$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8CD801FA773611EF9F32BC29C4F9AE02.roa File: 8CD801FA773611EF9F32BC29C4F9AE02.roa (raw, json) Hash identifier: Xl7fgFFR81pwwQ/uTfirp/F8gWzvKEfqswalO8iyNZI= Subject key identifier: 7D:48:96:B6:2F:8F:42:43:0D:55:D2:AB:FF:14:50:5F:AB:0C:60:46 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B990 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8CD801FA773611EF9F32BC29C4F9AE02.roa Signing time: Thu 08 May 2025 16:28:55 +0000 ROA not before: Thu 08 May 2025 16:28:55 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153216 IP address blocks: 2001:df4:3ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47504 (0xb990) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:28:55 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdbc7-349a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:78:a5:fd:c0:37:2a:f6:a4:9f:6b:21:8e:da: 0f:d8:a3:22:d6:59:81:a1:8d:83:ec:57:f9:0b:c5: 01:29:98:37:d9:22:1f:9d:76:51:d9:fc:a9:08:de: 28:57:2f:c7:bf:e9:ef:ec:59:2e:f0:37:ab:e5:c7: 01:9d:9f:bd:2b:cb:eb:79:44:57:6e:9d:42:b1:02: 8e:12:94:28:37:53:c6:7f:d5:74:0f:99:fb:f8:16: 09:1f:4f:82:32:88:64:f4:db:96:c6:ca:58:3b:6c: 43:26:47:a2:02:38:fc:9f:a9:12:0f:76:16:c2:6d: 96:f5:8d:e2:91:79:52:b8:a2:86:e3:09:4a:35:cf: 65:2f:24:73:f2:e0:3d:65:82:33:af:89:24:ef:13: f7:32:e3:cd:ae:9c:d3:7a:cd:2c:00:67:b6:7d:9b: 1a:ae:96:bc:de:da:45:dd:80:6e:5b:c4:f7:2c:27: 95:4f:75:4f:f9:67:9a:c2:7f:07:54:32:b3:93:74: 5f:98:ed:2a:2e:68:f8:0e:0b:be:89:b8:8c:19:5d: fa:57:88:8a:10:dc:ee:b9:91:b8:aa:ba:7c:50:b7: 4d:80:1d:c5:2e:9e:cd:30:77:7b:00:74:72:ed:53: 73:fe:31:c2:72:8d:5a:aa:53:70:30:90:b6:e8:da: d5:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:48:96:B6:2F:8F:42:43:0D:55:D2:AB:FF:14:50:5F:AB:0C:60:46 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8CD801FA773611EF9F32BC29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:3ac0::/48 Signature Algorithm: sha256WithRSAEncryption 27:84:e2:3d:1d:e7:94:bb:ca:dd:d1:b0:71:9a:f7:c7:95:7c: 7b:f5:df:f5:33:e3:45:ec:66:1c:90:5d:53:66:05:16:b7:ba: 60:b9:d5:ac:2f:25:f5:9e:57:bc:83:9f:e3:58:89:87:24:4f: 66:f6:ba:64:9b:41:18:1b:bc:56:00:96:08:db:8e:ce:3e:d8: c7:e6:09:b4:41:8d:8c:d7:e5:75:06:27:ff:b6:34:51:72:1b: ff:bc:ba:68:d5:5b:75:19:55:33:1b:6c:42:ca:90:2b:de:b7: ec:8d:e0:74:25:68:87:7b:13:e6:2e:92:84:19:0d:23:ff:26: 8e:e1:39:1c:52:72:0e:91:db:06:fa:60:a9:6d:89:b4:74:fd: 8c:7c:ff:d1:35:5a:26:d2:f9:c4:33:41:55:f9:b1:ce:4b:4d: 1b:24:af:6c:a1:bd:39:fc:ef:86:08:b7:ef:03:f7:85:fe:14: e2:11:2d:0d:90:ab:31:89:01:ff:9c:e5:d7:21:5e:a6:a5:3a: 23:f4:63:5e:d6:5d:9e:d8:c3:a2:95:73:fa:85:b0:09:da:aa: 17:e6:1a:76:c5:67:1f:4d:31:e7:36:ad:49:90:cd:65:99:60: 2a:11:ea:d6:77:72:84:3e:0a:59:b0:0a:34:50:bc:ad:44:0a: bc:12:52:42 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDALmQMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2Mjg1NVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RiYzctMzQ5YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALR4pf3ANyr2pJ9rIY7aD9ijItZZgaGNg+xX+QvFASmYN9kiH512Udn8qQje KFcvx7/p7+xZLvA3q+XHAZ2fvSvL63lEV26dQrECjhKUKDdTxn/VdA+Z+/gWCR9P gjKIZPTblsbKWDtsQyZHogI4/J+pEg92FsJtlvWN4pF5UriihuMJSjXPZS8kc/Lg PWWCM6+JJO8T9zLjza6c03rNLABntn2bGq6WvN7aRd2AblvE9ywnlU91T/lnmsJ/ B1Qys5N0X5jtKi5o+A4Lvom4jBld+leIihDc7rmRuKq6fFC3TYAdxS6ezTB3ewB0 cu1Tc/4xwnKNWqpTcDCQtuja1aECAwEAAaOCApgwggKUMB0GA1UdDgQWBBR9SJa2 L49CQw1V0qv/FFBfqwxgRjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhDRDgwMUZB NzczNjExRUY5RjMyQkMyOUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN9DrAMA0GCSqGSIb3DQEBCwUAA4IBAQAnhOI9HeeU u8rd0bBxmvfHlXx79d/1M+NF7GYckF1TZgUWt7pgudWsLyX1nle8g5/jWImHJE9m 9rpkm0EYG7xWAJYI247OPtjH5gm0QY2M1+V1Bif/tjRRchv/vLpo1Vt1GVUzG2xC ypAr3rfsjeB0JWiHexPmLpKEGQ0j/yaO4TkcUnIOkdsG+mCpbYm0dP2MfP/RNVom 0vnEM0FV+bHOS00bJK9sob05/O+GCLfvA/eF/hTiES0NkKsxiQH/nOXXIV6mpToj 9GNe1l2e2MOilXP6hbAJ2qoX5hp2xWcfTTHnNq1JkM1lmWAqEerWd3KEPgpZsAo0 ULytRAq8ElJC -----END CERTIFICATE-----Generated at Tue May 13 02:27:10 2025 by rpki-client