$ rpki-client -vvf rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/B2ED9AEE913311E79B98C45BC4F9AE02.roa File: B2ED9AEE913311E79B98C45BC4F9AE02.roa (raw, json) Hash identifier: RYNGA3H5ydUqwQnOMshPikkHHM7bQr9sFSWMotIy4S0= Subject key identifier: 8F:0B:77:FF:9A:C4:DD:FA:4F:C1:16:A8:77:F8:3C:5F:07:F9:10:8F Certificate issuer: /CN=A916B6AA/serialNumber=70B0F046D2F3A74396E82C79E8E3DACF260B39EE Certificate serial: 248E Authority key identifier: 70:B0:F0:46:D2:F3:A7:43:96:E8:2C:79:E8:E3:DA:CF:26:0B:39:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/B2ED9AEE913311E79B98C45BC4F9AE02.roa Signing time: Fri 02 May 2025 16:23:24 +0000 ROA not before: Fri 02 May 2025 16:23:24 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 7500 IP address blocks: 202.12.27.0/24 maxlen: 24 2001:dc3::/32 maxlen: 32 2001:dc3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.crl rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9358 (0x248e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B6AA, serialNumber=70B0F046D2F3A74396E82C79E8E3DACF260B39EE Validity Not Before: May 2 16:23:24 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6814f17b-cbb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:cf:b0:38:34:9d:d1:26:54:a8:28:c3:c5:a0: 8b:60:44:ee:fb:a6:be:a8:3d:24:47:d2:1a:8c:21: 10:c8:f0:dd:ea:11:21:a5:c2:f4:80:a9:a9:46:06: 6a:b9:7d:d2:0b:d6:fc:57:03:d0:1f:46:f5:62:d7: 03:25:d7:e0:62:1f:f7:84:39:40:22:30:d8:0e:e7: 18:12:be:ad:4f:09:b3:f7:bb:9b:56:8c:49:f2:3f: 59:ba:e9:0e:cd:86:00:6d:1d:ea:c0:6a:bb:5f:86: ae:c0:3e:8f:14:76:0a:fb:7e:fc:0f:c4:ed:23:23: 59:1b:d7:5e:7b:af:66:54:2c:55:50:da:a0:34:da: 4e:96:97:57:09:21:1b:50:6c:7d:38:d9:67:28:e9: 47:21:ad:13:e3:30:1e:93:88:a4:de:d5:eb:fc:63: 20:cd:a9:41:c4:b0:3f:73:6a:94:37:60:af:e0:67: 72:6a:78:30:b1:f9:96:a2:65:8b:07:e2:c2:1e:da: 5b:37:57:a9:59:67:e3:a1:a9:d4:81:af:56:c4:e9: 92:c6:16:c5:76:dc:7d:17:c4:00:6d:63:88:a7:fa: 47:f2:ce:64:60:a1:2a:72:68:ae:8e:17:b9:aa:25: 76:82:86:01:21:04:d0:ed:30:bc:08:bd:e1:8e:d2: e1:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:0B:77:FF:9A:C4:DD:FA:4F:C1:16:A8:77:F8:3C:5F:07:F9:10:8F X509v3 Authority Key Identifier: keyid:70:B0:F0:46:D2:F3:A7:43:96:E8:2C:79:E8:E3:DA:CF:26:0B:39:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/B2ED9AEE913311E79B98C45BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.12.27.0/24 IPv6: 2001:dc3::/32 Signature Algorithm: sha256WithRSAEncryption a6:06:25:f6:4d:60:c6:a7:ca:4c:3c:41:01:87:f7:c1:6e:ac: