$ rpki-client -vvf rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/B3C4F6FCC8E811EFA15E172AC4F9AE02.roa File: B3C4F6FCC8E811EFA15E172AC4F9AE02.roa (raw, json) Hash identifier: nKSePsS9MPGNfom4Rnz59tSXOtuz0jzrRs8gfUCXxws= Subject key identifier: 00:B4:52:15:3B:9D:D2:56:DB:DD:78:8A:3E:2B:39:B8:7C:0D:2B:0A Certificate issuer: /CN=A912142C/serialNumber=BF583FF07DA356FDE282819F47BCEE247513119A Certificate serial: 345F Authority key identifier: BF:58:3F:F0:7D:A3:56:FD:E2:82:81:9F:47:BC:EE:24:75:13:11:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1g_8H2jVv3igoGfR7zuJHUTEZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/B3C4F6FCC8E811EFA15E172AC4F9AE02.roa Signing time: Thu 02 Jan 2025 09:05:24 +0000 ROA not before: Thu 02 Jan 2025 09:05:24 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 9484 IP address blocks: 2404:ec80:105::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.crl rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1g_8H2jVv3igoGfR7zuJHUTEZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13407 (0x345f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912142C, serialNumber=BF583FF07DA356FDE282819F47BCEE247513119A Validity Not Before: Jan 2 09:05:24 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=677656d4-2d5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0d:74:d1:61:24:7c:1c:3a:94:fb:c5:fb:68: 75:0f:cd:1e:15:07:4b:07:21:a2:bb:f1:86:a5:ee: 6e:96:97:9f:7f:7f:5f:f5:82:f6:91:bd:d2:91:56: ed:69:eb:3e:11:f3:8d:dd:8c:2d:b8:ca:2f:df:d1: 89:04:3e:6b:90:ff:f8:da:52:d0:bc:f1:14:13:60: 8b:54:03:28:c6:28:a2:36:a4:85:87:f9:28:00:a5: b7:dd:ed:20:84:33:c0:1c:ec:49:bc:88:fa:2d:4f: 54:6f:4b:b0:5a:98:26:83:17:fd:41:f0:82:9e:c9: 74:1e:ce:ee:14:3c:36:56:29:7c:f2:19:d7:09:b6: 8d:83:99:d9:df:62:a5:24:5a:48:b6:82:2e:97:29: 83:93:44:b6:8d:6f:2b:96:55:66:d7:8d:e4:c3:c5: 86:33:86:25:37:4e:0b:50:1d:bb:e4:f5:2d:c5:ff: 9a:81:3e:76:f7:13:42:ba:3a:cf:99:5b:2e:3a:21: 5d:e8:67:1f:bb:e8:05:86:49:e0:b2:71:92:8b:a0: c1:27:f5:a1:d2:85:79:02:62:21:3e:cc:21:ba:52: c1:b4:88:dd:cc:9e:8b:b2:8d:46:b8:74:34:eb:ec: 09:b4:8b:2d:cf:40:c6:9c:24:ee:a3:35:ea:0c:5b: 4b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:B4:52:15:3B:9D:D2:56:DB:DD:78:8A:3E:2B:39:B8:7C:0D:2B:0A X509v3 Authority Key Identifier: keyid:BF:58:3F:F0:7D:A3:56:FD:E2:82:81:9F:47:BC:EE:24:75:13:11:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1g_8H2jVv3igoGfR7zuJHUTEZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/B3C4F6FCC8E811EFA15E172AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:ec80:105::/48 