$ rpki-client -vvf rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/79D4F51A2CC911F09800D04FC4F9AE02.roa File: 79D4F51A2CC911F09800D04FC4F9AE02.roa (raw, json) Hash identifier: Cd4RTZ4984IpJcOoURMCLknEJ5+y6OGJ7We0zxepZ2Y= Subject key identifier: 53:3D:31:9A:44:2C:31:9A:49:07:93:67:94:67:EC:C5:DB:9F:5F:1F Certificate issuer: /CN=A9136AF7/serialNumber=28FBADF1C0B5A425B5D21D7CF45C40CAA44EDCE1 Certificate serial: 0CB2 Authority key identifier: 28:FB:AD:F1:C0:B5:A4:25:B5:D2:1D:7C:F4:5C:40:CA:A4:4E:DC:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPut8cC1pCW10h189FxAyqRO3OE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/79D4F51A2CC911F09800D04FC4F9AE02.roa Signing time: Fri 09 May 2025 11:33:49 +0000 ROA not before: Fri 09 May 2025 11:33:49 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 139623 IP address blocks: 2401:31c0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/KPut8cC1pCW10h189FxAyqRO3OE.crl rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/KPut8cC1pCW10h189FxAyqRO3OE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPut8cC1pCW10h189FxAyqRO3OE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3250 (0xcb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136AF7, serialNumber=28FBADF1C0B5A425B5D21D7CF45C40CAA44EDCE1 Validity Not Before: May 9 11:33:49 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=681de81d-5dbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0a:b5:4f:30:75:6d:4d:f7:a3:9f:cd:ca:4d: 6f:c8:31:9b:af:cb:fe:13:38:2c:0d:73:39:9e:4b: c8:09:23:1a:cf:0a:dc:10:4e:89:f6:eb:19:f3:7c: 43:90:7c:ad:36:b3:37:c3:89:ef:c2:99:e6:15:34: e6:29:d6:6f:ee:92:be:54:90:a1:57:c5:93:ec:07: 2d:35:36:82:a5:b3:e6:03:cb:81:a1:40:e0:8a:5a: c0:8f:98:20:2a:78:77:36:24:40:0a:9d:20:5d:68: a7:ad:50:ef:f7:fc:a3:5a:54:64:1e:10:49:f9:60: c1:9a:83:f7:e1:50:89:c7:1d:a5:f6:5a:3a:16:f0: e0:30:2f:5e:27:ff:28:31:89:55:86:d9:e6:53:9d: 56:55:af:5f:fa:fc:a4:fb:fa:17:f3:94:e2:b0:bb: bc:bf:5c:9a:8d:3d:6d:a1:a3:83:52:79:af:a5:a8: 9c:61:20:00:8c:5e:da:f1:98:b5:82:b4:9c:18:0a: 5b:2e:79:f4:38:dc:be:94:5d:3d:f8:1a:d3:dd:8e: f2:45:28:59:6f:03:99:ab:05:c9:81:45:25:11:7f: 64:21:59:c7:81:ac:7c:1f:30:50:14:db:c4:85:89: 66:27:25:de:22:dc:91:93:d5:50:e7:8c:64:64:4f: c4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:3D:31:9A:44:2C:31:9A:49:07:93:67:94:67:EC:C5:DB:9F:5F:1F X509v3 Authority Key Identifier: keyid:28:FB:AD:F1:C0:B5:A4:25:B5:D2:1D:7C:F4:5C:40:CA:A4:4E:DC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/KPut8cC1pCW10h189FxAyqRO3OE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPut8cC1pCW10h189FxAyqRO3OE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/79D4F51A2CC911F09800D04FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:31c0::/32 