$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/B3997DB4F3A311EC8804FE09C4F9AE02.roa File: B3997DB4F3A311EC8804FE09C4F9AE02.roa (raw, json) Hash identifier: +5HXnch0bIaFJTNcSoFiGhVhNziHj1q+6LRC86AmyjE= Subject key identifier: 92:08:EE:74:7C:DB:46:59:BA:2D:03:12:F9:02:2F:AE:A6:E2:63:8D Certificate issuer: /CN=A914DA2D/serialNumber=D7CB6D1DDCF934A1F59E4FFE4982F0B4C52C35F5 Certificate serial: 031D Authority key identifier: D7:CB:6D:1D:DC:F9:34:A1:F5:9E:4F:FE:49:82:F0:B4:C5:2C:35:F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/18ttHdz5NKH1nk_-SYLwtMUsNfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/B3997DB4F3A311EC8804FE09C4F9AE02.roa Signing time: Tue 08 Apr 2025 16:24:30 +0000 ROA not before: Tue 08 Apr 2025 16:24:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55408 IP address blocks: 192.82.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.crl rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/18ttHdz5NKH1nk_-SYLwtMUsNfU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:23:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 797 (0x31d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA2D, serialNumber=D7CB6D1DDCF934A1F59E4FFE4982F0B4C52C35F5 Validity Not Before: Apr 8 16:24:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f54dbe-545c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:92:af:46:45:9f:c9:b4:80:2a:6f:1a:b8:63: b5:60:c3:2b:6d:d8:e9:9f:4a:14:5d:8b:0d:54:73: 24:b6:ff:a4:84:49:c0:f1:2b:d8:d9:bb:b9:dc:2e: c2:4b:2a:c6:67:02:5d:07:8f:77:4b:d4:30:02:28: 1c:e6:83:d1:88:6f:e3:8f:41:28:a5:cc:58:81:bd: df:0c:ee:be:bc:f0:e9:32:d8:5c:b9:2f:d1:b1:ab: 0c:60:73:32:03:df:24:1f:41:8b:1f:4f:16:d5:7d: c8:7b:6e:aa:5b:7c:7c:d4:c8:47:77:da:97:ce:ce: 47:61:4b:d2:ec:d7:fa:c1:48:c5:4a:32:c2:a5:85: 9f:fa:14:2f:de:50:6e:f5:69:51:e3:86:62:bd:ed: a8:77:de:08:d0:c2:ac:64:fc:91:9a:2e:ba:d1:b7: cf:66:45:4d:68:a9:69:c2:b7:53:64:d5:b9:5f:ee: 3c:4a:cc:9d:4d:db:3d:a3:76:20:24:18:14:c4:d3: 6b:c8:3c:cd:3d:d0:18:ad:f0:12:6a:84:58:cd:0a: b7:85:a5:a6:d7:60:7f:0b:8c:fa:de:d1:6b:81:8c: a8:ff:b6:f0:56:f9:49:99:36:4e:68:25:12:b4:ad: 47:d3:7d:b8:21:b6:c9:34:5e:a2:bf:58:1f:72:82: 80:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:08:EE:74:7C:DB:46:59:BA:2D:03:12:F9:02:2F:AE:A6:E2:63:8D X509v3 Authority Key Identifier: keyid:D7:CB:6D:1D:DC:F9:34:A1:F5:9E:4F:FE:49:82:F0:B4:C5:2C:35:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/18ttHdz5NKH1nk_-SYLwtMUsNfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/B3997DB4F3A311EC8804FE09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.82.93.0/24 