$ rpki-client -vvf rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/85F80AF6EC3011EE92FDDE25C4F9AE02.roa File: 85F80AF6EC3011EE92FDDE25C4F9AE02.roa (raw, json) Hash identifier: tLt6JDfDub8DNFZW2G3EMTsxDiFDr62JlgmUF1Jhoi8= Subject key identifier: 52:42:0D:8A:27:ED:5B:5E:68:50:6B:E3:A7:2E:E3:B6:A8:45:D2:57 Certificate issuer: /CN=A912F535/serialNumber=EAD646355D75936CB93ED6BADB790A87FE15374A Certificate serial: 0118 Authority key identifier: EA:D6:46:35:5D:75:93:6C:B9:3E:D6:BA:DB:79:0A:87:FE:15:37:4A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6tZGNV11k2y5Pta623kKh_4VN0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/85F80AF6EC3011EE92FDDE25C4F9AE02.roa Signing time: Sat 21 Jun 2025 04:33:21 +0000 ROA not before: Sat 21 Jun 2025 04:33:21 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139659 IP address blocks: 83.229.40.0/21 maxlen: 21 83.229.40.0/23 maxlen: 23 83.229.42.0/23 maxlen: 23 83.229.44.0/23 maxlen: 23 83.229.46.0/23 maxlen: 23 83.229.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/6tZGNV11k2y5Pta623kKh_4VN0o.crl rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/6tZGNV11k2y5Pta623kKh_4VN0o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6tZGNV11k2y5Pta623kKh_4VN0o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F535, serialNumber=EAD646355D75936CB93ED6BADB790A87FE15374A Validity Not Before: Jun 21 04:33:21 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68563611-9fe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:84:5d:5f:ef:43:35:46:cb:9e:fd:45:5e:1c: b3:12:42:6d:32:70:34:3f:16:df:5a:a9:ad:f5:36: b4:81:63:aa:d8:5e:1e:11:45:70:cb:c8:26:9b:19: c9:5f:ac:cf:b8:13:3b:65:68:be:66:5d:ea:8d:28: 3e:71:71:43:d0:2e:6a:67:0d:50:f3:52:6b:c6:e3: 47:3f:45:17:f7:41:27:e5:b3:b4:a0:2d:09:6e:15: 59:91:46:aa:90:a3:d9:e3:39:38:c3:53:87:22:03: 46:80:33:4b:31:59:89:9a:b9:04:19:05:d7:92:fe: 61:da:ee:8d:b1:80:2f:27:47:2b:3f:c7:11:51:b9: 11:9e:67:92:f2:92:13:7a:a9:e9:b1:c8:89:05:63: 78:2a:f4:f1:79:80:66:ad:0a:89:d3:64:16:c6:83: 18:46:0e:55:95:83:fa:24:92:95:be:f5:5d:df:27: 97:ae:5c:9a:9f:76:2f:4f:51:da:c7:ce:ad:8e:d3: da:77:06:e9:4c:56:03:cc:a5:63:16:d6:6b:57:48: a1:20:8c:90:ad:da:35:54:ef:ab:80:b7:0e:8e:33: 06:5d:43:39:72:d4:ba:cc:5c:c2:f9:e9:07:65:fa: f4:a8:d8:10:d6:c1:36:8d:a8:15:f6:f8:85:a1:84: 15:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:42:0D:8A:27:ED:5B:5E:68:50:6B:E3:A7:2E:E3:B6:A8:45:D2:57 X509v3 Authority Key Identifier: keyid:EA:D6:46:35:5D:75:93:6C:B9:3E:D6:BA:DB:79:0A:87:FE:15:37:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/6tZGNV11k2y5Pta623kKh_4VN0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6tZGNV11k2y5Pta623kKh_4VN0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/85F80AF6EC3011EE92FDDE25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 