$ rpki-client -vvf rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/7369CB76E42F11E9B6290B4EC4F9AE02.roa File: 7369CB76E42F11E9B6290B4EC4F9AE02.roa (raw, json) Hash identifier: 5NXAIxqc7ZB69eigMV3ENYonV7O2v0+3W3X0MsYYlQU= Subject key identifier: 33:1E:84:8A:FA:BA:3E:43:65:98:E2:4C:4C:E3:C3:90:8F:9D:F3:80 Certificate issuer: /CN=A913621A/serialNumber=F83730FD391B6F8F76FEF3176EDB9FC6F5541E40 Certificate serial: 34BE Authority key identifier: F8:37:30:FD:39:1B:6F:8F:76:FE:F3:17:6E:DB:9F:C6:F5:54:1E:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Dcw_Tkbb492_vMXbtufxvVUHkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/7369CB76E42F11E9B6290B4EC4F9AE02.roa Signing time: Tue 04 Feb 2025 14:30:11 +0000 ROA not before: Tue 04 Feb 2025 14:30:11 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 38901 IP address blocks: 27.96.84.0/22 maxlen: 24 43.245.32.0/22 maxlen: 24 45.115.80.0/22 maxlen: 24 45.115.208.0/22 maxlen: 24 45.118.76.0/22 maxlen: 24 49.156.0.0/22 maxlen: 24 103.9.188.0/22 maxlen: 24 103.30.196.0/22 maxlen: 24 110.74.192.0/19 maxlen: 24 113.130.124.0/22 maxlen: 24 119.82.248.0/21 maxlen: 24 163.47.12.0/22 maxlen: 24 163.47.172.0/22 maxlen: 24 221.120.160.0/22 maxlen: 24 2404:300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/-Dcw_Tkbb492_vMXbtufxvVUHkA.crl rsync://rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/-Dcw_Tkbb492_vMXbtufxvVUHkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Dcw_Tkbb492_vMXbtufxvVUHkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13502 (0x34be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913621A Validity Not Before: Feb 4 14:30:11 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a22473-3f21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:52:14:72:f8:17:95:e0:20:4b:01:b2:99:4a: 04:c3:5d:19:26:3f:7f:98:3d:90:41:a2:d8:c7:dd: f4:09:1c:c8:d5:ef:86:3f:f8:57:4c:3e:55:05:5d: 74:34:ca:d8:f2:d9:6c:0c:d6:9b:ad:df:ba:ff:0c: 14:ef:db:37:14:f2:a2:0d:c3:93:f8:90:97:b3:c2: a8:88:66:2e:82:3e:00:8c:ba:51:a9:83:7a:89:20: 00:ef:e1:e9:a8:4f:73:19:e4:82:f9:b8:d6:72:cd: 31:10:03:96:74:42:49:01:93:a7:a7:43:62:d2:d8: e8:d5:da:9a:df:30:e9:6c:3e:18:1b:bf:3b:a1:d5: 9f:ac:ee:7e:72:8f:6b:f7:4f:93:cd:be:a5:68:7f: 5e:73:5f:94:fd:39:ae:36:fa:41:58:70:2e:38:be: bb:b8:98:85:dd:c0:15:a9:d8:2c:17:39:0d:4c:93: 2c:2a:95:84:ca:af:17:48:37:f3:55:da:45:9b:f2: 6f:d7:0f:8b:e6:79:2d:4e:09:bd:18:b3:63:39:10: d2:e1:74:42:c0:7d:41:e4:b4:17:b2:4d:8c:d8:42: b7:56:29:21:b3:2d:87:e7:7a:10:f2:44:cc:71:a4: 00:fb:5e:1e:f4:3b:38:46:a2:29:03:49:ce:8d:2f: be:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:1E:84:8A:FA:BA:3E:43:65:98:E2:4C:4C:E3:C3:90:8F:9D:F3:80 X509v3 Authority Key Identifier: keyid:F8:37:30:FD:39:1B:6F:8F:76:FE:F3:17:6E:DB:9F:C6:F5:54:1E:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/-Dcw_Tkbb492_vMXbtufxvVUHkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Dcw_Tkbb492_vMXbtufxvVUHkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913621A/282242F01D6D11E2B4C0E6AD08B02CD2/7369CB76E42F11E9B6290B4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.96.84.0/22 