$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/63FEB4F8D97411EBB8CC3F40C4F9AE02.roa File: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (raw, json) Hash identifier: yGTQCTRuD+wL7C1TW/wqimXEB6uk1jKvb4AJw6pgI0Q= Subject key identifier: 8E:04:BE:4D:24:FF:1E:E8:FE:FD:DF:F5:14:03:4F:2C:CF:18:DF:17 Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 056A Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/63FEB4F8D97411EBB8CC3F40C4F9AE02.roa Signing time: Tue 04 Feb 2025 23:13:03 +0000 ROA not before: Tue 04 Feb 2025 23:13:03 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138627 IP address blocks: 140.82.197.0/24 maxlen: 24 140.82.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:26:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1386 (0x56a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D Validity Not Before: Feb 4 23:13:03 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a29eff-48bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:98:f6:61:e7:ae:45:a1:8d:1f:f5:44:19:e1: 2d:6b:ef:7f:19:15:26:b9:4c:57:19:c7:f5:ae:ef: 40:5d:e3:fd:58:1f:8c:c7:10:29:9d:9e:2a:83:82: 6c:ee:30:75:74:e9:14:70:63:7b:75:dd:1d:9a:81: 15:fa:4c:c7:a3:ce:36:5e:0b:3e:df:0f:94:3d:9b: 00:86:47:69:03:cb:fa:ba:4f:41:9a:35:5e:57:d2: 5d:09:c9:6a:89:2d:4f:4c:66:73:a5:3e:27:ee:c8: cc:78:ee:0e:10:93:44:7a:90:f7:f5:68:b0:6b:bf: f1:e3:f1:cb:55:d6:10:6a:28:fe:ae:dd:81:5a:c6: 7f:d0:2a:18:db:9d:22:d4:0d:cc:86:d3:27:12:6b: 7a:cc:85:fc:52:a4:da:01:a8:45:74:45:6c:e7:a4: 0a:02:63:d0:bf:9a:1e:5e:61:dd:79:00:a2:a4:08: f7:7a:83:66:e9:d3:1e:2e:ba:36:c2:88:b6:d0:5b: 25:b4:d3:2c:1c:00:79:e5:11:9a:53:b1:5f:4f:ce: 66:93:a1:c3:1f:32:3d:30:41:7e:a1:f3:d3:e5:41: 09:d6:85:06:15:60:8c:82:60:04:35:17:e9:83:88: 48:d4:11:78:22:d2:cc:57:33:9e:a4:fa:a5:61:a8: 51:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:04:BE:4D:24:FF:1E:E8:FE:FD:DF:F5:14:03:4F:2C:CF:18:DF:17 X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/63FEB4F8D97411EBB8CC3F40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.82.197.0/24 140.82.202.0/24 Signature Algorithm: sha256WithRSAEncryption 15:b0:28:a9:8e:fc:45:7a:f4:de:49:fd:3d:53:ce:51:57:f3: 7d:a4:f0:8d:03:55:2b:06:56:85:f0:60:ae:34:77:48:1e:cc: 92:e1:b8:76:23:42:11:97:6d:61:48:e5:9a:d5:63:61:e7:34: cc:ae:f8:b5:e6:c9:0b:a9:d5:69:67:6f:6d:98:70:57:bf:85: 69:a9:e3:9f:61:6c:0d:e9:b3:ef:24:e1:32:6f:c0:de:25:89: a7:e7:09:d7:81:59:61:0b:a2:8e:80:66:9b:6b:9f:08:b4:f4: 22:e5:2b:aa:65:4d:1f:4e:c0:f5:ed:f7:8b:07:f8:e6:51:07: 99:40:99:80:a0:77:e4:83:1d:35:e7:d8:13:68:2c:ea:36:0d: e4:98:46:a4:b6:54:61:e9:e6:7b:72:22:e1:4c:35:ec:df:03: 22:34:14:6d:19:09:bb:81:2d:da:d7:a6:1a:a7:bd:70:e7:19: 87:c7:9a:63:b1:84:4d:5d:7d:fb:c7:38:81:da:c7:c0:5d:0b: 80:e6:41:bc:84:cd:ca:97:ef:fb:cf:8f:07:93:55:da:4d:3b: ac:67:e6:dd:be:66:92:20:cf:19:16:22:7d:b7:e8:d5:c3:fa: 4e:d7:3b:d7:e0:be:61:e7:8e:e4:ad:53:5f:8d:4f:e3:eb:bb: 7a:94:c6:12 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjUwMjA0MjMxMzAzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyOWVmZi00OGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5j2YeeuRaGNH/VEGeEta+9/GRUmuUxXGcf1ru9AXeP9WB+MxxApnZ4qg4Js 7jB1dOkUcGN7dd0dmoEV+kzHo842Xgs+3w+UPZsAhkdpA8v6uk9BmjVeV9JdCclq iS1PTGZzpT4n7sjMeO4OEJNEepD39Wiwa7/x4/HLVdYQaij+rt2BWsZ/0CoY250i 1A3MhtMnEmt6zIX8UqTaAahFdEVs56QKAmPQv5oeXmHdeQCipAj3eoNm6dMeLro2 woi20FsltNMsHAB55RGaU7FfT85mk6HDHzI9MEF+ofPT5UEJ1oUGFWCMgmAENRfp g4hI1BF4ItLMVzOepPqlYahRVQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFI4Evk0k /x7o/v3f9RQDTyzPGN8XMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTREM0QvQTcwQThGRUVEOEI5MTFFQkFCQzFGNDg1QzRGOUFFMDIvNjNGRUI0RjhE OTc0MTFFQkI4Q0MzRjQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBACMUsUDBACMUsowDQYJKoZIhvcNAQELBQADggEBABWwKKmO /EV69N5J/T1TzlFX832k8I0DVSsGVoXwYK40d0gezJLhuHYjQhGXbWFI5ZrVY2Hn NMyu+LXmyQup1Wlnb22YcFe/hWmp459hbA3ps+8k4TJvwN4liafnCdeBWWELoo6A Zptrnwi09CLlK6plTR9OwPXt94sH+OZRB5lAmYCgd+SDHTXn2BNoLOo2DeSYRqS2 VGHp5ntyIuFMNezfAyI0FG0ZCbuBLdrXphqnvXDnGYfHmmOxhE1dffvHOIHax8Bd C4DmQbyEzcqX7/vPjweTVdpNO6xn5t2+ZpIgzxkWIn236NXD+k7XO9fgvmHnjuSt U1+NT+Pru3qUxhI= -----END CERTIFICATE-----Generated at Sun Apr 6 09:45:09 2025 by rpki-client