$ rpki-client -vvf rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/73FCC4481CAD11EEA46B151DC4F9AE02.roa File: 73FCC4481CAD11EEA46B151DC4F9AE02.roa (raw, json) Hash identifier: xLAp8SL1FdY9rdr5UWy+ApLo8i+9DkxfF4xI/C+ZcI0= Subject key identifier: E4:85:04:F4:3D:53:13:7A:7E:AD:70:8C:05:AE:52:71:AC:00:98:3A Certificate issuer: /CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Certificate serial: 03F2 Authority key identifier: CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/73FCC4481CAD11EEA46B151DC4F9AE02.roa Signing time: Tue 29 Oct 2024 01:26:35 +0000 ROA not before: Tue 29 Oct 2024 01:26:35 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 10753 IP address blocks: 223.29.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 00:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1010 (0x3f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FC73 Validity Not Before: Oct 29 01:26:35 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672039cb-bdea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0a:44:86:88:1c:3c:50:18:f7:a4:af:24:ea: 79:d3:3f:db:f1:2d:79:54:46:5c:ed:f8:99:63:7f: af:f1:7e:a1:59:5e:9d:e4:5a:0d:0f:c5:f0:22:38: e0:ca:93:60:bf:ef:fa:da:bc:80:91:fd:e3:de:d2: 2d:f8:95:45:f2:87:2a:63:f7:41:9f:b7:fa:63:ed: 1c:09:db:3b:6e:1f:b1:f0:ba:91:3f:84:75:7d:fd: 62:7e:69:df:42:39:0d:36:b9:27:40:36:73:47:bb: 2b:d4:c1:c8:a7:00:01:91:4a:57:47:31:44:ac:b9: 96:9f:90:d7:9b:14:20:5d:ac:dd:13:ad:6f:5e:54: 75:21:91:31:05:f9:45:fc:c5:0d:0a:cd:c4:7b:c5: 07:fd:74:30:4e:2b:bb:9a:27:78:20:cd:d6:ec:c1: ef:13:ad:8d:ea:17:96:09:a5:61:d9:09:7a:90:2b: e8:2a:9b:ff:88:91:1e:30:52:11:5e:26:97:f0:09: c3:59:07:8f:3b:55:ad:8b:d9:1d:00:b0:1c:d7:ce: 80:30:b1:9a:91:0e:03:80:ba:ab:a0:ec:02:a5:a9: 35:0c:4f:3f:8d:fc:6c:02:7e:04:a4:bc:47:b5:10: 3c:86:24:9d:04:ec:17:be:b1:15:b1:49:9f:13:89: c1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:85:04:F4:3D:53:13:7A:7E:AD:70:8C:05:AE:52:71:AC:00:98:3A X509v3 Authority Key Identifier: keyid:CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/73FCC4481CAD11EEA46B151DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.29.172.0/22 Signature Algorithm: sha256WithRSAEncryption 65:5e:01:0d:6b:aa:24:e8:d1:dc:8d:e3:3d:83:b7:d9:17:7c: 68:c6:4c:f0:47:c1:9d:e3:09:45:04:1b:b5:b7:09:34:f5:34: 20:73:13:10:eb:ae:5f:e5:f5:ec:98:46:4c:ec:77:34:0d:65: 42:cb:40:87:f4:cc:fc:35:f1:19:e5:c5:3b:f3:d5:7a:09:81: 9d:e6:1e:e4:fd:77:ca:c7:d6:c6:32:f1:f2:91:8f:ef:79:d6: e5:45:8c:51:fa:43:d4:45:f8:1b:18:7e:05:a5:a0:9f:cc:a5: 2d:86:24:c1:61:14:71:79:78:eb:aa:63:6d:92:fd:1e:12:9d: 3c:bc:cc:26:1d:3e:9a:b2:d9:07:ca:a5:f8:4d:9a:74:78:22: 54:09:75:05:7f:8d:4f:2c:78:64:92:af:b2:fd:9a:a1:85:d2: b0:cc:f7:89:c7:a6:7f:b2:73:b4:3b:47:63:48:b4:1c:ed:ac: 19:21:fc:68:bd:c7:89:94:3c:70:af:95:35:d4:d4:d2:41:a3: 32:7c:8e:08:32:08:e1:5e:38:88:71:f3:5a:e7:44:51:1d:82: 22:d0:ae:d9:70:ae:50:79:a1:31:3d:d4:ae:ec:16:c2:fa:5a: d6:7c:48:ee:fa:86:d5:07:67:5b:56:81:b8:8a:b8:01:be:3d: 93:ce:4d:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDNzMxMTAvBgNVBAUTKENFRTQxNjAxRUVBOUY1MUIzNTI1REE1NURENEFDOTVD RUZBRjVBQkMwHhcNMjQxMDI5MDEyNjM1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwMzljYi1iZGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0gpEhogcPFAY96SvJOp50z/b8S15VEZc7fiZY3+v8X6hWV6d5FoND8XwIjjg ypNgv+/62ryAkf3j3tIt+JVF8ocqY/dBn7f6Y+0cCds7bh+x8LqRP4R1ff1ifmnf QjkNNrknQDZzR7sr1MHIpwABkUpXRzFErLmWn5DXmxQgXazdE61vXlR1IZExBflF /MUNCs3Ee8UH/XQwTiu7mid4IM3W7MHvE62N6heWCaVh2Ql6kCvoKpv/iJEeMFIR XiaX8AnDWQePO1Wti9kdALAc186AMLGakQ4DgLqroOwCpak1DE8/jfxsAn4EpLxH tRA8hiSdBOwXvrEVsUmfE4nBzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOSFBPQ9 UxN6fq1wjAWuUnGsAJg6MB8GA1UdIwQYMBaAFM7kFgHuqfUbNSXaVd1KyVzvr1q8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkM3My8wMTQ0Q0RGODlG MzQxMUVDOUNFQkM2NzBDNEY5QUUwMi96dVFXQWU2cDlSczFKZHBWM1VySlhPLXZX cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1UVdBZTZwOVJzMUpkcFYzVXJKWE8tdldydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDNzMvMDE0NENERjg5RjM0MTFFQzlDRUJDNjcwQzRGOUFFMDIvNzNGQ0M0NDgx Q0FEMTFFRUE0NkIxNTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALfHawwDQYJKoZIhvcNAQELBQADggEBAGVeAQ1rqiTo0dyN 4z2Dt9kXfGjGTPBHwZ3jCUUEG7W3CTT1NCBzExDrrl/l9eyYRkzsdzQNZULLQIf0 zPw18RnlxTvz1XoJgZ3mHuT9d8rH1sYy8fKRj+951uVFjFH6Q9RF+BsYfgWloJ/M pS2GJMFhFHF5eOuqY22S/R4SnTy8zCYdPpqy2QfKpfhNmnR4IlQJdQV/jU8seGSS r7L9mqGF0rDM94nHpn+yc7Q7R2NItBztrBkh/Gi9x4mUPHCvlTXU1NJBozJ8jggy COFeOIhx81rnRFEdgiLQrtlwrlB5oTE91K7sFsL6WtZ8SO76htUHZ1tWgbiKuAG+ PZPOTRo= -----END CERTIFICATE-----Generated at Thu Mar 13 21:56:54 2025 by rpki-client