Signature Algorithm: sha256WithRSAEncryption 3d:5b:06:2d:c4:5c:54:01:79:af:a5:01:65:23:ee:9d:ad:b9: d6:89:fc:6c:bd:60:6a:dc:8f:08:9f:a1:72:55:fc:10:e8:15: 5d:52:ca:a2:60:ab:d5:8b:69:bd:8c:c8:d2:e5:14:23:de:ec: d1:1e:67:88:f6:bb:6b:06:1a:d5:37:1b:39:0d:fb:7b:7a:78: 99:63:1d:0d:cc:7b:b4:e5:c9:f9:76:90:72:47:3e:c8:3f:99: ce:0e:46:ad:b0:5b:e2:fc:d7:23:89:e3:db:ca:69:c5:ae:29: 58:39:dc:ac:38:ec:cf:6d:e5:63:2c:fe:90:2b:cf:fd:57:3c: 2e:70:23:a5:0d:6e:8e:49:07:ac:42:e5:82:5e:87:75:97:ee: 65:de:cb:57:42:ec:fb:6d:1f:fc:4a:8b:eb:13:1f:dc:cd:bb: d2:28:8e:f2:2a:d8:ca:af:35:d1:c6:1a:8e:7d:78:90:c6:4d: 4d:4f:cb:f9:f9:22:37:e4:29:0c:69:a1:7b:ab:52:9f:88:9a: 72:f3:3e:e8:a4:f1:ba:9b:57:0d:4a:a6:53:2b:3a:bd:e1:33: d8:55:35:c3:ee:52:f0:2a:4a:e8:68:ab:3f:f9:74:c7:cd:11: b6:84:91:ad:b7:7e:99:0e:9a:f9:cd:d9:3e:8d:f2:1f:3f:f2: 61:55:a9:3f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICNF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE0MkMxMTAvBgNVBAUTKEJGNTgzRkYwN0RBMzU2RkRFMjgyODE5RjQ3QkNFRTI0 NzUxMzExOUEwHhcNMjUwMTAyMDkwNTI0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc2NTZkNC0yZDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA100WEkfBw6lPvF+2h1D80eFQdLByGiu/GGpe5ulpeff39f9YL2kb3SkVbt aes+EfON3YwtuMov39GJBD5rkP/42lLQvPEUE2CLVAMoxiiiNqSFh/koAKW33e0g hDPAHOxJvIj6LU9Ub0uwWpgmgxf9QfCCnsl0Hs7uFDw2Vil88hnXCbaNg5nZ32Kl JFpItoIulymDk0S2jW8rllVm143kw8WGM4YlN04LUB275PUtxf+agT529xNCujrP mVsuOiFd6Gcfu+gFhkngsnGSi6DBJ/Wh0oV5AmIhPswhulLBtIjdzJ6Lso1GuHQ0 6+wJtIstz0DGnCTuozXqDFtLRwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAC0UhU7 ndJW2914ij4rObh8DSsKMB8GA1UdIwQYMBaAFL9YP/B9o1b94oKBn0e87iR1ExGa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTQyQy8yMEIzN0NGRTFE ODcxMUUyQkRFRkY3REUwOEIwMkNEMi92MWdfOEgyalZ2M2lnb0dmUjd6dUpIVVRF Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YxZ184SDJqVnYzaWdvR2ZSN3p1SkhVVEVaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE0MkMvMjBCMzdDRkUxRDg3MTFFMkJERUZGN0RFMDhCMDJDRDIvQjNDNEY2RkND OEU4MTFFRkExNUUxNzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBOyAAQUwDQYJKoZIhvcNAQELBQADggEBAD1bBi3EXFQB ea+lAWUj7p2tudaJ/Gy9YGrcjwifoXJV/BDoFV1SyqJgq9WLab2MyNLlFCPe7NEe Z4j2u2sGGtU3GzkN+3t6eJljHQ3Me7Tlyfl2kHJHPsg/mc4ORq2wW+L81yOJ49vK acWuKVg53Kw47M9t5WMs/pArz/1XPC5wI6UNbo5JB6xC5YJeh3WX7mXey1dC7Ptt H/xKi+sTH9zNu9IojvIq2MqvNdHGGo59eJDGTU1Py/n5IjfkKQxpoXurUp+ImnLz Puik8bqbVw1KplMrOr3hM9hVNcPuUvAqSuhoqz/5dMfNEbaEka23fpkOmvnN2T6N 8h8/8mFVqT8= -----END CERTIFICATE-----Generated at Sat Apr 26 05:58:30 2025 by rpki-client