$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/363CF6E87A2A11EEB091250FC4F9AE02.roa File: 363CF6E87A2A11EEB091250FC4F9AE02.roa (raw, json) Hash identifier: SKak9YPxMT9ghTkdWJ5c1/f1zsQYIiX1Yma3KpKo1II= Subject key identifier: A8:34:F2:E2:86:B2:01:CD:AF:BE:3A:EA:CD:73:61:EC:A7:67:30:A0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B908 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/363CF6E87A2A11EEB091250FC4F9AE02.roa Signing time: Thu 08 May 2025 16:26:53 +0000 ROA not before: Thu 08 May 2025 16:26:53 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151143 IP address blocks: 2406:dd40:4000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47368 (0xb908) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:26:53 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdb4d-32f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:90:88:ad:dc:01:9d:fc:61:4f:ec:e6:ce:88: 23:bf:8c:f3:db:00:0f:f2:ab:75:e5:02:4b:f9:35: 32:7f:2b:41:f7:f9:cb:15:9f:c7:c3:f5:df:2b:ba: ba:19:d2:17:7e:46:72:e0:a5:3c:59:68:3d:fc:82: 7e:37:58:65:da:33:d6:db:2d:f1:57:06:ff:c1:80: 3a:b0:a7:af:8d:c0:ff:13:a7:61:9d:36:25:76:9e: d6:48:58:76:93:b9:08:90:42:57:85:47:33:f0:4b: a1:97:2a:f4:a2:2f:31:4e:10:e7:4c:88:90:52:c6: df:63:c5:9e:e1:bf:7f:19:c4:d3:73:ad:4a:fe:c8: ec:5b:8c:f3:fb:e0:37:e9:88:30:8b:b1:6d:4d:1b: 13:5b:1f:be:17:2b:55:dd:7f:08:d6:01:f0:ad:e8: eb:fb:ba:89:c3:b0:04:25:e2:53:3e:65:4b:f5:87: d9:64:d2:2d:70:13:f4:ed:7c:4f:d1:ee:93:88:0a: b7:fd:64:02:3e:c1:a0:ba:7e:2a:63:87:eb:d5:63: ed:d9:29:23:c6:a7:97:55:ed:b8:42:75:8d:47:bd: 2e:25:eb:5e:5d:f7:d3:29:34:61:80:83:83:91:5e: 73:b3:a3:e1:f8:fc:b1:83:38:69:62:28:ef:b5:9f: 5e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:34:F2:E2:86:B2:01:CD:AF:BE:3A:EA:CD:73:61:EC:A7:67:30:A0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/363CF6E87A2A11EEB091250FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:dd40:4000::/35 Signature Algorithm: sha256WithRSAEncryption 7f:cb:71:5f:03:77:0a:92:a4:e8:c9:76:2d:3a:2a:12:4d:bb: 6c:96:f5:2f:76:cd:45:b8:ab:3f:10:4e:55:96:22:ba:e5:2b: 5e:93:aa:d4:72:0f:29:c4:b5:06:e8:e7:f7:5c:a6:3c:c8:b0: d0:b3:71:5f:62:d5:5e:c6:0b:2f:71:ee:31:1e:21:69:c5:59: fe:50:68:09:11:3a:13:e9:cf:9b:02:cd:35:b8:75:d6:8a:2b: 70:03:c7:0e:b7:77:07:13:4d:ee:d2:a9:8a:5f:58:f9:e4:92: c2:b7:f1:0c:10:c3:a1:94:aa:95:06:a7:63:e0:53:af:51:5d: e1:8d:6a:b9:95:85:b3:7e:55:1f:67:b9:e5:cf:6f:67:c1:a0: bd:ac:fc:f5:bc:b3:2b:76:40:e1:1e:e9:63:d9:f1:87:94:b8: f0:e4:fd:1b:4c:8c:a5:2c:2c:a6:17:b5:54:3a:7e:ae:05:1f: 93:21:30:63:83:c5:b8:e8:36:11:65:bf:87:ac:5a:85:54:6f: 86:38:0b:86:a4:d0:13:1a:36:33:2c:2d:30:30:8c:6d:f3:10: 3c:35:79:b5:83:35:3d:d3:22:c2:c1:0c:e4:9b:9e:f5:80:17: 41:dd:e4:92:2a:6e:ae:3e:ec:92:1d:90:4e:f2:28:b9:2d:e6: ee:e3:0b:b8 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgIDALkIMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjY1M1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RiNGQtMzJmMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALiQiK3cAZ38YU/s5s6II7+M89sAD/KrdeUCS/k1Mn8rQff5yxWfx8P13yu6 uhnSF35GcuClPFloPfyCfjdYZdoz1tst8VcG/8GAOrCnr43A/xOnYZ02JXae1khY dpO5CJBCV4VHM/BLoZcq9KIvMU4Q50yIkFLG32PFnuG/fxnE03OtSv7I7FuM8/vg N+mIMIuxbU0bE1sfvhcrVd1/CNYB8K3o6/u6icOwBCXiUz5lS/WH2WTSLXAT9O18 T9Huk4gKt/1kAj7BoLp+KmOH69Vj7dkpI8anl1XtuEJ1jUe9LiXrXl330yk0YYCD g5Fec7Oj4fj8sYM4aWIo77WfXtMCAwEAAaOCApcwggKTMB0GA1UdDgQWBBSoNPLi hrIBza++OurNc2Hsp2cwoDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzM2M0NGNkU4 N0EyQTExRUVCMDkxMjUwRkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/ BBIwEDAOBAIAAjAIAwYFJAbdQEAwDQYJKoZIhvcNAQELBQADggEBAH/LcV8DdwqS pOjJdi06KhJNu2yW9S92zUW4qz8QTlWWIrrlK16TqtRyDynEtQbo5/dcpjzIsNCz cV9i1V7GCy9x7jEeIWnFWf5QaAkROhPpz5sCzTW4ddaKK3ADxw63dwcTTe7SqYpf WPnkksK38QwQw6GUqpUGp2PgU69RXeGNarmVhbN+VR9nueXPb2fBoL2s/PW8syt2 QOEe6WPZ8YeUuPDk/RtMjKUsLKYXtVQ6fq4FH5MhMGODxbjoNhFlv4esWoVUb4Y4 C4ak0BMaNjMsLTAwjG3zEDw1ebWDNT3TIsLBDOSbnvWAF0Hd5JIqbq4+7JIdkE7y KLkt5u7jC7g= -----END CERTIFICATE-----Generated at Tue May 13 05:00:30 2025 by rpki-client