$ rpki-client -vvf rpki.apnic.net/member_repository/A911EEF8/9799E6D0BBC411EFB985BE3FC4F9AE02/0EC0EC1CC71F11EF85C66E2FC4F9AE02.roa File: 0EC0EC1CC71F11EF85C66E2FC4F9AE02.roa (raw, json) Hash identifier: +qrfRV2PMdtXAnNnZKKe18T1gS8IeX0szeLZzmY8t+g= Subject key identifier: AB:B3:93:8F:36:2D:95:83:C8:70:9F:A2:FD:31:B1:51:03:D7:87:5E Certificate issuer: /CN=A911EEF8/serialNumber=56C69305B5EBA542555D8C78C561AB7A6CD1AA2C Certificate serial: 6C Authority key identifier: 56:C6:93:05:B5:EB:A5:42:55:5D:8C:78:C5:61:AB:7A:6C:D1:AA:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VsaTBbXrpUJVXYx4xWGremzRqiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EEF8/9799E6D0BBC411EFB985BE3FC4F9AE02/0EC0EC1CC71F11EF85C66E2FC4F9AE02.roa Signing time: Wed 25 Jun 2025 06:31:49 +0000 ROA not before: Wed 25 Jun 2025 06:31:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 18383 IP address blocks: 202.10.96.0/20 maxlen: 21 2403:1800::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EEF8/9799E6D0BBC411EFB985BE3FC4F9AE02/VsaTBbXrpUJVXYx4xWGremzRqiw.crl rsync://rpki.apnic.net/member_repository/A911EEF8/9799E6D0BBC411EFB985BE3FC4F9AE02/VsaTBbXrpUJVXYx4xWGremzRqiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VsaTBbXrpUJVXYx4xWGremzRqiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EEF8, serialNumber=56C69305B5EBA542555D8C78C561AB7A6CD1AA2C Validity Not Before: Jun 25 06:31:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685b97d5-c003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6f:ae:b2:10:4a:6d:d8:b8:6c:40:c0:b4:5a: cd:ee:a7:0b:8a:a7:0f:0b:82:3e:e3:10:cd:9e:40: 45:1a:55:01:83:41:8b:98:0a:b5:f8:56:b1:86:27: 83:25:da:79:d2:83:29:aa:0f:ec:7d:13:bc:7a:d8: 1f:4c:ed:fd:1e:14:b0:a0:fa:93:de:c0:ad:ac:97: a2:ff:3b:20:e5:c7:33:8e:98:ec:db:14:24:64:aa: 21:dc:95:0a:71:14:22:4a:25:c9:5b:79:0f:d3:30: 85:82:0e:29:93:bf:db:bc:8d:a2:3d:ed:89:5f:99: 3b:25:a9:91:e6:07:f8:f5:2b:a5:b6:eb:41:12:10: 97:e0:64:57:66:50:7d:1e:61:33:88:cf:59:88:f1: 1e:61:2a:2e:db:06:19:90:bc:d9:04:d6:19:39:eb: 4e:97:46:b6:f9:d4:dd:36:47:45:92:b3:e6:e9:c7: f9:4c:58:0a:31:1d:99:38:ea:bb:a0:19:fa:0b:09: 10:97:85:89:29:70:d3:c2:83:d7:71:8b:98:a1:f3: c4:1f:1c:33:fb:f8:6c:49:18:41:fc:01:5c:1e:bf: b1:7c:1d:fd:37:da:c8:da:b4:82:32:b9:96:bb:a7: 43:23:62:d3:8e:31:fe:29:fa:48:80:12:85:8f:45: 7c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:B3:93:8F:36:2D:95:83:C8:70:9F:A2:FD:31:B1:51:03:D7:87:5E X509v3 Authority Key Identifier: keyid:56:C6:93:05:B5:EB:A5:42:55:5D:8C:78:C5:61:AB:7A:6C:D1:AA:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EEF8/9799E6D0BBC411EFB985BE3FC4F9AE02/VsaTBbXrpUJVXYx4xWGremzRqiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VsaTBbXrpUJVXYx4xWGremzRqiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EEF8/9799E6D0BBC411EFB985BE3FC4F9AE02/0EC0EC1CC71F11EF85C66E2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.10.96.0/20 