$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/D4D84D08DA9211ED99CD1D28C4F9AE02.roa File: D4D84D08DA9211ED99CD1D28C4F9AE02.roa (raw, json) Hash identifier: MnDi5zIly9ESguHuvmf3VgR/9XTexkHTRfRhiBCHX8Q= Subject key identifier: 72:A6:17:D1:8D:7A:1C:12:67:ED:81:9A:32:15:B3:E6:79:76:94:C2 Certificate issuer: /CN=A914E5F6/serialNumber=AFF85F7EF3DA5887438DD2061F2E9EE0B2DD0A7F Certificate serial: 0190 Authority key identifier: AF:F8:5F:7E:F3:DA:58:87:43:8D:D2:06:1F:2E:9E:E0:B2:DD:0A:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/D4D84D08DA9211ED99CD1D28C4F9AE02.roa Signing time: Fri 25 Apr 2025 02:59:37 +0000 ROA not before: Fri 25 Apr 2025 02:59:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151182 IP address blocks: 2001:df2:42c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.crl rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5F6, serialNumber=AFF85F7EF3DA5887438DD2061F2E9EE0B2DD0A7F Validity Not Before: Apr 25 02:59:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680afa99-b6b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2a:85:b9:ba:22:b1:a9:32:49:35:0f:f8:b7: eb:eb:9e:f3:d2:3e:c5:8b:a7:1c:03:2e:26:c9:40: f8:3a:82:78:cc:4f:fd:51:9f:f2:ba:ea:6a:c4:4e: 89:57:63:81:99:df:96:c0:06:9b:fb:84:11:2a:70: e9:25:da:ae:e9:5c:a4:85:cf:35:f1:77:66:21:69: 43:77:0c:af:b3:6f:54:b4:ef:b9:94:25:ee:88:11: bf:3d:e6:f1:38:86:2e:67:3a:7b:c4:20:ad:cb:2f: de:e2:52:6b:55:8c:6c:d8:b2:b5:62:eb:99:15:6d: f6:9e:9b:10:0e:dd:9e:3a:b9:11:c9:2e:07:be:0c: b8:71:5a:f1:38:eb:b2:24:aa:f6:ff:4a:3d:3b:52: 54:93:56:8c:fc:88:10:ea:60:4d:89:c1:31:2e:e1: f4:1e:9a:d0:ee:4a:98:f2:8a:0e:2a:a7:58:b6:54: 82:50:33:09:c4:fe:6b:3c:d1:84:27:b6:e3:5b:be: b8:1e:00:e5:4f:ae:4e:38:cf:67:9e:a9:71:a8:03: dd:10:0a:0c:44:e9:5c:a6:51:9e:d6:c4:64:cc:82: 59:90:10:95:6c:e3:51:69:27:bc:e1:ab:f0:a7:bf: 00:1e:f2:b2:39:a0:a2:c6:0b:0c:45:b6:ec:3a:c1: f6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A6:17:D1:8D:7A:1C:12:67:ED:81:9A:32:15:B3:E6:79:76:94:C2 X509v3 Authority Key Identifier: keyid:AF:F8:5F:7E:F3:DA:58:87:43:8D:D2:06:1F:2E:9E:E0:B2:DD:0A:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/D4D84D08DA9211ED99CD1D28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df2:42c0::/48 Signature Algorithm: sha256WithRSAEncryption 91:36:7b:4a:de:94:e3:4c:f7:40:be:b7:14:50:b8:65:89:cd: