$ rpki-client -vvf rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/7404496836E411F0A95FB239C4F9AE02.roa File: 7404496836E411F0A95FB239C4F9AE02.roa (raw, json) Hash identifier: WHGMZh9P2RExWIeMMaDkbGi0VRoxW1Iai0A3Zb9yWT4= Subject key identifier: A2:BB:46:55:4A:B8:B8:53:EB:51:AB:BC:D4:D5:34:22:85:23:BE:43 Certificate issuer: /CN=A9187BAC/serialNumber=A29B1B6809CEC1A92470C59C6C36BFA5CF387186 Certificate serial: 4A Authority key identifier: A2:9B:1B:68:09:CE:C1:A9:24:70:C5:9C:6C:36:BF:A5:CF:38:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/7404496836E411F0A95FB239C4F9AE02.roa Signing time: Thu 22 May 2025 08:12:07 +0000 ROA not before: Thu 22 May 2025 08:12:07 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 139358 IP address blocks: 2001:df4:e141::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.crl rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187BAC, serialNumber=A29B1B6809CEC1A92470C59C6C36BFA5CF387186 Validity Not Before: May 22 08:12:07 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=682edc57-46cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:db:61:7b:c9:8f:a4:f8:d4:57:fb:39:04:cb: da:5c:ae:3d:a9:a0:1f:d7:15:14:8f:e6:6e:c1:91: f7:11:a5:32:86:5d:fc:a0:f1:21:9e:19:35:d5:c3: 56:cd:92:34:5e:06:73:aa:27:38:40:8b:1b:c4:f7: a9:df:67:1f:ac:8e:7a:f7:45:37:b5:9e:f0:f3:d4: 68:af:95:36:a4:07:e8:ba:81:03:b4:f0:15:d9:3e: 46:9a:65:04:5e:f9:bd:78:d2:1c:98:a8:31:bb:ef: ff:4c:ef:63:f2:17:01:7b:59:52:0f:8a:0e:79:c9: 11:81:4c:17:b4:1b:9b:05:57:40:50:50:27:e3:91: 46:99:82:c9:15:ca:6b:e6:19:28:a1:ec:35:ea:47: e7:48:a7:93:5e:31:17:79:f2:bb:77:29:95:4c:4c: 84:c6:f4:38:cd:31:85:2d:64:46:2a:6a:e0:81:63: 72:68:cd:9f:9e:4c:e0:9f:ae:2c:f0:66:06:53:23: 5a:08:96:64:9c:7c:b2:16:14:34:2b:c8:a9:24:49: 83:9c:cd:10:c1:dd:ab:a0:a4:b2:a8:ec:7a:4d:21: 73:46:18:07:33:de:8a:5e:7a:eb:5f:c1:8a:1a:89: 39:db:b1:98:33:c6:2d:93:33:2d:51:31:60:20:89: 21:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:BB:46:55:4A:B8:B8:53:EB:51:AB:BC:D4:D5:34:22:85:23:BE:43 X509v3 Authority Key Identifier: keyid:A2:9B:1B:68:09:CE:C1:A9:24:70:C5:9C:6C:36:BF:A5:CF:38:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/7404496836E411F0A95FB239C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:e141::/48 Signature Algorithm: sha256WithRSAEncryption 40:e2:49:65:bc:1c:00:14:5f:9b:66:76:a7:73:f1:56:91:92: 20:a0:56:4b:70:a5:8e:c7:0a:4a:e3:09:82:1e:70:ab:b5:12: ae:74:cb:60:fe:43:0a:51:7e:84:52:16:d5:e6:6d:b3:0d:cf: e0:4d:58:14:9e:bf:b3:28:bb:7a:f8:36:76:25:0c:fc:78:84: 92:5d:67:9a:94:d2:e5:ac:94:a9:76:81:cd:19:bf:d1:6a:33: 89:b4:b1:68:f6:8d:77:25:aa:1f:f3:28:f4:b1:f1:9b:85:08: 6b:da:94:63:6c:69:c4:5d:98:eb:91:29:93:a7:8b:5d:33:de: e9:f6:11:8f:34:35:73:ff:54:79:e7:20:29:a0:0e:28:26:e4: cc:ec:fe:ce:59:93:25:ee:07:f1:89:b2:1f:6b:3b:69:c1:9d: fc:0e:4f:d1:39:90:b7:16:31:dd:72:a5:d3:63:89:df:40:07: 7a:94:b8:50:47:41:4a:8a:df:65:d3:13:1c:b5:51:ed:00:25: 39:fa:ae:d6:7b:40:46:b9:f7:08:dc:76:ac:62:a7:c6:09:9c: 33:0a:78:29:e6:19:a3:fa:02:df:8b:28:04:cb:49:eb:8a:ab: 83:87:62:fb:86:ef:ac:a9:c9:0d:ea:d7:13:30:b2:b9:07:22: 27:c4:a8:86 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 N0JBQzExMC8GA1UEBRMoQTI5QjFCNjgwOUNFQzFBOTI0NzBDNTlDNkMzNkJGQTVD RjM4NzE4NjAeFw0yNTA1MjIwODEyMDdaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MmVkYzU3LTQ2Y2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDh22F7yY+k+NRX+zkEy9pcrj2poB/XFRSP5m7BkfcRpTKGXfyg8SGeGTXVw1bN kjReBnOqJzhAixvE96nfZx+sjnr3RTe1nvDz1GivlTakB+i6gQO08BXZPkaaZQRe +b140hyYqDG77/9M72PyFwF7WVIPig55yRGBTBe0G5sFV0BQUCfjkUaZgskVymvm GSih7DXqR+dIp5NeMRd58rt3KZVMTITG9DjNMYUtZEYqauCBY3JozZ+eTOCfrizw ZgZTI1oIlmScfLIWFDQryKkkSYOczRDB3augpLKo7HpNIXNGGAcz3opeeutfwYoa iTnbsZgzxi2TMy1RMWAgiSGrAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUortGVUq4 uFPrUau81NU0IoUjvkMwHwYDVR0jBBgwFoAUopsbaAnOwakkcMWcbDa/pc84cYYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3QkFDL0M2QUQzRTBBRDAy QzExRUZCNTU4NDkxNUM0RjlBRTAyL29wc2JhQW5Pd2Fra2NNV2NiRGFfcGM4NGNZ WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb3BzYmFBbk93YWtrY01XY2JEYV9wYzg0Y1lZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 N0JBQy9DNkFEM0UwQUQwMkMxMUVGQjU1ODQ5MTVDNEY5QUUwMi83NDA0NDk2ODM2 RTQxMUYwQTk1RkIyMzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfThQTANBgkqhkiG9w0BAQsFAAOCAQEAQOJJZbwcABRf m2Z2p3PxVpGSIKBWS3CljscKSuMJgh5wq7USrnTLYP5DClF+hFIW1eZtsw3P4E1Y FJ6/syi7evg2diUM/HiEkl1nmpTS5ayUqXaBzRm/0WozibSxaPaNdyWqH/Mo9LHx m4UIa9qUY2xpxF2Y65Epk6eLXTPe6fYRjzQ1c/9UeecgKaAOKCbkzOz+zlmTJe4H 8YmyH2s7acGd/A5P0TmQtxYx3XKl02OJ30AHepS4UEdBSorfZdMTHLVR7QAlOfqu 1ntARrn3CNx2rGKnxgmcMwp4KeYZo/oC34soBMtJ64qrg4di+4bvrKnJDerXEzCy uQciJ8Sohg== -----END CERTIFICATE-----Generated at Sun Jun 15 10:17:26 2025 by rpki-client