IPv6: 2403:1800::/32 Signature Algorithm: sha256WithRSAEncryption a4:28:f5:4b:bf:42:36:0c:49:3c:14:f4:9c:24:67:a9:cf:8b: d9:54:3e:3a:de:b5:c9:3d:b5:6e:12:28:70:6e:cc:5d:1c:e6: 86:13:e7:58:cf:60:e8:d7:9e:48:70:78:14:1b:54:c4:d9:83: 23:fe:6c:14:d6:9b:d0:2d:37:56:71:ec:26:5c:d7:f8:91:ff: 7f:0e:bb:5b:20:f6:6f:32:22:cd:55:5d:d6:e5:6a:e8:a0:fc: 18:99:ec:46:fd:68:59:d7:44:6b:40:1e:85:c0:1b:b7:52:c7: 71:c8:20:9b:ca:71:7d:3d:05:ea:94:67:3a:24:b5:b2:0b:da: 15:9b:48:67:a3:a7:51:8f:1c:ee:9e:21:57:ea:db:f1:89:e9: d5:56:f8:99:b5:7d:15:c9:c0:9d:a7:f2:28:e0:f7:8b:b5:f9: 0e:74:cc:ba:e0:2d:8b:51:2a:45:75:34:e9:b6:6d:c6:4c:a9: 85:4b:39:b7:2d:f1:a3:19:46:75:82:e6:3d:02:9d:fe:c4:13: 75:b7:93:72:d9:95:05:fc:b3:55:13:b5:a2:86:44:29:6d:ee: fb:de:ab:53:bc:a4:04:47:c2:ca:ba:f2:2d:62:4f:07:73:e1: 3c:9f:3e:6a:7f:4c:82:86:a2:40:63:49:24:30:be:34:a9:e2: bd:12:9a:3f -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RUVGODExMC8GA1UEBRMoNTZDNjkzMDVCNUVCQTU0MjU1NUQ4Qzc4QzU2MUFCN0E2 Q0QxQUEyQzAeFw0yNTA2MjUwNjMxNDlaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NWI5N2Q1LWMwMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKb66yEEpt2LhsQMC0Ws3upwuKpw8Lgj7jEM2eQEUaVQGDQYuYCrX4VrGGJ4Ml 2nnSgymqD+x9E7x62B9M7f0eFLCg+pPewK2sl6L/OyDlxzOOmOzbFCRkqiHclQpx FCJKJclbeQ/TMIWCDimTv9u8jaI97YlfmTslqZHmB/j1K6W260ESEJfgZFdmUH0e YTOIz1mI8R5hKi7bBhmQvNkE1hk5606XRrb51N02R0WSs+bpx/lMWAoxHZk46rug GfoLCRCXhYkpcNPCg9dxi5ih88QfHDP7+GxJGEH8AVwev7F8Hf032sjatIIyuZa7 p0MjYtOOMf4p+kiAEoWPRXyVAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUq7OTjzYt lYPIcJ+i/TGxUQPXh14wHwYDVR0jBBgwFoAUVsaTBbXrpUJVXYx4xWGremzRqiww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFRUY4Lzk3OTlFNkQwQkJD NDExRUZCOTg1QkUzRkM0RjlBRTAyL1ZzYVRCYlhycFVKVlhZeDR4V0dyZW16UnFp dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVnNhVEJiWHJwVUpWWFl4NHhXR3JlbXpScWl3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUVGOC85Nzk5RTZEMEJCQzQxMUVGQjk4NUJFM0ZDNEY5QUUwMi8wRUMwRUMxQ0M3 MUYxMUVGODVDNjZFMkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEBMoKYDANBAIAAjAHAwUAJAMYADANBgkqhkiG9w0BAQsFAAOC AQEApCj1S79CNgxJPBT0nCRnqc+L2VQ+Ot61yT21bhIocG7MXRzmhhPnWM9g6Nee SHB4FBtUxNmDI/5sFNab0C03VnHsJlzX+JH/fw67WyD2bzIizVVd1uVq6KD8GJns Rv1oWddEa0AehcAbt1LHccggm8pxfT0F6pRnOiS1sgvaFZtIZ6OnUY8c7p4hV+rb 8Ynp1Vb4mbV9FcnAnafyKOD3i7X5DnTMuuAti1EqRXU06bZtxkyphUs5ty3xoxlG dYLmPQKd/sQTdbeTctmVBfyzVRO1ooZEKW3u+96rU7ykBEfCyrryLWJPB3PhPJ8+ an9MgoaiQGNJJDC+NKnivRKaPw== -----END CERTIFICATE-----Generated at Thu Jul 3 13:07:27 2025 by rpki-client