$ rpki-client -vvf rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/9F08E8B2D28E11EB9F83683DC4F9AE02.roa File: 9F08E8B2D28E11EB9F83683DC4F9AE02.roa (raw, json) Hash identifier: bytWuNzrLQw9v+QMqc5rrIvyHwJBakcmOmXht2Npskg= Subject key identifier: 39:F7:10:44:E5:22:EB:CD:37:32:E0:46:39:9F:24:B3:C4:6C:AE:BE Certificate issuer: /CN=A9183798/serialNumber=3A02EFF7CC9C8BAA12D7C852B6FFC69FB060989B Certificate serial: 101B Authority key identifier: 3A:02:EF:F7:CC:9C:8B:AA:12:D7:C8:52:B6:FF:C6:9F:B0:60:98:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/9F08E8B2D28E11EB9F83683DC4F9AE02.roa Signing time: Thu 24 Apr 2025 17:46:15 +0000 ROA not before: Thu 24 Apr 2025 17:46:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142437 IP address blocks: 2405:3340:e011::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.crl rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4123 (0x101b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183798, serialNumber=3A02EFF7CC9C8BAA12D7C852B6FFC69FB060989B Validity Not Before: Apr 24 17:46:15 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=680a78e6-d857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:74:6d:a4:7d:87:03:f9:5f:76:2b:61:5c:4e: b0:51:4a:f0:fb:d7:1c:e6:c6:53:4e:cb:a3:d4:f3: 71:6e:f9:d6:10:86:2d:aa:8d:81:3a:95:97:4c:5b: 29:33:74:ba:0b:be:fb:5b:da:56:34:34:5d:cc:33: 39:f4:8d:88:49:55:da:1b:2b:c6:84:79:69:7e:d1: 0a:e9:96:f0:2b:5a:fe:0e:f5:dc:fc:b7:49:c5:53: 3b:6b:9c:ee:c2:e4:b0:6b:75:94:60:38:b1:70:6f: df:35:2e:90:4a:b9:38:38:a4:51:cc:4f:85:a3:20: 00:17:89:98:03:4c:7f:75:1e:11:39:eb:24:ff:75: c5:be:25:63:86:42:c7:42:6d:23:90:4d:21:fe:fe: 10:44:3c:df:de:d0:62:b3:fd:28:dc:95:2a:3e:10: 54:af:d8:98:9e:55:a7:d9:76:95:a8:fc:7c:d4:00: 11:9c:2d:5f:9c:9a:36:af:83:35:fc:ea:c5:5f:ec: 86:a9:1a:77:4d:1f:1d:d4:f3:9e:40:46:fa:0d:78: 82:36:0b:ac:1f:d4:db:d8:18:f1:a8:6e:83:d0:5d: df:63:85:33:a1:5a:03:66:04:05:75:27:63:e9:4b: 16:74:30:ef:2a:25:8f:02:ab:d6:18:59:52:28:e3: 2b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F7:10:44:E5:22:EB:CD:37:32:E0:46:39:9F:24:B3:C4:6C:AE:BE X509v3 Authority Key Identifier: keyid:3A:02:EF:F7:CC:9C:8B:AA:12:D7:C8:52:B6:FF:C6:9F:B0:60:98:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/9F08E8B2D28E11EB9F83683DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:3340:e011::/48 Signature Algorithm: sha256WithRSAEncryption b2:4a:c7:dd:48:5b:c0:3c:e1:d5:51:89:7a:8f:9d:9c:43:7d: 