$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/681098C2CDA911EF89DEEE2CC4F9AE02.roa File: 681098C2CDA911EF89DEEE2CC4F9AE02.roa (raw, json) Hash identifier: 4hfIidy+VeJThkZpOZWe1fPPKpgeMeUB9YIh+jyw3QU= Subject key identifier: DA:93:BA:F3:CF:5D:5D:5A:4E:1E:33:27:9B:38:EA:10:F4:B7:5B:1A Certificate issuer: /CN=A912442A/serialNumber=7DE607C4615D7A01FBDD4A86AD5459401A759921 Certificate serial: A0 Authority key identifier: 7D:E6:07:C4:61:5D:7A:01:FB:DD:4A:86:AD:54:59:40:1A:75:99:21 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/feYHxGFdegH73UqGrVRZQBp1mSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/681098C2CDA911EF89DEEE2CC4F9AE02.roa Signing time: Wed 08 Jan 2025 10:14:55 +0000 ROA not before: Wed 08 Jan 2025 10:14:55 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 38794 IP address blocks: 85.204.26.0/24 maxlen: 24 85.204.243.0/24 maxlen: 24 85.204.244.0/24 maxlen: 24 85.204.247.0/24 maxlen: 24 85.204.250.0/24 maxlen: 24 85.204.253.0/24 maxlen: 24 86.107.53.0/24 maxlen: 24 89.38.134.0/24 maxlen: 24 89.39.91.0/24 maxlen: 24 89.47.94.0/24 maxlen: 24 92.114.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/feYHxGFdegH73UqGrVRZQBp1mSE.crl rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/feYHxGFdegH73UqGrVRZQBp1mSE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/feYHxGFdegH73UqGrVRZQBp1mSE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:35:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A Validity Not Before: Jan 8 10:14:55 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=677e501f-c8bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0d:8a:32:37:88:24:54:b4:3e:52:8f:a0:c6: 6d:1f:60:cd:ad:ca:62:b4:7a:e2:ae:54:58:7b:2b: b6:30:f0:39:e6:5d:08:fd:6a:7d:09:b1:8b:a0:36: 62:3d:30:5a:99:0b:ac:63:3d:d1:fa:ae:42:85:a9: f0:6a:88:b1:ba:28:0e:85:25:d6:84:ab:67:3c:dd: a0:c9:2a:c7:7b:50:a9:0a:53:ba:77:2c:0e:fd:17: a7:31:5e:1d:d8:ee:0c:88:64:65:16:e9:96:72:e9: 49:b7:a0:6e:18:d9:75:86:c4:4d:48:01:00:d2:31: 8e:11:27:86:ab:be:bd:75:a0:0b:af:b3:12:aa:eb: cd:e2:d6:1f:5f:cb:60:5a:8b:62:22:f6:02:44:7a: ce:ac:ce:b8:40:2f:95:35:9a:1c:b0:db:a1:99:94: 42:01:6a:0b:1b:0e:04:16:aa:ee:b7:04:82:5e:c3: 59:c0:d4:f7:b0:b2:c4:ab:94:f1:5d:46:06:78:05: b6:85:74:cc:51:54:f8:88:69:f5:e2:25:20:72:63: b3:98:c8:d7:77:96:60:21:d1:22:e9:a6:dc:fe:cf: 0b:16:22:9b:45:55:b7:54:1d:54:fc:ce:aa:b9:30: 0b:e5:16:43:70:c0:07:db:90:f2:cd:09:ea:86:14: 87:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:93:BA:F3:CF:5D:5D:5A:4E:1E:33:27:9B:38:EA:10:F4:B7:5B:1A X509v3 Authority Key Identifier: keyid:7D:E6:07:C4:61:5D:7A:01:FB:DD:4A:86:AD:54:59:40:1A:75:99:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/feYHxGFdegH73UqGrVRZQBp1mSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/feYHxGFdegH73UqGrVRZQBp1mSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/681098C2CDA911EF89DEEE2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 85.204.26.0/24 85.204.243.0-85.204.244.255 85.204.247.0/24 85.204.250.0/24 85.204.253.0/24 86.107.53.0/24 89.38.134.0/24 89.39.91.0/24 89.47.94.0/24 92.114.109.