$ rpki-client -vvf rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/73DDDA0206FF11ED8C6B565FC4F9AE02.roa File: 73DDDA0206FF11ED8C6B565FC4F9AE02.roa (raw, json) Hash identifier: +6R7bMqMqpzAOMYELOdkWclWKRtU/auj18n3CAr0V2g= Subject key identifier: 26:15:4C:56:8C:6B:8A:86:7C:7E:5A:2B:CA:1C:EA:E1:79:EA:2B:7D Certificate issuer: /CN=A912B0A3/serialNumber=3242BAE00BA9F0DF4E9EDA6FE5C08F129F916881 Certificate serial: 07B8 Authority key identifier: 32:42:BA:E0:0B:A9:F0:DF:4E:9E:DA:6F:E5:C0:8F:12:9F:91:68:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/73DDDA0206FF11ED8C6B565FC4F9AE02.roa Signing time: Wed 30 Apr 2025 21:31:47 +0000 ROA not before: Wed 30 Apr 2025 21:31:47 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 4739 IP address blocks: 203.215.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.crl rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:04:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1976 (0x7b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B0A3, serialNumber=3242BAE00BA9F0DF4E9EDA6FE5C08F129F916881 Validity Not Before: Apr 30 21:31:47 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681296c3-843b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:35:14:cf:18:15:1c:90:85:a0:2b:0f:d2:35: f6:c9:3a:ef:db:67:59:49:10:c8:57:3f:be:c8:31: 12:a0:84:8d:e9:17:2c:6b:fc:7a:0c:f8:0c:96:07: 2a:4b:80:d9:42:46:59:06:cc:51:ab:2b:f0:d1:85: 97:e2:2c:25:eb:9d:a0:76:0e:28:ae:21:f7:ba:23: f6:5f:4e:4d:1b:92:7a:01:67:fc:3e:bf:22:45:e3: 21:d6:74:8f:5d:28:9e:3f:7d:a6:b5:d1:2e:42:06: ee:6a:f5:31:8c:1f:c0:83:a2:ec:d0:27:42:8b:e1: 7e:23:8e:1f:c8:87:ee:4b:1e:8c:27:aa:7d:e1:c5: 01:88:e9:f9:35:73:fe:1c:69:39:5a:81:b9:84:ee: bd:92:ce:fa:82:52:f5:7d:43:68:dd:27:44:63:25: 0c:ad:4f:e0:a0:63:04:81:0b:4d:ef:94:e8:15:59: b5:7d:34:a7:dc:2f:3f:54:72:4a:ab:22:fe:3f:8f: d3:8b:93:92:6e:04:f0:ea:53:27:c3:d7:1a:3d:6f: d6:28:96:99:41:6f:f4:60:40:46:e2:bb:f8:84:0b: 1d:85:2f:31:88:d8:4d:18:f9:ec:b5:2b:fa:7f:45: 54:94:13:d3:8b:09:18:f8:a8:dd:d5:14:5c:9f:ca: f1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:15:4C:56:8C:6B:8A:86:7C:7E:5A:2B:CA:1C:EA:E1:79:EA:2B:7D X509v3 Authority Key Identifier: keyid:32:42:BA:E0:0B:A9:F0:DF:4E:9E:DA:6F:E5:C0:8F:12:9F:91:68:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/73DDDA0206FF11ED8C6B565FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.215.29.0/24 Signature Algorithm: sha256WithRSAEncryption 