$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/9A3920B4366311EEB376DC3AC4F9AE02.roa File: 9A3920B4366311EEB376DC3AC4F9AE02.roa (raw, json) Hash identifier: 7/Dv9jVsMOQM6ay0osqDZvlTd7fF1nnEWe+Y4g9FMXY= Subject key identifier: 03:1E:CC:13:4B:45:B4:33:E0:D7:1E:D8:94:E7:5B:30:2B:27:45:AB Certificate issuer: /CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Certificate serial: 01B2 Authority key identifier: 71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/9A3920B4366311EEB376DC3AC4F9AE02.roa Signing time: Mon 23 Jun 2025 03:22:04 +0000 ROA not before: Mon 23 Jun 2025 03:22:04 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151040 IP address blocks: 83.118.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C, serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Validity Not Before: Jun 23 03:22:04 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6858c85c-4632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:39:3c:6f:1b:2f:a9:d4:04:7d:b9:5f:af:60: 4a:80:01:8f:1e:cf:46:2e:70:5e:10:73:e7:9f:2c: e8:aa:f0:98:3c:36:fe:76:e2:c8:7a:be:aa:95:a4: 02:47:64:9e:46:f9:99:97:d8:ab:98:cc:d4:13:7c: b4:11:b2:6b:db:6d:6e:1a:00:fd:18:fd:ee:d2:8d: 73:09:0d:aa:4d:70:fb:17:8c:65:d6:81:17:ae:a0: 26:9a:c8:9e:c0:30:4a:51:0e:cd:2c:9f:80:3c:02: 88:d4:31:cb:49:00:3b:84:e0:d9:29:c9:7e:8b:18: 09:50:c5:41:30:be:60:bb:64:f3:44:33:e1:08:85: 6b:7b:b9:4a:44:fa:8e:0d:d2:e0:45:00:fb:b9:95: 93:45:60:65:1a:a6:c0:51:a3:f0:13:a8:f9:ed:bb: 4a:1f:84:79:25:5b:98:18:16:60:33:2a:22:3b:01: 74:78:bc:de:65:37:df:da:10:31:27:5f:ab:5b:86: 5a:a1:ca:41:14:be:24:04:8f:b1:ed:8d:5a:d9:cd: 17:ca:3d:a6:df:69:6b:6f:ef:a7:90:21:66:41:cc: c7:a1:a6:88:4b:cb:55:b6:de:b3:19:e0:6f:50:7b: 06:fb:9b:4a:b3:1a:67:1b:08:70:3d:00:26:99:59: 5c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:1E:CC:13:4B:45:B4:33:E0:D7:1E:D8:94:E7:5B:30:2B:27:45:AB X509v3 Authority Key Identifier: keyid:71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/9A3920B4366311EEB376DC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 83.118.100.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:95:2f:1d:81:a0:cb:c2:75:e2:c7:36:1c:d1:0f:a5:24:c3: 54:b2:64:bc:3d:4a:3c:6c:5f:3b:e3:f7:a0:f9:9a:98:07:55: a1:1f:63:b3:10:9a:33:da:dc:a1:17:67:52:b2:9d:ce:8d:93: af:7a:7e:0d:a0:cf:71:ce:a0:28:98:1b:5a:95:a9:af:0a:3f: bb:e4:dc:0e:57:c2:d0:04:0f:57:b4:34:6e:61:35:92:b4:05: 89:96:c8:4b:97:8c:95:38:19:64:08:d2:02:d8:be:29:e9:a2: c0:74:aa:fb:fe:6c:44:8f:66:91:35:a7:f6:a6:6f:b5:c0:51: ee:13:cb:2b:39:41:e1:53:c4:12:2b:2b:1b:af:99:72:d0:0b: 8b:bb:d8:e8:49:64:cf:da:a4:88:f5:6b:d8:c1:2c:bb:60:61: fb:91:23:c5:f1:4d:21:e2:8e:5c:c0:3f:0c:99:a7:25:24:9e: b9:2f:07:52:4a:71:d8:77:8d:ef:34:a3:9b:f7:19:42:12:fa: 4e:6f:98:27:9f:bf:bb:cf:1b:5c:84:6d:3b:42:f3:47:7a:d8: 9e:75:9b:8c:b2:29:46:85:ba:9d:49:f7:d9:86:a8:4e:23:17: bf:d1:51:18:65:7d:eb:8c:cf:4c:f7:20:21:32:e0:ec:0b:35: b5:f8:4e:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKDcxRjQwMjE4QzFBRjQ3QzVFOTkzQTIxQTJCMjkyODRF NEMzMkM5MzQwHhcNMjUwNjIzMDMyMjA0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU4Yzg1Yy00NjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Dk8bxsvqdQEfblfr2BKgAGPHs9GLnBeEHPnnyzoqvCYPDb+duLIer6qlaQC R2SeRvmZl9irmMzUE3y0EbJr221uGgD9GP3u0o1zCQ2qTXD7F4xl1oEXrqAmmsie wDBKUQ7NLJ+APAKI1DHLSQA7hODZKcl+ixgJUMVBML5gu2TzRDPhCIVre7lKRPqO DdLgRQD7uZWTRWBlGqbAUaPwE6j57btKH4R5JVuYGBZgMyoiOwF0eLzeZTff2hAx J1+rW4ZaocpBFL4kBI+x7Y1a2c0Xyj2m32lrb++nkCFmQczHoaaIS8tVtt6zGeBv UHsG+5tKsxpnGwhwPQAmmVlcvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAMezBNL RbQz4Nce2JTnWzArJ0WrMB8GA1UdIwQYMBaAFHH0AhjBr0fF6ZOiGispKE5MMsk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy82REUzQ0U3QzM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9jZlFDR01HdlI4WHBrNklhS3lrb1Rrd3l5 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2NmUUNHTUd2UjhYcGs2SWFLeWtvVGt3eXlUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNkRFM0NFN0MzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvOUEzOTIwQjQz NjYzMTFFRUIzNzZEQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABTdmQwDQYJKoZIhvcNAQELBQADggEBAFqVLx2BoMvCdeLH NhzRD6Ukw1SyZLw9SjxsXzvj96D5mpgHVaEfY7MQmjPa3KEXZ1Kync6Nk696fg2g z3HOoCiYG1qVqa8KP7vk3A5XwtAED1e0NG5hNZK0BYmWyEuXjJU4GWQI0gLYvinp osB0qvv+bESPZpE1p/amb7XAUe4Tyys5QeFTxBIrKxuvmXLQC4u72OhJZM/apIj1 a9jBLLtgYfuRI8XxTSHijlzAPwyZpyUknrkvB1JKcdh3je80o5v3GUIS+k5vmCef v7vPG1yEbTtC80d62J51m4yyKUaFup1J99mGqE4jF7/RURhlfeuMz0z3ICEy4OwL NbX4TqA= -----END CERTIFICATE-----Generated at Fri Jul 4 01:03:49 2025 by rpki-client