$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/E9056E5A520611E9ABE43055C4F9AE02.roa File: E9056E5A520611E9ABE43055C4F9AE02.roa (raw, json) Hash identifier: h2Z0WowEDdcT+vihpwqc3ZmmFIzfzbEzcf903yWEHbc= Subject key identifier: 8D:05:D0:E2:9B:47:AA:6F:58:F5:3D:57:26:23:25:FC:D6:37:EB:2E Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 0FCE Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/E9056E5A520611E9ABE43055C4F9AE02.roa Signing time: Thu 10 Apr 2025 17:56:18 +0000 ROA not before: Thu 10 Apr 2025 17:56:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 56140 IP address blocks: 42.0.28.0/22 maxlen: 22 42.0.28.0/24 maxlen: 24 42.0.29.0/24 maxlen: 24 42.0.30.0/24 maxlen: 24 42.0.31.0/24 maxlen: 24 103.140.6.0/24 maxlen: 24 103.140.7.0/24 maxlen: 24 2407:c600::/32 maxlen: 32 2407:c600:1::/48 maxlen: 48 2407:c600:2::/48 maxlen: 48 2407:c600:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4046 (0xfce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC, serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: Apr 10 17:56:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f80642-afe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c6:02:df:16:1f:ab:9f:96:81:b9:9c:cd:7c: 9b:33:0b:39:0b:73:56:a4:34:93:2e:58:9a:dc:73: 1b:ff:65:db:a0:1f:43:80:7c:21:b5:16:8e:49:31: 2c:10:00:63:52:58:8f:a1:a6:53:e4:95:62:fa:e4: a3:aa:d1:e7:1d:81:cc:35:8f:9c:34:68:56:70:72: 25:55:ff:e6:23:af:29:3b:44:a1:ce:ac:8d:9d:25: ad:7b:80:9a:bb:56:48:76:34:98:4b:fa:eb:2e:45: 07:41:e6:ba:fa:57:f8:3b:8a:41:33:ce:f6:bf:e3: ce:14:8c:e8:73:7f:9a:2d:69:39:6f:d2:0d:1c:b6: 11:79:90:25:b3:29:98:af:83:83:e8:fc:4d:d6:e1: 68:5b:40:d1:0a:68:1f:b2:e6:f7:39:1b:4a:f6:2e: 7e:b4:91:7b:2d:5a:b5:76:ab:70:27:95:bf:fc:31: fb:b7:29:7b:9b:2f:32:d2:3b:fb:b5:3b:83:b9:6b: 2e:21:4a:f3:02:14:8c:56:09:6b:07:2d:0f:ee:df: cc:15:56:ec:66:39:a6:27:9a:fb:e0:75:7a:0a:ea: 1b:0c:fa:c7:a0:4d:51:f5:17:51:0a:6b:c0:3e:34: 41:e6:9b:65:67:90:6e:f9:f8:23:aa:0b:e8:5f:e5: 22:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:05:D0:E2:9B:47:AA:6F:58:F5:3D:57:26:23:25:FC:D6:37:EB:2E X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/E9056E5A520611E9ABE43055C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 42.0.28.0/22 103.140.6.0/23 IPv6: 2407:c600::/32 Signature Algorithm: sha256WithRSAEncryption 84:cb:94:84:46:bf:8e:b8:09:47:96:27:4c:30:3a:5b:28:59: e6:4c:7e:e0:f3:bb:1f:cf:12:23:07:55:41:94:5e:11:3c:1a: 28:af:e6:4e:51:b2:6f:77:55:b4:81:69:69:91:0b:46:28:23: 88:7b:0b:45:f0:ac:dc:40:35:14:1b:51:7d:47:3e:26:1a:44: 36:4f:4b:a1:6e:0f:1c:92:54:f0:3f:c6:4b:fa:04:36:71:06: b3:09:2d:92:47:dd:4b:1a:ce:18:ec:7d:34:aa:f4:b7:8a:bb: 67:4f:db:c4:34:97:8a:8a:e8:e2:5c:e3:54:c9:4e:99:ae:ca: 37:da:e8:e3:fc:bb:aa:9d:d6:25:84:e4:57:2f:1d:da:71:0f: 5a:a0:14:60:00:21:a5:7e:7d:4f:0d:2a:6a:9c:fc:f3:6c:04: a8:f1:c7:ec:b5:4b:20:16:14:d2:ce:58:aa:ae:46:03:20:bb: e3:a6:06:02:d7:ba:7f:fa:49:4e:53:94:00:c5:69:4f:da:ae: ca:2f:c0:b1:18:fd:41:63:79:b3:6a:91:a7:ff:04:5d:81:97: e3:98:5c:56:9c:6b:b3:4b:4a:87:dc:d6:c2:13:e1:35:d2:f2: c5:9f:bc:f9:31:04:d3:1a:de:20:d3:e1:62:e7:8c:d9:8e:e8: f8:dd:7d:67 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICD84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjUwNDEwMTc1NjE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4MDY0Mi1hZmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3sYC3xYfq5+WgbmczXybMws5C3NWpDSTLlia3HMb/2XboB9DgHwhtRaOSTEs EABjUliPoaZT5JVi+uSjqtHnHYHMNY+cNGhWcHIlVf/mI68pO0ShzqyNnSWte4Ca u1ZIdjSYS/rrLkUHQea6+lf4O4pBM872v+POFIzoc3+aLWk5b9INHLYReZAlsymY r4OD6PxN1uFoW0DRCmgfsub3ORtK9i5+tJF7LVq1dqtwJ5W//DH7tyl7my8y0jv7 tTuDuWsuIUrzAhSMVglrBy0P7t/MFVbsZjmmJ5r74HV6CuobDPrHoE1R9RdRCmvA PjRB5ptlZ5Bu+fgjqgvoX+UiowIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFI0F0OKb R6pvWPU9VyYjJfzWN+suMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Y4QkMvNEUxM0Y0MEM1MjA2MTFFOThFRkMzQTU0QzRGOUFFMDIvRTkwNTZFNUE1 MjA2MTFFOUFCRTQzMDU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIqABwDBAFnjAYwDQQCAAIwBwMFACQHxgAwDQYJKoZIhvcN AQELBQADggEBAITLlIRGv464CUeWJ0wwOlsoWeZMfuDzux/PEiMHVUGUXhE8Giiv 5k5Rsm93VbSBaWmRC0YoI4h7C0XwrNxANRQbUX1HPiYaRDZPS6FuDxySVPA/xkv6 BDZxBrMJLZJH3UsazhjsfTSq9LeKu2dP28Q0l4qK6OJc41TJTpmuyjfa6OP8u6qd 1iWE5FcvHdpxD1qgFGAAIaV+fU8NKmqc/PNsBKjxx+y1SyAWFNLOWKquRgMgu+Om BgLXun/6SU5TlADFaU/arsovwLEY/UFjebNqkaf/BF2Bl+OYXFaca7NLSofc1sIT 4TXS8sWfvPkxBNMa3iDT4WLnjNmO6PjdfWc= -----END CERTIFICATE-----Generated at Sat Apr 26 13:10:39 2025 by rpki-client