$ rpki-client -vvf rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/D4FD2A902B8411EEBCDBEF7AC4F9AE02.roa File: D4FD2A902B8411EEBCDBEF7AC4F9AE02.roa (raw, json) Hash identifier: st8PwK196xNld8O2k0lKE8037dLGvSfGuDJRF0i8kvY= Subject key identifier: 05:80:FF:38:ED:C3:02:2A:13:96:B4:8D:0F:B3:52:14:2D:D7:64:F4 Certificate issuer: /CN=A9149B61/serialNumber=E3E100F804013A05F922EE11CB4E0ABEA6C22B98 Certificate serial: 0158 Authority key identifier: E3:E1:00:F8:04:01:3A:05:F9:22:EE:11:CB:4E:0A:BE:A6:C2:2B:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/D4FD2A902B8411EEBCDBEF7AC4F9AE02.roa Signing time: Wed 07 May 2025 03:41:12 +0000 ROA not before: Wed 07 May 2025 03:41:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149787 IP address blocks: 2001:df0:a5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.crl rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:20:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149B61, serialNumber=E3E100F804013A05F922EE11CB4E0ABEA6C22B98 Validity Not Before: May 7 03:41:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ad658-19f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:23:74:77:97:d4:e3:66:d8:62:36:83:33:93: cb:9d:bc:09:ed:67:ac:f0:11:76:05:7d:fd:cd:73: 9e:73:2d:44:13:2c:ba:c3:20:7a:bb:ad:a7:b4:78: 9a:73:a9:b9:19:a3:18:07:99:6a:48:d4:02:b1:79: fa:27:fd:1b:fc:7b:25:3c:24:f3:79:8c:ff:b1:7b: bf:ec:6c:df:77:14:9b:5b:20:06:96:53:e8:74:9d: 7f:b4:e1:8c:93:94:5f:22:12:0b:52:b5:9b:a2:f4: 97:46:fb:ed:2e:ca:97:2b:5c:b9:6b:63:b4:07:bd: 5d:4d:a2:83:de:4c:89:69:43:e8:0a:78:be:77:5d: 7c:ad:72:3a:81:b1:7e:98:78:77:34:c4:4c:ff:96: c8:a0:df:ec:70:b8:6b:94:5b:e5:5b:fd:8a:75:f0: fa:1e:b2:06:c3:1b:e4:b2:e6:a3:93:04:77:30:62: 36:6a:e1:f9:70:b6:fb:62:2d:8a:95:94:20:d3:7e: 2b:98:f5:97:1b:d0:d1:41:2a:cf:b4:02:86:30:7d: 85:05:f9:38:ea:f8:d7:b0:25:68:49:7c:9c:a8:bd: 53:57:b4:51:30:28:75:7c:5e:79:75:79:ec:63:ed: 0c:91:b3:dc:57:ff:d1:1a:ed:84:0d:ac:cf:fd:12: 67:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:80:FF:38:ED:C3:02:2A:13:96:B4:8D:0F:B3:52:14:2D:D7:64:F4 X509v3 Authority Key Identifier: keyid:E3:E1:00:F8:04:01:3A:05:F9:22:EE:11:CB:4E:0A:BE:A6:C2:2B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/D4FD2A902B8411EEBCDBEF7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:a5c0::/48 Signature Algorithm: sha256WithRSAEncryption e5:3d:8b:2b:d1:42:4d:52:19:49:1f:07:d6:b1:e9:77:98:48: 