$ rpki-client -vvf rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/DD73806ED3C811EF9D76942FC4F9AE02.roa File: DD73806ED3C811EF9D76942FC4F9AE02.roa (raw, json) Hash identifier: K8lxpuSGa3hE5HZ2FtNWD3paYpQtfp/AoALIaMdmBnY= Subject key identifier: 19:AA:D1:5C:06:67:0B:46:47:70:58:54:C2:04:2C:7F:09:47:4A:7D Certificate issuer: /CN=A9119333/serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Certificate serial: 225A Authority key identifier: 69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/DD73806ED3C811EF9D76942FC4F9AE02.roa Signing time: Thu 16 Jan 2025 05:15:13 +0000 ROA not before: Thu 16 Jan 2025 05:15:13 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136895 IP address blocks: 2404:7c00:4f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 15:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8794 (0x225a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119333 Validity Not Before: Jan 16 05:15:13 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=678895e1-9a25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c3:2c:6d:44:63:3b:1b:9b:b7:cf:0c:1a:3c: 6f:53:01:d1:8d:df:e1:60:0b:4a:65:2d:f8:f1:f1: e0:3f:e0:c7:cc:f9:9e:78:93:f3:d7:76:be:08:a8: 1d:47:09:8b:22:ef:78:c8:16:50:f5:4b:b1:1a:ed: 01:c7:a5:46:a2:27:a8:93:0e:1d:1b:81:7c:82:f5: 56:a9:01:61:38:37:23:97:58:60:4f:fe:0d:9b:e0: 45:67:d9:c6:5c:18:45:41:f1:06:d1:d8:68:89:75: 8f:15:dc:0d:39:e5:6d:fb:95:b1:3c:53:39:9b:26: d7:34:30:1b:e3:c7:ea:b7:4a:fd:ed:b1:81:d3:1c: 43:da:6b:52:59:07:dd:90:f2:8e:b3:99:27:af:3c: 6b:da:5d:cf:75:e0:72:1d:01:9d:d3:35:1b:64:c9: 0a:30:1c:b6:d4:eb:c8:d2:81:38:e6:1c:5e:16:92: b8:d8:9c:df:03:8f:2b:44:04:ee:19:5f:55:2e:5b: 6b:2f:20:1a:a2:f1:49:5a:4e:41:a5:6a:7f:0b:f6: a2:50:54:5e:50:c6:16:3a:fb:cd:1a:4d:5b:ce:a2: 33:4f:59:cf:98:08:fd:50:e2:d5:32:c1:91:45:bf: b9:50:22:79:5d:39:51:97:61:8d:66:ce:a7:7a:d3: 17:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AA:D1:5C:06:67:0B:46:47:70:58:54:C2:04:2C:7F:09:47:4A:7D X509v3 Authority Key Identifier: keyid:69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/DD73806ED3C811EF9D76942FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:7c00:4f::/48 Signature Algorithm: sha256WithRSAEncryption cb:58:47:6c:a1:18:1e:7e:e5:52:bd:47:94:3b:ce:7c:f3:80: ee:95:9b:b3:7c:a1:dc:de:65:b2:da:06:de:00:20:77:04:92: da:ee:8a:df:4d:1b:87:f7:a4:29:ca:95:d8:21:4c:12:af:cc: 64:2d:e8:5e:31:9c:7e:f4:58:76:dc:7a:32:e9:e4:92:33:d3: 2f:5f:74:14:2f:dd:07:37:9c:ea:94:ae:ec:e8:9b:48:d8:36: 2b:9c:61:99:83:c5:79:9d:c1:5d:bd:e8:1e:e2:e1:8a:00:fb: 74:54:2a:8f:c1:07:ad:2e:07:6e:5e:45:73:49:85:15:b0:90: 21:e0:8f:63:b3:51:1b:98:0e:98:70:81:98:56:b2:f7:03:3a: 39:04:d3:7f:00:99:3a:a4:69:da:eb:54:cf:e1:39:e3:1c:6b: 87:b9:d0:d2:ac:a4:68:f5:16:05:1f:5f:d0:d7:99:ef:ed:28: 22:c0:48:6b:4a:87:13:ad:9f:f5:07:74:af:81:f3:37:48:4d: b5:17:b3:58:30:69:e9:08:08:db:13:eb:f2:0e:63:9a:96:9d: cc:ab:1c:3d:f3:a1:2d:78:3f:e1:ac:bf:94:2f:d4:0c:c5:57: b5:6e:43:72:a6:72:79:f4:3b:6f:cd:67:6d:f8:2f:19:8c:9c: f1:14:e9:c7 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICIlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzMzMxMTAvBgNVBAUTKDY5OUU2NzQyNTY3QkU3MzI5Q0MzQTc4NkRFQjc4NTdF MkMyNDIwRjkwHhcNMjUwMTE2MDUxNTEzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg4OTVlMS05YTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8MsbURjOxubt88MGjxvUwHRjd/hYAtKZS348fHgP+DHzPmeeJPz13a+CKgd RwmLIu94yBZQ9UuxGu0Bx6VGoieokw4dG4F8gvVWqQFhODcjl1hgT/4Nm+BFZ9nG XBhFQfEG0dhoiXWPFdwNOeVt+5WxPFM5mybXNDAb48fqt0r97bGB0xxD2mtSWQfd kPKOs5knrzxr2l3PdeByHQGd0zUbZMkKMBy21OvI0oE45hxeFpK42JzfA48rRATu GV9VLltrLyAaovFJWk5BpWp/C/aiUFReUMYWOvvNGk1bzqIzT1nPmAj9UOLVMsGR Rb+5UCJ5XTlRl2GNZs6netMXYwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBmq0VwG ZwtGR3BYVMIELH8JR0p9MB8GA1UdIwQYMBaAFGmeZ0JWe+cynMOnht63hX4sJCD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTMzMy8wNjVEQTNCQUI4 NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6S2N3NmVHM3JlRmZpd2tJ UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaNW5RbFo3NXpLY3c2ZUczcmVGZml3a0lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkzMzMvMDY1REEzQkFCODQ0MTFFNUI1MzU3QjJGQzRGOUFFMDIvREQ3MzgwNkVE M0M4MTFFRjlENzY5NDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBHwAAE8wDQYJKoZIhvcNAQELBQADggEBAMtYR2yhGB5+ 5VK9R5Q7znzzgO6Vm7N8odzeZbLaBt4AIHcEktruit9NG4f3pCnKldghTBKvzGQt 6F4xnH70WHbcejLp5JIz0y9fdBQv3Qc3nOqUruzom0jYNiucYZmDxXmdwV296B7i 4YoA+3RUKo/BB60uB25eRXNJhRWwkCHgj2OzURuYDphwgZhWsvcDOjkE038AmTqk adrrVM/hOeMca4e50NKspGj1FgUfX9DXme/tKCLASGtKhxOtn/UHdK+B8zdITbUX s1gwaekICNsT6/IOY5qWncyrHD3zoS14P+Gsv5Qv1AzFV7VuQ3Kmcnn0O2/NZ234 LxmMnPEU6cc= -----END CERTIFICATE-----Generated at Thu Mar 13 06:32:28 2025 by rpki-client