$ rpki-client -vvf rpki.apnic.net/member_repository/A911911C/BBC54BA41D8311E28E7E2DD908B02CD2/3217A18E809711EFB1A3805FC4F9AE02.roa File: 3217A18E809711EFB1A3805FC4F9AE02.roa (raw, json) Hash identifier: agkjmUvruNWx97AQQ1tqZMJkgxJIavfnk0MQ7A0ZaCQ= Subject key identifier: F6:ED:66:D5:6B:F9:A3:7D:A8:4C:09:A5:53:31:E5:C3:AE:AE:DD:F9 Certificate issuer: /CN=A911911C/serialNumber=F457EF8C19AA0976CE0459A5FF709C5DCA4FC7D6 Certificate serial: 356C Authority key identifier: F4:57:EF:8C:19:AA:09:76:CE:04:59:A5:FF:70:9C:5D:CA:4F:C7:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FfvjBmqCXbOBFml_3CcXcpPx9Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911911C/BBC54BA41D8311E28E7E2DD908B02CD2/3217A18E809711EFB1A3805FC4F9AE02.roa Signing time: Wed 30 Apr 2025 14:50:18 +0000 ROA not before: Wed 30 Apr 2025 14:50:18 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133062 IP address blocks: 2001:448a:f000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911911C/BBC54BA41D8311E28E7E2DD908B02CD2/9FfvjBmqCXbOBFml_3CcXcpPx9Y.crl rsync://rpki.apnic.net/member_repository/A911911C/BBC54BA41D8311E28E7E2DD908B02CD2/9FfvjBmqCXbOBFml_3CcXcpPx9Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FfvjBmqCXbOBFml_3CcXcpPx9Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:22:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13676 (0x356c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911911C, serialNumber=F457EF8C19AA0976CE0459A5FF709C5DCA4FC7D6 Validity Not Before: Apr 30 14:50:18 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=681238aa-330e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ef:b0:5f:34:75:ec:29:bc:1b:09:ad:0d:44: 37:71:c5:4b:79:2b:4d:3f:ee:78:bc:a8:62:d1:7e: b7:45:dd:60:20:95:dd:d1:1b:fb:8c:f3:38:f8:47: fd:f1:af:e1:93:89:f6:87:bc:9b:e0:bd:df:9b:de: 07:c8:e4:e1:ae:44:f7:03:2c:f8:9d:0b:24:7b:52: f3:6e:5f:8b:c1:86:5b:0c:5d:58:14:26:02:c8:2a: 57:83:87:7d:2c:fc:2e:49:a1:0a:0e:35:bb:43:97: 96:be:f7:ec:59:7b:04:b3:49:a4:98:81:48:4d:74: 16:0a:d1:0e:43:1d:a4:94:9d:fb:cc:7a:62:8c:f3: 48:4d:56:43:2d:67:b3:7b:7c:9c:45:b0:f1:5f:45: ca:82:9e:aa:9e:7f:cb:f6:6a:e3:e8:28:6c:10:cd: 48:d0:25:60:bf:e7:d3:77:1f:38:af:05:07:77:d0: 20:a0:b6:3c:07:64:ea:67:bc:9c:48:30:09:80:5b: c7:7a:d5:30:b4:7f:b8:77:ec:01:e5:d6:13:81:09: 86:02:02:4e:65:da:b9:1f:ae:e0:ed:96:d1:6c:fa: fa:cf:b4:0d:94:a5:2e:99:45:a2:53:4a:c6:51:43: 02:d7:a2:58:1c:c4:2c:5f:b6:0f:36:86:6c:c2:30: 71:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:ED:66:D5:6B:F9:A3:7D:A8:4C:09:A5:53:31:E5:C3:AE:AE:DD:F9 X509v3 Authority Key Identifier: keyid:F4:57:EF:8C:19:AA:09:76:CE:04:59:A5:FF:70:9C:5D:CA:4F:C7:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911911C/BBC54BA41D8311E28E7E2DD908B02CD2/9FfvjBmqCXbOBFml_3CcXcpPx9Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FfvjBmqCXbOBFml_3CcXcpPx9Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911911C/BBC54BA41D8311E28E7E2DD908B02CD2/3217A18E809711EFB1A3805FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:448a:f000::/48 Signature Algorithm: sha256WithRSAEncryption 81:66:54:56:fe:8b:50:17:b5:87:9c:be:48:4b:77:6f:28:b1: 2f:d6:f2:d5:cd:38:ae:ab:f4:ec:bf:30:ad:1a:da:95:7d:78: fa:d9:fe:1e:56:e4:42:ad:ef:15:47:64:f0:8b:67:ed:ea:cf: c9:f1:a1:5b:33:fe:c4:35:1d:47:0a:19:d4:26:73:31:4c:a2: 14:41:bb:45:4b:c9:22:7d:a8:57:74:4e:c9:2c:d9:d1:a4:34: 9f:28:de:d1:29:ee:68:88:9e:5d:67:ca:71:7d:79:d4:e8:9c: ff:84:ea:b0:d1:2e:68:e7:72:83:e2:25:b6:64:b4:89:b8:50: 20:1d:9b:e9:40:f7:38:02:8b:53:a8:88:d5:af:0b:a3:1b:45: eb:ad:95:94:d4:85:ca:6d:a8:3f:6f:20:33:4f:2c:68:fa:48: 5c:74:49:2a:95:79:d8:5d:d0:86:48:a7:2d:6f:19:c6:ad:ea: fb:40:98:91:20:0c:e3:77:74:3e:15:22:1d:6b:c3:cf:96:5d: 79:a0:36:30:2a:2d:72:80:b3:a1:c9:ed:2e:ab:e7:4b:d1:3b: e8:49:ba:cf:8f:47:8d:f5:9b:50:38:1a:74:a6:34:1d:2f:4b: 23:a1:ca:9e:d3:5e:70:d8:c1:aa:49:d9:46:a7:b1:a1:4e:81: 86:0e:56:1d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICNWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkxMUMxMTAvBgNVBAUTKEY0NTdFRjhDMTlBQTA5NzZDRTA0NTlBNUZGNzA5QzVE Q0E0RkM3RDYwHhcNMjUwNDMwMTQ1MDE4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyMzhhYS0zMzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz++wXzR17Cm8GwmtDUQ3ccVLeStNP+54vKhi0X63Rd1gIJXd0Rv7jPM4+Ef9 8a/hk4n2h7yb4L3fm94HyOThrkT3Ayz4nQske1Lzbl+LwYZbDF1YFCYCyCpXg4d9 LPwuSaEKDjW7Q5eWvvfsWXsEs0mkmIFITXQWCtEOQx2klJ37zHpijPNITVZDLWez e3ycRbDxX0XKgp6qnn/L9mrj6ChsEM1I0CVgv+fTdx84rwUHd9AgoLY8B2TqZ7yc SDAJgFvHetUwtH+4d+wB5dYTgQmGAgJOZdq5H67g7ZbRbPr6z7QNlKUumUWiU0rG UUMC16JYHMQsX7YPNoZswjBx1wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPbtZtVr +aN9qEwJpVMx5cOurt35MB8GA1UdIwQYMBaAFPRX74wZqgl2zgRZpf9wnF3KT8fW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTExQy9CQkM1NEJBNDFE ODMxMUUyOEU3RTJERDkwOEIwMkNEMi85RmZ2akJtcUNYYk9CRm1sXzNDY1hjcFB4 OVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGZnZqQm1xQ1hiT0JGbWxfM0NjWGNwUHg5WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkxMUMvQkJDNTRCQTQxRDgzMTFFMjhFN0UyREQ5MDhCMDJDRDIvMzIxN0ExOEU4 MDk3MTFFRkIxQTM4MDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAUSK8AAwDQYJKoZIhvcNAQELBQADggEBAIFmVFb+i1AX tYecvkhLd28osS/W8tXNOK6r9Oy/MK0a2pV9ePrZ/h5W5EKt7xVHZPCLZ+3qz8nx oVsz/sQ1HUcKGdQmczFMohRBu0VLySJ9qFd0Tsks2dGkNJ8o3tEp7miInl1nynF9 edTonP+E6rDRLmjncoPiJbZktIm4UCAdm+lA9zgCi1OoiNWvC6MbReutlZTUhcpt qD9vIDNPLGj6SFx0SSqVedhd0IZIpy1vGcat6vtAmJEgDON3dD4VIh1rw8+WXXmg NjAqLXKAs6HJ7S6r50vRO+hJus+PR431m1A4GnSmNB0vSyOhyp7TXnDYwapJ2Uan saFOgYYOVh0= -----END CERTIFICATE-----Generated at Sun May 11 15:41:41 2025 by rpki-client