$ rpki-client -vvf rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/4F9AA82CC02411EC93BB8865C4F9AE02.roa File: 4F9AA82CC02411EC93BB8865C4F9AE02.roa (raw, json) Hash identifier: Sc0huKFJaR77IvAZnF61IoAHkjTM8P4+L9d/0GJ4tIA= Subject key identifier: 00:63:65:F1:B1:D5:1B:52:E0:8B:C7:AE:09:1D:4F:E5:F4:6B:CA:CD Certificate issuer: /CN=A9146AD7/serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Certificate serial: 19C2 Authority key identifier: BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/4F9AA82CC02411EC93BB8865C4F9AE02.roa Signing time: Sat 12 Apr 2025 16:25:00 +0000 ROA not before: Sat 12 Apr 2025 16:24:59 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38748 IP address blocks: 124.6.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6594 (0x19c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146AD7, serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Validity Not Before: Apr 12 16:24:59 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fa93db-dbbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bf:70:1f:5c:8a:06:93:ef:f9:95:38:47:1b: 6e:55:1b:6b:50:ce:6c:c6:4e:49:38:05:ec:d5:35: 7e:14:ca:25:2d:19:3f:88:c5:a3:92:77:f9:7c:66: 64:f7:1a:ae:e1:37:45:ee:76:a2:35:44:54:f1:f6: b9:c0:f9:28:ec:5f:c5:f7:3a:c6:27:0e:7b:73:f9: ef:21:2e:f5:76:22:91:b1:98:99:03:ad:2b:db:73: ee:ce:64:1d:26:56:fa:09:01:9c:a4:bc:84:86:99: de:2a:c1:ef:b8:84:8b:03:cb:5b:74:95:a8:ad:46: e7:b2:b3:27:80:59:11:35:96:b9:12:c1:b8:b1:7d: 7b:6f:32:a3:e2:49:98:72:66:ae:d6:f1:7e:07:92: df:be:5c:ce:09:d8:fc:e6:9a:4d:00:f0:2a:5b:2c: 16:74:ee:a9:1d:57:bf:4e:47:09:67:99:10:6f:a1: 1f:56:f2:b8:6f:70:88:38:a4:0f:a3:15:02:ca:c6: d5:6f:e9:a4:03:8c:94:14:cd:c4:a2:30:fc:f1:6f: 60:a5:90:29:15:42:0e:5c:29:27:a3:fc:0d:8a:03: d7:44:51:a4:ce:ea:b6:c3:da:ec:cb:69:d6:82:fb: bc:bf:3f:a5:08:3c:b7:fd:80:4d:07:e0:65:14:8d: d2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:63:65:F1:B1:D5:1B:52:E0:8B:C7:AE:09:1D:4F:E5:F4:6B:CA:CD X509v3 Authority Key Identifier: keyid:BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/4F9AA82CC02411EC93BB8865C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.6.220.0/22 Signature Algorithm: sha256WithRSAEncryption df:25:0b:c0:7a:9b:e8:bf:15:3a:52:75:c7:eb:85:ea:ca:30: 8e:b8:80:3d:0f:29:1b:f0:2e:aa:91:4d:6d:da:cb:7b:5c:b5: 45:70:ca:3d:3d:04:b7:61:cb:3d:eb:11:ba:c9:3a:81:1a:11: b4:17:b9:b8:a9:73:85:69:8e:be:96:35:3d:fb:a0:3b:b4:b0: 5d:50:ad:6a:b7:e6:9d:73:1e:f0:c3:e4:ec:b7:bc:5b:f7:2d: dd:f1:af:da:e3:4c:31:97:fe:a7:cc:25:cd:d5:96:fe:d8:7f: 7b:98:a2:64:51:34:af:77:07:1f:1c:ed:8d:85:8a:7e:67:f3: ea:08:0b:03:26:b2:4d:4c:31:17:de:a7:fa:8b:7c:60:fb:a7: 86:eb:6b:a1:8b:33:4d:18:51:ee:0f:2e:ff:63:2a:6e:f7:88: b7:88:24:4f:8f:22:10:3c:ea:37:b5:66:c5:f9:5a:25:5b:22: 9b:96:a6:a7:eb:dd:1a:17:bf:fd:68:f1:79:39:75:9a:0e:cf: 2f:94:7e:f4:36:a1:c9:58:70:83:5b:4e:84:f6:40:ac:48:42: c4:f6:15:08:58:b9:3a:24:ad:18:56:20:7e:c9:91:52:15:d1: 43:25:9a:96:b9:46:49:2e:88:b7:80:1d:44:ad:99:bd:66:fa: b0:db:a9:c3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBRDcxMTAvBgNVBAUTKEJBRjVBREEzMkNBMEQzNENGM0NDRjUzQUJERjg2REU2 RjhFRDkwMDUwHhcNMjUwNDEyMTYyNDU5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZhOTNkYi1kYmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxr9wH1yKBpPv+ZU4RxtuVRtrUM5sxk5JOAXs1TV+FMolLRk/iMWjknf5fGZk 9xqu4TdF7naiNURU8fa5wPko7F/F9zrGJw57c/nvIS71diKRsZiZA60r23PuzmQd Jlb6CQGcpLyEhpneKsHvuISLA8tbdJWorUbnsrMngFkRNZa5EsG4sX17bzKj4kmY cmau1vF+B5LfvlzOCdj85ppNAPAqWywWdO6pHVe/TkcJZ5kQb6EfVvK4b3CIOKQP oxUCysbVb+mkA4yUFM3EojD88W9gpZApFUIOXCkno/wNigPXRFGkzuq2w9rsy2nW gvu8vz+lCDy3/YBNB+BlFI3SRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFABjZfGx 1RtS4IvHrgkdT+X0a8rNMB8GA1UdIwQYMBaAFLr1raMsoNNM88z1Or34beb47ZAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkFENy9GOEJBQkFDQThC ODkxMUU3OTAxMTVDM0ZDNEY5QUUwMi91dld0b3l5ZzAwenp6UFU2dmZodDV2anRr QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V2V3RveXlnMDB6enpQVTZ2Zmh0NXZqdGtBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZBRDcvRjhCQUJBQ0E4Qjg5MTFFNzkwMTE1QzNGQzRGOUFFMDIvNEY5QUE4MkND MDI0MTFFQzkzQkI4ODY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ8BtwwDQYJKoZIhvcNAQELBQADggEBAN8lC8B6m+i/FTpS dcfrherKMI64gD0PKRvwLqqRTW3ay3tctUVwyj09BLdhyz3rEbrJOoEaEbQXubip c4Vpjr6WNT37oDu0sF1QrWq35p1zHvDD5Oy3vFv3Ld3xr9rjTDGX/qfMJc3Vlv7Y f3uYomRRNK93Bx8c7Y2Fin5n8+oICwMmsk1MMRfep/qLfGD7p4bra6GLM00YUe4P Lv9jKm73iLeIJE+PIhA86je1ZsX5WiVbIpuWpqfr3RoXv/1o8Xk5dZoOzy+UfvQ2 oclYcINbToT2QKxIQsT2FQhYuTokrRhWIH7JkVIV0UMlmpa5RkkuiLeAHUStmb1m +rDbqcM= -----END CERTIFICATE-----Generated at Sat Apr 26 13:04:29 2025 by rpki-client