$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/78D4FFEEEAB411EB95BFB566C4F9AE02.roa File: 78D4FFEEEAB411EB95BFB566C4F9AE02.roa (raw, json) Hash identifier: /T6Cx82NX6eIVhHP8WlrC3rkE3NEqsy8y14HZ45ur88= Subject key identifier: 69:29:69:E4:28:9E:04:63:A1:46:FB:20:F3:C4:D5:33:75:26:E1:D9 Certificate issuer: /CN=A917E0A8/serialNumber=0508CBE9AB6EE7F629F1E17385F3E0FDEF8C3D3B Certificate serial: 056F Authority key identifier: 05:08:CB:E9:AB:6E:E7:F6:29:F1:E1:73:85:F3:E0:FD:EF:8C:3D:3B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BQjL6atu5_Yp8eFzhfPg_e-MPTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/78D4FFEEEAB411EB95BFB566C4F9AE02.roa Signing time: Wed 30 Apr 2025 19:29:44 +0000 ROA not before: Wed 30 Apr 2025 19:29:44 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 23959 IP address blocks: 85.113.70.0/24 maxlen: 24 91.199.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/BQjL6atu5_Yp8eFzhfPg_e-MPTs.crl rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/BQjL6atu5_Yp8eFzhfPg_e-MPTs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BQjL6atu5_Yp8eFzhfPg_e-MPTs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:50:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1391 (0x56f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=0508CBE9AB6EE7F629F1E17385F3E0FDEF8C3D3B Validity Not Before: Apr 30 19:29:44 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68127a28-2dbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6c:41:54:34:0b:1c:99:f2:df:8b:50:ff:8b: 8c:f2:e0:37:36:b0:2e:68:5e:7e:d0:e2:cd:7f:2e: ef:70:9d:dd:f1:e4:55:71:99:cc:ea:0a:d0:18:f5: 2a:b9:9a:3f:4c:c6:b8:1e:90:b5:0e:75:dc:89:77: ad:95:50:95:bb:05:4a:05:8e:e8:b6:54:92:93:7b: fa:1f:1c:af:9f:b8:ff:cc:57:7d:8a:7d:77:7d:b5: 0f:f4:b2:d9:ef:59:63:a1:ba:a8:7e:da:e0:c3:58: 51:ea:f2:25:91:70:32:5d:7e:f7:3e:5d:60:07:d3: da:c0:ec:e9:99:e4:c7:cb:e8:a3:cb:27:9b:77:95: 7c:a6:61:bb:a5:e0:33:33:7b:34:e1:5c:ea:24:7f: 4d:ad:4b:c9:10:d8:75:33:de:51:14:5b:21:a0:9a: 13:50:7d:20:9f:0b:04:28:44:91:83:c0:c9:60:a3: 59:3f:df:a2:b5:dc:52:0d:62:b2:0e:1a:20:5d:31: 9e:69:72:13:2d:08:c9:73:c1:be:ed:a4:dc:8e:7a: 71:d8:80:db:97:4b:7e:3d:44:b9:36:80:04:42:5c: 50:97:46:0e:a6:5d:2c:ea:72:eb:97:2c:c3:59:5b: 45:71:72:5d:c5:d5:80:fe:97:8e:66:7a:4f:7b:e9: 0f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:29:69:E4:28:9E:04:63:A1:46:FB:20:F3:C4:D5:33:75:26:E1:D9 X509v3 Authority Key Identifier: keyid:05:08:CB:E9:AB:6E:E7:F6:29:F1:E1:73:85:F3:E0:FD:EF:8C:3D:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/BQjL6atu5_Yp8eFzhfPg_e-MPTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BQjL6atu5_Yp8eFzhfPg_e-MPTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/78D4FFEEEAB411EB95BFB566C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 