$ rpki-client -vvf rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/311DA6AA78F611EFAFD81B5BC4F9AE02.roa File: 311DA6AA78F611EFAFD81B5BC4F9AE02.roa (raw, json) Hash identifier: d3AVE6MmRgC9f1BP/vAUeg941gkBQiu4la3PQf5xjqo= Subject key identifier: 1A:ED:98:A0:05:D4:64:09:E8:73:24:24:05:3A:0A:31:0E:FC:E9:B7 Certificate issuer: /CN=A918FCE2/serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Certificate serial: 0892 Authority key identifier: DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/311DA6AA78F611EFAFD81B5BC4F9AE02.roa Signing time: Fri 22 Aug 2025 21:01:11 +0000 ROA not before: Fri 22 Aug 2025 21:01:11 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140949 IP address blocks: 2001:df4:5280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2194 (0x892) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FCE2, serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Validity Not Before: Aug 22 21:01:11 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a8da97-f74a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:48:02:51:77:46:cd:90:1a:41:0c:b1:16:03: 04:a0:84:01:a6:ff:73:65:1c:4b:ce:f6:b5:11:f9: da:43:ca:4f:09:ba:d3:82:1a:b5:5e:cf:4e:6d:2f: 97:4c:81:d7:0e:7b:93:8f:78:aa:6d:9c:8b:a4:94: 16:50:45:27:18:d7:71:e0:d3:60:0a:c0:26:3a:15: c8:17:ac:27:7e:7d:3f:74:c8:37:c0:96:a1:36:b7: 82:82:28:02:8c:cb:72:1a:5c:ec:f7:6c:22:e6:d4: b1:ac:56:fc:29:2d:1a:39:58:5a:9e:79:42:2f:e9: 31:82:7c:a8:15:6c:69:bf:e4:7c:96:eb:16:3b:58: d3:26:a2:c3:4b:64:96:2a:c9:92:e6:14:e8:8f:e6: 52:1d:a5:61:b3:04:00:fd:bd:9b:09:f2:9d:11:7b: 43:f3:5c:bb:0a:9b:ac:f4:1d:68:5a:12:99:7e:da: ba:0b:44:0a:a6:31:24:cb:5d:b1:b5:0e:d8:4c:37: f9:62:48:77:fb:1d:5a:6e:9e:b6:4f:38:14:b4:cb: a8:20:64:a0:8d:4a:ef:47:7e:6d:47:5c:96:1e:07: 2c:e5:90:30:1a:c3:f4:47:4b:3c:b4:6a:a9:4e:80: 75:a5:d5:17:af:49:15:53:e8:b9:dc:70:c1:e7:cb: b2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:ED:98:A0:05:D4:64:09:E8:73:24:24:05:3A:0A:31:0E:FC:E9:B7 X509v3 Authority Key Identifier: keyid:DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/311DA6AA78F611EFAFD81B5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:5280::/48 Signature Algorithm: sha256WithRSAEncryption 0f:b5:7e:6c:8b:c2:a7:cb:f1:d5:ec:a8:10:12:cb:68:69:76: f9:06:fd:e6:cd:38:06:b0:b1:ea:64:37:5c:f9:f5:e6:6b:52: 6d:00:40:b3:05:48:f3:1f:f4:ce:bf:91:a1:77:31:81:38:0c: 16:16:af:22:f1:3c:14:af:95:46:aa:2a:7a:b3:fe:6b:82:80: 4e:3f:f9:29:0d:f2:45:e2:3c:10:dc:89:34:47:94:c5:96:b1: 1d:ec:a3:9c:30:59:f2:1a:62:12:65:7c:b6:a2:f0:99:c1:34: 91:4d:c5:b6:3c:1b:71:0f:e4:6d:e4:68:91:fa:67:36:17:92: 32:28:b7:bf:e2:6f:3c:21:80:8f:7a:da:f4:e0:36:25:6a:3e: a2:5d:ff:98:4c:ca:35:fe:ea:7a:3f:c7:d9:9d:e7:17:ba:f1: b6:d0:a4:19:7c:28:e1:1b:e3:7e:07:19:cd:da:57:97:8d:ea: e9:cc:fa:ca:dc:48:8b:31:dd:3c:52:f8:b1:b4:db:88:b8:5a: 9f:31:33:40:93:2c:1a:53:30:32:32:5b:ff:30:31:94:7a:d8: 3e:8d:ae:d9:9f:a5:88:8f:bb:6d:68:72:00:1c:92:5e:39:01: ea:7f:4f:88:11:2b:61:73:13:44:ae:2a:d1:fe:1d:cd:6e:97: b0:af:6b:65 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDRTIxMTAvBgNVBAUTKERBRkRFMEJDNkUwQUQzQTg5NUJDNzU2RDZDMzFBMUU2 MUI2RDM4M0IwHhcNMjUwODIyMjEwMTExWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE4ZGE5Ny1mNzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UgCUXdGzZAaQQyxFgMEoIQBpv9zZRxLzva1EfnaQ8pPCbrTghq1Xs9ObS+X TIHXDnuTj3iqbZyLpJQWUEUnGNdx4NNgCsAmOhXIF6wnfn0/dMg3wJahNreCgigC jMtyGlzs92wi5tSxrFb8KS0aOVhannlCL+kxgnyoFWxpv+R8lusWO1jTJqLDS2SW KsmS5hToj+ZSHaVhswQA/b2bCfKdEXtD81y7Cpus9B1oWhKZftq6C0QKpjEky12x tQ7YTDf5Ykh3+x1abp62TzgUtMuoIGSgjUrvR35tR1yWHgcs5ZAwGsP0R0s8tGqp ToB1pdUXr0kVU+i53HDB58uyOwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBrtmKAF 1GQJ6HMkJAU6CjEO/Om3MB8GA1UdIwQYMBaAFNr94LxuCtOolbx1bWwxoeYbbTg7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkNFMi82MTgwQzBBMkNE NkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2aVZ2SFZ0YkRHaDVodHRP RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ2M2d2RzRLMDZpVnZIVnRiREdoNWh0dE9Ecy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDRTIvNjE4MEMwQTJDRDZGMTFFQTk3NTQ4MDQzQzRGOUFFMDIvMzExREE2QUE3 OEY2MTFFRkFGRDgxQjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30UoAwDQYJKoZIhvcNAQELBQADggEBAA+1fmyLwqfL 8dXsqBASy2hpdvkG/ebNOAawsepkN1z59eZrUm0AQLMFSPMf9M6/kaF3MYE4DBYW ryLxPBSvlUaqKnqz/muCgE4/+SkN8kXiPBDciTRHlMWWsR3so5wwWfIaYhJlfLai 8JnBNJFNxbY8G3EP5G3kaJH6ZzYXkjIot7/ibzwhgI962vTgNiVqPqJd/5hMyjX+ 6no/x9md5xe68bbQpBl8KOEb434HGc3aV5eN6unM+srcSIsx3TxS+LG024i4Wp8x M0CTLBpTMDIyW/8wMZR62D6NrtmfpYiPu21ocgAckl45Aep/T4gRK2FzE0SuKtH+ Hc1ul7Cva2U= -----END CERTIFICATE-----Generated at Sun Aug 24 03:08:19 2025 by rpki-client