$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/9DE197A2168511EAB282BB44C4F9AE02.roa File: 9DE197A2168511EAB282BB44C4F9AE02.roa (raw, json) Hash identifier: hOh5ZVZ+qFHQ5JWAOKeMOjW8ikSLX180HH4vgbhOg/c= Subject key identifier: B9:FA:4F:14:EC:1C:C3:9F:B9:DA:74:15:A6:F0:06:F4:C2:AA:A9:5A Certificate issuer: /CN=A9123D9C/serialNumber=5B2CF0FB62F160F1838AEE3E6CDE07544DFF8BFF Certificate serial: 1027 Authority key identifier: 5B:2C:F0:FB:62:F1:60:F1:83:8A:EE:3E:6C:DE:07:54:4D:FF:8B:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/9DE197A2168511EAB282BB44C4F9AE02.roa Signing time: Wed 12 Feb 2025 18:06:09 +0000 ROA not before: Wed 12 Feb 2025 18:06:09 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138946 IP address blocks: 2404:9ec0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.crl rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4135 (0x1027) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D9C, serialNumber=5B2CF0FB62F160F1838AEE3E6CDE07544DFF8BFF Validity Not Before: Feb 12 18:06:09 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ace311-1310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:db:ca:e9:d9:ef:85:2a:7c:49:fb:e8:89:44: 3c:80:63:3c:62:b4:34:35:a8:fa:a9:e3:a1:e8:f3: 00:52:8a:e0:06:96:7b:a6:fb:6c:6d:60:9b:9a:60: a4:64:aa:67:4b:8d:22:03:f1:7d:ce:89:25:6d:a2: f9:34:8d:e4:fb:00:11:a0:60:f7:52:a7:83:d5:e3: 66:75:49:7c:92:43:ae:95:4f:f3:64:25:a5:6f:79: c7:db:99:c2:80:cf:7c:9a:f2:ed:39:a8:ad:20:68: f1:e1:2d:d1:86:21:b8:ce:ed:ec:a3:df:93:65:9d: 5b:a6:0d:4d:d0:0e:83:fa:fa:b0:09:42:2f:fa:50: 85:fd:b9:33:35:59:96:3f:8b:0b:07:c0:23:7f:bf: bf:35:a3:af:3e:61:b7:e3:e0:ef:7a:d8:b1:5f:21: 41:1a:a9:85:3e:6e:cb:9e:3c:9a:2e:8d:9e:2a:46: 94:9d:c0:5d:c8:64:6b:61:40:54:2e:f4:b2:20:b9: f3:7b:c1:f4:12:43:1a:bb:ab:95:47:c5:83:7d:0c: 34:b8:d9:2d:94:cb:1b:f1:42:82:a2:e9:0d:ea:b1: 69:27:b4:5f:1d:50:91:7a:34:e4:24:cc:53:42:e7: 15:94:ec:b7:01:1d:1c:8f:01:48:eb:d5:f0:63:6d: 4c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:FA:4F:14:EC:1C:C3:9F:B9:DA:74:15:A6:F0:06:F4:C2:AA:A9:5A X509v3 Authority Key Identifier: keyid:5B:2C:F0:FB:62:F1:60:F1:83:8A:EE:3E:6C:DE:07:54:4D:FF:8B:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/9DE197A2168511EAB282BB44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:9ec0:6::/48 Signature Algorithm: sha256WithRSAEncryption 8c:93:d0:b7:c1:51:4c:93:fb:82:e8:03:7b:bd:0b:ef:7d:85: 