$ rpki-client -vvf rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/CBD704945F5F11EFB99ABA76C4F9AE02.roa File: CBD704945F5F11EFB99ABA76C4F9AE02.roa (raw, json) Hash identifier: FyQYY0MU08e6kSNLp/WlThzg7KnlPeR081y6rj64cL8= Subject key identifier: E5:8B:31:7E:1E:11:3E:A7:21:0C:B5:2C:38:4C:69:7D:35:85:C4:D0 Certificate issuer: /CN=A9153A6E/serialNumber=D006610EBD682978457DF8ADA291100133910192 Certificate serial: 0EAC Authority key identifier: D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/CBD704945F5F11EFB99ABA76C4F9AE02.roa Signing time: Mon 18 Aug 2025 17:57:50 +0000 ROA not before: Mon 18 Aug 2025 17:57:50 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45275 IP address blocks: 240c::/48 maxlen: 48 240c:6::/48 maxlen: 48 240c:6:1::/48 maxlen: 48 240c:6:3::/48 maxlen: 48 240c:f::/48 maxlen: 48 240c:f:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:48:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3756 (0xeac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153A6E, serialNumber=D006610EBD682978457DF8ADA291100133910192 Validity Not Before: Aug 18 17:57:50 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a3699e-21a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d3:61:db:ea:59:e7:f4:27:74:7b:01:03:b0: ad:6a:14:cf:b4:80:78:5f:72:f3:5f:44:c9:7e:8c: 42:ef:bc:9d:6c:17:94:2b:44:01:1c:02:69:dc:ca: 82:33:1c:e9:1e:a5:3b:31:4b:59:a7:c4:87:dd:b6: 05:8b:a0:e5:c0:75:82:50:21:e2:87:d2:fd:cc:b1: f2:fc:a5:b1:c3:f7:1b:4c:58:a6:f6:c0:22:52:71: f1:a3:7c:04:61:82:c6:06:d1:4c:29:b8:bb:39:c8: 10:52:17:25:d0:22:ad:59:f9:7f:0d:d5:69:59:8c: f4:02:74:2f:3d:46:b9:18:b3:d0:1d:7e:cb:cd:00: bd:0c:d4:00:b0:4d:dc:6e:7e:a5:b1:a7:c6:ec:94: a5:3c:af:7e:14:4e:88:98:40:c1:0a:1a:86:87:14: 66:cc:1f:30:3a:49:a7:79:f4:c1:4c:13:6a:2d:a4: b5:e3:35:f4:ea:c9:37:d6:e6:f8:d6:93:4a:6e:9d: 3f:63:90:75:ff:28:54:a9:3d:98:4e:56:8e:c5:84: 40:61:11:49:99:1c:95:5b:d6:9e:e4:50:0b:1a:a3: 53:e8:a5:02:82:89:da:5b:ca:c5:46:ca:56:f2:0b: ad:c0:6d:bd:e7:fe:3e:ef:f1:55:8b:17:d3:4a:be: 37:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:8B:31:7E:1E:11:3E:A7:21:0C:B5:2C:38:4C:69:7D:35:85:C4:D0 X509v3 Authority Key Identifier: keyid:D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/CBD704945F5F11EFB99ABA76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 240c::/48 240c:6::/47 240c:6:3::/48 240c:f::/47 Signature Algorithm: sha256WithRSAEncryption 0e:38:96:fd:e6:c5:21:9e:5d:e4:33:65:e1:3c:31:4a:d6:f8: 