ZGUxMy03ODQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1MUA2u5rX4UEA/e9ieE7hUTrUyPzpwMcV7g++zDzlJFils6paApNcEfosnb f0yI+xJatLJ98+Y1xY5G62zfFZZYhUvePffJEBEMHfkd2It/y8g6G3Ka3Ve8PaGW dk3bwm2256rY7moPRmmYvT10VjfITALOOUPMLW3Ts9H1D1E8KtpGSWz3j8pbqol3 FPiZHcXFpNEEesAg76GhkEi4Ib2sK04uEKwyaLZsnE1EGThcbbSF7d4ev93WQMEb sf1wxhwVdY7/VdPyEN7NdiT083ybTKhw37cXdjHj3vpXsWpPHduuVOJg4ukes+C6 BseVE16pW+28TxrL27hG0DxvBQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDTtppQ/ sawBca2Trss7viMegPwrMB8GA1UdIwQYMBaAFB65rov1lZ/ovy64K5I7cX7/MQbF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEQ3Mi84QjI1QUQwNEQy MkIxMUVFQkMxNDUzNDNDNEY5QUUwMi9Icm11aV9XVm4taV9Mcmdya2p0eGZ2OHhC c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hybXVpX1dWbi1pX0xyZ3JranR4ZnY4eEJzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTBENzIvOEIyNUFEMDREMjJCMTFFRUJDMTQ1MzQzQzRGOUFFMDIvMzU1RDAyOEU0 QUI1MTFFRjg3QUIxNjFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAYNgAAEwDQYJKoZIhvcNAQELBQADggEBAMNEs2hsX1cs r3lO6DGhbRfqxcAf7fTs6Buo6IuKpNJebahoHGd/8hAsVFif6nCLDi4EsliG3Vnn rfPc64ELTuFF/+86PphoeVPBl5TAglnWi620GCtrhWfh40cjb25LTzeVvUDIVkWY PFtTNFlSbgAyDA1oRzj3g1wOIKq1pXlZlJ3DDC/WSrJMhOKIOauJ/b6FDnpzDv1r mGLTGIW4+BKJ8SnBVO4HRwsztxLkL2i+KfUOo3y/jc/zpB06L9p9HoamjrECEz62 bvnb4p2iMEask62mrgnzM1qokUyFUrKuZKpeEBx37EFkIOVIXEVmafkYfXY+JK2D itDiivLJfGI= -----END CERTIFICATE-----Generated at Sat Apr 5 03:25:31 2025 by rpki-client