$ rpki-client -vvf rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/7BB2BC009FFA11ECA13C2839C4F9AE02.roa File: 7BB2BC009FFA11ECA13C2839C4F9AE02.roa (raw, json) Hash identifier: K7jgwtFrPBKypxv1Ln8vBllbtClVCUlvOXHISxYGRB0= Subject key identifier: D3:F8:05:0C:EC:50:7C:69:C9:60:6C:66:06:6C:22:DB:DB:9A:C7:4A Certificate issuer: /CN=A9164663/serialNumber=B8731C308863CB2804E076D58E8C07159B4E5F19 Certificate serial: 07F3 Authority key identifier: B8:73:1C:30:88:63:CB:28:04:E0:76:D5:8E:8C:07:15:9B:4E:5F:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/7BB2BC009FFA11ECA13C2839C4F9AE02.roa Signing time: Thu 10 Apr 2025 17:25:32 +0000 ROA not before: Thu 10 Apr 2025 17:25:31 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136276 IP address blocks: 2401:2dc0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.crl rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:09:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2035 (0x7f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164663, serialNumber=B8731C308863CB2804E076D58E8C07159B4E5F19 Validity Not Before: Apr 10 17:25:31 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f7ff0b-0a8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:46:88:5a:36:87:20:ad:15:3d:a2:4b:b4:81: 5e:90:89:84:aa:74:51:c4:7c:87:5f:05:38:24:13: d3:ac:de:46:af:e6:dd:06:43:86:48:04:67:ac:09: 26:bd:b4:32:40:0e:4c:60:b0:f0:e9:57:6e:95:57: 4a:1b:79:01:d5:5f:27:43:e8:68:98:7b:60:24:69: 16:a9:b7:ae:5b:5f:2a:77:e7:20:c6:88:28:e2:39: 8e:90:62:92:34:63:a9:d0:22:da:f1:a1:15:8b:09: 1d:fe:8d:72:3e:fd:ae:66:a5:f4:b8:14:dd:cb:14: 58:1e:19:49:2a:59:ec:d6:68:a8:d8:6f:18:a3:48: cf:18:33:a2:7e:c8:7f:c3:54:13:b5:de:96:dd:03: 67:04:57:0e:a3:cf:2e:b3:ce:25:1c:e0:93:8d:a0: 3c:cd:43:53:36:a5:11:19:27:3f:22:4f:5f:8b:b4: 81:84:43:ad:95:d6:29:99:26:19:96:c4:dd:ea:70: 7c:5d:9a:27:f1:9b:c3:43:00:ba:94:fa:1b:d7:8e: 90:30:27:42:29:23:04:80:8d:45:f3:6c:af:9f:7d: 5c:8e:a2:e6:a6:d0:73:4e:52:79:c1:66:fe:ef:ec: b1:66:30:f6:4d:88:07:68:f6:ed:74:a7:dc:d7:6d: 06:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:F8:05:0C:EC:50:7C:69:C9:60:6C:66:06:6C:22:DB:DB:9A:C7:4A X509v3 Authority Key Identifier: keyid:B8:73:1C:30:88:63:CB:28:04:E0:76:D5:8E:8C:07:15:9B:4E:5F:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/7BB2BC009FFA11ECA13C2839C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:2dc0:8::/48 Signature Algorithm: sha256WithRSAEncryption 