$ rpki-client -vvf rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/1321A11C9DF311E99A8DE961C4F9AE02.roa File: 1321A11C9DF311E99A8DE961C4F9AE02.roa (raw, json) Hash identifier: a159m0Dumns74n/DW56Q8reR56xBmLD89oVMS7W3Rnw= Subject key identifier: 46:3A:3C:D8:F9:F3:A0:6D:85:C7:2C:EF:2D:55:15:37:F6:32:48:53 Certificate issuer: /CN=A9146AD7/serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Certificate serial: 19C7 Authority key identifier: BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/1321A11C9DF311E99A8DE961C4F9AE02.roa Signing time: Sat 12 Apr 2025 16:25:06 +0000 ROA not before: Sat 12 Apr 2025 16:25:06 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9896 IP address blocks: 202.37.60.0/22 maxlen: 24 2001:4403:dead::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6599 (0x19c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146AD7, serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Validity Not Before: Apr 12 16:25:06 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fa93e2-506c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fe:7c:39:4d:5b:3a:60:5d:ff:dc:19:c8:12: d0:17:fa:21:4a:9f:d2:5b:5c:7a:48:21:f6:5a:79: 9f:1d:92:56:76:bc:c3:63:a7:86:93:cd:4e:48:35: 1d:2a:53:29:bc:31:1a:5d:57:b0:c4:a9:10:d6:98: c8:04:65:4a:13:e5:3d:8b:6e:b6:49:7a:f4:ba:d8: 3b:95:06:38:e3:0e:b3:46:59:95:85:92:0e:b9:54: d7:00:9b:ae:59:f2:1c:92:56:52:bd:2e:28:33:0f: 61:ef:f8:b6:58:cb:15:07:f5:e9:6d:d4:7a:9a:4f: 08:e4:1f:ec:d4:09:3c:15:3e:ff:01:31:89:0a:8f: 56:85:eb:95:8c:6f:02:da:20:8d:da:51:32:3a:db: 66:45:05:fe:e8:10:7c:98:b1:ce:53:df:6a:8d:81: 11:84:c5:fe:27:a6:a1:54:16:1f:30:fb:90:b7:ec: 46:d2:5e:45:44:de:27:25:8b:5c:62:db:93:30:48: 71:b6:ff:04:9b:a3:74:57:60:9e:7f:4f:4a:63:b3: 7c:9b:34:20:db:e7:1d:7d:03:90:44:0b:47:00:06: a4:04:21:89:a8:27:63:c5:dc:1f:c7:3a:05:5a:5c: 35:60:a5:06:28:9c:d4:05:58:e2:b2:93:e4:28:5b: 17:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:3A:3C:D8:F9:F3:A0:6D:85:C7:2C:EF:2D:55:15:37:F6:32:48:53 X509v3 Authority Key Identifier: keyid:BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/1321A11C9DF311E99A8DE961C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.60.0/22 IPv6: 2001:4403:dead::/48 Signature Algorithm: sha256WithRSAEncryption 67:7b:d6:04:b5:81:45:64:c1:f9:77:19:76:83:76:af:de:5b: c2:0b:8d:5f:0c:3f:e5:15:de:f5:d1:5a:52:58:df:5c:79:1c: 03:2d:8e:a3:68:b1:97:21:cd:af:1b:33:6b:62:ff:7b:df:d3: 2e:46:9e:63:6b:ad:e7:aa:6e:d4:9e:f5:51:7b:38:4d:2f:eb: 5f:3c:71:d0:14:b3:90:37:22:63:30:87:4f:a6:b9:9e:ec:94: 2d:97:f7:11:64:ad:e6:b3:fa:c2:37:97:b0:c7:07:2d:5a:ed: 50:ba:9f:1c:fd:95:b7:18:4f:d6:13:f2:9b:2f:7a:27:1f:9e: 36:1f:54:e3:e3:fb:32:ff:c8:dd:96:64:a5:bb:e6:1b:3b:a6: a3:b4:71:48:63:81:db:d0:fb:09:ff:bd:9a:6f:ca:1d:bd:22: 21:22:0d:4a:f1:a6:6e:b0:31:06:a2:44:8a:c0:28:ef:68:ae: 0e:57:32:92:f3:26:9b:4d:f5:91:ba:fe:77:cc:f3:08:f7:a6: 78:29:cc:14:d5:2c:e2:3e:d5:91:50:3b:04:27:4d:6e:a7:b4: 27:d6:39:a6:73:96:c2:89:f7:90:c4:fc:84:ab:62:ae:7f:b9: 8d:58:17:71:c1:f1:0f:48:f4:4d:04:80:96:b5:f6:b7:ea:45: 81:d8:25:a9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICGccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBRDcxMTAvBgNVBAUTKEJBRjVBREEzMkNBMEQzNENGM0NDRjUzQUJERjg2REU2 RjhFRDkwMDUwHhcNMjUwNDEyMTYyNTA2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZhOTNlMi01MDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwv58OU1bOmBd/9wZyBLQF/ohSp/SW1x6SCH2WnmfHZJWdrzDY6eGk81OSDUd KlMpvDEaXVewxKkQ1pjIBGVKE+U9i262SXr0utg7lQY44w6zRlmVhZIOuVTXAJuu WfIcklZSvS4oMw9h7/i2WMsVB/XpbdR6mk8I5B/s1Ak8FT7/ATGJCo9WheuVjG8C 2iCN2lEyOttmRQX+6BB8mLHOU99qjYERhMX+J6ahVBYfMPuQt+xG0l5FRN4nJYtc YtuTMEhxtv8Em6N0V2Cef09KY7N8mzQg2+cdfQOQRAtHAAakBCGJqCdjxdwfxzoF Wlw1YKUGKJzUBVjispPkKFsX0wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEY6PNj5 86Bthccs7y1VFTf2MkhTMB8GA1UdIwQYMBaAFLr1raMsoNNM88z1Or34beb47ZAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkFENy9GOEJBQkFDQThC ODkxMUU3OTAxMTVDM0ZDNEY5QUUwMi91dld0b3l5ZzAwenp6UFU2dmZodDV2anRr QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V2V3RveXlnMDB6enpQVTZ2Zmh0NXZqdGtBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZBRDcvRjhCQUJBQ0E4Qjg5MTFFNzkwMTE1QzNGQzRGOUFFMDIvMTMyMUExMUM5 REYzMTFFOTlBOERFOTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBALKJTwwDwQCAAIwCQMHACABRAPerTANBgkqhkiG9w0BAQsF AAOCAQEAZ3vWBLWBRWTB+XcZdoN2r95bwguNXww/5RXe9dFaUljfXHkcAy2Oo2ix lyHNrxsza2L/e9/TLkaeY2ut56pu1J71UXs4TS/rXzxx0BSzkDciYzCHT6a5nuyU LZf3EWSt5rP6wjeXsMcHLVrtULqfHP2VtxhP1hPymy96Jx+eNh9U4+P7Mv/I3ZZk pbvmGzumo7RxSGOB29D7Cf+9mm/KHb0iISINSvGmbrAxBqJEisAo72iuDlcykvMm m031kbr+d8zzCPemeCnMFNUs4j7VkVA7BCdNbqe0J9Y5pnOWwon3kMT8hKtirn+5 jVgXccHxD0j0TQSAlrX2t+pFgdglqQ== -----END CERTIFICATE-----Generated at Sat Apr 26 13:04:11 2025 by rpki-client