$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/7A63013E3A4F11EEA10D3A7AC4F9AE02.roa File: 7A63013E3A4F11EEA10D3A7AC4F9AE02.roa (raw, json) Hash identifier: iTrEAAlkJw9OclXVQcOsLhF2OGcA/o+GNahTLZ1PRQo= Subject key identifier: 9E:0F:45:51:3D:99:25:F8:F0:20:35:9C:F5:AB:C5:6F:18:EA:97:9B Certificate issuer: /CN=A9195BA9/serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383 Certificate serial: 0108 Authority key identifier: F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/7A63013E3A4F11EEA10D3A7AC4F9AE02.roa Signing time: Fri 20 Dec 2024 20:09:31 +0000 ROA not before: Fri 20 Dec 2024 20:09:31 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 18106 IP address blocks: 195.133.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9 Validity Not Before: Dec 20 20:09:31 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6765cefb-93ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:00:66:7b:15:bf:83:2f:35:fe:41:5b:f7:56: 28:be:5a:66:83:a7:ac:02:bd:b9:d4:e9:c7:9a:8a: 9c:86:28:ef:8c:f4:e3:3f:8d:3d:22:51:c0:6f:b4: 23:98:58:e7:d3:76:58:0d:a6:65:1a:6e:f4:94:38: 15:a5:82:01:d2:30:f3:ab:d7:e1:4f:5f:03:2c:6f: ac:d6:3c:c0:f7:1e:f5:8a:68:75:31:cb:88:90:5e: 3b:51:29:d3:e5:90:92:c9:d5:a5:a8:9a:00:ea:5c: d7:c1:f4:a8:51:19:d4:6f:92:f5:26:fb:fd:04:75: 4e:de:40:0d:d3:34:79:fc:0b:f6:82:be:10:f3:d3: 21:6d:6a:51:7b:e7:28:6d:13:85:19:4c:d8:d0:43: 90:20:d8:45:cc:40:b6:b9:b7:f0:f5:dc:42:93:1f: 06:06:e5:00:5c:1b:7e:b7:f5:19:44:72:f1:80:d8: 39:e3:2e:65:27:87:2f:c3:a3:0d:d2:34:c4:8f:70: 85:be:7b:e0:4b:06:26:f9:d6:e8:38:be:78:38:a8: 56:e3:c9:f7:99:78:46:4f:0b:8d:b9:0e:1f:f8:54: 87:56:23:30:72:c7:9b:6e:50:92:08:66:08:0b:ca: 14:56:bc:53:61:c2:78:88:d8:aa:19:50:6c:2c:ab: 94:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:0F:45:51:3D:99:25:F8:F0:20:35:9C:F5:AB:C5:6F:18:EA:97:9B X509v3 Authority Key Identifier: keyid:F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/7A63013E3A4F11EEA10D3A7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 195.133.128.0/20 Signature Algorithm: sha256WithRSAEncryption 4c:51:df:a9:24:e3:e0:4a:0f:28:aa:e4:33:e6:74:48:5a:bc: d6:33:f0:77:20:cd:58:d0:ab:67:c1:ad:86:f0:5d:5e:9d:e5: 77:5c:2a:40:26:48:19:da:b1:56:f9:e7:dd:0a:e7:32:2b:19: 85:76:bf:d5:93:9d:67:fe:01:b6:a3:31:0b:62:ab:92:9f:fe: 01:36:e4:41:42:88:5c:3b:6d:83:c9:ae:34:52:e4:8e:d4:49: c7:6f:2a:45:78:56:ac:6c:0b:cd:dd:db:11:28:1b:89:c1:dc: 4d:6c:cc:d9:4d:9f:13:f0:a7:96:9f:5d:63:65:fe:42:b4:c2: 17:f2:89:8d:58:b0:72:aa:21:d1:41:d8:e8:eb:a9:30:b4:60: 9e:7f:f6:05:7e:c3:51:da:9c:90:5c:a4:9a:88:85:d4:73:1c: 70:96:43:71:b3:ba:b8:ee:d3:d0:04:ed:02:1d:8b:86:04:ff: 75:57:6e:5e:c0:af:61:fb:43:ed:26:3b:3d:be:c9:bb:1e:3d: 4e:da:a5:45:de:26:bd:97:b1:d9:3e:cb:8e:07:5f:44:15:8c: 00:76:fa:b6:d6:86:6a:3c:b1:ec:f0:1c:b5:45:37:0a:ff:84: d7:8a:18:40:03:f3:2a:10:7e:ab:70:3b:04:77:3b:9c:00:4b: 6f:03:01:ad -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKEY2NUNGRDFDRjNCMUM1QThFQTYwODcxRkEzQzM0MDYx REI0Q0YzODMwHhcNMjQxMjIwMjAwOTMxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY1Y2VmYi05M2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwBmexW/gy81/kFb91Yovlpmg6esAr251OnHmoqchijvjPTjP409IlHAb7Qj mFjn03ZYDaZlGm70lDgVpYIB0jDzq9fhT18DLG+s1jzA9x71imh1McuIkF47USnT 5ZCSydWlqJoA6lzXwfSoURnUb5L1Jvv9BHVO3kAN0zR5/Av2gr4Q89MhbWpRe+co bROFGUzY0EOQINhFzEC2ubfw9dxCkx8GBuUAXBt+t/UZRHLxgNg54y5lJ4cvw6MN 0jTEj3CFvnvgSwYm+dboOL54OKhW48n3mXhGTwuNuQ4f+FSHViMwcsebblCSCGYI C8oUVrxTYcJ4iNiqGVBsLKuU0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ4PRVE9 mSX48CA1nPWrxW8Y6pebMB8GA1UdIwQYMBaAFPZc/RzzscWo6mCHH6PDQGHbTPOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9DRUU2ODgyMjM3 QkUxMUVFQTY0MEFCNTVDNEY5QUUwMi85bHo5SFBPeHhhanFZSWNmbzhOQVlkdE04 NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsejlIUE94eGFqcVlJY2ZvOE5BWWR0TTg0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVCQTkvQ0VFNjg4MjIzN0JFMTFFRUE2NDBBQjU1QzRGOUFFMDIvN0E2MzAxM0Uz QTRGMTFFRUExMEQzQTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATDhYAwDQYJKoZIhvcNAQELBQADggEBAExR36kk4+BKDyiq 5DPmdEhavNYz8HcgzVjQq2fBrYbwXV6d5XdcKkAmSBnasVb5590K5zIrGYV2v9WT nWf+AbajMQtiq5Kf/gE25EFCiFw7bYPJrjRS5I7UScdvKkV4VqxsC83d2xEoG4nB 3E1szNlNnxPwp5afXWNl/kK0whfyiY1YsHKqIdFB2OjrqTC0YJ5/9gV+w1HanJBc pJqIhdRzHHCWQ3Gzurju09AE7QIdi4YE/3VXbl7Ar2H7Q+0mOz2+ybsePU7apUXe Jr2Xsdk+y44HX0QVjAB2+rbWhmo8sezwHLVFNwr/hNeKGEAD8yoQfqtwOwR3O5wA S28DAa0= -----END CERTIFICATE-----Generated at Sun Apr 6 00:40:12 2025 by rpki-client