85.113.70.0/24 91.199.209.0/24 Signature Algorithm: sha256WithRSAEncryption 40:96:f4:0a:41:1e:5d:b2:78:bc:2e:51:14:74:e4:2d:81:e8: 71:53:f0:fd:75:32:61:13:07:e9:b0:fd:fa:7e:93:5c:34:60: ca:18:4f:66:08:56:9c:1c:8b:9d:d8:bb:f2:3f:42:d1:7c:9b: 0c:3a:b2:09:32:af:5c:0d:a4:ae:4b:f0:60:9b:2a:1f:0d:ae: 23:ff:8f:81:a9:97:e9:cc:89:f1:5f:11:12:f5:ee:50:53:a3: 8c:c6:a0:56:97:3f:9b:da:5b:32:14:a3:be:b6:c1:40:07:21: f3:61:d2:cb:53:fe:d9:80:96:67:64:c2:95:cf:80:4d:a8:d2: f4:a9:62:2b:21:d4:54:fc:b3:a8:6a:7c:68:4d:f9:8b:fb:d5: 75:76:39:42:7b:58:66:89:3e:7b:fb:c8:1f:70:19:e0:f9:59: f2:93:93:a1:2e:2b:c3:88:aa:38:5b:68:1f:2a:7d:1f:b2:b3: 40:71:53:3f:21:af:74:03:8e:bd:54:4b:2b:7e:d7:45:fa:ac: a8:1c:e4:f3:fe:04:48:60:65:df:e8:b0:64:d6:e4:44:fa:09: c7:54:54:3e:8c:e0:c8:06:63:48:4d:ca:85:20:23:74:1d:89: d1:16:06:5f:36:9b:dc:66:63:37:27:70:57:ec:30:57:72:0a: a2:dd:96:d9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDA1MDhDQkU5QUI2RUU3RjYyOUYxRTE3Mzg1RjNFMEZE RUY4QzNEM0IwHhcNMjUwNDMwMTkyOTQ0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyN2EyOC0yZGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWxBVDQLHJny34tQ/4uM8uA3NrAuaF5+0OLNfy7vcJ3d8eRVcZnM6grQGPUq uZo/TMa4HpC1DnXciXetlVCVuwVKBY7otlSSk3v6Hxyvn7j/zFd9in13fbUP9LLZ 71ljobqoftrgw1hR6vIlkXAyXX73Pl1gB9PawOzpmeTHy+ijyyebd5V8pmG7peAz M3s04VzqJH9NrUvJENh1M95RFFshoJoTUH0gnwsEKESRg8DJYKNZP9+itdxSDWKy DhogXTGeaXITLQjJc8G+7aTcjnpx2IDbl0t+PUS5NoAEQlxQl0YOpl0s6nLrlyzD WVtFcXJdxdWA/peOZnpPe+kPpQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGkpaeQo ngRjoUb7IPPE1TN1JuHZMB8GA1UdIwQYMBaAFAUIy+mrbuf2KfHhc4Xz4P3vjD07 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC8wQzQ3NDkwQUVB QjMxMUVCOTgxMUE0NjVDNEY5QUUwMi9CUWpMNmF0dTVfWXA4ZUZ6aGZQZ19lLU1Q VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0JRakw2YXR1NV9ZcDhlRnpoZlBnX2UtTVBUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvMEM0NzQ5MEFFQUIzMTFFQjk4MTFBNDY1QzRGOUFFMDIvNzhENEZGRUVF QUI0MTFFQjk1QkZCNTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABVcUYDBABbx9EwDQYJKoZIhvcNAQELBQADggEBAECW9ApB Hl2yeLwuURR05C2B6HFT8P11MmETB+mw/fp+k1w0YMoYT2YIVpwci53Yu/I/QtF8 mww6sgkyr1wNpK5L8GCbKh8NriP/j4Gpl+nMifFfERL17lBTo4zGoFaXP5vaWzIU o762wUAHIfNh0stT/tmAlmdkwpXPgE2o0vSpYish1FT8s6hqfGhN+Yv71XV2OUJ7 WGaJPnv7yB9wGeD5WfKTk6EuK8OIqjhbaB8qfR+ys0BxUz8hr3QDjr1USyt+10X6 rKgc5PP+BEhgZd/osGTW5ET6CcdUVD6M4MgGY0hNyoUgI3QdidEWBl82m9xmYzcn cFfsMFdyCqLdltk= -----END CERTIFICATE-----Generated at Thu Jul 3 05:15:57 2025 by rpki-client