$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/B3997DB4F3A311EC8804FE09C4F9AE02.roa File: B3997DB4F3A311EC8804FE09C4F9AE02.roa (raw, json) Hash identifier: BL08vovoDowTntRWd/Vw95cPa6IEzlJ82ZeGlQ75IkU= Subject key identifier: E8:6F:75:FF:1D:2C:B9:36:4E:F9:CA:F8:BF:F2:D6:E1:3E:6C:57:8B Certificate issuer: /CN=A914DA2D/serialNumber=D7CB6D1DDCF934A1F59E4FFE4982F0B4C52C35F5 Certificate serial: 0331 Authority key identifier: D7:CB:6D:1D:DC:F9:34:A1:F5:9E:4F:FE:49:82:F0:B4:C5:2C:35:F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/18ttHdz5NKH1nk_-SYLwtMUsNfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/B3997DB4F3A311EC8804FE09C4F9AE02.roa Signing time: Mon 12 May 2025 10:56:16 +0000 ROA not before: Mon 12 May 2025 10:56:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55408 IP address blocks: 192.82.78.0/24 maxlen: 24 192.82.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.crl rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/18ttHdz5NKH1nk_-SYLwtMUsNfU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:19:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 817 (0x331) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA2D, serialNumber=D7CB6D1DDCF934A1F59E4FFE4982F0B4C52C35F5 Validity Not Before: May 12 10:56:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6821d3d0-4807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4e:79:19:1d:50:4b:90:9b:1d:d3:17:86:e1: 55:b9:03:d4:10:3b:8f:27:51:8a:b8:2a:70:9a:05: ec:ed:9f:4c:1e:f6:bf:ba:f1:2d:5e:b0:a3:bd:4d: bd:d3:0a:d7:a4:c6:2b:12:03:bd:84:96:8c:e7:bd: 60:3d:75:13:8a:e9:2d:7f:f3:97:a3:63:b9:9e:4c: a6:e9:b6:b5:6b:0f:0e:eb:c9:32:80:94:d7:2e:9b: 2c:9f:20:4e:bf:92:69:54:d1:20:e3:4b:18:15:22: f1:91:9d:4c:9f:58:34:db:df:0a:e7:c5:ba:25:d5: 28:74:14:ab:12:48:5a:77:33:63:3b:7b:91:73:f6: 2c:46:ae:c2:34:ec:e5:ed:d9:52:8b:ad:c2:5b:40: 03:ec:e0:b1:7c:60:86:02:11:a7:2c:29:dc:e0:d7: 92:d0:07:1b:2a:19:09:a8:30:0c:4e:ed:90:5d:a0: bb:3b:b9:ef:b4:44:d3:7b:f1:51:de:aa:c0:87:fa: b5:b5:bf:47:57:85:21:0e:08:9f:a5:c2:8c:e9:4e: 6c:55:ef:6b:ec:e4:ff:da:45:f4:c2:77:56:4c:6e: 1e:57:a3:d2:9d:61:d7:39:89:df:38:dd:0c:a3:29: d4:17:3d:ea:39:fb:c5:cf:20:ac:66:31:85:97:6b: 14:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:6F:75:FF:1D:2C:B9:36:4E:F9:CA:F8:BF:F2:D6:E1:3E:6C:57:8B X509v3 Authority Key Identifier: keyid:D7:CB:6D:1D:DC:F9:34:A1:F5:9E:4F:FE:49:82:F0:B4:C5:2C:35:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/18ttHdz5NKH1nk_-SYLwtMUsNfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/B3997DB4F3A311EC8804FE09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.82.78.0/24 192.82.93.