3b:c6:1c:84:a0:c0:e8:a5:3c:e1:9f:e1:98:7d:71:e9:e6:9d: a3:4a:19:d9:81:8f:da:89:8c:15:7c:2b:fa:93:50:3f:f2:52: 68:81:bc:10:ca:89:d8:ce:f2:d3:54:d4:b5:6a:15:f4:26:8f: c6:f4:bc:f2:22:34:b6:5d:2a:40:5e:64:41:31:fe:0e:70:69: 9d:3d:99:fc:35:95:78:f5:8b:f0:0e:8c:f1:71:19:4f:a9:34: 23:f4:50:1e:ed:cd:8d:b9:94:4c:fa:7e:b4:a8:15:3e:df:48: fa:50:4d:8c:7e:32:d9:74:bd:06:97:59:5d:74:d2:a3:7d:d5: d0:f2:4c:87:10:1e:ee:2d:a6:70:a6:bf:37:0b:02:19:9a:13: 33:0c:da:7c:94:6d:c6:17:51:85:b7:37:69:89:68:34:79:70: 64:67:79:79:a9:04:70:54:40:d9:84:16:ba:2a:c7:3f:ea:e4: b2:1f:63:f2:24:10:71:13:57:79:d4:40:95:79:51:29:b6:b3: b6:87:63:8a:82:1c:bb:13:1f:c0:be:f8:87:b2:71:ed:df:54: 0c:9e:ed:23:7e:b9:f0:5d:e2:07:56:f0:98:8e:67:b2:81:2a: 0b:7e:16:21 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICEBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3OTgxMTAvBgNVBAUTKDNBMDJFRkY3Q0M5QzhCQUExMkQ3Qzg1MkI2RkZDNjlG QjA2MDk4OUIwHhcNMjUwNDI0MTc0NjE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhNzhlNi1kODU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XRtpH2HA/lfdithXE6wUUrw+9cc5sZTTsuj1PNxbvnWEIYtqo2BOpWXTFsp M3S6C777W9pWNDRdzDM59I2ISVXaGyvGhHlpftEK6ZbwK1r+DvXc/LdJxVM7a5zu wuSwa3WUYDixcG/fNS6QSrk4OKRRzE+FoyAAF4mYA0x/dR4ROesk/3XFviVjhkLH Qm0jkE0h/v4QRDzf3tBis/0o3JUqPhBUr9iYnlWn2XaVqPx81AARnC1fnJo2r4M1 /OrFX+yGqRp3TR8d1POeQEb6DXiCNgusH9Tb2BjxqG6D0F3fY4UzoVoDZgQFdSdj 6UsWdDDvKiWPAqvWGFlSKOMrHwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDn3EETl IuvNNzLgRjmfJLPEbK6+MB8GA1UdIwQYMBaAFDoC7/fMnIuqEtfIUrb/xp+wYJib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc5OC85MDE3QjUwQTRB MjcxMUU5QUNGMTdDMjZDNEY5QUUwMi9PZ0x2OTh5Y2k2b1MxOGhTdHZfR243Qmdt SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09nTHY5OHljaTZvUzE4aFN0dl9HbjdCZ21Kcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODM3OTgvOTAxN0I1MEE0QTI3MTFFOUFDRjE3QzI2QzRGOUFFMDIvOUYwOEU4QjJE MjhFMTFFQjlGODM2ODNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBTNA4BEwDQYJKoZIhvcNAQELBQADggEBALJKx91IW8A8 4dVRiXqPnZxDfTvGHISgwOilPOGf4Zh9cenmnaNKGdmBj9qJjBV8K/qTUD/yUmiB vBDKidjO8tNU1LVqFfQmj8b0vPIiNLZdKkBeZEEx/g5waZ09mfw1lXj1i/AOjPFx GU+pNCP0UB7tzY25lEz6frSoFT7fSPpQTYx+Mtl0vQaXWV100qN91dDyTIcQHu4t pnCmvzcLAhmaEzMM2nyUbcYXUYW3N2mJaDR5cGRneXmpBHBUQNmEFroqxz/q5LIf Y/IkEHETV3nUQJV5USm2s7aHY4qCHLsTH8C++Ieyce3fVAye7SN+ufBd4gdW8JiO Z7KBKgt+FiE= -----END CERTIFICATE-----Generated at Sat Apr 26 16:39:56 2025 by rpki-client