$ rpki-client -vvf rpki.apnic.net/member_repository/A9198553/AE92DC1CD2ED11EF8DEE5120C4F9AE02/4D8A57B6D2F111EFAC77C249C4F9AE02.roa File: 4D8A57B6D2F111EFAC77C249C4F9AE02.roa (raw, json) Hash identifier: KHoPbgNVtZT0OwKjaJvVWJ02MeB3Fx2ZKzMa6yBJHMo= Subject key identifier: 4F:82:6F:CD:E0:32:E6:1F:2D:1D:C6:BF:7A:C1:7F:5E:D4:A1:94:FB Certificate issuer: /CN=A9198553/serialNumber=C2554E91C7070ECC31E6378EA43BCFAF3C8213C0 Certificate serial: 04 Authority key identifier: C2:55:4E:91:C7:07:0E:CC:31:E6:37:8E:A4:3B:CF:AF:3C:82:13:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wlVOkccHDswx5jeOpDvPrzyCE8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198553/AE92DC1CD2ED11EF8DEE5120C4F9AE02/4D8A57B6D2F111EFAC77C249C4F9AE02.roa Signing time: Wed 15 Jan 2025 03:32:10 +0000 ROA not before: Wed 15 Jan 2025 03:32:10 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153525 IP address blocks: 2001:df4:e9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198553/AE92DC1CD2ED11EF8DEE5120C4F9AE02/wlVOkccHDswx5jeOpDvPrzyCE8A.crl rsync://rpki.apnic.net/member_repository/A9198553/AE92DC1CD2ED11EF8DEE5120C4F9AE02/wlVOkccHDswx5jeOpDvPrzyCE8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wlVOkccHDswx5jeOpDvPrzyCE8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:31:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198553 Validity Not Before: Jan 15 03:32:10 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67872c3a-cdb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:68:1f:96:6b:16:af:b6:8f:d1:b1:98:b2:28: a8:08:5f:9d:fb:91:d8:3c:54:0e:78:b5:32:e4:32: 42:10:b2:5c:57:bb:68:dc:8e:13:02:58:c3:a7:7e: 99:6a:69:ea:4a:d9:f4:37:2b:7c:da:8d:47:5d:4d: 44:c2:fe:09:eb:f9:d3:b5:df:18:e6:be:aa:0b:b0: ec:75:6b:e2:55:d0:33:47:c7:27:de:ec:c5:8f:d5: 15:bb:df:b0:dc:bf:b8:99:13:5f:41:02:0c:01:65: 81:3a:15:ca:ba:08:81:81:39:ab:8a:63:dd:b6:be: d3:81:eb:48:f7:d8:09:6e:f1:4a:4c:6b:f8:17:a1: e1:fb:4f:fc:3f:7f:39:ff:6b:93:dd:ea:24:71:7a: 35:dd:61:0e:13:94:49:c6:81:2a:40:b2:49:6c:e5: 85:7e:0b:57:ac:c3:fb:6c:25:cf:ba:2b:8f:cf:dc: d3:af:d9:64:60:c9:f1:e7:e6:87:df:1d:d0:28:4e: 79:f7:4f:e5:a9:48:88:c9:d2:76:3d:8e:f3:75:40: 7d:79:52:0e:79:4e:01:64:de:dc:d1:8c:30:37:85: b6:05:ab:4c:b4:a7:76:50:22:a3:bc:6f:cd:9b:dc: 63:1e:d0:dd:e4:fd:9d:dd:b1:23:b7:6f:cf:e8:44: 70:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:82:6F:CD:E0:32:E6:1F:2D:1D:C6:BF:7A:C1:7F:5E:D4:A1:94:FB X509v3 Authority Key Identifier: keyid:C2:55:4E:91:C7:07:0E:CC:31:E6:37:8E:A4:3B:CF:AF:3C:82:13:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198553/AE92DC1CD2ED11EF8DEE5120C4F9AE02/wlVOkccHDswx5jeOpDvPrzyCE8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wlVOkccHDswx5jeOpDvPrzyCE8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198553/AE92DC1CD2ED11EF8DEE5120C4F9AE02/4D8A57B6D2F111EFAC77C249C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:e9c0::/48 