$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/7A1D009C0EB611ECB5408277C4F9AE02.roa File: 7A1D009C0EB611ECB5408277C4F9AE02.roa (raw, json) Hash identifier: OAplGjEOMAWR+zChRVlz8SiE1O7bb/QPXcg3VkFMFkA= Subject key identifier: A4:3C:BA:BC:CE:F9:5E:62:F3:34:E8:24:D4:EF:D0:CB:92:E5:19:76 Certificate issuer: /CN=A9150F66/serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97 Certificate serial: 1AA1 Authority key identifier: AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/7A1D009C0EB611ECB5408277C4F9AE02.roa Signing time: Sat 24 May 2025 15:43:38 +0000 ROA not before: Sat 24 May 2025 15:43:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9541 IP address blocks: 72.255.0.0/18 maxlen: 24 139.135.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:48:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6817 (0x1aa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150F66, serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97 Validity Not Before: May 24 15:43:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6831e92a-1219 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4c:6d:0c:e5:e6:6d:27:57:3e:8c:45:dc:b3: 41:17:86:bd:f2:2e:ac:7a:79:4f:ee:dc:45:f4:90: 8e:b5:b4:de:5c:84:0e:32:ed:59:ef:26:8e:4b:60: a1:c5:bd:cb:9a:55:dd:4e:96:17:31:2e:2e:f8:9c: 68:ba:65:bd:a5:aa:6a:3b:1c:61:db:30:a9:f5:a3: c3:fb:a6:c4:bd:b3:3e:c0:6c:e8:02:84:c4:6b:45: 8f:98:6a:a2:59:33:73:ca:6a:7c:cc:84:a0:15:3c: b5:fa:3c:b8:e5:dd:45:0b:1e:d4:96:9c:5a:21:7f: 44:7f:e8:41:1c:15:ab:6d:8a:24:46:78:c3:7f:f1: 67:7b:5a:a1:e7:28:e6:56:67:fe:32:8a:da:0b:31: 48:22:76:45:aa:c6:c9:a7:12:59:a3:5f:3e:7f:82: f5:fe:7c:a5:4e:2d:16:1d:40:f5:38:07:70:d1:7c: 71:54:37:df:fa:91:53:cf:0f:a9:17:f8:13:ce:7f: ea:58:31:a1:a5:69:33:a7:d3:ec:72:d5:84:a2:e1: 92:de:c2:b9:5d:87:58:76:39:58:93:e6:ef:b3:80: 70:3d:0a:63:ac:78:6e:f2:bf:ec:05:61:27:aa:01: 19:f3:51:90:ba:57:4e:af:1a:d8:0c:e8:bb:78:96: 89:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:3C:BA:BC:CE:F9:5E:62:F3:34:E8:24:D4:EF:D0:CB:92:E5:19:76 X509v3 Authority Key Identifier: keyid:AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/7A1D009C0EB611ECB5408277C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 72.255.0.0/18 139.135.32.0/19 Signature Algorithm: sha256WithRSAEncryption 0e:1a:ba:19:43:6e:20:9c:4c:ad:e9:2e:8d:f1:4d:b9:f5:da: 19:cc:5a:6f:93:c4:d6:5d:0f:60:8e:4c:cb:45:58:e0:a1:85: bf:f0:91:d0:0f:9b:c0:ec:62:0b:b1:79:b4:ee:78:5e:cf:17: 76:13:fa:4b:16:18:d9:58:d6:7e:e6:b2:d4:87:11:5c:f3:02: 6e:bc:68:70:db:06:4e:06:e0:9d:2d:c3:5d:b5:bb:73:01:9d: 31:d4:d4:a2:e1:0d:06:57:b7:44:d2:bb:5d:aa:c4:d5:3d:bb: bf:76:2c:4f:14:e3:bd:ef:c4:9c:d1:5c:d6:e3:a4:17:31:b8: 94:7b:23:40:fe:23:e9:7c:12:51:c4:46:fe:37:d9:cd:d5:13: 19:a0:d8:be:f5:08:19:6e:39:4d:00:e3:25:ab:99:a8:6b:9b: c2:6c:f4:ae:c5:a6:ce:16:12:c5:1a:d4:d9:ab:93:89:3a:7a: 30:27:fe:71:84:99:a0:13:63:7c:9d:dd:ff:63:90:70:43:80: cb:6e:35:cd:30:e9:1e:f1:04:32:35:f3:e9:fa:6c:e1:f4:df: 51:58:aa:1c:98:2d:20:aa:38:51:5b:b7:1f:e9:01:4f:26:b1: 56:48:a3:d9:31:64:c5:b4:63:62:c0:36:40:a6:67:97:ef:ce: 74:18:7e:68 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBGNjYxMTAvBgNVBAUTKEFBMzI1NjI0MjlGODk2QzBBNUNCREU1NjQ0MzE0ODAz MzlCRUJBOTcwHhcNMjUwNTI0MTU0MzM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODMxZTkyYS0xMjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UxtDOXmbSdXPoxF3LNBF4a98i6senlP7txF9JCOtbTeXIQOMu1Z7yaOS2Ch xb3LmlXdTpYXMS4u+JxoumW9papqOxxh2zCp9aPD+6bEvbM+wGzoAoTEa0WPmGqi WTNzymp8zISgFTy1+jy45d1FCx7UlpxaIX9Ef+hBHBWrbYokRnjDf/Fne1qh5yjm Vmf+MoraCzFIInZFqsbJpxJZo18+f4L1/nylTi0WHUD1OAdw0XxxVDff+pFTzw+p F/gTzn/qWDGhpWkzp9PsctWEouGS3sK5XYdYdjlYk+bvs4BwPQpjrHhu8r/sBWEn qgEZ81GQuldOrxrYDOi7eJaJhwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKQ8urzO +V5i8zToJNTv0MuS5Rl2MB8GA1UdIwQYMBaAFKoyViQp+JbApcveVkQxSAM5vrqX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni8zRDk4MUNDQzNB MUUxMUU3OUFBMEQ1MUNDNEY5QUUwMi9xakpXSkNuNGxzQ2x5OTVXUkRGSUF6bS11 cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FqSldKQ240bHNDbHk5NVdSREZJQXptLXVwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBGNjYvM0Q5ODFDQ0MzQTFFMTFFNzlBQTBENTFDQzRGOUFFMDIvN0ExRDAwOUMw RUI2MTFFQ0I1NDA4Mjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAZI/wADBAWLhyAwDQYJKoZIhvcNAQELBQADggEBAA4auhlD biCcTK3pLo3xTbn12hnMWm+TxNZdD2COTMtFWOChhb/wkdAPm8DsYguxebTueF7P F3YT+ksWGNlY1n7mstSHEVzzAm68aHDbBk4G4J0tw121u3MBnTHU1KLhDQZXt0TS u12qxNU9u792LE8U473vxJzRXNbjpBcxuJR7I0D+I+l8ElHERv432c3VExmg2L71 CBluOU0A4yWrmahrm8Js9K7Fps4WEsUa1Nmrk4k6ejAn/nGEmaATY3yd3f9jkHBD gMtuNc0w6R7xBDI18+n6bOH031FYqhyYLSCqOFFbtx/pAU8msVZIo9kxZMW0Y2LA NkCmZ5fvznQYfmg= -----END CERTIFICATE-----Generated at Wed Jun 4 11:40:29 2025 by rpki-client