95:5a:ef:7b:88:a9:00:a4:72:fe:1f:32:41:2e:26:92:b7:ec: 78:0e:ce:97:98:6d:37:4b:ef:3a:f7:1d:10:63:ee:f9:83:c6: 29:54:28:f3:02:9b:20:9b:45:0f:52:0a:55:44:b6:2e:47:4b: f5:22:37:cb:e3:da:2b:b1:a5:c6:5a:33:0d:54:07:16:8a:8c: b7:21:1b:17:1e:05:c7:6c:6d:4c:27:31:d2:8a:1e:00:e6:13: 2a:7e:da:a6:80:87:27:ca:ea:6a:a9:c1:db:d7:b8:60:ab:e7: 83:e7:c6:3a:a5:77:0f:2c:f6:3c:f0:97:87:3e:f7:11:10:7c: cc:6b:b4:33:84:0a:c6:d9:99:70:fd:66:f7:5a:c5:96:51:42: 4d:fd:29:3f:db:b8:7f:9f:af:f4:2c:5d:d6:97:da:b1:49:33: 50:f3:e5:4f:0a:05:e3:2f:72:e7:d2:62:08:23:45:e9:5d:09: e5:a4:75:67:8f:38:44:e8:25:83:be:f6:b2:f2:93:25:c8:de: c4:83:ab:d2:9f:60:1d:c1:5d:78:52:64:14:f4:da:8c:4f:b2: 7c:bc:e5:5c:35:d8:a3:6a:ca:02:52:25:88:01:be:8d:d6:56: 76:b8:49:fc:8a:fa:f1:2f:a8:0b:51:80:b9:a4:74:39:9f:b8: 0d:34:5d:36 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICB/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ2NjMxMTAvBgNVBAUTKEI4NzMxQzMwODg2M0NCMjgwNEUwNzZENThFOEMwNzE1 OUI0RTVGMTkwHhcNMjUwNDEwMTcyNTMxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y3ZmYwYi0wYThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUaIWjaHIK0VPaJLtIFekImEqnRRxHyHXwU4JBPTrN5Gr+bdBkOGSARnrAkm vbQyQA5MYLDw6VdulVdKG3kB1V8nQ+homHtgJGkWqbeuW18qd+cgxogo4jmOkGKS NGOp0CLa8aEViwkd/o1yPv2uZqX0uBTdyxRYHhlJKlns1mio2G8Yo0jPGDOifsh/ w1QTtd6W3QNnBFcOo88us84lHOCTjaA8zUNTNqURGSc/Ik9fi7SBhEOtldYpmSYZ lsTd6nB8XZon8ZvDQwC6lPob146QMCdCKSMEgI1F82yvn31cjqLmptBzTlJ5wWb+ 7+yxZjD2TYgHaPbtdKfc120GkQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNP4BQzs UHxpyWBsZgZsItvbmsdKMB8GA1UdIwQYMBaAFLhzHDCIY8soBOB21Y6MBxWbTl8Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDY2My8xNEVBQTlGQURB NzkxMUU4OUI5NUE2NzJDNEY5QUUwMi91SE1jTUloanl5Z0U0SGJWam93SEZadE9Y eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VITWNNSWhqeXlnRTRIYlZqb3dIRlp0T1h4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQ2NjMvMTRFQUE5RkFEQTc5MTFFODlCOTVBNjcyQzRGOUFFMDIvN0JCMkJDMDA5 RkZBMTFFQ0ExM0MyODM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAS3AAAgwDQYJKoZIhvcNAQELBQADggEBAJVa73uIqQCk cv4fMkEuJpK37HgOzpeYbTdL7zr3HRBj7vmDxilUKPMCmyCbRQ9SClVEti5HS/Ui N8vj2iuxpcZaMw1UBxaKjLchGxceBcdsbUwnMdKKHgDmEyp+2qaAhyfK6mqpwdvX uGCr54Pnxjqldw8s9jzwl4c+9xEQfMxrtDOECsbZmXD9ZvdaxZZRQk39KT/buH+f r/QsXdaX2rFJM1Dz5U8KBeMvcufSYggjReldCeWkdWePOEToJYO+9rLykyXI3sSD q9KfYB3BXXhSZBT02oxPsny85Vw12KNqygJSJYgBvo3WVna4SfyK+vEvqAtRgLmk dDmfuA00XTY= -----END CERTIFICATE-----Generated at Sat Apr 26 08:16:38 2025 by rpki-client