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:b7:13:e7:26:99:f2:67:fb:70:37:34:d9:42:d1:1c:62:8f: 5c:85:13:18:c5:8f:04:d1:dc:2d:63:5e:74:21:c4:e1:bb:86: 59:4b:eb:c4:6e:28:e0:28:77:52:c4:2d:b4:33:83:9d:0e:17: ca:3f:ce:b1:04:65:db:8c:a9:50:70:5b:ac:dd:a8:69:30:5a: 6a:cc:2c:94:2a:8f:9d:3b:97:3a:15:a8:ff:04:ef:7a:72:64: 98:c2:32:77:b1:1c:0d:3a:2e:f5:2a:b7:bf:11:6f:e9:c7:fd: 87:05:b7:71:02:38:e8:44:b2:9c:db:bc:3f:94:1e:a6:9e:eb: 1e:4c:79:38:a7:cd:7b:25:a8:d5:bd:39:52:1d:a5:0f:79:2f: fe:bb:f9:66:f6:e4:77:95:01:d5:e7:15:c7:5d:04:35:47:4a: f4:5a:66:79:2b:85:d3:28:15:5d:93:91:f3:0c:e8:3d:d5:ae: da:93:87:ad:9b:1d:9b:99:46:a2:9b:91:58:c1:ca:9a:97:15: 01:fa:87:00:bc:53:1b:38:45:1d:bb:1b:39:4e:c9:58:39:96: 04:77:9c:e9:ad:71:c9:76:3d:1c:d8:27:74:e8:98:41:79:22: a4:dd:b6:ef:fa:ff:9f:e8:0c:5b:22:3f:ba:63:0b:d7:cc:a2: b6:19:be:43 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBMkQxMTAvBgNVBAUTKEQ3Q0I2RDFERENGOTM0QTFGNTlFNEZGRTQ5ODJGMEI0 QzUyQzM1RjUwHhcNMjUwNTEyMTA1NjE2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIxZDNkMC00ODA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsE55GR1QS5CbHdMXhuFVuQPUEDuPJ1GKuCpwmgXs7Z9MHva/uvEtXrCjvU29 0wrXpMYrEgO9hJaM571gPXUTiuktf/OXo2O5nkym6ba1aw8O68kygJTXLpssnyBO v5JpVNEg40sYFSLxkZ1Mn1g0298K58W6JdUodBSrEkhadzNjO3uRc/YsRq7CNOzl 7dlSi63CW0AD7OCxfGCGAhGnLCnc4NeS0AcbKhkJqDAMTu2QXaC7O7nvtETTe/FR 3qrAh/q1tb9HV4UhDgifpcKM6U5sVe9r7OT/2kX0wndWTG4eV6PSnWHXOYnfON0M oynUFz3qOfvFzyCsZjGFl2sUqwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOhvdf8d LLk2TvnK+L/y1uE+bFeLMB8GA1UdIwQYMBaAFNfLbR3c+TSh9Z5P/kmC8LTFLDX1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEyRC83MkI1RjI5MkQy N0QxMUVDQTczRUYxNTRDNEY5QUUwMi8xOHR0SGR6NU5LSDFua18tU1lMd3RNVXNO ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzE4dHRIZHo1TktIMW5rXy1TWUx3dE1Vc05mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERBMkQvNzJCNUYyOTJEMjdEMTFFQ0E3M0VGMTU0QzRGOUFFMDIvQjM5OTdEQjRG M0EzMTFFQzg4MDRGRTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADAUk4DBADAUl0wDQYJKoZIhvcNAQELBQADggEBAHq3E+cm mfJn+3A3NNlC0Rxij1yFExjFjwTR3C1jXnQhxOG7hllL68RuKOAod1LELbQzg50O F8o/zrEEZduMqVBwW6zdqGkwWmrMLJQqj507lzoVqP8E73pyZJjCMnexHA06LvUq t78Rb+nH/YcFt3ECOOhEspzbvD+UHqae6x5MeTinzXslqNW9OVIdpQ95L/67+Wb2 5HeVAdXnFcddBDVHSvRaZnkrhdMoFV2TkfMM6D3VrtqTh62bHZuZRqKbkVjBypqX FQH6hwC8Uxs4RR27GzlOyVg5lgR3nOmtccl2PRzYJ3TomEF5IqTdtu/6/5/oDFsi P7pjC9fMorYZvkM= -----END CERTIFICATE-----Generated at Mon May 12 22:53:42 2025 by rpki-client