$ rpki-client -vvf rpki.apnic.net/member_repository/A912D826/CF4E1D74AE4A11EC846F3F68C4F9AE02/82230EB20A7211EE8FA2CD58C4F9AE02.roa File: 82230EB20A7211EE8FA2CD58C4F9AE02.roa (raw, json) Hash identifier: lFX+qgrZ/4kWP0f1oe7C6siJL2bYDAPiZb8DNIojWoU= Subject key identifier: 67:3C:29:19:44:A5:A3:C3:0F:C9:A5:9B:A5:E3:D5:EC:24:F7:76:01 Certificate issuer: /CN=A912D826/serialNumber=3D2CCC9183744DC696A8556BCB9043848E95DF70 Certificate serial: 036D Authority key identifier: 3D:2C:CC:91:83:74:4D:C6:96:A8:55:6B:CB:90:43:84:8E:95:DF:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PSzMkYN0TcaWqFVry5BDhI6V33A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D826/CF4E1D74AE4A11EC846F3F68C4F9AE02/82230EB20A7211EE8FA2CD58C4F9AE02.roa Signing time: Thu 01 May 2025 00:36:46 +0000 ROA not before: Thu 01 May 2025 00:36:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149657 IP address blocks: 2400:6920::/36 maxlen: 36 2400:6920:f000::/48 maxlen: 48 2400:6920:f001::/48 maxlen: 48 2400:6920:f002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D826/CF4E1D74AE4A11EC846F3F68C4F9AE02/PSzMkYN0TcaWqFVry5BDhI6V33A.crl rsync://rpki.apnic.net/member_repository/A912D826/CF4E1D74AE4A11EC846F3F68C4F9AE02/PSzMkYN0TcaWqFVry5BDhI6V33A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PSzMkYN0TcaWqFVry5BDhI6V33A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:45:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 877 (0x36d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D826, serialNumber=3D2CCC9183744DC696A8556BCB9043848E95DF70 Validity Not Before: May 1 00:36:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6812c21d-59d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ad:3c:55:8a:67:38:85:ed:ce:16:3e:e2:50: 3c:43:69:88:59:90:74:d3:03:12:46:12:e1:86:db: e7:b1:f1:5b:9d:31:2e:79:81:a8:2d:89:8f:93:91: 74:a4:55:00:cb:76:f3:10:ab:ed:3a:9b:e0:6e:a9: 81:b7:de:c4:cd:3e:e1:05:2a:bf:be:5b:c6:ec:59: 19:09:ca:64:fa:ea:b2:56:ef:66:a1:fd:49:cc:5a: 50:06:36:53:0a:f6:e5:63:4e:41:d6:af:16:83:c1: f7:ab:04:aa:d4:16:ca:1d:64:f5:a3:b7:36:86:2f: 95:37:7a:1b:0f:f3:72:b3:f1:bc:44:d3:49:31:0a: 46:9e:7c:af:51:e8:e9:69:11:57:8f:66:a0:44:3d: 3b:46:37:5c:ac:5e:95:04:80:33:79:cf:c2:4d:e2: 11:e3:11:ea:bd:48:d4:13:44:c6:db:17:26:75:52: 1d:d5:2c:f0:dd:86:66:c7:5f:68:6c:a3:c6:4c:1d: 6d:15:85:8a:44:c4:cb:54:62:bf:64:6c:49:8d:8d: 66:96:6b:cc:4f:b6:71:b7:08:b5:ae:24:3a:8e:51: cf:26:88:e8:a4:b4:db:54:a9:d5:31:62:34:0f:b9: 2e:e3:b8:ca:24:66:c6:3e:11:8f:93:6b:e6:cb:14: 75:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:3C:29:19:44:A5:A3:C3:0F:C9:A5:9B:A5:E3:D5:EC:24:F7:76:01 X509v3 Authority Key Identifier: