$ rpki-client -vvf rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/46BEDD64662411EBADFEB364C4F9AE02.roa File: 46BEDD64662411EBADFEB364C4F9AE02.roa (raw, json) Hash identifier: rBSQRTDzDNTdo/Fn8PCTBFu4JOqtjUs4xyOXhorxe8w= Subject key identifier: 73:A4:F9:FA:44:D5:55:4E:94:29:72:D4:9D:D1:F2:19:9E:3A:A0:8D Certificate issuer: /CN=A9142BCC/serialNumber=020556F97D545434D2C854121DC5DC64634A64AC Certificate serial: 186C Authority key identifier: 02:05:56:F9:7D:54:54:34:D2:C8:54:12:1D:C5:DC:64:63:4A:64:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgVW-X1UVDTSyFQSHcXcZGNKZKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/46BEDD64662411EBADFEB364C4F9AE02.roa Signing time: Wed 18 Dec 2024 16:44:33 +0000 ROA not before: Wed 18 Dec 2024 16:44:33 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 134732 IP address blocks: 59.153.100.0/22 maxlen: 24 103.198.136.0/22 maxlen: 24 2401:f40::/32 maxlen: 36 2401:f40:e::/48 maxlen: 48 2401:f40:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/AgVW-X1UVDTSyFQSHcXcZGNKZKw.crl rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/AgVW-X1UVDTSyFQSHcXcZGNKZKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgVW-X1UVDTSyFQSHcXcZGNKZKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:31:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6252 (0x186c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142BCC, serialNumber=020556F97D545434D2C854121DC5DC64634A64AC Validity Not Before: Dec 18 16:44:33 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6762fbf1-0f15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:79:21:3a:bd:64:bd:03:90:d9:4e:75:c0:96: 72:d3:3d:c1:d4:15:02:3d:7b:5e:38:0a:e1:2d:83: 38:83:6a:2b:72:a9:e2:b7:89:8b:be:f2:2e:40:4b: c7:92:5a:be:68:f4:c1:8d:30:c4:f9:07:6e:43:cf: e3:88:e5:92:0c:14:d5:37:51:2b:e8:d1:bb:5a:94: 27:0e:b3:e5:44:8c:8a:2b:60:df:4a:f8:3d:3e:d5: 8b:73:03:06:23:9e:6e:86:be:fa:cd:df:a5:e3:15: 0d:a1:8d:f3:c8:c6:78:cc:90:96:69:b2:d7:f8:fb: 9a:7f:33:52:ba:fe:53:fc:75:7a:6b:22:49:1d:55: 0a:d2:13:dd:f9:53:0c:b6:99:7f:2f:1f:a9:e3:67: 7d:0f:6c:52:d0:ef:32:b2:4e:42:62:a8:ad:59:ad: e2:67:59:53:e0:ac:7d:ed:a2:17:ae:13:1c:b7:f3: 70:4c:a5:2a:9a:42:0b:f4:f1:07:e2:e2:cb:ea:10: 91:c3:8c:4b:79:e3:78:d5:e5:a0:f2:f4:32:4b:0c: e2:be:dd:1c:5c:89:f2:d8:6a:bc:c1:26:0e:42:e8: 6e:d7:b9:64:5a:c1:da:21:df:ef:d2:98:47:99:1d: 09:0e:e7:c6:88:03:d7:4a:18:5e:7f:4d:34:78:53: 04:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A4:F9:FA:44:D5:55:4E:94:29:72:D4:9D:D1:F2:19:9E:3A:A0:8D X509v3 Authority Key Identifier: keyid:02:05:56:F9:7D:54:54:34:D2:C8:54:12:1D:C5:DC:64:63:4A:64:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/AgVW-X1UVDTSyFQSHcXcZGNKZKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgVW-X1UVDTSyFQSHcXcZGNKZKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/46BEDD64662411EBADFEB364C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.100.0/22 