Signature Algorithm: sha256WithRSAEncryption 0d:d8:7f:d7:81:b7:f1:03:d5:88:f2:eb:ca:d0:1e:3b:ab:da: 41:06:83:1a:6e:e5:16:e3:6d:b9:c2:1b:c9:ce:88:94:16:ef: 71:50:45:80:d9:91:15:83:45:f6:b5:3c:10:d0:08:64:47:11: 8d:a2:ec:cb:a5:1c:b9:f1:f3:07:40:8f:8f:5a:f8:e7:3d:8f: a8:58:9e:5b:04:ab:0f:da:95:05:f8:f7:be:0e:ea:4a:3a:95: 85:0a:ea:e7:99:ca:5b:21:2a:86:98:6f:9b:e2:bf:d3:41:31: f7:23:cb:89:90:70:4a:73:0f:3f:74:1d:69:93:7a:82:64:1b: f5:af:41:2d:f6:8c:0d:2c:a9:19:25:11:49:48:ac:4e:e2:27: 20:dc:9f:58:a0:17:a6:85:35:03:3c:de:55:70:12:a2:f7:b3: 2f:02:01:4b:c9:1d:a5:ee:85:80:8a:d0:7c:bd:32:4d:39:95: 36:d6:f4:6b:e4:4d:72:64:32:63:ee:fc:44:5d:d0:88:51:5f: 4a:e0:b3:82:80:98:18:68:b7:26:80:e0:7f:43:80:cc:33:0e: 10:fe:c6:8d:94:56:ac:7c:98:77:76:67:42:13:9e:80:63:d2: 98:94:04:0e:79:e4:34:c4:81:61:35:a9:f7:9d:1a:f9:c8:0b: 03:9b:c3:07 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZBRjcxMTAvBgNVBAUTKDI4RkJBREYxQzBCNUE0MjVCNUQyMUQ3Q0Y0NUM0MENB QTQ0RURDRTEwHhcNMjUwNTA5MTEzMzQ5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkZTgxZC01ZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgq1TzB1bU33o5/Nyk1vyDGbr8v+EzgsDXM5nkvICSMazwrcEE6J9usZ83xD kHytNrM3w4nvwpnmFTTmKdZv7pK+VJChV8WT7ActNTaCpbPmA8uBoUDgilrAj5gg Knh3NiRACp0gXWinrVDv9/yjWlRkHhBJ+WDBmoP34VCJxx2l9lo6FvDgMC9eJ/8o MYlVhtnmU51WVa9f+vyk+/oX85TisLu8v1yajT1toaODUnmvpaicYSAAjF7a8Zi1 grScGApbLnn0ONy+lF09+BrT3Y7yRShZbwOZqwXJgUUlEX9kIVnHgax8HzBQFNvE hYlmJyXeItyRk9VQ54xkZE/ERwIDAQABo4ICljCCApIwHQYDVR0OBBYEFFM9MZpE LDGaSQeTZ5Rn7MXbn18fMB8GA1UdIwQYMBaAFCj7rfHAtaQltdIdfPRcQMqkTtzh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkFGNy83QjBCNkY3MkYy NzMxMUU5QUUyNTc2NDBDNEY5QUUwMi9LUHV0OGNDMXBDVzEwaDE4OUZ4QXlxUk8z T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQdXQ4Y0MxcENXMTBoMTg5RnhBeXFSTzNPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZBRjcvN0IwQjZGNzJGMjczMTFFOUFFMjU3NjQwQzRGOUFFMDIvNzlENEY1MUEy Q0M5MTFGMDk4MDBEMDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkATHAMA0GCSqGSIb3DQEBCwUAA4IBAQAN2H/XgbfxA9WI 8uvK0B47q9pBBoMabuUW4225whvJzoiUFu9xUEWA2ZEVg0X2tTwQ0AhkRxGNouzL pRy58fMHQI+PWvjnPY+oWJ5bBKsP2pUF+Pe+DupKOpWFCurnmcpbISqGmG+b4r/T QTH3I8uJkHBKcw8/dB1pk3qCZBv1r0Et9owNLKkZJRFJSKxO4icg3J9YoBemhTUD PN5VcBKi97MvAgFLyR2l7oWAitB8vTJNOZU21vRr5E1yZDJj7vxEXdCIUV9K4LOC gJgYaLcmgOB/Q4DMMw4Q/saNlFasfJh3dmdCE56AY9KYlAQOeeQ0xIFhNan3nRr5 yAsDm8MH -----END CERTIFICATE-----Generated at Thu May 15 03:23:55 2025 by rpki-client