$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F1FA1CFC7F1A11F08865AC5BC4F9AE02.roa File: F1FA1CFC7F1A11F08865AC5BC4F9AE02.roa (raw, json) Hash identifier: BSzEEWmxwuwcnfMV/BB20Jn8Vmb1m3RBYmvdD22ZoCo= Subject key identifier: 39:CC:83:D5:94:4A:7F:E3:A5:6F:9A:4F:A1:0D:C5:2E:D1:8D:00:70 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C31A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F1FA1CFC7F1A11F08865AC5BC4F9AE02.roa Signing time: Fri 22 Aug 2025 05:43:36 +0000 ROA not before: Fri 22 Aug 2025 05:43:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136330 IP address blocks: 2001:df6:340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49946 (0xc31a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 22 05:43:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68a80387-4834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5f:d5:4f:2c:33:97:07:50:73:be:d4:ee:ff: b8:c2:43:c5:20:44:2a:63:2e:3b:cb:4b:af:79:a7: 0c:99:08:c9:37:e3:3c:4a:55:9d:85:5a:b2:3b:9a: d6:1f:bf:ba:e7:41:b9:92:51:a8:d5:07:d4:de:f8: ea:0e:49:9b:12:e5:65:14:94:d0:76:79:a2:05:26: 4d:86:93:77:8e:76:4b:e8:1a:36:30:fc:35:ed:4d: 7d:f2:47:e8:e4:e1:b4:50:d2:15:54:cc:94:f6:b4: fb:ca:64:11:e2:87:f7:67:5d:0a:a4:f7:b9:ca:ca: c9:00:16:3a:2a:e0:c4:6c:89:dc:c1:41:d3:b6:5c: 07:84:fd:6d:71:a5:31:64:1b:25:18:14:9f:93:da: b4:74:16:3e:dd:77:57:d2:9f:59:a4:9a:2a:d1:c8: 7b:c6:91:6c:c4:41:39:33:24:16:93:3a:67:32:47: b2:ea:03:0f:eb:f1:bf:ec:d6:57:22:ba:8d:cd:27: 70:35:53:98:b2:46:ec:40:9d:79:a3:29:ce:d8:f6: 35:13:c1:d4:c9:43:bc:95:b7:3c:e7:e3:c8:9f:a5: 53:c8:f2:f5:f8:62:a6:a5:06:7d:a1:63:74:9c:f4: f0:94:21:84:62:a4:7e:dc:de:47:23:c3:64:f7:e1: ec:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:CC:83:D5:94:4A:7F:E3:A5:6F:9A:4F:A1:0D:C5:2E:D1:8D:00:70 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F1FA1CFC7F1A11F08865AC5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:340::/48 Signature Algorithm: sha256WithRSAEncryption 67:74:39:e1:cc:6a:b9:6f:a8:87:ba:69:b1:89:e0:cb:bc:9f: a4:c6:d7:8f:76:f3:a2:1e:f4:24:e9:c2:bc:fc:3b:04:60:29: bd:5a:b4:8b:a1:fd:6b:0e:ba:40:74:54:58:60:6e:95:2e:c1: 0b:db:4c:eb:b2:44:7c:fd:89:16:5f:99:8f:10:e1:ca:70:ec: 4e:7c:aa:e6:64:ea:ee:0d:56:fe:66:20:5a:a6:98:88:60:8f: 96:bc:fa:44:21:d9:fd:e7:e8:f7:8b:8a:4b:ac:1d:58:7b:2a: 14:13:79:b4:55:26:fa:d5:3e:34:33:be:50:b2:3a:70:ab:dc: 91:d3:2d:9e:a2:34:7e:46:1e:2a:23:85:bb:e2:fa:5f:2f:19: c0:0f:44:3a:e2:18:cc:0c:d3:83:dd:1b:b9:c2:da:21:fa:7c: a3:f4:fe:ce:86:51:83:d2:95:a1:2b:55:96:02:25:76:1a:5c: 21:75:ef:99:75:f2:22:6e:17:b4:93:06:5b:d9:9c:35:24:cf: c0:08:2c:90:5b:99:3c:9a:f3:95:64:a2:93:fd:84:9c:20:f2: 18:f0:10:f7:1f:73:62:b9:9a:0f:11:5f:9b:b4:46:99:70:70: 10:35:04:4f:72:f9:db:92:71:f9:00:3c:5e:f6:62:08:20:59: 86:08:8f:9f -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAMMaMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDgyMjA1NDMzNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjhhODAzODctNDgzNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANJf1U8sM5cHUHO+1O7/uMJDxSBEKmMuO8tLr3mnDJkIyTfjPEpVnYVasjua 1h+/uudBuZJRqNUH1N746g5JmxLlZRSU0HZ5ogUmTYaTd452S+gaNjD8Ne1NffJH 6OThtFDSFVTMlPa0+8pkEeKH92ddCqT3ucrKyQAWOirgxGyJ3MFB07ZcB4T9bXGl MWQbJRgUn5PatHQWPt13V9KfWaSaKtHIe8aRbMRBOTMkFpM6ZzJHsuoDD+vxv+zW VyK6jc0ncDVTmLJG7ECdeaMpztj2NRPB1MlDvJW3POfjyJ+lU8jy9fhipqUGfaFj dJz08JQhhGKkftzeRyPDZPfh7GsCAwEAAaOCApgwggKUMB0GA1UdDgQWBBQ5zIPV lEp/46Vvmk+hDcUu0Y0AcDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0YxRkExQ0ZD N0YxQTExRjA4ODY1QUM1QkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN9gNAMA0GCSqGSIb3DQEBCwUAA4IBAQBndDnhzGq5 b6iHummxieDLvJ+kxtePdvOiHvQk6cK8/DsEYCm9WrSLof1rDrpAdFRYYG6VLsEL 20zrskR8/YkWX5mPEOHKcOxOfKrmZOruDVb+ZiBappiIYI+WvPpEIdn95+j3i4pL rB1YeyoUE3m0VSb61T40M75Qsjpwq9yR0y2eojR+Rh4qI4W74vpfLxnAD0Q64hjM DNOD3Ru5wtoh+nyj9P7OhlGD0pWhK1WWAiV2Glwhde+ZdfIibhe0kwZb2Zw1JM/A CCyQW5k8mvOVZKKT/YScIPIY8BD3H3NiuZoPEV+btEaZcHAQNQRPcvnbknH5ADxe 9mIIIFmGCI+f -----END CERTIFICATE-----Generated at Sun Aug 24 01:27:16 2025 by rpki-client