50:71:a5:be:ae:7b:15:64:ce:52:d2:a4:2f:19:70:85:04:a1: b5:f5:a8:b4:c2:4d:01:07:5c:5e:e3:4f:dd:70:cc:f0:01:81: 94:ba:4b:63:7c:a6:34:12:64:52:90:da:cf:33:53:fe:6a:84: ef:cb:ad:77:c7:23:4f:48:cd:4e:41:34:97:ab:3a:68:bf:21: 97:fa:5e:04:81:6e:b9:23:dc:69:d6:55:93:7e:ab:9f:59:0e: 43:b2:15:69:e2:82:47:10:87:c5:3b:48:9c:7d:a5:54:30:88: 05:13:22:4b:fe:4c:51:7e:01:11:39:f8:3a:5c:f3:8f:38:70: 47:a4:a2:33:95:f4:c3:86:5f:c2:39:79:ca:35:f1:26:11:91: 73:87:54:3d:e0:81:44:c6:f7:6d:9e:58:9d:9a:be:25:83:80: 2b:54:5d:2d:43:2b:73:be:2e:6a:01:0f:53:41:a9:35:cd:93: 8c:aa:8b:13:4e:0b:92:14:7d:5e:ba:b4:cb:37:07:3a:46:1f: e5:81:e9:74:eb:93:cb:13:23:03:b4:9b:cb:27:fb:ed:fd:59: ea:c1:f3:89:e7:bd:68:fb:08:ce:bb:99:27:cb:8c:42:03:8d: ad:a7:fa:a9:eb:02:de:69:e7:80:c5:cd:91:70:68:05:a2:11: c5:5c:e6:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIwQTMxMTAvBgNVBAUTKDMyNDJCQUUwMEJBOUYwREY0RTlFREE2RkU1QzA4RjEy OUY5MTY4ODEwHhcNMjUwNDMwMjEzMTQ3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyOTZjMy04NDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DUUzxgVHJCFoCsP0jX2yTrv22dZSRDIVz++yDESoISN6Rcsa/x6DPgMlgcq S4DZQkZZBsxRqyvw0YWX4iwl652gdg4oriH3uiP2X05NG5J6AWf8Pr8iReMh1nSP XSieP32mtdEuQgbuavUxjB/Ag6Ls0CdCi+F+I44fyIfuSx6MJ6p94cUBiOn5NXP+ HGk5WoG5hO69ks76glL1fUNo3SdEYyUMrU/goGMEgQtN75ToFVm1fTSn3C8/VHJK qyL+P4/Ti5OSbgTw6lMnw9caPW/WKJaZQW/0YEBG4rv4hAsdhS8xiNhNGPnstSv6 f0VUlBPTiwkY+Kjd1RRcn8rxKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCYVTFaM a4qGfH5aK8oc6uF56it9MB8GA1UdIwQYMBaAFDJCuuALqfDfTp7ab+XAjxKfkWiB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjBBMy83NTQ1NDVCQzAz QjcxMUVCOTdGQkU1NjhDNEY5QUUwMi9Na0s2NEF1cDhOOU9udHB2NWNDUEVwLVJh SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01rSzY0QXVwOE45T250cHY1Y0NQRXAtUmFJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkIwQTMvNzU0NTQ1QkMwM0I3MTFFQjk3RkJFNTY4QzRGOUFFMDIvNzNERERBMDIw NkZGMTFFRDhDNkI1NjVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADL1x0wDQYJKoZIhvcNAQELBQADggEBAFBxpb6uexVkzlLS pC8ZcIUEobX1qLTCTQEHXF7jT91wzPABgZS6S2N8pjQSZFKQ2s8zU/5qhO/LrXfH I09IzU5BNJerOmi/IZf6XgSBbrkj3GnWVZN+q59ZDkOyFWnigkcQh8U7SJx9pVQw iAUTIkv+TFF+ARE5+Dpc8484cEekojOV9MOGX8I5eco18SYRkXOHVD3ggUTG922e WJ2aviWDgCtUXS1DK3O+LmoBD1NBqTXNk4yqixNOC5IUfV66tMs3BzpGH+WB6XTr k8sTIwO0m8sn++39WerB84nnvWj7CM67mSfLjEIDja2n+qnrAt5p54DFzZFwaAWi EcVc5m0= -----END CERTIFICATE-----Generated at Tue May 13 08:04:52 2025 by rpki-client