3f:b3:cd:23:97:7b:04:e1:87:f4:a0:e9:62:5d:35:77:62:cc: cf:f4:6c:03:8f:2a:32:a5:bf:48:af:0b:90:46:fb:2a:24:6f: 09:ea:fa:1d:e2:e0:56:bd:2b:8e:a1:49:ad:3d:64:21:aa:0d: 15:f4:7a:6e:f7:01:83:e1:f1:e3:76:fe:28:fc:25:e5:c9:3b: 22:f6:6d:ce:8b:2a:c7:89:83:96:ec:5d:e4:3d:92:ef:9d:13: 74:95:60:20:71:7d:fd:44:88:b5:18:f5:79:ea:ce:53:bd:f7: 34:d1:9b:20:66:e3:d7:cd:ea:cf:4b:db:ff:d6:b5:eb:8b:70: 24:6c:a2:88:f3:58:c8:e9:f8:b1:83:8c:92:7c:37:66:55:24: e2:c4:3c:30:8a:72:e4:d4:18:5d:96:a9:23:89:37:fc:08:36: 91:72:e1:03:2b:fd:dc:10:b6:8c:a4:f7:25:64:57:31:e8:2a: 5b:42:d1:2d:37:69:22:4f:39:3f:19:d0:c6:05:1f:d1:d3:4e: 6f:f2:93:51:57:d2:3e:6f:59:e6:84:55:aa:56:bc:c7:e7:51: 7d:52:81:6e:d4:a1:f8:5f:b0:14:1a:2b:8c:03:e1:58:99:97: 35:f6:43:52 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlCNjExMTAvBgNVBAUTKEUzRTEwMEY4MDQwMTNBMDVGOTIyRUUxMUNCNEUwQUJF QTZDMjJCOTgwHhcNMjUwNTA3MDM0MTEyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhZDY1OC0xOWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6iN0d5fU42bYYjaDM5PLnbwJ7Wes8BF2BX39zXOecy1EEyy6wyB6u62ntHia c6m5GaMYB5lqSNQCsXn6J/0b/HslPCTzeYz/sXu/7GzfdxSbWyAGllPodJ1/tOGM k5RfIhILUrWbovSXRvvtLsqXK1y5a2O0B71dTaKD3kyJaUPoCni+d118rXI6gbF+ mHh3NMRM/5bIoN/scLhrlFvlW/2KdfD6HrIGwxvksuajkwR3MGI2auH5cLb7Yi2K lZQg034rmPWXG9DRQSrPtAKGMH2FBfk46vjXsCVoSXycqL1TV7RRMCh1fF55dXns Y+0MkbPcV//RGu2EDazP/RJnswIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAWA/zjt wwIqE5a0jQ+zUhQt12T0MB8GA1UdIwQYMBaAFOPhAPgEAToF+SLuEctOCr6mwiuY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUI2MS83NjE2RDRGQzJB Q0QxMUVFQjcyMjJDM0NDNEY5QUUwMi80LUVBLUFRQk9nWDVJdTRSeTA0S3ZxYkNL NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQtRUEtQVFCT2dYNUl1NFJ5MDRLdnFiQ0s1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlCNjEvNzYxNkQ0RkMyQUNEMTFFRUI3MjIyQzNDQzRGOUFFMDIvRDRGRDJBOTAy Qjg0MTFFRUJDREJFRjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wpcAwDQYJKoZIhvcNAQELBQADggEBAOU9iyvRQk1S GUkfB9ax6XeYSD+zzSOXewThh/Sg6WJdNXdizM/0bAOPKjKlv0ivC5BG+yokbwnq +h3i4Fa9K46hSa09ZCGqDRX0em73AYPh8eN2/ij8JeXJOyL2bc6LKseJg5bsXeQ9 ku+dE3SVYCBxff1EiLUY9XnqzlO99zTRmyBm49fN6s9L2//WteuLcCRsoojzWMjp +LGDjJJ8N2ZVJOLEPDCKcuTUGF2WqSOJN/wINpFy4QMr/dwQtoyk9yVkVzHoKltC 0S03aSJPOT8Z0MYFH9HTTm/yk1FX0j5vWeaEVapWvMfnUX1SgW7UofhfsBQaK4wD 4ViZlzX2Q1I= -----END CERTIFICATE-----Generated at Wed May 14 16:33:10 2025 by rpki-client