103.198.136.0/22 IPv6: 2401:f40::/32 Signature Algorithm: sha256WithRSAEncryption b1:6b:18:a5:f8:43:9b:3d:88:8b:4e:ba:23:9c:49:f2:49:01: 3c:64:d9:fd:6a:08:52:9c:58:f4:7a:0e:0a:2f:ae:38:82:98: 3f:fc:3e:66:10:23:02:79:50:3c:8b:54:16:24:52:cb:ba:39: 2b:59:cc:1b:85:45:49:d7:cc:ec:47:f3:3a:c2:5f:dc:19:92: 1a:c2:c0:c0:6e:dc:0c:73:9c:45:b3:72:2c:54:88:a1:e8:75: f9:b5:75:15:5f:12:19:fd:bd:0f:76:fc:c8:eb:1d:63:84:15: af:5d:c7:31:66:ae:13:60:de:44:61:dd:b1:82:78:02:c2:d1: 3d:46:08:2a:7c:5c:0d:7f:98:94:ad:1b:66:21:ab:21:ef:f4: 68:60:a1:50:02:a7:51:3f:aa:e3:16:bc:32:a1:82:f3:94:6a: 41:3e:aa:8b:5a:bd:3d:c1:f5:7f:27:b6:10:75:41:33:1e:52: bf:15:4b:ea:70:5b:ad:11:f8:14:09:9a:7b:58:65:d4:4a:c3: 8a:02:97:f7:29:72:fb:6c:49:51:0c:28:9b:8e:f6:04:1e:3c: 3a:33:1f:d3:08:a5:de:86:59:f2:a4:c0:76:7c:e7:c7:9e:3a: a4:c1:d0:c8:b1:57:43:7f:c9:bb:ac:f0:76:4f:c0:ea:4b:9b: 46:d5:fd:be -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICGGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJCQ0MxMTAvBgNVBAUTKDAyMDU1NkY5N0Q1NDU0MzREMkM4NTQxMjFEQzVEQzY0 NjM0QTY0QUMwHhcNMjQxMjE4MTY0NDMzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYyZmJmMS0wZjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnkhOr1kvQOQ2U51wJZy0z3B1BUCPXteOArhLYM4g2orcqnit4mLvvIuQEvH klq+aPTBjTDE+QduQ8/jiOWSDBTVN1Er6NG7WpQnDrPlRIyKK2DfSvg9PtWLcwMG I55uhr76zd+l4xUNoY3zyMZ4zJCWabLX+PuafzNSuv5T/HV6ayJJHVUK0hPd+VMM tpl/Lx+p42d9D2xS0O8ysk5CYqitWa3iZ1lT4Kx97aIXrhMct/NwTKUqmkIL9PEH 4uLL6hCRw4xLeeN41eWg8vQySwzivt0cXIny2Gq8wSYOQuhu17lkWsHaId/v0phH mR0JDufGiAPXShhef000eFME3QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFHOk+fpE 1VVOlCly1J3R8hmeOqCNMB8GA1UdIwQYMBaAFAIFVvl9VFQ00shUEh3F3GRjSmSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkJDQy84QTU2QzA5RTk4 M0UxMUU3QjQ3REU1N0FDNEY5QUUwMi9BZ1ZXLVgxVVZEVFN5RlFTSGNYY1pHTkta S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FnVlctWDFVVkRUU3lGUVNIY1hjWkdOS1pLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDJCQ0MvOEE1NkMwOUU5ODNFMTFFN0I0N0RFNTdBQzRGOUFFMDIvNDZCRURENjQ2 NjI0MTFFQkFERkVCMzY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAI7mWQDBAJnxogwDQQCAAIwBwMFACQBD0AwDQYJKoZIhvcN AQELBQADggEBALFrGKX4Q5s9iItOuiOcSfJJATxk2f1qCFKcWPR6DgovrjiCmD/8 PmYQIwJ5UDyLVBYkUsu6OStZzBuFRUnXzOxH8zrCX9wZkhrCwMBu3AxznEWzcixU iKHodfm1dRVfEhn9vQ92/MjrHWOEFa9dxzFmrhNg3kRh3bGCeALC0T1GCCp8XA1/ mJStG2YhqyHv9GhgoVACp1E/quMWvDKhgvOUakE+qotavT3B9X8nthB1QTMeUr8V S+pwW60R+BQJmntYZdRKw4oCl/cpcvtsSVEMKJuO9gQePDozH9MIpd6GWfKkwHZ8 58eeOqTB0MixV0N/ybus8HZPwOpLm0bV/b4= -----END CERTIFICATE-----Generated at Sat Apr 26 15:06:39 2025 by rpki-client