$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/1A582DBABDCB11ED998A723DC4F9AE02.roa File: 1A582DBABDCB11ED998A723DC4F9AE02.roa (raw, json) Hash identifier: +OviFQ85mowakK+fg84OXMpO+t1TRoDLWVpJ0HIDDFU= Subject key identifier: 39:74:4D:48:08:04:D8:30:F6:19:F7:B9:AA:A4:CE:16:46:C1:4D:4A Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0E6A Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/1A582DBABDCB11ED998A723DC4F9AE02.roa Signing time: Sun 02 Jun 2024 18:51:45 +0000 ROA not before: Sun 02 Jun 2024 18:51:45 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 133492 IP address blocks: 2402:3180:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 17:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3690 (0xe6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF Validity Not Before: Jun 2 18:51:45 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665cbf41-9e84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9f:f7:05:f1:2b:87:2d:3d:b8:e6:95:c5:24: 4a:1d:4d:d2:f1:88:55:39:8c:d0:5c:06:cf:d2:81: bb:83:01:0c:08:45:cb:6d:16:a1:8e:db:87:d2:2b: 47:2d:76:da:e8:67:96:e3:35:b8:88:2c:d6:bf:0e: 03:60:11:c3:72:11:83:63:11:05:6a:ea:49:1b:39: f4:f7:2f:f8:67:af:c8:fb:8c:08:b4:ea:6e:a6:24: b1:f1:88:4d:9c:fa:7b:58:21:23:de:53:cc:65:f8: 5b:53:85:42:ae:cb:84:1e:30:58:fa:93:ff:88:5c: 78:8f:7a:21:79:93:18:ec:fe:1b:2a:f1:67:1b:48: c1:66:43:a4:01:ef:1c:85:e7:86:94:82:98:df:42: 59:7a:48:0f:c9:7c:99:39:e4:b4:f4:97:de:b0:42: 2d:3b:8b:5f:a2:8d:0c:bd:86:a2:3f:b5:dc:d5:b5: 58:fc:91:91:c3:68:e8:3c:2c:ab:d5:56:3c:0f:46: 8d:c9:40:74:99:81:18:16:38:bb:3b:a2:09:2b:e7: 14:a0:60:71:dd:26:c6:7f:1a:f0:23:e4:46:df:45: 55:7d:61:35:7f:fe:d7:4a:23:7e:70:f2:f8:75:d5: d1:72:ba:1a:21:8b:d7:5e:58:08:1d:b9:61:1a:7b: be:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:74:4D:48:08:04:D8:30:F6:19:F7:B9:AA:A4:CE:16:46:C1:4D:4A X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/1A582DBABDCB11ED998A723DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:3180:8000::/33 Signature Algorithm: sha256WithRSAEncryption 5f:81:f1:c3:01:86:c8:e4:c2:fd:ff:5e:13:46:63:ab:8f:04: db:34:e5:28:ed:f9:9e:61:0d:ff:a6:5d:70:fe:69:32:78:53: 44:58:f8:75:c2:15:7a:f5:57:92:7d:18:1c:f0:7a:9f:18:e2: 0a:41:b1:c1:11:d3:df:60:f4:b1:dc:46:db:e9:61:a6:f8:72: d9:f4:42:2c:da:53:86:e1:da:53:de:ef:ea:08:9d:84:77:3d: 8f:a4:ff:db:f0:41:78:f5:2f:94:89:ff:f3:2a:09:93:b3:98: 64:66:b7:80:68:e6:0d:d1:10:7a:92:8a:a1:ee:62:a4:7c:db: cc:33:20:f7:e0:58:b6:46:9c:ca:e1:91:69:65:ab:10:be:44: ca:21:22:fd:3b:a4:5d:11:ea:93:26:fa:0b:a9:9d:c7:75:9c: 4a:8e:29:1a:28:a9:2c:07:38:aa:ad:20:99:26:63:d9:52:a4: 84:f6:0d:59:c5:fe:6c:46:02:2e:fe:73:7d:ff:b9:81:76:2b: 86:fb:9c:ed:47:fe:2c:e3:b9:f7:53:c0:b3:10:1c:42:bf:bb: 46:98:43:85:d1:c6:24:be:81:cf:ab:b6:a9:21:bc:16:2f:c4: 06:07:cf:02:c6:b8:8d:85:aa:29:0f:6e:a0:7d:34:0e:08:f2: 7e:9e:2e:93 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICDmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjQwNjAyMTg1MTQ1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVjYmY0MS05ZTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJ/3BfErhy09uOaVxSRKHU3S8YhVOYzQXAbP0oG7gwEMCEXLbRahjtuH0itH LXba6GeW4zW4iCzWvw4DYBHDchGDYxEFaupJGzn09y/4Z6/I+4wItOpupiSx8YhN nPp7WCEj3lPMZfhbU4VCrsuEHjBY+pP/iFx4j3oheZMY7P4bKvFnG0jBZkOkAe8c heeGlIKY30JZekgPyXyZOeS09JfesEItO4tfoo0MvYaiP7Xc1bVY/JGRw2joPCyr 1VY8D0aNyUB0mYEYFji7O6IJK+cUoGBx3SbGfxrwI+RG30VVfWE1f/7XSiN+cPL4 ddXRcroaIYvXXlgIHblhGnu+FwIDAQABo4IClzCCApMwHQYDVR0OBBYEFDl0TUgI BNgw9hn3uaqkzhZGwU1KMB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRkYvRTQyQkVBQzI5M0YwMTFFOUJDMENGRjcxQzRGOUFFMDIvMUE1ODJEQkFC RENCMTFFRDk5OEE3MjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgckAjGAgDANBgkqhkiG9w0BAQsFAAOCAQEAX4HxwwGGyOTC /f9eE0Zjq48E2zTlKO35nmEN/6ZdcP5pMnhTRFj4dcIVevVXkn0YHPB6nxjiCkGx wRHT32D0sdxG2+lhpvhy2fRCLNpThuHaU97v6gidhHc9j6T/2/BBePUvlIn/8yoJ k7OYZGa3gGjmDdEQepKKoe5ipHzbzDMg9+BYtkacyuGRaWWrEL5EyiEi/TukXRHq kyb6C6mdx3WcSo4pGiipLAc4qq0gmSZj2VKkhPYNWcX+bEYCLv5zff+5gXYrhvuc 7Uf+LOO591PAsxAcQr+7RphDhdHGJL6Bz6u2qSG8Fi/EBgfPAsa4jYWqKQ9uoH00 Dgjyfp4ukw== -----END CERTIFICATE-----Generated at Thu Mar 13 21:49:38 2025 by rpki-client