$ rpki-client -vvf rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/0D73D29E0DDC11F0B78D5A68C4F9AE02.roa File: 0D73D29E0DDC11F0B78D5A68C4F9AE02.roa (raw, json) Hash identifier: cDoM5IMp1RVEZcbuIT/nXNre619WWcYGHnTE2Hy4AEg= Subject key identifier: 07:23:F3:38:BD:60:74:F4:58:5F:20:A3:BA:98:F8:CA:18:43:57:14 Certificate issuer: /CN=A918C287/serialNumber=D8B1E2389BA591FD79B9A504AF5A44DAE0A6E828 Certificate serial: 8C Authority key identifier: D8:B1:E2:38:9B:A5:91:FD:79:B9:A5:04:AF:5A:44:DA:E0:A6:E8:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2LHiOJulkf15uaUEr1pE2uCm6Cg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/0D73D29E0DDC11F0B78D5A68C4F9AE02.roa Signing time: Mon 31 Mar 2025 02:58:42 +0000 ROA not before: Mon 31 Mar 2025 02:58:42 +0000 ROA not after: Sat 01 May 2038 00:00:00 +0000 asID: 4609 IP address blocks: 2001:df0:90::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.crl rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2LHiOJulkf15uaUEr1pE2uCm6Cg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:21:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C287, serialNumber=D8B1E2389BA591FD79B9A504AF5A44DAE0A6E828 Validity Not Before: Mar 31 02:58:42 2025 GMT Not After : May 1 00:00:00 2038 GMT Subject: CN=67ea04e2-d7ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:14:73:38:42:00:77:88:00:1b:38:6d:be:1e: 2e:e0:36:7b:cb:99:de:98:93:ab:74:d7:57:78:6d: 65:54:3f:88:24:92:5a:42:46:38:0e:56:ae:35:ac: 3e:f5:e2:65:bd:19:1c:6b:06:1b:3f:07:0e:c6:91: f3:60:01:08:d4:d8:13:b6:e2:9d:00:33:55:32:c4: 95:7b:cc:82:18:90:31:ad:15:b0:b5:13:1e:32:a8: e1:5f:d7:84:ae:83:ec:6b:74:52:1c:7e:24:14:34: 5f:d1:3f:4c:a4:3c:f1:7b:ee:ba:5b:42:a4:51:bd: 97:81:28:d5:da:fa:a2:b6:97:4e:7f:06:bb:21:68: da:ca:ce:70:c5:7f:a7:82:0f:be:8f:3a:1b:7e:3c: 03:32:73:99:22:f2:f5:86:55:ff:03:df:25:dd:92: 82:3c:fd:0b:c5:4b:78:c6:50:10:b8:12:4a:78:43: fe:76:da:96:bb:6f:24:0d:54:a3:bb:91:66:03:8a: 08:3a:02:c3:82:f0:80:bd:7a:87:b8:41:5a:c7:69: a1:f4:41:1e:01:71:ba:9d:85:d4:2b:9b:da:c7:f5: c8:c7:23:37:ac:7f:38:7d:70:b4:03:6c:de:13:15: 4c:d5:56:dc:e4:00:3a:54:2a:23:0f:bc:48:54:52: 33:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:23:F3:38:BD:60:74:F4:58:5F:20:A3:BA:98:F8:CA:18:43:57:14 X509v3 Authority Key Identifier: keyid:D8:B1:E2:38:9B:A5:91:FD:79:B9:A5:04:AF:5A:44:DA:E0:A6:E8:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2LHiOJulkf15uaUEr1pE2uCm6Cg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/0D73D29E0DDC11F0B78D5A68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:90::/48 