b6:e8:3c:cf:75:7b:a3:f7:9f:da:7f:60:64:d1:69:84:30:52: 82:24:8a:20:72:e8:69:06:87:f1:47:26:bc:c6:9f:a6:9f:39: da:ce:6f:5f:ee:21:52:c5:4e:b4:2d:0b:a9:c3:68:41:77:88: 5e:64:51:5b:91:f5:bf:be:62:50:66:91:5f:ab:ea:7a:ac:8f: 1d:59:e9:54:1b:27:88:ba:0e:e7:4a:23:3d:a3:c1:9f:f3:ea: 15:41:db:fd:08:6d:d4:26:42:cc:7b:7e:e6:15:ac:25:bb:f3: 60:bf:76:96:56:9e:73:2c:73:a5:3e:27:01:dc:4f:74:d9:89: 87:70:b3:94:a2:5c:76:22:d3:16:ed:a4:a4:ab:0b:c8:48:9d: 40:98:80:0e:8e:a4:ba:ac:fa:45:b2:81:b4:2a:ea:27:32:f3: f3:dd:76:7f:ac:e2:9d:88:ac:01:9a:e0:a6:d4:5c:c6:ac:e6: 2c:27:6f:21:12:6b:69:70:16:a1:9d:44:a9:44:dd:34:1d:1a: 3b:63:85:a3:80:e4:47:33:7d:93:cd:67:f1:d8:72:06:16:c4: ce:6e:8b:65:e0:63:e6:18:50:a3:6c:e6:2d:e3:c4:9f:04:e5: fe:bb:4e:1a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICJI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI2QUExMTAvBgNVBAUTKDcwQjBGMDQ2RDJGM0E3NDM5NkU4MkM3OUU4RTNEQUNG MjYwQjM5RUUwHhcNMjUwNTAyMTYyMzI0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE0ZjE3Yi1jYmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2c+wODSd0SZUqCjDxaCLYETu+6a+qD0kR9IajCEQyPDd6hEhpcL0gKmpRgZq uX3SC9b8VwPQH0b1YtcDJdfgYh/3hDlAIjDYDucYEr6tTwmz97ubVoxJ8j9ZuukO zYYAbR3qwGq7X4auwD6PFHYK+378D8TtIyNZG9dee69mVCxVUNqgNNpOlpdXCSEb UGx9ONlnKOlHIa0T4zAek4ik3tXr/GMgzalBxLA/c2qUN2Cv4GdyangwsfmWomWL B+LCHtpbN1epWWfjoanUga9WxOmSxhbFdtx9F8QAbWOIp/pH8s5kYKEqcmiujhe5 qiV2goYBIQTQ7TC8CL3hjtLhewIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFI8Ld/+a xN36T8EWqHf4PF8H+RCPMB8GA1UdIwQYMBaAFHCw8EbS86dDlugseejj2s8mCznu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjZBQS80NkM3RjE3MjRG MTYxMUU1OEQyQTMzMjdDNEY5QUUwMi9jTER3UnRMenAwT1c2Q3g1Nk9QYXp5WUxP ZTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMRHdSdEx6cDBPVzZDeDU2T1BhenlZTE9lNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI2QUEvNDZDN0YxNzI0RjE2MTFFNThEMkEzMzI3QzRGOUFFMDIvQjJFRDlBRUU5 MTMzMTFFNzlCOThDNDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBADKDBswDQQCAAIwBwMFACABDcMwDQYJKoZIhvcNAQELBQAD ggEBAKYGJfZNYManykw8QQGH98FurLboPM91e6P3n9p/YGTRaYQwUoIkiiBy6GkG h/FHJrzGn6afOdrOb1/uIVLFTrQtC6nDaEF3iF5kUVuR9b++YlBmkV+r6nqsjx1Z 6VQbJ4i6DudKIz2jwZ/z6hVB2/0IbdQmQsx7fuYVrCW782C/dpZWnnMsc6U+JwHc T3TZiYdws5SiXHYi0xbtpKSrC8hInUCYgA6OpLqs+kWygbQq6icy8/Pddn+s4p2I rAGa4KbUXMas5iwnbyESa2lwFqGdRKlE3TQdGjtjhaOA5EczfZPNZ/HYcgYWxM5u i2XgY+YYUKNs5i3jxJ8E5f67Tho= -----END CERTIFICATE-----Generated at Thu May 15 15:09:23 2025 by rpki-client