ab:8b:82:49:0c:c7:96:40:59:95:6a:11:ce:3c:28:e4:97:24: 37:3f:75:1b:ac:1a:9f:77:5d:8e:78:5e:bc:16:48:a0:94:5a: ce:fb:fe:e1:16:89:22:2c:c4:29:14:d4:8d:a4:c9:64:c4:e1: d6:6d:01:6d:38:8f:0d:28:00:dd:e8:65:67:9a:4a:0a:9a:a8: a2:8f:c1:f7:9d:cd:d0:26:2c:3c:32:a1:f5:98:be:0e:30:ac: 96:6f:a5:40:8c:9b:20:70:c4:dc:eb:7f:37:f4:a0:ef:19:3e: e1:b8:42:78:98:0a:18:93:4f:5a:5a:1b:43:46:08:b7:31:c7: a4:a8:08:7b:4f:93:32:0b:a7:a7:2b:95:05:c7:65:bb:c1:e5: 2c:81:34:2f:9a:eb:6d:ae:27:9a:f7:f5:17:5f:b0:47:c6:0f: 1b:2e:eb:4a:09:7b:90:c6:2a:bb:26:09:33:00:4e:8a:54:31: ef:82:db:12:92:fd:72:88:e1:17:65:4e:48:79:12:fd:2f:8f: bc:23:ad:4a:ef:5d:df:54:2e:a5:e0:54:62:53:42:94:ac:08: cc:22:f0:a4:3b:d8:8e:a9:51:60:1d:ec:e4:82:6c:a7:9e:7a: c8:e9:0e:f4 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1RjYxMTAvBgNVBAUTKEFGRjg1RjdFRjNEQTU4ODc0MzhERDIwNjFGMkU5RUUw QjJERDBBN0YwHhcNMjUwNDI1MDI1OTM3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhZmE5OS1iNmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SqFuboisakySTUP+Lfr657z0j7Fi6ccAy4myUD4OoJ4zE/9UZ/yuupqxE6J V2OBmd+WwAab+4QRKnDpJdqu6Vykhc818XdmIWlDdwyvs29UtO+5lCXuiBG/Pebx OIYuZzp7xCCtyy/e4lJrVYxs2LK1YuuZFW32npsQDt2eOrkRyS4Hvgy4cVrxOOuy JKr2/0o9O1JUk1aM/IgQ6mBNicExLuH0HprQ7kqY8ooOKqdYtlSCUDMJxP5rPNGE J7bjW764HgDlT65OOM9nnqlxqAPdEAoMROlcplGe1sRkzIJZkBCVbONRaSe84avw p78AHvKyOaCixgsMRbbsOsH2tQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHKmF9GN ehwSZ+2BmjIVs+Z5dpTCMB8GA1UdIwQYMBaAFK/4X37z2liHQ43SBh8unuCy3Qp/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVGNi9CQ0E2NkI3RURB OEUxMUVEODM1QzM5MjVDNEY5QUUwMi9yX2hmZnZQYVdJZERqZElHSHk2ZTRMTGRD bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JfaGZmdlBhV0lkRGpkSUdIeTZlNExMZENuOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU1RjYvQkNBNjZCN0VEQThFMTFFRDgzNUMzOTI1QzRGOUFFMDIvRDREODREMDhE QTkyMTFFRDk5Q0QxRDI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3yQsAwDQYJKoZIhvcNAQELBQADggEBAJE2e0relONM 90C+txRQuGWJzauLgkkMx5ZAWZVqEc48KOSXJDc/dRusGp93XY54XrwWSKCUWs77 /uEWiSIsxCkU1I2kyWTE4dZtAW04jw0oAN3oZWeaSgqaqKKPwfedzdAmLDwyofWY vg4wrJZvpUCMmyBwxNzrfzf0oO8ZPuG4QniYChiTT1paG0NGCLcxx6SoCHtPkzIL p6crlQXHZbvB5SyBNC+a622uJ5r39RdfsEfGDxsu60oJe5DGKrsmCTMATopUMe+C 2xKS/XKI4RdlTkh5Ev0vj7wjrUrvXd9ULqXgVGJTQpSsCMwi8KQ72I6pUWAd7OSC bKeeesjpDvQ= -----END CERTIFICATE-----Generated at Sat Apr 26 07:59:30 2025 by rpki-client