$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa File: 2FCB8FBA56DC11EA8D75187CC4F9AE02.roa (raw, json) Hash identifier: 1RC1hvOn8M5X9ccmY3hdnJuLljVCrrYvq7AQQg0ulGE= Subject key identifier: 25:81:BA:39:B1:76:75:23:A5:29:74:D3:39:B4:C3:FB:23:BA:1A:69 Certificate issuer: /CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Certificate serial: 0A95 Authority key identifier: BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa Signing time: Wed 02 Apr 2025 19:49:57 +0000 ROA not before: Wed 02 Apr 2025 19:49:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4049 IP address blocks: 188.125.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2709 (0xa95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127 Validity Not Before: Apr 2 19:49:57 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ed94e4-48da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5c:78:d3:40:b2:80:5e:23:70:3e:a6:e1:a7: c3:16:53:09:77:3a:20:73:3e:e0:eb:3a:0d:8b:41: bd:c8:21:6d:33:65:08:93:fb:c3:29:9c:e4:d0:f8: c9:99:07:67:ca:52:41:67:79:e9:d5:df:9b:fd:8c: c6:e1:79:7f:37:93:cd:5a:b5:63:0d:33:2b:b7:d5: fc:b9:78:95:6d:cf:95:8a:92:a6:a3:29:0d:e3:93: da:3c:21:03:c5:f0:11:4d:c1:20:61:18:f7:b3:48: a9:c8:81:b8:ac:93:71:11:1d:41:ba:76:0a:79:c1: 3f:67:a9:b8:ca:5d:79:9d:47:bc:53:a9:14:9d:1c: 18:72:df:6e:17:90:7b:b9:b5:0d:0e:54:a0:2d:df: bb:e1:07:1b:20:17:61:75:82:2d:cf:81:b2:9f:d3: a4:60:0d:dd:16:3f:f9:51:08:5a:95:2e:c2:fd:96: 43:29:98:28:18:8f:00:d3:73:a8:4e:fe:5f:5e:63: b8:c5:b7:c7:1c:90:cb:40:db:3a:22:83:04:aa:a1: 88:ed:cc:0c:9d:1a:ed:d6:0c:e9:ff:a5:f1:85:ac: b7:1b:88:72:9b:ca:3a:1b:c2:5b:42:00:29:eb:ba: 1e:33:b4:5f:7a:1a:a2:1e:db:f2:cf:e4:d2:b9:53: 61:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:81:BA:39:B1:76:75:23:A5:29:74:D3:39:B4:C3:FB:23:BA:1A:69 X509v3 Authority Key Identifier: keyid:BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 188.125.176.0/20 Signature Algorithm: sha256WithRSAEncryption b1:12:4a:b0:1d:67:c4:99:21:b8:f4:39:ed:2a:14:cf:22:64: 80:77:ff:46:71:f1:e9:82:46:1f:c3:1e:71:1c:6e:92:aa:90: 98:cd:6d:28:7d:33:ef:bd:c4:ee:d5:ce:26:90:77:c0:58:4e: 1a:42:7f:6e:2e:19:21:7a:88:fc:5d:7d:64:96:b1:df:cf:ae: ca:c9:72:4b:c7:dc:43:c3:4a:ee:4b:50:36:d7:75:27:cc:21: 17:0a:1b:c0:c9:d8:54:d6:58:78:8c:79:f7:df:f7:52:3e:79: 1c:03:97:f2:10:09:ab:63:fb:28:0c:9e:bc:4b:f5:03:e9:81: 6d:2a:0e:5d:84:d8:d3:4f:10:57:ed:c2:94:6f:cd:75:3a:25: cf:e6:e0:c5:87:ff:aa:f7:b0:72:16:41:29:61:6e:dd:7c:a6: d1:27:4d:59:64:69:9c:06:5e:a1:0f:a1:97:7d:fa:7f:6e:6f: 2f:e4:f2:63:fb:e1:27:8b:17:20:34:31:b7:9d:6d:7f:cb:f0: 65:a5:91:79:f6:ec:ad:ee:c0:b3:7e:c3:3c:13:d0:ce:c4:c0: 94:cd:2b:be:bc:91:57:f1:57:32:63:96:87:19:d2:e3:43:71: 33:4c:a7:33:6e:10:28:f0:27:48:77:97:87:f6:4b:52:9c:7a: 04:f1:a4:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKEJBNEEzRTM0REQ5QUFEMDAyRDQ5MUQxM0M1Qzg4Q0U1 Q0RDOTkzQUEwHhcNMjUwNDAyMTk0OTU3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkOTRlNC00OGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVx400CygF4jcD6m4afDFlMJdzogcz7g6zoNi0G9yCFtM2UIk/vDKZzk0PjJ mQdnylJBZ3np1d+b/YzG4Xl/N5PNWrVjDTMrt9X8uXiVbc+VipKmoykN45PaPCED xfARTcEgYRj3s0ipyIG4rJNxER1BunYKecE/Z6m4yl15nUe8U6kUnRwYct9uF5B7 ubUNDlSgLd+74QcbIBdhdYItz4Gyn9OkYA3dFj/5UQhalS7C/ZZDKZgoGI8A03Oo Tv5fXmO4xbfHHJDLQNs6IoMEqqGI7cwMnRrt1gzp/6Xxhay3G4hym8o6G8JbQgAp 67oeM7RfehqiHtvyz+TSuVNhlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCWBujmx dnUjpSl00zm0w/sjuhppMB8GA1UdIwQYMBaAFLpKPjTdmq0ALUkdE8XIjOXNyZOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8zMzdGQkE0NDU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJRQXRTUjBUeGNpTTVjM0pr Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3Vrby1OTjJhclFBdFNSMFR4Y2lNNWMzSms2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIxMjcvMzM3RkJBNDQ1NDZEMTFFQUJERDNDMTE3QzRGOUFFMDIvMkZDQjhGQkE1 NkRDMTFFQThENzUxODdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAS8fbAwDQYJKoZIhvcNAQELBQADggEBALESSrAdZ8SZIbj0 Oe0qFM8iZIB3/0Zx8emCRh/DHnEcbpKqkJjNbSh9M++9xO7VziaQd8BYThpCf24u GSF6iPxdfWSWsd/PrsrJckvH3EPDSu5LUDbXdSfMIRcKG8DJ2FTWWHiMefff91I+ eRwDl/IQCatj+ygMnrxL9QPpgW0qDl2E2NNPEFftwpRvzXU6Jc/m4MWH/6r3sHIW QSlhbt18ptEnTVlkaZwGXqEPoZd9+n9uby/k8mP74SeLFyA0MbedbX/L8GWlkXn2 7K3uwLN+wzwT0M7EwJTNK768kVfxVzJjlocZ0uNDcTNMpzNuECjwJ0h3l4f2S1Kc egTxpP4= -----END CERTIFICATE-----Generated at Sat Apr 5 09:54:46 2025 by rpki-client