43.245.32.0/22 45.115.80.0/22 45.115.208.0/22 45.118.76.0/22 49.156.0.0/22 103.9.188.0/22 103.30.196.0/22 110.74.192.0/19 113.130.124.0/22 119.82.248.0/21 163.47.12.0/22 163.47.172.0/22 221.120.160.0/22 IPv6: 2404:300::/32 Signature Algorithm: sha256WithRSAEncryption 4c:bd:50:c7:1e:8e:ec:89:fb:f1:5a:1c:bd:c6:c0:39:68:59: ec:15:97:e1:60:c5:9e:60:ad:49:b0:99:ed:f6:c4:fb:ca:0c: 12:8c:ab:c2:05:0d:67:e6:40:78:d2:36:bf:d3:fb:9d:52:58: 9c:7a:1c:9c:70:a2:50:63:86:d1:c0:77:e7:2a:57:a5:46:f9: 70:cc:07:72:8c:e0:00:f5:e4:16:c2:c6:b6:94:73:9a:62:e4: f7:d4:47:be:df:84:7f:63:46:1e:94:a6:8b:1d:93:aa:60:ad: 3d:9e:34:69:74:7a:2e:cb:52:19:f4:ee:c5:16:73:0a:47:08: 19:91:a5:80:5f:28:3c:cf:ba:a2:4a:a9:c1:c9:4b:9b:a6:67: b6:6b:fb:9f:72:6f:8a:8d:bc:02:c6:8f:bb:4d:24:76:e2:ae: b1:ae:1c:d2:2f:3a:b4:65:d2:c5:f0:f7:51:5c:af:5f:9b:9f: 5b:b0:a7:ab:c0:5e:16:be:14:b9:b8:05:bf:05:28:cc:e4:ed: 3a:b2:4d:e5:42:ae:ae:69:1b:19:b7:06:93:a1:cc:36:35:ae: 5d:ca:8f:81:48:b9:f2:0b:be:88:d4:83:27:37:5e:d7:b7:d0: 83:34:02:cd:0d:ed:bf:e1:85:7b:01:ba:d7:17:d0:0e:c5:f3: 38:1e:b6:ab -----BEGIN CERTIFICATE----- MIIFzjCCBLagAwIBAgICNL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYyMUExMTAvBgNVBAUTKEY4MzczMEZEMzkxQjZGOEY3NkZFRjMxNzZFREI5RkM2 RjU1NDFFNDAwHhcNMjUwMjA0MTQzMDExWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyMjQ3My0zZjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVIUcvgXleAgSwGymUoEw10ZJj9/mD2QQaLYx930CRzI1e+GP/hXTD5VBV10 NMrY8tlsDNabrd+6/wwU79s3FPKiDcOT+JCXs8KoiGYugj4AjLpRqYN6iSAA7+Hp qE9zGeSC+bjWcs0xEAOWdEJJAZOnp0Ni0tjo1dqa3zDpbD4YG787odWfrO5+co9r 90+Tzb6laH9ec1+U/TmuNvpBWHAuOL67uJiF3cAVqdgsFzkNTJMsKpWEyq8XSDfz VdpFm/Jv1w+L5nktTgm9GLNjORDS4XRCwH1B5LQXsk2M2EK3Vikhsy2H53oQ8kTM caQA+14e9Ds4RqIpA0nOjS++YQIDAQABo4IC8jCCAu4wHQYDVR0OBBYEFDMehIr6 uj5DZZjiTEzjw5CPnfOAMB8GA1UdIwQYMBaAFPg3MP05G2+Pdv7zF27bn8b1VB5A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjIxQS8yODIyNDJGMDFE NkQxMUUyQjRDMEU2QUQwOEIwMkNEMi8tRGN3X1RrYmI0OTJfdk1YYnR1Znh2VlVI a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1EY3dfVGtiYjQ5Ml92TVhidHVmeHZWVUhrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzYyMUEvMjgyMjQyRjAxRDZEMTFFMkI0QzBFNkFEMDhCMDJDRDIvNzM2OUNCNzZF NDJGMTFFOUI2MjkwQjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwfAYIKwYBBQUHAQcBAf8E bTBrMFoEAgABMFQDBAIbYFQDBAIr9SADBAItc1ADBAItc9ADBAItdkwDBAIxnAAD BAJnCbwDBAJnHsQDBAVuSsADBAJxgnwDBAN3UvgDBAKjLwwDBAKjL6wDBALdeKAw DQQCAAIwBwMFACQEAwAwDQYJKoZIhvcNAQELBQADggEBAEy9UMcejuyJ+/FaHL3G wDloWewVl+FgxZ5grUmwme32xPvKDBKMq8IFDWfmQHjSNr/T+51SWJx6HJxwolBj htHAd+cqV6VG+XDMB3KM4AD15BbCxraUc5pi5PfUR77fhH9jRh6Uposdk6pgrT2e NGl0ei7LUhn07sUWcwpHCBmRpYBfKDzPuqJKqcHJS5umZ7Zr+59yb4qNvALGj7tN JHbirrGuHNIvOrRl0sXw91Fcr1+bn1uwp6vAXha+FLm4Bb8FKMzk7TqyTeVCrq5p Gxm3BpOhzDY1rl3Kj4FIufILvojUgyc3Xte30IM0As0N7b/hhXsButcX0A7F8zge tqs= -----END CERTIFICATE-----Generated at Sun Apr 6 19:32:17 2025 by rpki-client