$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3E400698B11411EE95E74365C4F9AE02/BD16D2BCB11411EE9B803C66C4F9AE02.roa File: BD16D2BCB11411EE9B803C66C4F9AE02.roa (raw, json) Hash identifier: lR8Bw6f2BJOLO8ooe7J/r1W5noPvKu/D4s9lgSl+fj4= Subject key identifier: 87:4F:98:7F:B1:83:91:82:C1:97:B6:2A:44:8E:8A:3B:62:B5:08:7C Certificate issuer: /CN=A9197CBD/serialNumber=167D6EC32AD0B35815F28847ADD7970EB67F2DBA Certificate serial: D6 Authority key identifier: 16:7D:6E:C3:2A:D0:B3:58:15:F2:88:47:AD:D7:97:0E:B6:7F:2D:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fn1uwyrQs1gV8ohHrdeXDrZ_Lbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3E400698B11411EE95E74365C4F9AE02/BD16D2BCB11411EE9B803C66C4F9AE02.roa Signing time: Thu 27 Feb 2025 07:00:06 +0000 ROA not before: Thu 27 Feb 2025 07:00:06 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152327 IP address blocks: 2001:df3:5ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3E400698B11411EE95E74365C4F9AE02/Fn1uwyrQs1gV8ohHrdeXDrZ_Lbo.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3E400698B11411EE95E74365C4F9AE02/Fn1uwyrQs1gV8ohHrdeXDrZ_Lbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fn1uwyrQs1gV8ohHrdeXDrZ_Lbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD Validity Not Before: Feb 27 07:00:06 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c00d76-0921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c0:e3:bc:be:d6:45:65:a6:ae:9a:79:6d:21: f0:d8:62:5d:9c:cf:f4:1b:83:b9:6e:b3:2a:4b:13: 9f:a4:a6:90:ec:b2:e8:c1:dc:ed:ac:6b:3d:7f:b1: 00:f5:17:85:bc:a1:39:a8:d1:88:8b:93:b2:82:16: dd:ab:79:7a:d4:fd:f1:ee:56:6e:14:26:16:ce:9e: 78:a0:37:f8:0c:90:71:83:a6:5f:62:57:06:44:93: 09:08:75:81:ad:0d:58:60:26:a8:76:3f:ae:35:91: ca:d0:e1:9c:6c:89:5b:3c:85:40:6d:88:09:1e:de: b1:03:c2:83:03:61:94:f7:bc:3d:c5:c9:48:50:90: 59:7b:c8:d4:f2:06:3d:8b:b6:6c:69:67:d0:e1:b8: 0b:5e:ff:08:99:24:08:19:37:42:ad:1b:79:48:50: 41:89:10:e6:ea:11:4e:1d:9d:e0:de:aa:7a:a5:e3: a1:a1:ba:ad:86:d3:72:6c:69:41:02:2c:0a:d2:b1: 7d:8b:9e:f9:37:13:79:70:56:6b:a0:5d:b6:cd:dd: a6:f4:dc:7d:bd:bf:4e:77:d2:ef:79:92:d2:62:88: 9b:9c:21:8d:44:b0:3c:e5:74:77:3d:1f:f7:1c:85: 98:20:da:68:47:da:7f:f6:b7:bc:8f:84:e9:0a:a7: 56:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:4F:98:7F:B1:83:91:82:C1:97:B6:2A:44:8E:8A:3B:62:B5:08:7C X509v3 Authority Key Identifier: keyid:16:7D:6E:C3:2A:D0:B3:58:15:F2:88:47:AD:D7:97:0E:B6:7F:2D:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3E400698B11411EE95E74365C4F9AE02/Fn1uwyrQs1gV8ohHrdeXDrZ_Lbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fn1uwyrQs1gV8ohHrdeXDrZ_Lbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3E400698B11411EE95E74365C4F9AE02/BD16D2BCB11411EE9B803C66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:5ec0::/48 