$ rpki-client -vvf rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/12C0FA5EA8E811EB8801993BC4F9AE02.roa File: 12C0FA5EA8E811EB8801993BC4F9AE02.roa (raw, json) Hash identifier: /mCgDe/QXkVZ19zwT18pUH2ZsyIWQwp0AHCO+5H4d8I= Subject key identifier: D2:EF:2A:9B:6F:F0:C4:C2:A1:01:2E:8B:B7:E2:86:43:ED:5D:09:92 Certificate issuer: /CN=A9196E6C/serialNumber=8F31602F4EBE455E099C0049BB7B0066558B9D89 Certificate serial: 348C Authority key identifier: 8F:31:60:2F:4E:BE:45:5E:09:9C:00:49:BB:7B:00:66:55:8B:9D:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/12C0FA5EA8E811EB8801993BC4F9AE02.roa Signing time: Wed 02 Apr 2025 14:41:00 +0000 ROA not before: Wed 02 Apr 2025 14:41:00 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9534 IP address blocks: 43.251.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.crl rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 14:38:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13452 (0x348c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196E6C Validity Not Before: Apr 2 14:41:00 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ed4c7c-93c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7b:a2:dc:5c:ba:87:94:e3:44:ac:b5:62:4d: d5:08:78:01:ab:3f:28:a9:fa:41:1e:a6:5a:53:57: 3d:51:56:15:fa:cb:69:20:5f:10:57:63:58:d7:3d: ba:7d:50:1a:6c:07:f5:7d:13:e9:3f:48:81:6e:38: f4:4d:87:9a:32:4c:c2:0c:6c:0b:6a:4b:53:75:49: a7:49:fe:4a:14:89:45:0e:c0:81:13:cb:61:ec:2b: e1:d7:ed:38:7f:35:b0:9a:a3:3d:20:a2:dc:94:a0: 76:a0:b9:f7:d7:06:8f:0e:7c:23:34:13:ed:78:95: f2:32:13:36:59:99:5d:b8:a0:b4:15:ae:da:8b:88: 47:c9:16:9c:ae:e8:9a:4b:c7:6d:ce:13:05:70:f4: 98:3c:7e:d1:e8:94:c1:2e:06:45:de:ad:90:47:14: 97:39:f7:cc:76:c0:80:8f:55:03:ac:1b:bf:51:a6: 53:fd:f6:a7:df:7d:b3:f8:86:d8:33:35:21:4d:e9: 9d:38:2a:70:8a:ea:6d:4e:c6:a9:61:7b:cf:67:54: 1d:76:71:92:4c:8a:a3:dd:af:62:cb:bd:25:06:b3: ac:cb:ff:b5:df:ce:b4:20:d2:da:c4:cc:94:2e:b6: ba:a4:98:f3:c8:88:4b:16:5a:b1:fd:31:e2:81:93: b7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:EF:2A:9B:6F:F0:C4:C2:A1:01:2E:8B:B7:E2:86:43:ED:5D:09:92 X509v3 Authority Key Identifier: keyid:8F:31:60:2F:4E:BE:45:5E:09:9C:00:49:BB:7B:00:66:55:8B:9D:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/12C0FA5EA8E811EB8801993BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.138.0/24 Signature Algorithm: sha256WithRSAEncryption 63:0d:33:e9:bd:bc:6e:d0:2c:29:5e:06:2d:b9:ae:73:f8:a6: ce:7b:5d:e2:5b:6e:b8:91:23:bf:b8:9f:b4:fa:d6:2d:13:e2: a1:15:d4:20:5d:b7:99:f9:14:86:d8:ae:b3:20:f9:37:30:56: 91:c4:c1:4c:41:4d:33:4a:ad:34:95:d7:e8:56:6e:88:6d:a7: 66:ef:76:9c:db:19:d9:f3:55:b4:90:79:d7:3d:a1:74:c7:46: 48:4c:98:44:e2:ea:df:f4:84:e7:80:6a:b3:b9:a5:65:cf:a5: ba:62:dc:36:a8:9b:e1:5c:ff:5f:36:a7:68:4c:a7:60:72:5f: 30:b0:0f:45:4a:f6:cf:b5:6b:23:c2:1b:69:39:62:cb:66:dc: de:48:82:42:1e:96:39:05:a1:4d:c8:6b:6c:52:7f:a1:cd:7b: 00:57:f5:27:89:f3:e5:11:c6:9f:41:09:2e:b6:ee:27:44:ce: 5a:85:23:16:82:7e:ab:92:a1:f4:9a:38:25:5e:82:6b:9f:1d: 71:12:60:3e:74:a4:d6:44:5c:6c:19:30:83:e6:5b:a2:1d:54: aa:01:b3:f8:1f:0b:70:d5:a2:94:82:5d:b8:a6:e0:20:61:52: 8a:a4:22:b0:b8:5c:f5:45:ac:a8:f2:2d:0a:0d:0f:bc:b3:c2: a3:88:8e:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZFNkMxMTAvBgNVBAUTKDhGMzE2MDJGNEVCRTQ1NUUwOTlDMDA0OUJCN0IwMDY2 NTU4QjlEODkwHhcNMjUwNDAyMTQ0MTAwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkNGM3Yy05M2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHui3Fy6h5TjRKy1Yk3VCHgBqz8oqfpBHqZaU1c9UVYV+stpIF8QV2NY1z26 fVAabAf1fRPpP0iBbjj0TYeaMkzCDGwLaktTdUmnSf5KFIlFDsCBE8th7Cvh1+04 fzWwmqM9IKLclKB2oLn31waPDnwjNBPteJXyMhM2WZlduKC0Fa7ai4hHyRacruia S8dtzhMFcPSYPH7R6JTBLgZF3q2QRxSXOffMdsCAj1UDrBu/UaZT/fan332z+IbY MzUhTemdOCpwiuptTsapYXvPZ1QddnGSTIqj3a9iy70lBrOsy/+13860INLaxMyU Lra6pJjzyIhLFlqx/THigZO3RwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNLvKptv 8MTCoQEui7fihkPtXQmSMB8GA1UdIwQYMBaAFI8xYC9OvkVeCZwASbt7AGZVi52J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkU2Qy80MjZFM0RCQTFE OEQxMUUyOTNDNERBRUEwOEIwMkNEMi9qekZnTDA2LVJWNEpuQUJKdTNzQVpsV0xu WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p6RmdMMDYtUlY0Sm5BQkp1M3NBWmxXTG5Zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZFNkMvNDI2RTNEQkExRDhEMTFFMjkzQzREQUVBMDhCMDJDRDIvMTJDMEZBNUVB OEU4MTFFQjg4MDE5OTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr+4owDQYJKoZIhvcNAQELBQADggEBAGMNM+m9vG7QLCle Bi25rnP4ps57XeJbbriRI7+4n7T61i0T4qEV1CBdt5n5FIbYrrMg+TcwVpHEwUxB TTNKrTSV1+hWbohtp2bvdpzbGdnzVbSQedc9oXTHRkhMmETi6t/0hOeAarO5pWXP pbpi3Daom+Fc/182p2hMp2ByXzCwD0VK9s+1ayPCG2k5Ystm3N5IgkIeljkFoU3I a2xSf6HNewBX9SeJ8+URxp9BCS627idEzlqFIxaCfquSofSaOCVegmufHXESYD50 pNZEXGwZMIPmW6IdVKoBs/gfC3DVopSCXbim4CBhUoqkIrC4XPVFrKjyLQoND7yz wqOIjv4= -----END CERTIFICATE-----Generated at Tue Apr 8 19:17:03 2025 by rpki-client