6f:8b:02:80:54:77:dd:3e:ce:ff:66:43:20:90:37:a1:b2:90: 28:53:8f:fb:3e:4c:cf:38:3b:2a:a0:d8:1b:76:74:30:e0:77: fb:52:cd:3d:a0:93:98:47:e2:9c:4c:96:26:ed:74:90:ef:c8: 9a:ac:43:79:52:0a:4e:ab:f8:c7:43:09:a8:a1:38:03:14:6b: c6:59:ac:1e:27:da:0b:c7:95:7e:74:49:5f:6b:3a:48:59:8a: 17:60:ad:38:07:e3:ba:1a:7d:8a:bf:35:5e:e5:aa:d4:e5:2b: ec:c4:e1:33:2c:0b:59:4d:4a:f8:89:46:8f:88:87:39:04:8b: 6e:9f:ff:c5:c2:e4:95:5f:eb:c5:90:35:56:06:00:d3:91:86: 47:1d:78:fc:a6:ee:58:68:5b:2d:21:2d:11:40:a7:57:a8:3f: dc:3d:4b:4c:64:06:7a:7a:61:fd:2c:68:19:ca:19:01:77:7a: d0:78:5e:83:47:3f:da:dd:6a:39:bc:9d:10:18:b4:7a:2c:d6: cc:80:41:54:05:22:ec:09:b3:82:e3:60:00:be:83:66:11:80: 99:19:d2:bf:97:f2:20:04:5d:0a:eb:8c:24:cf:b9:03:d1:6e: 16:11:3a:6b -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICDqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBNkUxMTAvBgNVBAUTKEQwMDY2MTBFQkQ2ODI5Nzg0NTdERjhBREEyOTExMDAx MzM5MTAxOTIwHhcNMjUwODE4MTc1NzUwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEzNjk5ZS0yMWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdNh2+pZ5/QndHsBA7CtahTPtIB4X3LzX0TJfoxC77ydbBeUK0QBHAJp3MqC MxzpHqU7MUtZp8SH3bYFi6DlwHWCUCHih9L9zLHy/KWxw/cbTFim9sAiUnHxo3wE YYLGBtFMKbi7OcgQUhcl0CKtWfl/DdVpWYz0AnQvPUa5GLPQHX7LzQC9DNQAsE3c bn6lsafG7JSlPK9+FE6ImEDBChqGhxRmzB8wOkmnefTBTBNqLaS14zX06sk31ub4 1pNKbp0/Y5B1/yhUqT2YTlaOxYRAYRFJmRyVW9ae5FALGqNT6KUCgonaW8rFRspW 8gutwG295/4+7/FVixfTSr43UwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFOWLMX4e ET6nIQy1LDhMaX01hcTQMB8GA1UdIwQYMBaAFNAGYQ69aCl4RX34raKREAEzkQGS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0E2RS83OUVDRTgzODk4 QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tYaEZmZml0b3BFUUFUT1JB WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBWmhEcjFvS1hoRmZmaXRvcEVRQVRPUkFaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTNBNkUvNzlFQ0U4Mzg5OEJEMTFFOUFDOTlFNzRFQzRGOUFFMDIvQ0JENzA0OTQ1 RjVGMTFFRkI5OUFCQTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgACMCQDBwAkDAAAAAADBwEkDAAGAAADBwAkDAAGAAMDBwEkDAAPAAAw DQYJKoZIhvcNAQELBQADggEBAA44lv3mxSGeXeQzZeE8MUrW+G+LAoBUd90+zv9m QyCQN6GykChTj/s+TM84Oyqg2Bt2dDDgd/tSzT2gk5hH4pxMlibtdJDvyJqsQ3lS Ck6r+MdDCaihOAMUa8ZZrB4n2gvHlX50SV9rOkhZihdgrTgH47oafYq/NV7lqtTl K+zE4TMsC1lNSviJRo+IhzkEi26f/8XC5JVf68WQNVYGANORhkcdePym7lhoWy0h LRFAp1eoP9w9S0xkBnp6Yf0saBnKGQF3etB4XoNHP9rdajm8nRAYtHos1syAQVQF IuwJs4LjYAC+g2YRgJkZ0r+X8iAEXQrrjCTPuQPRbhYROms= -----END CERTIFICATE-----Generated at Sun Aug 24 04:44:33 2025 by rpki-client