$ rpki-client -vvf rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/B2FCF1C07FF911F08FAAC57FC4F9AE02.roa File: B2FCF1C07FF911F08FAAC57FC4F9AE02.roa (raw, json) Hash identifier: MnpTevKrhY7L4cqXUyU9PXlqHjDSUZYAGeApiPXwlBI= Subject key identifier: E4:E9:25:63:0C:AD:B2:57:D2:8E:55:E2:41:45:9E:75:36:40:CD:32 Certificate issuer: /CN=A918213B/serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF Certificate serial: 0366 Authority key identifier: DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/B2FCF1C07FF911F08FAAC57FC4F9AE02.roa Signing time: Sat 23 Aug 2025 08:18:08 +0000 ROA not before: Sat 23 Aug 2025 08:18:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151080 IP address blocks: 2400:6ae0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 870 (0x366) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918213B, serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF Validity Not Before: Aug 23 08:18:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68a9793f-a01e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ce:bc:84:00:c2:b8:7a:21:61:63:7c:a6:41: df:59:c9:22:cd:35:2d:69:b1:a3:97:9f:8e:3c:56: 1d:9f:b5:9b:a0:b0:c2:8b:6f:a3:22:19:62:d3:38: cd:b2:36:a9:18:fe:60:ae:54:3c:e2:90:86:33:e6: 2b:a8:52:3f:d9:d6:58:6d:9f:19:80:1a:74:b1:77: 76:ac:8f:75:36:de:99:2e:e4:ca:33:a1:8c:93:fb: cf:00:75:40:72:10:03:f7:3b:16:c4:9c:11:3e:46: b0:eb:d7:97:c2:74:80:a0:18:4b:85:1b:b6:78:37: df:e5:f3:f6:98:cd:eb:be:66:02:52:66:09:0c:4a: 47:d0:dd:b8:4c:05:5b:b0:64:11:c4:d7:9c:11:71: cd:9f:d7:c3:17:cb:59:db:67:e7:e6:11:ca:a8:cf: 75:3a:c1:83:bd:80:82:a9:63:d4:e4:44:13:65:05: 41:6d:75:2d:5b:ab:c3:56:fb:84:e2:32:b8:7e:f9: ec:99:bf:8b:08:94:f4:fd:ed:2b:11:8f:a4:70:e5: 21:48:71:93:fa:75:2d:cb:16:b5:51:2a:86:72:da: aa:c5:ca:6c:3d:b3:58:4e:7f:47:a0:31:9d:20:74: fc:a8:16:24:2e:f7:81:79:76:48:28:69:46:59:6a: 2f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E9:25:63:0C:AD:B2:57:D2:8E:55:E2:41:45:9E:75:36:40:CD:32 X509v3 Authority Key Identifier: keyid:DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/B2FCF1C07FF911F08FAAC57FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:6ae0::/32 Signature Algorithm: sha256WithRSAEncryption 79:be:a1:53:99:d3:4c:0e:24:ed:a5:19:2a:12:2d:26:4b:c3: 01:d8:5a:56:f4:66:f3:4b:55:ee:e2:25:3b:a0:09:af:4b:45: 34:3d:91:58:26:e5:c5:16:10:d3:41:a0:7d:3e:86:a9:f4:6c: 73:32:a5:00:79:a3:ac:a6:61:ca:7e:f1:8b:c6:bb:37:b4:da: b3:0c:f2:18:76:35:04:d5:2e:81:d8:93:ab:96:0b:91:cd:74: 50:60:7a:68:a8:ed:f2:ed:0e:14:79:1e:37:79:3c:fd:ce:c7: 0e:73:7c:54:8e:4f:4e:f8:6e:95:aa:c4:20:5d:c8:99:2d:2b: 81:eb:2d:b5:0c:65:90:4f:c1:7a:09:5a:b8:16:76:d8:cc:65: f1:72:03:59:a5:1a:7b:91:1d:5b:ef:25:0f:cc:4d:22:f0:c1: cf:ea:1c:08:e0:19:b1:d0:c7:6e:32:72:72:13:57:0f:e6:08: 9b:b6:ac:02:19:e5:f8:06:f4:48:07:aa:c3:7a:f1:8b:13:53: a8:2c:4e:76:4f:90:de:9b:aa:d5:81:65:ff:2d:d4:96:f9:ef: b0:14:9a:e6:a2:27:0e:66:0e:98:cf:00:c5:3a:bb:8b:b9:27: 77:99:03:09:c4:34:b0:4d:fe:0a:91:2c:7f:cc:cc:d2:64:d3: ca:7e:08:aa -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICA2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIxM0IxMTAvBgNVBAUTKERCOTJENDNDOTA2MTI1MDVCM0FGNDZFOTY0QTY4Q0M5 RjVGM0IyQUYwHhcNMjUwODIzMDgxODA4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE5NzkzZi1hMDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0c68hADCuHohYWN8pkHfWckizTUtabGjl5+OPFYdn7WboLDCi2+jIhli0zjN sjapGP5grlQ84pCGM+YrqFI/2dZYbZ8ZgBp0sXd2rI91Nt6ZLuTKM6GMk/vPAHVA chAD9zsWxJwRPkaw69eXwnSAoBhLhRu2eDff5fP2mM3rvmYCUmYJDEpH0N24TAVb sGQRxNecEXHNn9fDF8tZ22fn5hHKqM91OsGDvYCCqWPU5EQTZQVBbXUtW6vDVvuE 4jK4fvnsmb+LCJT0/e0rEY+kcOUhSHGT+nUtyxa1USqGctqqxcpsPbNYTn9HoDGd IHT8qBYkLveBeXZIKGlGWWovowIDAQABo4ICljCCApIwHQYDVR0OBBYEFOTpJWMM rbJX0o5V4kFFnnU2QM0yMB8GA1UdIwQYMBaAFNuS1DyQYSUFs69G6WSmjMn187Kv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjEzQi8wNzA3NkZBMEQ5 QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpCaEpRV3pyMGJwWkthTXlmWHpz cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1TFVQSkJoSlFXenIwYnBaS2FNeWZYenNxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODIxM0IvMDcwNzZGQTBEOUM5MTFFQ0JFMDA3RjZBQzRGOUFFMDIvQjJGQ0YxQzA3 RkY5MTFGMDhGQUFDNTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAGrgMA0GCSqGSIb3DQEBCwUAA4IBAQB5vqFTmdNMDiTt pRkqEi0mS8MB2FpW9GbzS1Xu4iU7oAmvS0U0PZFYJuXFFhDTQaB9Poap9GxzMqUA eaOspmHKfvGLxrs3tNqzDPIYdjUE1S6B2JOrlguRzXRQYHpoqO3y7Q4UeR43eTz9 zscOc3xUjk9O+G6VqsQgXciZLSuB6y21DGWQT8F6CVq4FnbYzGXxcgNZpRp7kR1b 7yUPzE0i8MHP6hwI4Bmx0MduMnJyE1cP5gibtqwCGeX4BvRIB6rDevGLE1OoLE52 T5Dem6rVgWX/LdSW+e+wFJrmoicOZg6YzwDFOruLuSd3mQMJxDSwTf4KkSx/zMzS ZNPKfgiq -----END CERTIFICATE-----Generated at Sun Aug 24 02:27:53 2025 by rpki-client