Signature Algorithm: sha256WithRSAEncryption 61:60:4d:55:c1:77:9e:f9:48:32:76:20:d2:b6:e8:06:59:25: a0:eb:50:33:bc:1f:93:31:f2:f7:ea:23:08:ec:0a:5e:83:cf: 8e:ef:20:d6:d3:6f:92:d5:d6:4b:d4:0b:c6:f7:ff:58:3a:c4: 85:fb:22:42:26:a6:b7:f8:76:90:e7:02:a6:77:93:e1:ad:c1: 3e:93:74:e9:f8:ec:fe:d4:ad:a6:dc:0b:82:98:38:2e:4e:0d: 46:99:6d:97:1e:b0:0f:c4:01:0c:f4:cd:e1:08:45:55:35:7c: 2d:d3:ec:48:8e:f5:1d:ff:33:34:4b:8a:47:f9:1a:5b:af:16: c5:c1:3e:10:ae:bf:e3:b0:56:f2:68:1f:4d:d0:23:04:bf:52: 1c:45:3a:d0:f9:bb:e9:8a:ea:20:66:c6:79:0e:fe:e0:f5:79: d4:38:ed:4d:9e:d0:61:78:ce:c5:4a:4f:bf:6e:e0:83:50:ae: d0:ea:bc:d0:d8:03:80:0d:e1:f6:ea:6d:f3:ae:03:7d:c9:4a: 7d:f2:4e:4e:77:1e:e0:c0:64:83:f7:57:28:29:52:a3:21:78: 4a:61:3b:df:6f:d3:f1:0c:72:8e:85:85:e9:7e:81:28:7c:33: bf:cd:32:22:a9:76:65:55:05:e9:92:aa:9a:4c:37:db:94:3c: 64:d6:b9:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBMkQxMTAvBgNVBAUTKEQ3Q0I2RDFERENGOTM0QTFGNTlFNEZGRTQ5ODJGMEI0 QzUyQzM1RjUwHhcNMjUwNDA4MTYyNDMwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NGRiZS01NDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ZKvRkWfybSAKm8auGO1YMMrbdjpn0oUXYsNVHMktv+khEnA8SvY2bu53C7C SyrGZwJdB493S9QwAigc5oPRiG/jj0EopcxYgb3fDO6+vPDpMthcuS/RsasMYHMy A98kH0GLH08W1X3Ie26qW3x81MhHd9qXzs5HYUvS7Nf6wUjFSjLCpYWf+hQv3lBu 9WlR44Zive2od94I0MKsZPyRmi660bfPZkVNaKlpwrdTZNW5X+48SsydTds9o3Yg JBgUxNNryDzNPdAYrfASaoRYzQq3haWm12B/C4z63tFrgYyo/7bwVvlJmTZOaCUS tK1H0324IbbJNF6iv1gfcoKA6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJII7nR8 20ZZui0DEvkCL66m4mONMB8GA1UdIwQYMBaAFNfLbR3c+TSh9Z5P/kmC8LTFLDX1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEyRC83MkI1RjI5MkQy N0QxMUVDQTczRUYxNTRDNEY5QUUwMi8xOHR0SGR6NU5LSDFua18tU1lMd3RNVXNO ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzE4dHRIZHo1TktIMW5rXy1TWUx3dE1Vc05mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERBMkQvNzJCNUYyOTJEMjdEMTFFQ0E3M0VGMTU0QzRGOUFFMDIvQjM5OTdEQjRG M0EzMTFFQzg4MDRGRTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAUl0wDQYJKoZIhvcNAQELBQADggEBAGFgTVXBd575SDJ2 INK26AZZJaDrUDO8H5Mx8vfqIwjsCl6Dz47vINbTb5LV1kvUC8b3/1g6xIX7IkIm prf4dpDnAqZ3k+GtwT6TdOn47P7UrabcC4KYOC5ODUaZbZcesA/EAQz0zeEIRVU1 fC3T7EiO9R3/MzRLikf5GluvFsXBPhCuv+OwVvJoH03QIwS/UhxFOtD5u+mK6iBm xnkO/uD1edQ47U2e0GF4zsVKT79u4INQrtDqvNDYA4AN4fbqbfOuA33JSn3yTk53 HuDAZIP3VygpUqMheEphO99v0/EMco6Fhel+gSh8M7/NMiKpdmVVBemSqppMN9uU PGTWubA= -----END CERTIFICATE-----Generated at Sat Apr 26 12:29:19 2025 by rpki-client