Signature Algorithm: sha256WithRSAEncryption 32:fd:43:56:c9:86:ff:40:89:6f:57:88:ce:df:65:66:20:55: c3:f6:26:59:15:d5:e1:94:ed:d9:1b:9d:0e:bd:0b:a0:5d:ef: 8c:a9:84:54:37:1a:7e:4d:1f:46:c2:62:07:04:ee:21:11:95: 93:3d:2a:ad:dc:97:c8:a0:e2:db:c6:f4:4f:dd:6f:3b:4d:d4: f6:38:d1:ac:c0:46:20:c1:91:ce:cd:24:c6:d2:ee:80:04:72: 2d:ae:ed:81:f5:28:04:dc:3c:d6:71:9f:e5:b1:fb:95:f0:51: dc:a9:8b:8e:be:7c:3f:e4:b5:7a:91:01:5e:e7:57:8f:61:4d: 40:a6:12:49:86:20:b6:a7:26:8e:f0:22:4b:c6:83:c2:f6:91: 43:1b:19:e4:6c:25:15:79:11:27:af:90:d6:17:9f:c6:10:55: 6f:c1:fb:7d:1e:e3:87:36:35:f5:59:53:9e:89:ea:40:41:21: cf:6f:98:de:3b:7d:53:da:22:69:4b:9a:6e:7e:2e:33:ca:d5: eb:26:a2:8c:2e:79:36:91:17:9f:cd:fb:8f:f7:b7:a7:f4:8c: ff:55:c5:07:24:32:44:78:62:22:69:cb:06:98:4d:8c:c4:4b: 57:f3:59:6b:d4:9d:4f:8a:30:d9:f8:14:0d:5b:54:18:b2:0d: 08:a9:05:4f -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODU1MzExMC8GA1UEBRMoQzI1NTRFOTFDNzA3MEVDQzMxRTYzNzhFQTQzQkNGQUYz QzgyMTNDMDAeFw0yNTAxMTUwMzMyMTBaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODcyYzNhLWNkYjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkaB+Waxavto/RsZiyKKgIX537kdg8VA54tTLkMkIQslxXu2jcjhMCWMOnfplq aepK2fQ3K3zajUddTUTC/gnr+dO13xjmvqoLsOx1a+JV0DNHxyfe7MWP1RW737Dc v7iZE19BAgwBZYE6Fcq6CIGBOauKY922vtOB60j32Alu8UpMa/gXoeH7T/w/fzn/ a5Pd6iRxejXdYQ4TlEnGgSpAskls5YV+C1esw/tsJc+6K4/P3NOv2WRgyfHn5off HdAoTnn3T+WpSIjJ0nY9jvN1QH15Ug55TgFk3tzRjDA3hbYFq0y0p3ZQIqO8b82b 3GMe0N3k/Z3dsSO3b8/oRHCDAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUT4JvzeAy 5h8tHca/esF/XtShlPswHwYDVR0jBBgwFoAUwlVOkccHDswx5jeOpDvPrzyCE8Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4NTUzL0FFOTJEQzFDRDJF RDExRUY4REVFNTEyMEM0RjlBRTAyL3dsVk9rY2NIRHN3eDVqZU9wRHZQcnp5Q0U4 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd2xWT2tjY0hEc3d4NWplT3BEdlByenlDRThBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODU1My9BRTkyREMxQ0QyRUQxMUVGOERFRTUxMjBDNEY5QUUwMi80RDhBNTdCNkQy RjExMUVGQUM3N0MyNDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfTpwDANBgkqhkiG9w0BAQsFAAOCAQEAMv1DVsmG/0CJ b1eIzt9lZiBVw/YmWRXV4ZTt2RudDr0LoF3vjKmEVDcafk0fRsJiBwTuIRGVkz0q rdyXyKDi28b0T91vO03U9jjRrMBGIMGRzs0kxtLugARyLa7tgfUoBNw81nGf5bH7 lfBR3KmLjr58P+S1epEBXudXj2FNQKYSSYYgtqcmjvAiS8aDwvaRQxsZ5GwlFXkR J6+Q1hefxhBVb8H7fR7jhzY19VlTnonqQEEhz2+Y3jt9U9oiaUuabn4uM8rV6yai jC55NpEXn837j/e3p/SM/1XFByQyRHhiImnLBphNjMRLV/NZa9SdT4ow2fgUDVtU GLINCKkFTw== -----END CERTIFICATE-----Generated at Thu Feb 6 04:06:32 2025 by rpki-client