83.229.40.0/21 83.229.120.0/21 Signature Algorithm: sha256WithRSAEncryption 43:97:f0:12:c4:92:21:65:03:9c:10:3c:a7:97:81:2a:e5:78: 48:95:7b:8e:4d:01:c6:e8:dd:54:29:a9:99:5f:e6:a7:fc:72: 71:6a:fe:e3:98:0d:53:b9:40:d1:db:52:3e:aa:d8:44:4b:88: 49:b0:47:b2:c4:b9:d8:82:0a:52:a4:ad:6e:9f:e4:a2:5d:37: c7:5d:33:f1:81:cb:89:c5:cd:7f:8a:94:2b:02:8d:b9:de:29: d9:4b:40:85:4a:20:d8:98:74:cd:84:53:de:21:1b:8e:82:e3: 8b:df:7d:b3:01:19:70:dd:cc:2d:55:aa:14:0a:ab:cf:82:a6: 26:72:4b:a6:28:6a:94:67:ee:e1:8a:73:8f:ce:e9:f2:db:f7: 10:84:e3:a4:96:59:8a:10:2e:36:48:a0:d1:24:79:8c:a0:59: d1:65:70:10:85:74:18:b8:13:3a:86:ae:09:46:0f:d5:67:14: 44:4f:60:1e:57:d4:2e:bc:f2:ed:d3:23:c7:84:21:60:02:6d: 0b:6d:7c:e9:55:2c:14:3b:c2:24:54:fe:36:b7:c6:63:7d:be: 80:1f:29:b4:3b:e1:e4:67:be:25:1a:9d:56:7a:ab:e8:00:10: f4:61:89:85:52:34:b0:1f:24:55:3a:5c:e3:bb:f2:77:3b:7a: ed:90:b3:f6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkY1MzUxMTAvBgNVBAUTKEVBRDY0NjM1NUQ3NTkzNkNCOTNFRDZCQURCNzkwQTg3 RkUxNTM3NEEwHhcNMjUwNjIxMDQzMzIxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU2MzYxMS05ZmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1IRdX+9DNUbLnv1FXhyzEkJtMnA0PxbfWqmt9Ta0gWOq2F4eEUVwy8gmmxnJ X6zPuBM7ZWi+Zl3qjSg+cXFD0C5qZw1Q81JrxuNHP0UX90En5bO0oC0JbhVZkUaq kKPZ4zk4w1OHIgNGgDNLMVmJmrkEGQXXkv5h2u6NsYAvJ0crP8cRUbkRnmeS8pIT eqnpsciJBWN4KvTxeYBmrQqJ02QWxoMYRg5VlYP6JJKVvvVd3yeXrlyan3YvT1Ha x86tjtPadwbpTFYDzKVjFtZrV0ihIIyQrdo1VO+rgLcOjjMGXUM5ctS6zFzC+ekH Zfr0qNgQ1sE2jagV9viFoYQVoQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFJCDYon 7VteaFBr46cu47aoRdJXMB8GA1UdIwQYMBaAFOrWRjVddZNsuT7Wutt5Cof+FTdK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjUzNS82MTk4MEE1NEJB NjYxMUVFQkMzOTYyNkVDNEY5QUUwMi82dFpHTlYxMWsyeTVQdGE2MjNrS2hfNFZO MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzZ0WkdOVjExazJ5NVB0YTYyM2tLaF80Vk4wby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkY1MzUvNjE5ODBBNTRCQTY2MTFFRUJDMzk2MjZFQzRGOUFFMDIvODVGODBBRjZF QzMwMTFFRTkyRkRERTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBANT5SgDBANT5XgwDQYJKoZIhvcNAQELBQADggEBAEOX8BLE kiFlA5wQPKeXgSrleEiVe45NAcbo3VQpqZlf5qf8cnFq/uOYDVO5QNHbUj6q2ERL iEmwR7LEudiCClKkrW6f5KJdN8ddM/GBy4nFzX+KlCsCjbneKdlLQIVKINiYdM2E U94hG46C44vffbMBGXDdzC1VqhQKq8+CpiZyS6YoapRn7uGKc4/O6fLb9xCE46SW WYoQLjZIoNEkeYygWdFlcBCFdBi4EzqGrglGD9VnFERPYB5X1C688u3TI8eEIWAC bQttfOlVLBQ7wiRU/ja3xmN9voAfKbQ74eRnviUanVZ6q+gAEPRhiYVSNLAfJFU6 XOO78nc7eu2Qs/Y= -----END CERTIFICATE-----Generated at Wed Jul 2 19:55:54 2025 by rpki-client