$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/3D6D075A0ED011F0850DFC18C4F9AE02.roa File: 3D6D075A0ED011F0850DFC18C4F9AE02.roa (raw, json) Hash identifier: B8KBNufHoIgJko/QQOXJs97tNZDlzfBWHkTjrMS1moo= Subject key identifier: 8B:1F:99:EF:21:83:54:A3:E9:88:7B:68:32:B0:DD:6D:F9:DA:B7:D6 Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0F18 Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/3D6D075A0ED011F0850DFC18C4F9AE02.roa Signing time: Tue 01 Apr 2025 08:06:39 +0000 ROA not before: Tue 01 Apr 2025 08:06:39 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 141706 IP address blocks: 2402:3180::/45 maxlen: 48 2402:3180:10::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3864 (0xf18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF, serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Validity Not Before: Apr 1 08:06:39 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67eb9e8f-08ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ef:d5:01:a3:28:af:0f:57:b8:e4:bd:37:68: 78:33:50:7b:3d:a8:c2:7a:33:a7:d3:ab:a3:74:0d: 62:00:ee:04:ae:4d:aa:f7:6d:22:ac:9a:e3:da:0f: 19:6c:e2:eb:9a:4a:de:22:7b:16:9c:00:e8:4b:d6: 04:31:0d:56:c3:06:10:78:7b:ce:a7:23:8a:c4:80: 4a:99:f1:0b:dd:c3:af:39:6d:36:4b:d3:76:ca:67: fb:91:06:6e:00:42:88:a4:ec:41:83:36:be:df:1e: 89:cd:38:c2:d6:a1:b2:81:f0:97:be:3c:a0:98:23: 43:c2:0f:8a:48:d6:b3:96:43:92:6c:61:27:49:5c: e7:76:9c:f1:8f:44:1a:25:13:67:f2:cb:79:d0:cc: d9:1e:cf:11:99:3b:c1:4d:12:09:8e:fa:c2:f2:e1: 1e:15:45:fb:17:b6:88:7b:bc:c8:4d:0e:ce:24:82: a9:6b:f9:43:e4:b1:8e:b2:01:4d:c0:a3:53:d8:1a: b0:46:f5:a5:93:45:9c:7e:bf:64:7a:b4:cd:26:e3: 1c:c2:9f:f6:12:41:8d:6c:bc:1c:b6:d8:49:a4:a8: 16:3a:b8:f3:a7:69:0a:35:4d:a8:70:74:80:a3:31: e8:a8:71:9c:d0:41:e5:a0:94:e8:82:92:4e:09:1a: b2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:1F:99:EF:21:83:54:A3:E9:88:7B:68:32:B0:DD:6D:F9:DA:B7:D6 X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/3D6D075A0ED011F0850DFC18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:3180::/45 2402:3180:10::/44 Signature Algorithm: sha256WithRSAEncryption 5a:7e:a8:99:2c:22:2d:c3:24:23:4e:a4:19:67:67:7c:ef:ca: a3:df:b4:62:14:7e:af:50:44:03:76:cb:c9:f5:b4:93:a5:f8: f6:70:62:91:b5:3a:64:ec:af:40:c1:f9:d9:ba:02:1c:6a:cc: 12:ce:d3:8f:36:5f:33:14:64:41:2b:71:4a:0b:d3:d5:be:24: 66:38:a0:f2:4d:3b:5d:c9:74:59:b7:95:b7:9b:3b:ad:00:e9: 98:5d:c9:88:e3:9a:a9:bc:01:16:75:c8:d6:3c:bc:a8:1e:12: 66:f7:8f:d1:37:5e:45:80:ed:09:00:aa:e9:ec:99:86:4f:9f: b9:9d:aa:e3:b5:03:3c:d2:7b:bc:1f:1d:73:ea:13:b1:42:e3: e0:03:35:50:84:97:0e:c2:4d:cf:9a:dd:e7:a5:00:e4:03:79: b7:f1:d7:ab:76:12:1f:91:d1:77:de:dc:f1:07:f7:08:fe:31: ce:1f:31:4f:9d:53:50:a0:4a:76:09:98:47:fd:3d:0f:19:44: c5:0b:e3:96:1a:8f:05:a2:e9:5a:4c:20:9f:ce:fc:27:71:05: a2:e6:0e:e9:39:99:cc:5f:7e:86:39:5e:b6:6f:f3:35:05:54: cb:76:45:74:d4:ad:90:65:db:22:34:35:62:4a:9a:c8:b0:14: a6:29:cd:54 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjUwNDAxMDgwNjM5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ViOWU4Zi0wOGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmu/VAaMorw9XuOS9N2h4M1B7PajCejOn06ujdA1iAO4Erk2q920irJrj2g8Z bOLrmkreInsWnADoS9YEMQ1WwwYQeHvOpyOKxIBKmfEL3cOvOW02S9N2ymf7kQZu AEKIpOxBgza+3x6JzTjC1qGygfCXvjygmCNDwg+KSNazlkOSbGEnSVzndpzxj0Qa JRNn8st50MzZHs8RmTvBTRIJjvrC8uEeFUX7F7aIe7zITQ7OJIKpa/lD5LGOsgFN wKNT2BqwRvWlk0Wcfr9kerTNJuMcwp/2EkGNbLwctthJpKgWOrjzp2kKNU2ocHSA ozHoqHGc0EHloJTogpJOCRqyQQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFIsfme8h g1Sj6Yh7aDKw3W352rfWMB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRkYvRTQyQkVBQzI5M0YwMTFFOUJDMENGRjcxQzRGOUFFMDIvM0Q2RDA3NUEw RUQwMTFGMDg1MERGQzE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwMkAjGAAAADBwQkAjGAABAwDQYJKoZIhvcNAQELBQADggEB AFp+qJksIi3DJCNOpBlnZ3zvyqPftGIUfq9QRAN2y8n1tJOl+PZwYpG1OmTsr0DB +dm6AhxqzBLO0482XzMUZEErcUoL09W+JGY4oPJNO13JdFm3lbebO60A6ZhdyYjj mqm8ARZ1yNY8vKgeEmb3j9E3XkWA7QkAqunsmYZPn7mdquO1AzzSe7wfHXPqE7FC 4+ADNVCElw7CTc+a3eelAOQDebfx16t2Eh+R0Xfe3PEH9wj+Mc4fMU+dU1CgSnYJ mEf9PQ8ZRMUL45YajwWi6VpMIJ/O/CdxBaLmDuk5mcxffoY5XrZv8zUFVMt2RXTU rZBl2yI0NWJKmsiwFKYpzVQ= -----END CERTIFICATE-----Generated at Sat Apr 26 08:07:29 2025 by rpki-client