$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8D15DC8419A611EF83B3E172C4F9AE02.roa File: 8D15DC8419A611EF83B3E172C4F9AE02.roa (raw, json) Hash identifier: llLOPwkHEjMYgJB+fPXMxYFtZ2iq/nJpuwx1dA3W+yc= Subject key identifier: A9:FB:1C:9B:A9:37:27:6C:9A:69:37:6E:92:33:D8:DB:1C:2B:2A:56 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B97A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8D15DC8419A611EF83B3E172C4F9AE02.roa Signing time: Thu 08 May 2025 16:28:35 +0000 ROA not before: Thu 08 May 2025 16:28:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152532 IP address blocks: 2401:a1a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47482 (0xb97a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:28:35 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdbb3-9335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ec:1f:73:33:97:ee:98:51:e6:57:6e:75:17: f9:0d:b8:68:e3:88:a0:e3:fc:92:16:a2:5b:de:bc: 3a:78:df:99:bb:4e:9a:1b:a4:79:5c:a4:81:f5:56: b0:5d:40:8e:27:e9:b1:79:06:1c:01:3b:a7:60:70: 0f:3a:e2:d7:9f:2a:b6:3a:70:e0:ef:e2:b8:0f:36: 5f:3b:62:97:ae:fe:fa:8c:5e:1a:fc:96:30:5e:d2: 37:4b:74:2c:6d:ac:58:e8:f2:e0:80:21:fd:a6:d9: 68:3c:69:56:81:49:e2:86:d2:f4:eb:11:98:ee:3a: 92:b2:26:aa:3c:00:14:4e:0a:89:67:c0:80:3b:ee: a1:25:96:86:7c:56:6b:92:0b:41:0a:1c:6f:89:08: fd:66:93:10:37:45:c6:70:48:2e:73:68:db:b5:5f: 4f:65:72:d8:88:79:9d:88:7b:c8:e9:b9:20:d2:ec: 6e:84:87:d7:8f:f1:fc:a8:ed:49:59:b4:c3:ce:e6: 7c:3d:9a:52:df:aa:b7:4b:83:a6:24:18:73:8e:74: af:25:bb:3c:53:82:60:af:ff:28:fe:75:4c:37:d5: 3c:ce:ac:2d:bd:00:6c:ae:1b:ef:24:fd:46:ea:e7: cd:ed:35:56:d6:29:f3:4e:4f:94:32:44:5f:2d:a2: c7:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:FB:1C:9B:A9:37:27:6C:9A:69:37:6E:92:33:D8:DB:1C:2B:2A:56 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8D15DC8419A611EF83B3E172C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:a1a0::/32 Signature Algorithm: sha256WithRSAEncryption 7a:46:97:1f:45:fe:aa:08:cf:08:f6:3c:b9:1c:d0:e7:a3:4c: 03:65:48:bb:d5:c1:2c:84:3f:c1:26:e4:3f:11:5b:06:fd:10: 7c:fc:44:36:74:08:de:6f:fe:86:64:af:c9:32:94:a4:0f:bc: a6:15:c4:b9:d6:cd:28:06:ea:6f:fd:c0:3a:68:ad:08:aa:87: 67:a3:cd:2a:61:09:c5:20:35:63:cc:7e:fe:ed:5e:11:8d:53: f5:71:32:2c:a6:c6:e1:72:ef:8f:5d:d4:3c:29:14:bd:b3:0c: 98:17:2c:03:1a:a6:28:b1:65:5f:51:bf:d5:ad:a2:ad:78:86: 15:c8:fb:1c:95:39:2f:02:66:80:be:a0:86:18:17:0a:b3:39: 3e:bb:f1:70:51:f0:3b:9a:4a:af:8b:48:b7:fa:66:54:0c:f7: fd:95:da:15:a6:66:98:06:3a:d9:91:1c:98:af:7c:e9:f9:6e: 83:a0:bf:9d:dc:b6:b0:14:c5:2d:58:68:a3:6d:70:41:a8:48: 90:07:fc:5e:08:a3:ce:23:f1:cb:63:c4:e0:5c:28:2c:16:0f: cd:4f:f4:bf:ed:2f:c7:73:39:b6:dd:1b:5d:14:0e:33:55:08: 33:1c:0a:c7:21:f5:b1:0a:92:ac:dd:b9:84:99:34:f8:a2:95: cc:fa:2f:ff -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIDALl6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjgzNVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RiYjMtOTMzNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN/sH3Mzl+6YUeZXbnUX+Q24aOOIoOP8khaiW968OnjfmbtOmhukeVykgfVW sF1AjifpsXkGHAE7p2BwDzri158qtjpw4O/iuA82Xztil67++oxeGvyWMF7SN0t0 LG2sWOjy4IAh/abZaDxpVoFJ4obS9OsRmO46krImqjwAFE4KiWfAgDvuoSWWhnxW a5ILQQocb4kI/WaTEDdFxnBILnNo27VfT2Vy2Ih5nYh7yOm5INLsboSH14/x/Kjt SVm0w87mfD2aUt+qt0uDpiQYc450ryW7PFOCYK//KP51TDfVPM6sLb0AbK4b7yT9 Rurnze01VtYp805PlDJEXy2ix6sCAwEAAaOCApYwggKSMB0GA1UdDgQWBBSp+xyb qTcnbJppN26SM9jbHCsqVjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhEMTVEQzg0 MTlBNjExRUY4M0IzRTE3MkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/ BBEwDzANBAIAAjAHAwUAJAGhoDANBgkqhkiG9w0BAQsFAAOCAQEAekaXH0X+qgjP CPY8uRzQ56NMA2VIu9XBLIQ/wSbkPxFbBv0QfPxENnQI3m/+hmSvyTKUpA+8phXE udbNKAbqb/3AOmitCKqHZ6PNKmEJxSA1Y8x+/u1eEY1T9XEyLKbG4XLvj13UPCkU vbMMmBcsAxqmKLFlX1G/1a2irXiGFcj7HJU5LwJmgL6ghhgXCrM5PrvxcFHwO5pK r4tIt/pmVAz3/ZXaFaZmmAY62ZEcmK986flug6C/ndy2sBTFLVhoo21wQahIkAf8 XgijziPxy2PE4FwoLBYPzU/0v+0vx3M5tt0bXRQOM1UIMxwKxyH1sQqSrN25hJk0 +KKVzPov/w== -----END CERTIFICATE-----Generated at Tue May 13 09:19:33 2025 by rpki-client