$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa File: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (raw, json) Hash identifier: c7+1xl97Qj2WBa7uEaRi3C9ZQy4QYdknXZBQu0sbmag= Subject key identifier: 4C:83:AA:A9:B5:E9:0A:45:F8:47:6F:F8:85:96:C2:66:9C:EE:26:2A Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 0640 Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa Signing time: Wed 30 Apr 2025 19:29:43 +0000 ROA not before: Wed 30 Apr 2025 19:29:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 59253 IP address blocks: 69.161.221.0/24 maxlen: 24 209.17.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:47:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1600 (0x640) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Apr 30 19:29:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68127a27-257a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e3:02:e3:18:44:49:12:94:58:3d:d7:de:53: 27:3f:14:d8:b4:f8:40:ed:a7:37:f6:33:45:6d:45: df:6a:b3:ad:cc:99:d8:f2:f5:90:2f:42:c7:49:07: b3:81:0b:71:0e:e7:6b:a9:bd:88:82:13:5a:dd:4e: a7:32:1a:6e:12:70:6d:3b:74:0c:b6:97:f3:2e:99: 77:08:c2:55:74:cf:13:b9:69:de:ba:51:57:46:c7: 07:e9:8b:a8:c4:a9:7c:e4:96:9b:0e:98:b0:92:31: fe:97:2c:3f:01:44:cb:0f:d5:8d:32:50:05:8a:ab: 81:7d:fe:a4:fc:1f:c9:f3:c5:ae:f0:7f:d4:41:3d: d7:49:a7:b0:5a:67:52:b8:be:17:e6:55:1b:cd:6f: 17:20:12:73:88:8e:18:c4:53:37:32:a4:4f:e0:c7: 2a:4e:4c:fd:9c:19:13:52:7f:b7:f3:56:f9:7b:87: 35:1f:ab:30:d0:74:32:56:5b:b6:12:6c:ca:a5:e5: b5:23:60:a3:cb:1f:30:13:a2:de:49:07:4a:7c:8f: 12:16:0f:87:1d:d2:fe:c7:54:6c:84:b1:f2:86:a1: 15:14:11:16:32:21:74:82:7e:7a:87:5d:41:90:be: 61:03:08:8d:2d:9e:ac:03:b9:af:83:b9:64:a1:b3: 5e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:83:AA:A9:B5:E9:0A:45:F8:47:6F:F8:85:96:C2:66:9C:EE:26:2A X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 69.161.221.0/24 209.17.118.0/24 Signature Algorithm: sha256WithRSAEncryption 96:5d:9b:7b:05:d4:17:0b:01:3f:2c:1f:a5:d6:cb:47:47:9f: 5f:34:d2:b7:d7:5b:cf:cf:86:05:8c:db:66:d3:60:66:7a:2d: 71:66:8d:23:5e:9b:94:43:22:13:95:aa:1e:2f:62:b9:36:fc: 14:43:4c:fc:6d:23:a9:53:38:79:7d:a8:d9:1b:42:ba:e5:21: f7:16:88:56:5a:b1:2a:22:2a:51:c6:ac:d7:85:d7:f2:00:dc: 81:f1:2f:4f:da:0f:c8:9d:e5:26:ca:d3:48:31:17:b0:5f:9e: dc:37:c8:3d:ce:d3:de:10:1a:ff:24:08:9c:4f:66:30:3b:4f: 80:e3:2e:e7:a2:d8:56:c9:9b:99:e2:f5:75:dc:1c:45:9e:59: 3f:aa:98:51:01:14:39:05:be:98:ee:ea:b7:3b:1f:1f:3a:43: 17:eb:55:fa:d7:20:dd:04:4d:c9:d9:e4:34:d4:12:d3:5b:5d: f6:dd:78:5b:f9:2c:fb:34:25:69:ad:e2:86:5a:46:83:f6:42: ba:a7:cb:27:5c:0d:b9:b2:da:a3:1c:9d:48:1d:90:53:3a:0b: b1:35:1c:37:fa:39:9e:0b:33:81:cb:5d:53:70:0e:65:e4:aa: 2b:d5:9f:8f:95:37:78:76:13:b6:a3:17:21:db:65:e7:10:81: 4b:c5:6d:6a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjUwNDMwMTkyOTQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyN2EyNy0yNTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApuMC4xhESRKUWD3X3lMnPxTYtPhA7ac39jNFbUXfarOtzJnY8vWQL0LHSQez gQtxDudrqb2IghNa3U6nMhpuEnBtO3QMtpfzLpl3CMJVdM8TuWneulFXRscH6Yuo xKl85JabDpiwkjH+lyw/AUTLD9WNMlAFiquBff6k/B/J88Wu8H/UQT3XSaewWmdS uL4X5lUbzW8XIBJziI4YxFM3MqRP4McqTkz9nBkTUn+381b5e4c1H6sw0HQyVlu2 EmzKpeW1I2Cjyx8wE6LeSQdKfI8SFg+HHdL+x1RshLHyhqEVFBEWMiF0gn56h11B kL5hAwiNLZ6sA7mvg7lkobNeNwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEyDqqm1 6QpF+Edv+IWWwmac7iYqMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvNkVGQzBCRUU5ODRDMTFFQjhBNDFGQTIwQzRGOUFFMDIvMTFDMEQ1REE5 QjQwMTFFQjlDMUJGQzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABFod0DBADREXYwDQYJKoZIhvcNAQELBQADggEBAJZdm3sF 1BcLAT8sH6XWy0dHn1800rfXW8/PhgWM22bTYGZ6LXFmjSNem5RDIhOVqh4vYrk2 /BRDTPxtI6lTOHl9qNkbQrrlIfcWiFZasSoiKlHGrNeF1/IA3IHxL0/aD8id5SbK 00gxF7Bfntw3yD3O094QGv8kCJxPZjA7T4DjLuei2FbJm5ni9XXcHEWeWT+qmFEB FDkFvpju6rc7Hx86QxfrVfrXIN0ETcnZ5DTUEtNbXfbdeFv5LPs0JWmt4oZaRoP2 QrqnyydcDbmy2qMcnUgdkFM6C7E1HDf6OZ4LM4HLXVNwDmXkqivVn4+VN3h2E7aj FyHbZecQgUvFbWo= -----END CERTIFICATE-----Generated at Thu May 15 15:22:46 2025 by rpki-client