Signature Algorithm: sha256WithRSAEncryption 0d:58:21:ca:eb:19:b2:51:49:8c:10:6f:c0:08:73:ed:94:53: a9:5f:b1:a5:e0:58:6d:3e:9f:fa:02:39:4b:f9:7a:ce:25:7d: d1:b7:bf:63:a7:aa:d0:a8:0f:01:e2:8c:17:a0:0f:55:22:b8: c6:c8:2b:34:34:5f:a6:11:29:7d:7a:d1:c1:32:05:4b:e5:52: b0:2d:b7:4d:b7:af:71:28:8d:3f:47:24:ea:45:cd:c7:bf:5a: d9:ae:6a:43:2b:bf:bc:02:9b:36:ae:7a:9a:62:f0:53:d2:d1: 59:1b:41:c6:e7:c5:ca:8a:f3:7e:ee:de:14:49:c0:e0:51:8d: 83:4d:47:6a:a4:1c:df:fd:43:58:1a:f2:01:30:91:9b:5a:2b: cd:b0:6a:6f:1d:b5:11:00:69:c7:57:cb:b0:69:9d:78:18:bf: 8c:7f:57:b3:0f:a0:89:b0:1e:ea:79:5a:83:93:23:91:14:94: 8e:c7:cc:1c:b3:f8:9b:cd:1a:b9:5d:52:5b:1a:54:9f:cc:12: 73:99:c0:ff:28:c7:39:83:c3:2a:11:a5:4c:d9:00:6e:55:48: ec:54:25:80:af:10:1f:8e:87:ae:ab:29:2a:aa:5d:ff:a4:31: b7:17:56:ab:43:00:14:fc:e4:e0:8f:58:85:56:10:f5:23:76: 51:05:62:76 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMyODcxMTAvBgNVBAUTKEQ4QjFFMjM4OUJBNTkxRkQ3OUI5QTUwNEFGNUE0NERB RTBBNkU4MjgwHhcNMjUwMzMxMDI1ODQyWhcNMzgwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VhMDRlMi1kN2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBRzOEIAd4gAGzhtvh4u4DZ7y5nemJOrdNdXeG1lVD+IJJJaQkY4DlauNaw+ 9eJlvRkcawYbPwcOxpHzYAEI1NgTtuKdADNVMsSVe8yCGJAxrRWwtRMeMqjhX9eE roPsa3RSHH4kFDRf0T9MpDzxe+66W0KkUb2XgSjV2vqitpdOfwa7IWjays5wxX+n gg++jzobfjwDMnOZIvL1hlX/A98l3ZKCPP0LxUt4xlAQuBJKeEP+dtqWu28kDVSj u5FmA4oIOgLDgvCAvXqHuEFax2mh9EEeAXG6nYXUK5vax/XIxyM3rH84fXC0A2ze ExVM1Vbc5AA6VCojD7xIVFIzuwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAcj8zi9 YHT0WF8go7qY+MoYQ1cUMB8GA1UdIwQYMBaAFNix4jibpZH9ebmlBK9aRNrgpugo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzI4Ny8zMDdDRkYxRUIz NzcxMUVGQjkxODREN0FDNEY5QUUwMi8yTEhpT0p1bGtmMTV1YVVFcjFwRTJ1Q202 Q2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJMSGlPSnVsa2YxNXVhVUVyMXBFMnVDbTZDZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEMyODcvMzA3Q0ZGMUVCMzc3MTFFRkI5MTg0RDdBQzRGOUFFMDIvMEQ3M0QyOUUw RERDMTFGMEI3OEQ1QTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wAJAwDQYJKoZIhvcNAQELBQADggEBAA1YIcrrGbJR SYwQb8AIc+2UU6lfsaXgWG0+n/oCOUv5es4lfdG3v2OnqtCoDwHijBegD1UiuMbI KzQ0X6YRKX160cEyBUvlUrAtt023r3EojT9HJOpFzce/WtmuakMrv7wCmzaueppi 8FPS0VkbQcbnxcqK837u3hRJwOBRjYNNR2qkHN/9Q1ga8gEwkZtaK82wam8dtREA acdXy7BpnXgYv4x/V7MPoImwHup5WoOTI5EUlI7HzByz+JvNGrldUlsaVJ/MEnOZ wP8oxzmDwyoRpUzZAG5VSOxUJYCvEB+Oh66rKSqqXf+kMbcXVqtDABT85OCPWIVW EPUjdlEFYnY= -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:50 2025 by rpki-client