$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/5258D3D4BCE011EFAB38225AC4F9AE02.roa File: 5258D3D4BCE011EFAB38225AC4F9AE02.roa (raw, json) Hash identifier: cv1XOQDllKYXcpEWN6EDo+84rWYyoCQRLW84g8KQ5ZA= Subject key identifier: 6A:94:7E:9E:DB:6E:6A:2A:8D:D0:8B:34:27:E5:BE:A6:8A:DD:03:8E Certificate issuer: /CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Certificate serial: 0990 Authority key identifier: 73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/5258D3D4BCE011EFAB38225AC4F9AE02.roa Signing time: Wed 18 Dec 2024 01:35:11 +0000 ROA not before: Wed 18 Dec 2024 01:35:11 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 9269 IP address blocks: 138.19.0.0/16 maxlen: 24 165.84.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:57:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2448 (0x990) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Validity Not Before: Dec 18 01:35:11 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=676226cf-83f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:04:b5:75:5f:ea:f4:7d:eb:f8:85:c7:27:21: 61:5e:ed:5a:ab:41:71:d2:2f:ad:9b:e7:ac:7c:f0: 57:25:9d:be:34:98:af:13:3e:e5:ff:4b:da:4d:d8: 62:e7:3e:48:f1:ed:e9:64:18:43:1c:b0:20:14:c9: 1f:3a:f0:7f:72:91:da:d7:bb:c7:12:79:01:e2:77: 5c:5c:cb:b3:81:b2:e2:10:35:f1:64:1c:c8:ef:f8: 88:78:02:e6:2e:70:4a:23:3a:99:6d:35:8f:fa:91: 97:a8:01:d8:83:9d:ae:cf:0e:d2:14:9f:f2:6c:34: 76:73:3d:5c:91:f9:a9:68:c6:b9:4b:65:31:bd:53: c1:6f:64:85:73:0c:44:ac:2f:99:cc:a4:2e:8b:27: 43:52:f1:07:3c:7a:a8:9d:fd:92:e7:e8:68:2b:0e: 31:08:b7:85:6c:40:3d:1a:16:95:c1:0c:73:0f:56: 6b:29:4a:5b:d6:34:4a:49:b8:1e:b2:c5:11:15:2b: a0:21:b1:66:f0:46:c6:37:2f:fa:fb:fa:36:05:e6: 7c:ae:79:f2:43:ee:2e:23:48:00:c6:12:56:36:92: 15:74:11:e6:c2:28:a2:07:55:38:c2:07:c6:b5:4b: eb:65:28:9d:4b:c2:63:76:a2:7e:70:44:19:1e:aa: e1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:94:7E:9E:DB:6E:6A:2A:8D:D0:8B:34:27:E5:BE:A6:8A:DD:03:8E X509v3 Authority Key Identifier: keyid:73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/5258D3D4BCE011EFAB38225AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.19.0.0/16 165.84.128.0/18 Signature Algorithm: sha256WithRSAEncryption 0e:6a:c1:63:af:6c:59:3c:07:47:65:2e:84:50:7e:b3:8e:c5: 53:46:2d:a5:1e:ef:13:a4:94:c6:83:ca:cc:af:1a:63:dc:d0: 21:eb:db:ea:e2:7f:67:16:98:a0:8f:67:ba:8d:d7:af:c7:5b: 2d:af:14:b2:b8:cd:f8:be:b2:ad:4f:b1:1d:30:9b:8d:4e:a6: f7:8b:9e:80:a5:9f:1d:6c:03:89:bc:c1:14:70:9f:51:fa:1e: 07:c2:04:71:45:20:49:04:39:55:72:7a:2d:a1:6a:27:18:5a: 55:58:e3:04:7f:15:00:e4:d8:14:25:ac:a0:bc:31:98:e5:a3: 9a:8b:cb:98:3f:af:04:43:c8:c3:8b:c7:60:ad:0b:27:9b:64: a2:2c:eb:9c:2f:3a:93:16:86:5e:78:0e:89:98:aa:5d:38:9f: 44:34:a2:42:c5:cd:04:55:5f:82:b3:6a:a0:b8:a0:a2:be:a6: 96:b8:95:f0:48:c7:84:75:68:f5:43:dc:80:72:23:2b:40:cb: 32:a5:5c:5f:91:69:2f:aa:7f:4f:c0:ed:3b:54:a1:04:0e:8a: 6d:29:f6:dd:99:b4:d8:58:4f:fc:24:4b:5c:c9:71:e8:cc:c9: 76:8d:fe:d3:81:78:ff:2b:35:0e:45:26:e9:79:e4:d6:48:e5: 8f:51:58:10 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICCZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDczN0U2MURBQTA3QkQ4MzM0MkI2MEM1RUJBRDRCMUJC MTlCRTQwMDMwHhcNMjQxMjE4MDEzNTExWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYyMjZjZi04M2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQS1dV/q9H3r+IXHJyFhXu1aq0Fx0i+tm+esfPBXJZ2+NJivEz7l/0vaTdhi 5z5I8e3pZBhDHLAgFMkfOvB/cpHa17vHEnkB4ndcXMuzgbLiEDXxZBzI7/iIeALm LnBKIzqZbTWP+pGXqAHYg52uzw7SFJ/ybDR2cz1ckfmpaMa5S2UxvVPBb2SFcwxE rC+ZzKQuiydDUvEHPHqonf2S5+hoKw4xCLeFbEA9GhaVwQxzD1ZrKUpb1jRKSbge ssURFSugIbFm8EbGNy/6+/o2BeZ8rnnyQ+4uI0gAxhJWNpIVdBHmwiiiB1U4wgfG tUvrZSidS8JjdqJ+cEQZHqrh/QIDAQABo4ICmjCCApYwHQYDVR0OBBYEFGqUfp7b bmoqjdCLNCflvqaK3QOOMB8GA1UdIwQYMBaAFHN+Ydqge9gzQrYMXrrUsbsZvkAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy8zQjFDREZCQzg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJETkN0Z3hldXRTeHV4bS1R QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2MzNWgycUI3MkROQ3RneGV1dFN4dXhtLVFBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0N0MvM0IxQ0RGQkM4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvNTI1OEQzRDRC Q0UwMTFFRkFCMzgyMjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDAwCKEwMEBqVUgDANBgkqhkiG9w0BAQsFAAOCAQEADmrBY69s WTwHR2UuhFB+s47FU0YtpR7vE6SUxoPKzK8aY9zQIevb6uJ/ZxaYoI9nuo3Xr8db La8UsrjN+L6yrU+xHTCbjU6m94uegKWfHWwDibzBFHCfUfoeB8IEcUUgSQQ5VXJ6 LaFqJxhaVVjjBH8VAOTYFCWsoLwxmOWjmovLmD+vBEPIw4vHYK0LJ5tkoizrnC86 kxaGXngOiZiqXTifRDSiQsXNBFVfgrNqoLigor6mlriV8EjHhHVo9UPcgHIjK0DL MqVcX5FpL6p/T8DtO1ShBA6KbSn23Zm02FhP/CRLXMlx6MzJdo3+04F4/ys1DkUm 6Xnk1kjlj1FYEA== -----END CERTIFICATE-----Generated at Sat Apr 26 13:10:52 2025 by rpki-client