$ rpki-client -vvf rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/8F7AEE2CB97811ED8676732CC4F9AE02.roa File: 8F7AEE2CB97811ED8676732CC4F9AE02.roa (raw, json) Hash identifier: jWBS6PPj6fAcNMQfAi9luJpS1MYeUN8CvVqM1agG2cs= Subject key identifier: 4D:A9:4A:A8:5D:02:C8:F3:DB:67:AE:33:6E:B7:A9:1B:A0:2E:30:D5 Certificate issuer: /CN=A9123E38/serialNumber=D54BF399BE1B659B132314B821933A20BA38B96A Certificate serial: 16C3 Authority key identifier: D5:4B:F3:99:BE:1B:65:9B:13:23:14:B8:21:93:3A:20:BA:38:B9:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/8F7AEE2CB97811ED8676732CC4F9AE02.roa Signing time: Wed 30 Apr 2025 16:55:40 +0000 ROA not before: Wed 30 Apr 2025 16:55:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 45629 IP address blocks: 141.164.101.0/24 maxlen: 24 141.164.102.0/24 maxlen: 24 2400:c180:20::/48 maxlen: 48 2400:c180:21::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:46:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5827 (0x16c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123E38, serialNumber=D54BF399BE1B659B132314B821933A20BA38B96A Validity Not Before: Apr 30 16:55:40 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6812560b-4443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ec:81:26:12:39:a3:b5:5e:d6:fb:c7:ba:d0: dd:ae:bc:e0:17:82:a5:53:23:bf:cd:3c:d0:42:10: 4f:bf:ad:82:cc:e3:0a:49:37:ac:3c:1e:37:37:93: 47:c4:f8:2d:3d:d6:47:b3:5a:1a:d4:ba:95:04:a0: 09:2c:ff:2a:b3:9b:d4:c2:7d:01:06:b0:8e:7f:b1: a4:58:77:28:1a:d2:4a:0a:e2:85:2b:f8:14:42:20: 54:90:11:76:f9:05:55:93:3a:cf:7d:84:5d:91:42: be:fc:e7:f8:ed:92:77:ce:1d:ac:43:90:75:ad:d1: 48:99:10:89:c4:2f:17:d8:c6:c4:bf:6d:f3:e0:02: af:09:51:66:f0:8e:02:18:b3:b1:e8:a7:20:2e:77: e1:bf:1c:35:43:8f:f8:77:16:10:16:df:a2:6a:ef: 94:67:9a:ab:8d:ea:62:20:a6:0f:36:97:26:6b:c0: e1:84:32:8c:14:c4:ba:a8:41:95:11:80:25:8e:72: 97:c6:21:87:e0:df:0d:25:f0:53:4a:f7:0c:af:61: ff:1e:2f:bd:f0:c1:81:63:83:18:eb:9f:51:7f:c7: a9:21:39:49:05:57:26:97:9c:95:1b:96:26:a6:9b: 63:19:7c:88:ca:ac:3d:5b:6b:a8:26:a2:5e:53:27: 62:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:A9:4A:A8:5D:02:C8:F3:DB:67:AE:33:6E:B7:A9:1B:A0:2E:30:D5 X509v3 Authority Key Identifier: keyid:D5:4B:F3:99:BE:1B:65:9B:13:23:14:B8:21:93:3A:20:BA:38:B9:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/8F7AEE2CB97811ED8676732CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 141.164.101.0-141.164.102.255 IPv6: 2400:c180:20::/47 Signature Algorithm: sha256WithRSAEncryption 