$ rpki-client -vvf rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/D87376860A1511F09D97420DC4F9AE02.roa File: D87376860A1511F09D97420DC4F9AE02.roa (raw, json) Hash identifier: lSMVl0dtBor2vIuchkye7ISSmPTtUsBuhCBwH/5seS0= Subject key identifier: 27:7F:55:B6:55:33:EA:D8:BE:65:F4:1D:93:FA:83:2D:1D:94:EF:91 Certificate issuer: /CN=A9112FE1/serialNumber=3D1FCB7255C52503E10AE584B1189A15CF56074E Certificate serial: 10 Authority key identifier: 3D:1F:CB:72:55:C5:25:03:E1:0A:E5:84:B1:18:9A:15:CF:56:07:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR_LclXFJQPhCuWEsRiaFc9WB04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/D87376860A1511F09D97420DC4F9AE02.roa Signing time: Wed 26 Mar 2025 08:29:13 +0000 ROA not before: Wed 26 Mar 2025 08:29:12 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137443 IP address blocks: 2404:de80::/32 maxlen: 32 2404:de80::/39 maxlen: 39 2404:de80:0:1::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/PR_LclXFJQPhCuWEsRiaFc9WB04.crl rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/PR_LclXFJQPhCuWEsRiaFc9WB04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR_LclXFJQPhCuWEsRiaFc9WB04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:27:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112FE1 Validity Not Before: Mar 26 08:29:12 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67e3bad8-12ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e9:32:36:dc:de:60:b3:8b:bd:08:74:0f:58: 89:74:53:27:4b:d3:e8:f8:6a:9e:42:72:28:81:72: f2:c4:7f:8a:cd:61:f2:e8:c1:ea:28:f9:e6:42:6f: 94:e1:df:56:f6:18:1b:8c:3b:75:14:69:3c:69:69: 8f:1c:4b:e4:a1:0d:c5:88:07:f3:a6:d1:f3:98:b6: 9b:77:a2:a6:a5:50:2c:56:10:71:ee:1c:22:79:c1: 98:2f:9c:96:4a:c6:b3:33:80:fd:c0:42:32:e4:58: 0e:0b:35:56:b4:b7:a5:e8:bb:a3:86:cb:ae:a9:66: 09:71:c2:c8:2e:38:42:68:9d:7d:54:00:35:99:69: aa:b2:21:4d:c7:95:6a:39:29:65:54:77:c7:b6:72: 11:b1:51:e1:1b:19:b3:5a:db:81:81:1f:fd:74:2e: 19:90:57:cb:4a:b0:2b:3a:1a:88:5b:a6:4f:a8:fd: d1:37:33:cd:42:12:80:a0:79:1f:54:d3:7a:fc:74: 7a:b5:df:d3:08:22:45:f8:a9:9d:9e:b8:92:52:46: 47:7e:9e:ef:20:3d:ca:13:d7:9b:af:88:1e:3e:98: 79:6a:05:ce:c4:2a:53:8d:e1:c5:e3:56:0b:9c:ad: fd:09:4d:c5:b5:0c:f4:1d:26:23:bb:cb:f7:03:09: 9d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:7F:55:B6:55:33:EA:D8:BE:65:F4:1D:93:FA:83:2D:1D:94:EF:91 X509v3 Authority Key Identifier: keyid:3D:1F:CB:72:55:C5:25:03:E1:0A:E5:84:B1:18:9A:15:CF:56:07:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/PR_LclXFJQPhCuWEsRiaFc9WB04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR_LclXFJQPhCuWEsRiaFc9WB04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/D87376860A1511F09D97420DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:de80::/32 