$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/38502DA2029A11EB85BD7B84C4F9AE02.roa File: 38502DA2029A11EB85BD7B84C4F9AE02.roa (raw, json) Hash identifier: 3OsuoPomkN3KwD+aF1zCoEkkbIN7dOFAl/woMg+7fcw= Subject key identifier: 0B:8E:C7:99:BA:4C:CC:9A:45:59:F7:75:0D:D5:9E:75:B9:B2:C6:6C Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 079E Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/38502DA2029A11EB85BD7B84C4F9AE02.roa Signing time: Wed 16 Apr 2025 21:01:30 +0000 ROA not before: Wed 16 Apr 2025 21:01:30 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 56098 IP address blocks: 202.127.210.0/24 maxlen: 24 202.127.211.0/24 maxlen: 24 2001:df0:fe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:06:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1950 (0x79e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Apr 16 21:01:30 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68001aaa-58d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a9:03:62:4f:ab:bf:d8:9f:50:4a:25:ee:6f: ed:b6:ae:f6:52:60:15:da:d3:9d:74:a9:c4:f6:41: c0:81:fc:e2:3f:7c:aa:4a:b0:78:43:9c:80:05:22: 51:3e:fb:85:30:dc:e7:33:ba:9e:6e:60:19:f1:75: 79:89:c2:cc:4f:e5:8b:c6:42:8f:2b:46:f4:87:c2: f8:71:4d:5c:25:c0:4f:a6:c4:23:89:24:6e:51:92: a2:67:8a:15:9b:46:93:03:4e:a7:e7:b9:11:ce:4b: 67:87:f4:23:39:b8:fe:0a:99:1c:e0:53:6f:aa:25: b0:6f:db:71:a5:ae:b4:bb:b3:df:12:2c:2b:6e:50: 3d:8c:0a:ff:64:41:2a:6f:f5:23:f2:44:62:24:91: 31:25:68:35:3f:b1:fa:15:77:7d:1e:75:a4:d3:b9: fc:66:46:0f:1c:16:5f:94:b7:5c:17:d5:81:93:81: d0:76:bb:87:2f:b4:f8:c0:2a:86:22:35:e7:26:e7: 1b:c4:23:76:80:1e:a8:04:a1:54:23:9b:4c:54:93: 61:c2:97:0e:fe:a7:f3:15:f7:13:45:57:a6:87:ca: fb:e6:2e:a5:a1:02:7b:ee:9c:a2:c1:11:54:18:7a: ae:7a:2f:2c:28:17:5e:d3:17:7d:1e:4d:77:fe:ab: 34:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:8E:C7:99:BA:4C:CC:9A:45:59:F7:75:0D:D5:9E:75:B9:B2:C6:6C X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/38502DA2029A11EB85BD7B84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.127.210.0/23 IPv6: 2001:df0:fe::/48 Signature Algorithm: sha256WithRSAEncryption 55:bd:79:9e:0e:44:e0:1a:a6:33:5b:c9:02:41:72:e6:ca:e1: c5:f4:1f:87:fb:d7:16:c2:66:f7:5a:ea:21:06:0f:52:55:d4: 89:38:f7:70:7d:ff:9d:57:de:6a:e2:22:d0:b1:e8:a9:96:f2: 9c:5b:2b:4b:78:d2:af:65:18:2f:bb:7d:64:49:de:23:3a:b4: 56:19:22:6d:53:a6:0d:ac:ea:b9:22:01:ba:46:4d:17:cb:3b: 2c:6a:4d:69:e6:e5:69:09:f6:99:3b:09:26:bf:b2:ec:02:12: 43:1e:bc:d4:a4:94:10:7c:c4:f8:c3:39:c9:8e:c8:23:b9:70: 71:c8:ec:94:cb:46:09:bb:42:44:63:5e:0d:67:58:58:8a:25: a9:26:9a:83:6b:92:0b:60:26:bf:58:33:99:2d:e5:1a:63:ef: 96:ca:09:04:1a:28:fb:79:71:43:6f:88:ff:37:b3:ce:c0:50: 09:5b:d0:28:6e:e5:50:12:96:92:25:da:c2:4a:28:c0:b5:03: ee:b6:b6:04:b0:54:12:66:30:4e:8d:91:3a:37:c9:7f:c5:45: 7a:c2:44:02:f4:d2:af:77:1f:ef:90:d8:25:2a:e8:37:eb:f5: 1c:1b:34:87:f5:4a:3b:09:d5:a0:1e:31:21:5c:a7:a1:34:b3: 64:26:f8:9e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjUwNDE2MjEwMTMwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwMWFhYS01OGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqkDYk+rv9ifUEol7m/ttq72UmAV2tOddKnE9kHAgfziP3yqSrB4Q5yABSJR PvuFMNznM7qebmAZ8XV5icLMT+WLxkKPK0b0h8L4cU1cJcBPpsQjiSRuUZKiZ4oV m0aTA06n57kRzktnh/QjObj+Cpkc4FNvqiWwb9txpa60u7PfEiwrblA9jAr/ZEEq b/Uj8kRiJJExJWg1P7H6FXd9HnWk07n8ZkYPHBZflLdcF9WBk4HQdruHL7T4wCqG IjXnJucbxCN2gB6oBKFUI5tMVJNhwpcO/qfzFfcTRVemh8r75i6loQJ77pyiwRFU GHquei8sKBde0xd9Hk13/qs0kQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAuOx5m6 TMyaRVn3dQ3VnnW5ssZsMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRGQkEvREI5Q0U2NzgwMjk4MTFFQjk4MjNBRTgyQzRGOUFFMDIvMzg1MDJEQTIw MjlBMTFFQjg1QkQ3Qjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAHKf9IwDwQCAAIwCQMHACABDfAA/jANBgkqhkiG9w0BAQsF AAOCAQEAVb15ng5E4BqmM1vJAkFy5srhxfQfh/vXFsJm91rqIQYPUlXUiTj3cH3/ nVfeauIi0LHoqZbynFsrS3jSr2UYL7t9ZEneIzq0VhkibVOmDazquSIBukZNF8s7 LGpNaeblaQn2mTsJJr+y7AISQx681KSUEHzE+MM5yY7II7lwccjslMtGCbtCRGNe DWdYWIolqSaag2uSC2Amv1gzmS3lGmPvlsoJBBoo+3lxQ2+I/zezzsBQCVvQKG7l UBKWkiXawkoowLUD7ra2BLBUEmYwTo2ROjfJf8VFesJEAvTSr3cf75DYJSroN+v1 HBs0h/VKOwnVoB4xIVynoTSzZCb4ng== -----END CERTIFICATE-----Generated at Sat Apr 26 13:01:38 2025 by rpki-client