keyid:3D:2C:CC:91:83:74:4D:C6:96:A8:55:6B:CB:90:43:84:8E:95:DF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D826/CF4E1D74AE4A11EC846F3F68C4F9AE02/PSzMkYN0TcaWqFVry5BDhI6V33A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PSzMkYN0TcaWqFVry5BDhI6V33A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D826/CF4E1D74AE4A11EC846F3F68C4F9AE02/82230EB20A7211EE8FA2CD58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:6920::/36 2400:6920:f000::-2400:6920:f002:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption b5:23:78:5f:43:a3:fc:48:ae:7e:a5:80:3c:6e:03:2b:5d:87: 95:86:5b:aa:ec:a3:1f:28:84:a0:a2:c2:09:26:98:00:69:cf: d4:a1:a5:ec:db:ff:9d:42:0a:58:c0:9f:07:32:ac:37:8f:94: 3e:a6:13:d3:ce:0c:cd:9a:66:04:98:94:84:8f:a6:5b:91:99: 62:12:27:ad:08:84:d0:d9:a7:96:9c:cf:b2:64:97:af:6e:99: 69:62:39:53:19:b3:54:1d:7d:69:eb:c0:31:2d:44:e8:f5:7a: 4a:b7:7e:31:48:b8:c4:e2:db:5f:b0:79:48:64:c3:f7:3d:d7: 76:46:eb:4e:21:31:32:dc:4a:48:b6:b1:35:1e:65:a3:86:dc: e5:78:9e:24:04:c3:50:d9:95:02:07:82:50:47:9a:36:f3:62: 6b:dd:c6:d5:92:98:e9:31:23:7c:2e:17:ff:92:00:fd:e2:22: 24:0a:6d:31:54:bd:85:68:07:3d:af:59:c5:9f:4c:60:79:cf: 14:8e:c6:53:5c:ca:5b:b1:1e:31:ee:b9:28:39:2a:97:17:bf: 62:e1:c8:de:52:72:fb:cf:fb:25:a9:2c:a7:f3:e2:42:48:61: f4:33:77:ef:9a:74:2d:a5:ac:b0:6f:79:d1:fd:b3:ea:c5:4e: 57:9a:ab:3a -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICA20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ4MjYxMTAvBgNVBAUTKDNEMkNDQzkxODM3NDREQzY5NkE4NTU2QkNCOTA0Mzg0 OEU5NURGNzAwHhcNMjUwNTAxMDAzNjQ2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyYzIxZC01OWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1608VYpnOIXtzhY+4lA8Q2mIWZB00wMSRhLhhtvnsfFbnTEueYGoLYmPk5F0 pFUAy3bzEKvtOpvgbqmBt97EzT7hBSq/vlvG7FkZCcpk+uqyVu9mof1JzFpQBjZT CvblY05B1q8Wg8H3qwSq1BbKHWT1o7c2hi+VN3obD/Nys/G8RNNJMQpGnnyvUejp aRFXj2agRD07RjdcrF6VBIAzec/CTeIR4xHqvUjUE0TG2xcmdVId1Szw3YZmx19o bKPGTB1tFYWKRMTLVGK/ZGxJjY1mlmvMT7Zxtwi1riQ6jlHPJojopLTbVKnVMWI0 D7ku47jKJGbGPhGPk2vmyxR18QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFGc8KRlE paPDD8mlm6Xj1ewk93YBMB8GA1UdIwQYMBaAFD0szJGDdE3GlqhVa8uQQ4SOld9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDgyNi9DRjRFMUQ3NEFF NEExMUVDODQ2RjNGNjhDNEY5QUUwMi9QU3pNa1lOMFRjYVdxRlZyeTVCRGhJNlYz M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTek1rWU4wVGNhV3FGVnJ5NUJEaEk2VjMzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ4MjYvQ0Y0RTFENzRBRTRBMTFFQzg0NkYzRjY4QzRGOUFFMDIvODIyMzBFQjIw QTcyMTFFRThGQTJDRDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMCEEAgACMBsDBgQkAGkgADARAwYEJABpIPADBwAkAGkg8AIwDQYJKoZIhvcN AQELBQADggEBALUjeF9Do/xIrn6lgDxuAytdh5WGW6rsox8ohKCiwgkmmABpz9Sh pezb/51CCljAnwcyrDePlD6mE9PODM2aZgSYlISPpluRmWISJ60IhNDZp5acz7Jk l69umWliOVMZs1QdfWnrwDEtROj1ekq3fjFIuMTi21+weUhkw/c913ZG604hMTLc Ski2sTUeZaOG3OV4niQEw1DZlQIHglBHmjbzYmvdxtWSmOkxI3wuF/+SAP3iIiQK bTFUvYVoBz2vWcWfTGB5zxSOxlNcyluxHjHuuSg5KpcXv2LhyN5ScvvP+yWpLKfz 4kJIYfQzd++adC2lrLBvedH9s+rFTleaqzo= -----END CERTIFICATE-----Generated at Wed May 14 13:49:01 2025 by rpki-client