Signature Algorithm: sha256WithRSAEncryption 0a:e3:02:bb:c5:7f:c1:a1:98:a4:84:59:13:66:39:98:64:9f: 76:eb:bf:43:68:be:ec:c6:c8:7c:c8:cd:73:cd:5f:d4:23:47: 99:03:a2:bb:31:07:d1:58:08:30:db:34:3d:c4:ff:6e:dc:fa: 3e:12:53:97:03:1b:9d:15:b5:5e:41:7a:49:80:2f:e8:e7:33: 79:c6:de:c3:c4:a3:d9:05:c1:08:2d:de:ea:41:f3:8d:9a:5a: 1c:eb:08:e7:0b:98:e1:dc:dd:ab:c2:cf:c4:27:fe:43:fe:62: 73:96:93:e8:be:fa:24:48:73:ca:81:87:d7:54:34:52:ca:a6: a3:f8:fb:5d:5e:9d:19:f4:86:43:19:c9:83:6b:a4:d1:fa:b0: 4d:71:9a:e9:ef:ed:aa:2c:e2:5c:5b:f3:b4:e6:f6:99:b4:80: 4e:8a:8c:c4:4b:d1:ba:e3:a7:bc:6f:7d:fc:6d:28:34:92:28: 89:2f:9e:bc:b0:97:8d:4b:fd:d6:c7:56:98:c8:4c:66:a4:b9: 62:03:fb:8b:a5:a2:c1:c0:61:f0:b8:c3:9d:85:82:74:b7:26: 44:7a:35:91:81:65:2d:63:b7:0f:72:40:98:e3:ec:11:0e:d0: 5b:7a:fc:22:10:70:de:63:c9:ff:8c:d3:5b:03:e2:ec:32:1f: c4:66:26:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MkZFMTExMC8GA1UEBRMoM0QxRkNCNzI1NUM1MjUwM0UxMEFFNTg0QjExODlBMTVD RjU2MDc0RTAeFw0yNTAzMjYwODI5MTJaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTNiYWQ4LTEyZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC96TI23N5gs4u9CHQPWIl0UydL0+j4ap5CciiBcvLEf4rNYfLoweoo+eZCb5Th 31b2GBuMO3UUaTxpaY8cS+ShDcWIB/Om0fOYtpt3oqalUCxWEHHuHCJ5wZgvnJZK xrMzgP3AQjLkWA4LNVa0t6Xou6OGy66pZglxwsguOEJonX1UADWZaaqyIU3HlWo5 KWVUd8e2chGxUeEbGbNa24GBH/10LhmQV8tKsCs6Gohbpk+o/dE3M81CEoCgeR9U 03r8dHq139MIIkX4qZ2euJJSRkd+nu8gPcoT15uviB4+mHlqBc7EKlON4cXjVguc rf0JTcW1DPQdJiO7y/cDCZ2vAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUJ39VtlUz 6ti+ZfQdk/qDLR2U75EwHwYDVR0jBBgwFoAUPR/LclXFJQPhCuWEsRiaFc9WB04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEyRkUxL0M0NTYxMDJFMDlG MTExRjA4QjQ0QTMyNUM0RjlBRTAyL1BSX0xjbFhGSlFQaEN1V0VzUmlhRmM5V0Iw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUFJfTGNsWEZKUVBoQ3VXRXNSaWFGYzlXQjA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkZFMS9DNDU2MTAyRTA5RjExMUYwOEI0NEEzMjVDNEY5QUUwMi9EODczNzY4NjBB MTUxMUYwOUQ5NzQyMERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQE3oAwDQYJKoZIhvcNAQELBQADggEBAArjArvFf8GhmKSE WRNmOZhkn3brv0NovuzGyHzIzXPNX9QjR5kDorsxB9FYCDDbND3E/27c+j4SU5cD G50VtV5BekmAL+jnM3nG3sPEo9kFwQgt3upB842aWhzrCOcLmOHc3avCz8Qn/kP+ YnOWk+i++iRIc8qBh9dUNFLKpqP4+11enRn0hkMZyYNrpNH6sE1xmunv7aos4lxb 87Tm9pm0gE6KjMRL0brjp7xvffxtKDSSKIkvnrywl41L/dbHVpjITGakuWID+4ul osHAYfC4w52FgnS3JkR6NZGBZS1jtw9yQJjj7BEO0Ft6/CIQcN5jyf+M01sD4uwy H8RmJjw= -----END CERTIFICATE-----Generated at Sat Apr 5 03:59:44 2025 by rpki-client