Signature Algorithm: sha256WithRSAEncryption 20:54:bd:fe:0a:a1:bf:4e:c2:c3:41:b7:30:5f:56:8f:fa:c9: f8:cc:c3:45:bb:fd:5c:7d:2c:65:d0:de:a8:b3:2c:44:5e:d0: 33:ec:f9:b2:8b:86:5c:bb:be:ff:50:fd:86:cb:ef:a7:91:d5: 81:05:a2:ad:91:4b:7d:d7:2a:8e:b1:56:f3:e8:c2:7f:65:e5: 9d:58:2d:5d:20:be:d0:36:54:04:eb:fc:f7:75:c6:9a:2c:08: 7b:57:07:ef:99:d5:46:55:43:0d:2f:76:9c:30:00:b7:47:70: 52:1e:9e:98:df:99:97:75:7b:ad:5e:54:a2:bb:ea:7f:43:21: 2e:26:df:d6:40:3c:c9:bf:be:a9:d6:2b:c8:54:b3:9d:d0:d6: e1:64:4e:3a:2e:23:be:73:6c:0d:bb:65:bc:c2:33:0c:ff:12: cb:09:a3:14:27:52:37:95:66:94:4c:10:7a:04:e5:0b:a8:ad: a9:2b:4b:32:d5:15:ee:81:4f:60:59:b0:11:9e:f8:9b:d0:f0: 97:4f:82:21:2f:89:8f:5d:0a:ee:d9:9d:4d:21:32:d7:b9:69: a2:a1:d1:d8:fe:c5:27:c1:1a:ed:8d:cb:5d:28:99:43:1f:03: 70:cc:ed:d0:84:e0:30:74:f5:b1:6b:c5:6c:fd:1f:ce:a0:53: 79:0e:34:94 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKDE2N0Q2RUMzMkFEMEIzNTgxNUYyODg0N0FERDc5NzBF QjY3RjJEQkEwHhcNMjUwMjI3MDcwMDA2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MwMGQ3Ni0wOTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMDjvL7WRWWmrpp5bSHw2GJdnM/0G4O5brMqSxOfpKaQ7LLowdztrGs9f7EA 9ReFvKE5qNGIi5Oyghbdq3l61P3x7lZuFCYWzp54oDf4DJBxg6ZfYlcGRJMJCHWB rQ1YYCaodj+uNZHK0OGcbIlbPIVAbYgJHt6xA8KDA2GU97w9xclIUJBZe8jU8gY9 i7ZsaWfQ4bgLXv8ImSQIGTdCrRt5SFBBiRDm6hFOHZ3g3qp6peOhobqthtNybGlB AiwK0rF9i575NxN5cFZroF22zd2m9Nx9vb9Od9LveZLSYoibnCGNRLA85XR3PR/3 HIWYINpoR9p/9re8j4TpCqdWowIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIdPmH+x g5GCwZe2KkSOijtitQh8MB8GA1UdIwQYMBaAFBZ9bsMq0LNYFfKIR63Xlw62fy26 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zRTQwMDY5OEIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi9GbjF1d3lyUXMxZ1Y4b2hIcmRlWERyWl9M Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZuMXV3eXJRczFnVjhvaEhyZGVYRHJaX0xiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTdDQkQvM0U0MDA2OThCMTE0MTFFRTk1RTc0MzY1QzRGOUFFMDIvQkQxNkQyQkNC MTE0MTFFRTlCODAzQzY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zXsAwDQYJKoZIhvcNAQELBQADggEBACBUvf4Kob9O wsNBtzBfVo/6yfjMw0W7/Vx9LGXQ3qizLERe0DPs+bKLhly7vv9Q/YbL76eR1YEF oq2RS33XKo6xVvPown9l5Z1YLV0gvtA2VATr/Pd1xposCHtXB++Z1UZVQw0vdpww ALdHcFIenpjfmZd1e61eVKK76n9DIS4m39ZAPMm/vqnWK8hUs53Q1uFkTjouI75z bA27ZbzCMwz/EssJoxQnUjeVZpRMEHoE5QuorakrSzLVFe6BT2BZsBGe+JvQ8JdP giEviY9dCu7ZnU0hMte5aaKh0dj+xSfBGu2Ny10omUMfA3DM7dCE4DB09bFrxWz9 H86gU3kONJQ= -----END CERTIFICATE-----Generated at Sat Apr 5 03:36:44 2025 by rpki-client