$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7A6A9AC7FE411EFBF044E6AC4F9AE02.roa File: B7A6A9AC7FE411EFBF044E6AC4F9AE02.roa (raw, json) Hash identifier: HnovBj4F/lWp+T5PbfELFPvhdh6eUwmnMvgxmxienF0= Subject key identifier: A1:A0:05:CE:EA:D6:0F:68:42:AB:B8:93:85:E3:91:B7:50:25:62:04 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B992 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7A6A9AC7FE411EFBF044E6AC4F9AE02.roa Signing time: Thu 08 May 2025 16:28:57 +0000 ROA not before: Thu 08 May 2025 16:28:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153221 IP address blocks: 2401:c4e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47506 (0xb992) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:28:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdbc8-ef30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:cf:f8:3b:ee:b8:07:0f:2e:7e:f5:c9:fa:03: 38:97:8e:93:12:93:13:35:c6:56:9e:0e:fe:aa:a9: 06:e2:04:7b:0c:c2:93:ac:24:9d:81:ca:58:93:74: 09:92:84:2f:f3:7d:de:f7:41:05:cf:95:e0:00:06: 0a:25:5c:54:c9:02:76:6b:8d:cf:08:f8:8c:c2:b9: 74:95:91:63:66:be:b9:8f:0a:00:89:9b:4c:c3:cf: 30:78:21:b1:c5:10:3c:1c:54:c3:a6:9e:29:28:c5: 03:70:a0:5b:46:e3:fe:3e:b3:d7:2e:84:ef:54:80: 0c:ba:8c:c6:75:9e:91:98:11:30:1a:2c:b3:29:5e: d9:11:d5:88:7b:83:71:39:49:06:2d:2d:a9:83:e2: 49:27:46:7e:25:98:8d:f3:63:4e:2d:ab:39:16:9d: ac:ae:00:d1:4c:07:ab:58:14:41:0a:44:a3:36:dc: 66:9d:ee:86:c2:1f:0c:c4:ee:9b:7e:47:15:42:cc: d8:d1:70:75:9a:a6:d5:83:7c:ca:a8:4f:f8:68:8b: 87:96:1a:75:9e:70:e7:86:0f:11:b9:6c:3d:9e:f3: 5c:e8:03:7f:8e:cf:41:90:5a:2f:4d:01:4f:ec:0c: 88:0b:e3:86:e0:ec:84:ed:7a:92:72:2b:1a:ee:20: bb:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A0:05:CE:EA:D6:0F:68:42:AB:B8:93:85:E3:91:B7:50:25:62:04 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7A6A9AC7FE411EFBF044E6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:c4e0::/32 Signature Algorithm: sha256WithRSAEncryption 12:0a:fd:a8:2b:76:f4:b6:20:d7:c1:f2:44:a1:27:71:f6:ff: df:cc:b4:f8:c6:12:13:87:f6:7b:3d:4e:da:0f:7a:9c:3b:31: 5a:d8:a3:b6:b3:8a:13:a0:93:50:a2:18:d8:0a:24:c2:44:df: 93:43:da:fd:83:5a:68:0f:88:a8:36:09:ce:8a:9d:99:43:81: 86:1d:85:d6:0a:9b:a3:ed:99:86:4e:cb:fc:6e:c2:0a:7d:12: 3e:85:4a:c5:c9:d9:c6:ed:f6:38:e9:75:ad:54:48:a4:3a:38: 34:27:36:e0:89:60:03:16:32:0d:04:ce:97:3e:15:35:71:41: 6d:f7:c0:c9:c0:42:4c:27:46:51:20:d8:3f:9f:fa:01:2c:7c: 63:05:81:e0:07:2a:a2:7b:54:2e:ab:c8:89:3c:e4:d3:4e:81: 9e:e6:b5:83:45:61:b9:bc:55:16:0d:70:ab:74:81:a2:3c:64: 1f:2b:44:80:9b:de:34:77:3e:88:a3:f8:fa:5c:82:35:37:80: 07:60:63:e6:6a:d4:96:79:18:10:eb:12:0d:9f:d4:a7:94:77: d5:5d:5a:8f:de:ef:82:72:ff:39:4c:84:3d:ff:93:99:bb:b0: 08:8d:00:ee:60:78:91:e1:33:31:33:0f:c0:92:7f:9b:0e:6c: 05:33:12:71 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIDALmSMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2Mjg1N1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RiYzgtZWYzMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKvP+DvuuAcPLn71yfoDOJeOkxKTEzXGVp4O/qqpBuIEewzCk6wknYHKWJN0 CZKEL/N93vdBBc+V4AAGCiVcVMkCdmuNzwj4jMK5dJWRY2a+uY8KAImbTMPPMHgh scUQPBxUw6aeKSjFA3CgW0bj/j6z1y6E71SADLqMxnWekZgRMBossyle2RHViHuD cTlJBi0tqYPiSSdGfiWYjfNjTi2rORadrK4A0UwHq1gUQQpEozbcZp3uhsIfDMTu m35HFULM2NFwdZqm1YN8yqhP+GiLh5YadZ5w54YPEblsPZ7zXOgDf47PQZBaL00B T+wMiAvjhuDshO16knIrGu4gu/ECAwEAAaOCApYwggKSMB0GA1UdDgQWBBShoAXO 6tYPaEKruJOF45G3UCViBDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0I3QTZBOUFD N0ZFNDExRUZCRjA0NEU2QUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/ BBEwDzANBAIAAjAHAwUAJAHE4DANBgkqhkiG9w0BAQsFAAOCAQEAEgr9qCt29LYg 18HyRKEncfb/38y0+MYSE4f2ez1O2g96nDsxWtijtrOKE6CTUKIY2AokwkTfk0Pa /YNaaA+IqDYJzoqdmUOBhh2F1gqbo+2Zhk7L/G7CCn0SPoVKxcnZxu32OOl1rVRI pDo4NCc24IlgAxYyDQTOlz4VNXFBbffAycBCTCdGUSDYP5/6ASx8YwWB4AcqontU LqvIiTzk006Bnua1g0VhubxVFg1wq3SBojxkHytEgJveNHc+iKP4+lyCNTeAB2Bj 5mrUlnkYEOsSDZ/Up5R31V1aj97vgnL/OUyEPf+TmbuwCI0A7mB4keEzMTMPwJJ/ mw5sBTMScQ== -----END CERTIFICATE-----Generated at Tue May 13 08:23:49 2025 by rpki-client