86:0e:94:01:a1:4f:8a:64:48:c8:a7:4e:ef:e3:6b:80:23:4e: f2:8f:d9:05:53:25:91:18:f6:25:96:08:62:e4:32:44:52:d8: ff:64:14:3a:0c:57:70:1e:14:82:fd:59:d5:b2:15:96:0a:6e: 06:ca:1b:a5:2e:1c:32:e3:b0:28:24:96:e9:e0:38:31:25:00: 2b:68:d6:59:02:eb:49:14:ba:df:c8:8f:d2:02:4a:40:d3:bb: 1b:2d:6f:e7:b6:65:4e:62:42:25:ad:4e:02:2e:16:2f:b9:98: ea:57:9b:a9:54:49:af:91:68:51:e1:f4:eb:73:8a:5b:3b:ad: e2:51:6a:44:ed:99:25:ae:5a:10:db:6c:eb:ac:67:43:b9:88: 9b:25:b2:dc:28:c9:95:4a:5c:e6:5f:f2:41:41:af:93:ab:27: 19:e7:42:36:f0:87:c2:25:4a:28:7c:6b:aa:a5:1e:61:2e:59: 06:8d:e3:53:02:36:e1:e7:cd:fe:db:27:81:d6:56:d4:26:9f: 60:17:14:b5:0b:76:a7:8c:e0:74:17:65:9e:61:56:b1:de:e1: e1:f3:d4:d6:5d:0d:2c:e7:59:68:ed:e9:50:46:f4:79:2e:75: 64:de:07:9d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICECcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEOUMxMTAvBgNVBAUTKDVCMkNGMEZCNjJGMTYwRjE4MzhBRUUzRTZDREUwNzU0 NERGRjhCRkYwHhcNMjUwMjEyMTgwNjA5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FjZTMxMS0xMzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNvK6dnvhSp8SfvoiUQ8gGM8YrQ0Naj6qeOh6PMAUorgBpZ7pvtsbWCbmmCk ZKpnS40iA/F9zoklbaL5NI3k+wARoGD3UqeD1eNmdUl8kkOulU/zZCWlb3nH25nC gM98mvLtOaitIGjx4S3RhiG4zu3so9+TZZ1bpg1N0A6D+vqwCUIv+lCF/bkzNVmW P4sLB8Ajf7+/NaOvPmG34+DvetixXyFBGqmFPm7LnjyaLo2eKkaUncBdyGRrYUBU LvSyILnze8H0EkMau6uVR8WDfQw0uNktlMsb8UKCoukN6rFpJ7RfHVCRejTkJMxT QucVlOy3AR0cjwFI69XwY21M+QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLn6TxTs HMOfudp0FabwBvTCqqlaMB8GA1UdIwQYMBaAFFss8Pti8WDxg4ruPmzeB1RN/4v/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Q5Qy80NTU5NDJENjUw QjIxMUU5QjVEQjZBNkJDNEY5QUUwMi9XeXp3LTJMeFlQR0RpdTQtYk40SFZFM19p XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1d5enctMkx4WVBHRGl1NC1iTjRIVkUzX2lfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNEOUMvNDU1OTQyRDY1MEIyMTFFOUI1REI2QTZCQzRGOUFFMDIvOURFMTk3QTIx Njg1MTFFQUIyODJCQjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBJ7AAAYwDQYJKoZIhvcNAQELBQADggEBAIyT0LfBUUyT +4LoA3u9C+99hYYOlAGhT4pkSMinTu/ja4AjTvKP2QVTJZEY9iWWCGLkMkRS2P9k FDoMV3AeFIL9WdWyFZYKbgbKG6UuHDLjsCgklungODElACto1lkC60kUut/Ij9IC SkDTuxstb+e2ZU5iQiWtTgIuFi+5mOpXm6lUSa+RaFHh9Otzils7reJRakTtmSWu WhDbbOusZ0O5iJslstwoyZVKXOZf8kFBr5OrJxnnQjbwh8IlSih8a6qlHmEuWQaN 41MCNuHnzf7bJ4HWVtQmn2AXFLULdqeM4HQXZZ5hVrHe4eHz1NZdDSznWWjt6VBG 9HkudWTeB50= -----END CERTIFICATE-----Generated at Sat Apr 26 08:14:57 2025 by rpki-client