8d:d9:7a:e8:e7:48:57:2d:f9:08:a8:96:0f:15:a3:a9:6c:e4: 1f:61:22:8c:74:00:e3:49:40:d8:6b:aa:c4:d9:c9:99:36:93: 2b:2b:0d:4e:54:bd:08:bb:7e:7d:ff:8d:eb:ac:1c:76:be:d5: b6:af:7f:7b:4b:08:c7:d7:93:c3:f8:5a:3d:c2:50:76:84:f6: 4a:40:6c:e1:5f:50:b1:08:24:f0:6e:c1:a4:df:a0:d4:4c:b3: 3d:03:b0:e8:69:06:34:9f:c0:69:ce:a1:58:6d:94:0b:0c:4a: 2b:23:23:26:90:34:c3:9d:fd:1b:cb:f8:49:20:f3:b8:69:3e: fb:91:73:b7:37:95:96:bd:45:55:b8:62:2d:e0:20:d3:0d:01: 04:81:eb:ed:ab:cd:e8:23:0c:8e:23:2f:65:53:55:4e:57:87: 4a:ed:db:d2:a1:59:8f:9c:a6:dd:61:7b:0d:f0:a2:ae:e5:fa: c2:66:2c:01:d7:6c:28:78:24:5d:ca:30:1d:4a:74:c1:13:1d: 24:6c:df:f0:ac:de:a4:07:bc:ee:e3:92:08:2d:f1:5a:dd:97: 95:9b:30:b5:92:27:85:10:d6:6b:13:13:b3:d3:51:29:84:7a: 25:d1:92:55:21:e6:06:c9:05:0a:f5:bf:00:f2:3a:c1:db:34: 5e:47:1c:1d -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICFsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNFMzgxMTAvBgNVBAUTKEQ1NEJGMzk5QkUxQjY1OUIxMzIzMTRCODIxOTMzQTIw QkEzOEI5NkEwHhcNMjUwNDMwMTY1NTQwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNTYwYi00NDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4eyBJhI5o7Ve1vvHutDdrrzgF4KlUyO/zTzQQhBPv62CzOMKSTesPB43N5NH xPgtPdZHs1oa1LqVBKAJLP8qs5vUwn0BBrCOf7GkWHcoGtJKCuKFK/gUQiBUkBF2 +QVVkzrPfYRdkUK+/Of47ZJ3zh2sQ5B1rdFImRCJxC8X2MbEv23z4AKvCVFm8I4C GLOx6KcgLnfhvxw1Q4/4dxYQFt+iau+UZ5qrjepiIKYPNpcma8DhhDKMFMS6qEGV EYAljnKXxiGH4N8NJfBTSvcMr2H/Hi+98MGBY4MY659Rf8epITlJBVcml5yVG5Ym pptjGXyIyqw9W2uoJqJeUydi7wIDAQABo4ICrjCCAqowHQYDVR0OBBYEFE2pSqhd Asjz22euM263qRugLjDVMB8GA1UdIwQYMBaAFNVL85m+G2WbEyMUuCGTOiC6OLlq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0UzOC9BMTA4N0QzNjAw RUExMUU4QkM5M0IxNkJDNEY5QUUwMi8xVXZ6bWI0Ylpac1RJeFM0SVpNNklMbzR1 V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFVdnptYjRiWlpzVEl4UzRJWk02SUxvNHVXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNFMzgvQTEwODdEMzYwMEVBMTFFOEJDOTNCMTZCQzRGOUFFMDIvOEY3QUVFMkNC OTc4MTFFRDg2NzY3MzJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMBQEAgABMA4wDAMEAI2kZQMEAI2kZjAPBAIAAjAJAwcBJADBgAAgMA0GCSqG SIb3DQEBCwUAA4IBAQCN2Xro50hXLfkIqJYPFaOpbOQfYSKMdADjSUDYa6rE2cmZ NpMrKw1OVL0Iu359/43rrBx2vtW2r397SwjH15PD+Fo9wlB2hPZKQGzhX1CxCCTw bsGk36DUTLM9A7DoaQY0n8BpzqFYbZQLDEorIyMmkDTDnf0by/hJIPO4aT77kXO3 N5WWvUVVuGIt4CDTDQEEgevtq83oIwyOIy9lU1VOV4dK7dvSoVmPnKbdYXsN8KKu 5frCZiwB12woeCRdyjAdSnTBEx0kbN/wrN6kB7zu45IILfFa3ZeVmzC1kieFENZr ExOz01EphHol0ZJVIeYGyQUK9b8A8jrB2zReRxwd -----END CERTIFICATE-----Generated at Thu May 15 00:00:52 2025 by rpki-client