$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D7C533DC5DEF11EF929D3B33C4F9AE02.roa File: D7C533DC5DEF11EF929D3B33C4F9AE02.roa (raw, json) Hash identifier: kTtss34t7jDIFFKA546roN1vH//LHWi1jyorWzUsN2I= Subject key identifier: A6:B6:88:7F:80:B0:8C:97:CA:53:27:C3:AE:F5:CC:AB:6F:E2:AF:FC Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B983 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D7C533DC5DEF11EF929D3B33C4F9AE02.roa Signing time: Thu 08 May 2025 16:28:43 +0000 ROA not before: Thu 08 May 2025 16:28:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152549 IP address blocks: 2401:a760::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 07:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47491 (0xb983) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:28:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdbbb-409e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:45:7e:fd:76:e1:93:6a:54:cb:29:b6:6d:7e: a5:ab:73:3f:88:e0:20:14:df:33:0a:5a:81:96:14: 74:29:ae:4e:d1:bf:c7:e3:0c:09:19:82:51:7e:33: 51:8b:6b:1e:a8:70:15:35:d8:4c:fe:50:b0:62:ad: f4:29:f4:97:e7:6e:e2:ef:57:2b:49:95:d8:72:45: 90:1c:4d:70:c6:05:dd:ad:62:f6:02:0b:30:68:9c: 52:a8:17:e4:24:d6:ba:3d:da:0b:1e:34:0e:c3:6d: 27:2e:2a:b8:ec:b1:8d:c4:bf:86:ad:75:c7:39:46: 75:9a:0d:69:cc:60:ac:e1:7c:85:da:b5:4b:8e:cc: 68:3f:60:37:4e:f2:5c:7d:b0:f4:05:7c:a6:f9:3d: 42:f7:7e:d2:d8:76:ca:4a:bc:7f:57:91:f9:91:9a: 41:1d:86:fa:55:7c:5c:73:76:af:79:13:58:28:4e: 41:eb:80:53:c9:47:f8:e5:0f:71:3f:5c:61:13:d4: 86:90:9a:14:dd:af:f4:03:2e:bf:bf:ed:fa:23:ca: 18:6e:02:a9:fe:ae:82:ff:18:4c:22:01:72:d0:23: 08:a4:e3:18:9a:85:f8:c4:be:f2:a7:f7:f2:88:dc: 83:49:cf:54:8f:46:62:54:ef:48:45:d6:09:b6:0d: 41:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B6:88:7F:80:B0:8C:97:CA:53:27:C3:AE:F5:CC:AB:6F:E2:AF:FC X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D7C533DC5DEF11EF929D3B33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:a760::/32 Signature Algorithm: sha256WithRSAEncryption 53:42:36:18:50:db:4e:ce:97:5f:3e:a4:5b:51:5b:d3:1c:05: f8:d8:0f:39:64:01:7c:ba:2d:24:81:1c:a9:7f:6c:9d:1a:bd: f8:b7:60:6f:76:e8:47:21:21:31:c8:d5:69:e9:cb:7f:8a:13: 22:14:3e:49:31:47:0b:91:38:cc:dd:67:24:b7:cf:c2:31:10: f7:5e:1e:6a:70:32:fc:2f:5c:70:b2:71:57:09:80:02:ab:9f: 69:9c:91:2f:e3:77:1c:f3:75:3a:84:8a:b8:ce:95:8b:5d:1e: d9:d9:bd:73:52:f9:e4:52:12:48:a4:c1:cb:fb:c0:51:9a:83: ac:95:95:4f:ed:2b:3f:1c:32:3d:3c:f3:47:8d:9b:19:f8:17: 84:77:d0:ba:9c:ac:89:aa:49:fe:68:b9:89:b6:c1:8f:67:6e: 20:28:0e:65:64:2b:3f:3f:e3:b3:ac:bf:02:10:98:07:fd:aa: 57:20:47:6b:e3:ae:00:0c:7c:2e:a0:4f:7a:bd:16:57:47:af: af:b4:54:07:f2:7a:41:86:64:58:cc:5f:09:45:0f:3d:5c:66: 3f:51:3a:37:56:6c:6d:9f:a3:07:30:73:a1:a7:dc:67:c2:9f: 3e:09:a4:99:e8:d0:21:7d:d9:44:1f:fa:90:74:22:72:cf:2a: 78:8e:c9:84 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIDALmDMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2Mjg0M1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RiYmItNDA5ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMxFfv124ZNqVMsptm1+patzP4jgIBTfMwpagZYUdCmuTtG/x+MMCRmCUX4z UYtrHqhwFTXYTP5QsGKt9Cn0l+du4u9XK0mV2HJFkBxNcMYF3a1i9gILMGicUqgX 5CTWuj3aCx40DsNtJy4quOyxjcS/hq11xzlGdZoNacxgrOF8hdq1S47MaD9gN07y XH2w9AV8pvk9Qvd+0th2ykq8f1eR+ZGaQR2G+lV8XHN2r3kTWChOQeuAU8lH+OUP cT9cYRPUhpCaFN2v9AMuv7/t+iPKGG4Cqf6ugv8YTCIBctAjCKTjGJqF+MS+8qf3 8ojcg0nPVI9GYlTvSEXWCbYNQXcCAwEAAaOCApYwggKSMB0GA1UdDgQWBBSmtoh/ gLCMl8pTJ8Ou9cyrb+Kv/DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q3QzUzM0RD NURFRjExRUY5MjlEM0IzM0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/ BBEwDzANBAIAAjAHAwUAJAGnYDANBgkqhkiG9w0BAQsFAAOCAQEAU0I2GFDbTs6X Xz6kW1Fb0xwF+NgPOWQBfLotJIEcqX9snRq9+Ldgb3boRyEhMcjVaenLf4oTIhQ+ STFHC5E4zN1nJLfPwjEQ914eanAy/C9ccLJxVwmAAqufaZyRL+N3HPN1OoSKuM6V i10e2dm9c1L55FISSKTBy/vAUZqDrJWVT+0rPxwyPTzzR42bGfgXhHfQupysiapJ /mi5ibbBj2duICgOZWQrPz/js6y/AhCYB/2qVyBHa+OuAAx8LqBPer0WV0evr7RU B/J6QYZkWMxfCUUPPVxmP1E6N1ZsbZ+jBzBzoafcZ8KfPgmkmejQIX3ZRB/6kHQi cs8qeI7JhA== -----END CERTIFICATE-----Generated at Wed May 14 11:36:15 2025 by rpki-client