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:3a:c5:15:4e:bc:9f:1f:03:d8:60:bf:e4:60:de:1e:2a:fa: ff:9d:40:4b:45:b3:29:7f:85:4d:7b:a7:87:ad:a9:44:48:22: 35:ed:d3:8b:ac:af:8b:5a:ec:58:5b:07:74:05:81:ca:68:80: 13:1f:75:81:09:48:5f:cb:bf:9e:6a:cd:8f:51:db:21:82:10: 94:33:36:cf:23:c3:76:8a:f7:4d:25:28:1d:e1:b5:21:93:fd: 6a:95:5f:a0:7d:5a:75:b4:a1:63:6e:d8:a6:3d:bf:a8:69:32: ac:ad:99:e1:fa:27:8f:0f:d0:c2:5e:99:20:45:9f:a1:9c:5b: 47:16:9b:4d:f0:bf:75:74:53:73:1d:cd:44:3b:f2:ca:a1:1c: a9:f7:2d:c0:97:82:23:0e:15:30:3b:0a:60:ab:a0:4d:0f:d9: 19:42:e0:60:36:5b:f4:0f:c8:15:78:81:27:cb:b8:c8:bf:0e: ee:ee:ed:c2:11:3d:18:2d:5c:4d:9e:46:bd:8d:b2:42:86:56: 63:02:09:d5:e1:f8:0e:1f:77:4c:ff:af:05:26:06:44:cb:a9: ec:76:30:a2:b7:99:0a:b0:87:1c:b5:ad:ae:52:e3:fd:6e:8a: 42:07:ce:e4:d7:e0:04:17:36:26:49:cf:16:4f:77:d7:18:7b: 84:9f:62:56 -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDdERTYwN0M0NjE1RDdBMDFGQkRENEE4NkFENTQ1OTQw MUE3NTk5MjEwHhcNMjUwMTA4MTAxNDU1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdlNTAxZi1jOGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4w2KMjeIJFS0PlKPoMZtH2DNrcpitHrirlRYeyu2MPA55l0I/Wp9CbGLoDZi PTBamQusYz3R+q5ChanwaoixuigOhSXWhKtnPN2gySrHe1CpClO6dywO/RenMV4d 2O4MiGRlFumWculJt6BuGNl1hsRNSAEA0jGOESeGq769daALr7MSquvN4tYfX8tg WotiIvYCRHrOrM64QC+VNZocsNuhmZRCAWoLGw4EFqrutwSCXsNZwNT3sLLEq5Tx XUYGeAW2hXTMUVT4iGn14iUgcmOzmMjXd5ZgIdEi6abc/s8LFiKbRVW3VB1U/M6q uTAL5RZDcMAH25DyzQnqhhSHSQIDAQABo4IC0zCCAs8wHQYDVR0OBBYEFNqTuvPP XV1aTh4zJ5s46hD0t1saMB8GA1UdIwQYMBaAFH3mB8RhXXoB+91Khq1UWUAadZkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS9FN0M0RjlERUY2 MjUxMUVFOERBRDhFMzVDNEY5QUUwMi9mZVlIeEdGZGVnSDczVXFHclZSWlFCcDFt U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2ZlWUh4R0ZkZWdINzNVcUdyVlJaUUJwMW1TRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvRTdDNEY5REVGNjI1MTFFRThEQUQ4RTM1QzRGOUFFMDIvNjgxMDk4QzJD REE5MTFFRjg5REVFRTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXQYIKwYBBQUHAQcBAf8E TjBMMEoEAgABMEQDBABVzBowDAMEAFXM8wMEAFXM9AMEAFXM9wMEAFXM+gMEAFXM /QMEAFZrNQMEAFkmhgMEAFknWwMEAFkvXgMEAFxybTANBgkqhkiG9w0BAQsFAAOC AQEAXzrFFU68nx8D2GC/5GDeHir6/51AS0WzKX+FTXunh62pREgiNe3Ti6yvi1rs WFsHdAWBymiAEx91gQlIX8u/nmrNj1HbIYIQlDM2zyPDdor3TSUoHeG1IZP9apVf oH1adbShY27Ypj2/qGkyrK2Z4fonjw/Qwl6ZIEWfoZxbRxabTfC/dXRTcx3NRDvy yqEcqfctwJeCIw4VMDsKYKugTQ/ZGULgYDZb9A/IFXiBJ8u4yL8O7u7twhE9GC1c TZ5GvY2yQoZWYwIJ1eH4Dh93TP+vBSYGRMup7HYworeZCrCHHLWtrlLj/W6KQgfO 5NfgBBc2JknPFk931xh7hJ9iVg== -----END CERTIFICATE-----Generated at Sat Apr 5 15:07:40 2025 by rpki-client