$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/9DB1FB565EA511EFBA70FD68C4F9AE02.roa File: 9DB1FB565EA511EFBA70FD68C4F9AE02.roa (raw, json) Hash identifier: O+B0ZW2h9cNF/6UA+QKBCSXEqyRWTmJWn65XyoJJBNo= Subject key identifier: 41:32:BD:36:19:E6:58:63:C8:4D:45:6E:51:89:03:FC:1A:F7:B2:D0 Certificate issuer: /CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Certificate serial: 01B3 Authority key identifier: 71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/9DB1FB565EA511EFBA70FD68C4F9AE02.roa Signing time: Mon 23 Jun 2025 03:22:05 +0000 ROA not before: Mon 23 Jun 2025 03:22:05 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152915 IP address blocks: 83.118.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C, serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Validity Not Before: Jun 23 03:22:05 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6858c85d-f129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b6:bc:0c:c5:0e:d7:77:15:5c:c8:aa:fd:af: eb:f1:0d:41:ba:5a:fd:2c:28:ac:7f:c7:c7:1b:8f: 52:27:4c:20:a9:a9:f0:f0:0e:c9:ea:41:ae:8f:f4: fe:0a:ba:cf:6a:33:5e:ee:99:a7:04:0f:95:76:e4: 8a:fa:ed:c8:0e:40:19:b9:fe:17:e3:9d:51:e3:bb: ff:01:07:d8:c0:04:f7:bd:2c:c3:b7:41:59:40:53: f3:a6:0b:bd:20:c6:d8:0f:3e:ec:c5:7c:40:59:93: fc:31:51:6e:3a:e0:ea:f0:b2:8d:80:76:61:de:79: bb:68:fc:ff:54:29:7c:9d:d5:51:48:20:91:39:ea: a3:d7:17:c5:87:46:a1:51:e3:3f:b9:7d:a8:42:89: 9b:2e:eb:79:d1:51:dd:d0:c1:36:8b:66:c8:39:2c: 99:e3:6d:c9:24:61:4a:0d:17:5c:a6:aa:4b:42:19: f6:78:00:d6:81:51:f9:7b:27:c6:fc:38:47:36:07: dc:b3:75:4a:d2:84:d1:7a:ea:e5:ee:c4:ba:c7:23: 8e:11:94:fb:c7:db:28:de:92:94:0d:84:94:f2:fa: 39:5f:b9:cb:ef:cd:54:50:f2:45:96:ce:e6:e2:42: d9:8c:ff:46:c9:fd:54:10:9d:b4:47:4c:6a:77:f6: f6:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:32:BD:36:19:E6:58:63:C8:4D:45:6E:51:89:03:FC:1A:F7:B2:D0 X509v3 Authority Key Identifier: keyid:71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/9DB1FB565EA511EFBA70FD68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 83.118.99.0/24 Signature Algorithm: sha256WithRSAEncryption b6:55:2e:d9:d6:ec:78:7e:bf:cb:a1:67:b8:f8:a7:0c:50:90: da:64:d5:ef:8a:e4:aa:f1:c8:77:3a:71:ad:f8:d7:03:95:64: 4b:83:eb:96:65:29:c7:ce:4e:c1:d1:e4:6b:f6:a7:2a:1c:8e: 84:40:96:3a:4d:82:82:bb:77:d4:a0:ef:71:08:a2:de:51:e3: aa:cc:dc:e7:90:38:fd:28:f0:3b:08:f2:0d:21:8b:8f:1a:38: 50:21:7c:96:5d:f1:67:39:1e:79:07:41:3b:e1:08:cd:33:49: 74:ea:ce:6d:f7:ae:52:73:8d:af:e1:1f:fd:95:f1:f3:94:9f: 02:67:c5:56:5b:57:2e:b0:6d:30:4c:3f:64:7c:42:80:20:47: 0f:7c:78:d3:0b:40:a7:79:1b:65:6c:ed:bb:14:ce:a6:50:d0: a9:46:90:54:71:49:2a:57:ec:0e:68:9c:79:78:b1:09:fd:46: a6:72:22:ac:53:e2:b6:9a:b8:83:75:7b:f7:1a:7f:a8:81:6e: 98:91:2c:21:3e:60:43:9b:d3:7b:62:45:3f:2f:8c:08:e4:f4: 1f:96:e2:13:33:69:c4:fb:f6:63:25:53:96:b7:6d:33:fd:e7: a5:a2:e3:85:33:41:9d:93:0e:a4:06:f4:1d:79:e6:6b:e8:ba: ef:8e:e5:45 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKDcxRjQwMjE4QzFBRjQ3QzVFOTkzQTIxQTJCMjkyODRF NEMzMkM5MzQwHhcNMjUwNjIzMDMyMjA1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU4Yzg1ZC1mMTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7a8DMUO13cVXMiq/a/r8Q1Bulr9LCisf8fHG49SJ0wgqanw8A7J6kGuj/T+ CrrPajNe7pmnBA+VduSK+u3IDkAZuf4X451R47v/AQfYwAT3vSzDt0FZQFPzpgu9 IMbYDz7sxXxAWZP8MVFuOuDq8LKNgHZh3nm7aPz/VCl8ndVRSCCROeqj1xfFh0ah UeM/uX2oQombLut50VHd0ME2i2bIOSyZ423JJGFKDRdcpqpLQhn2eADWgVH5eyfG /DhHNgfcs3VK0oTReurl7sS6xyOOEZT7x9so3pKUDYSU8vo5X7nL781UUPJFls7m 4kLZjP9Gyf1UEJ20R0xqd/b2xQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEEyvTYZ 5lhjyE1FblGJA/wa97LQMB8GA1UdIwQYMBaAFHH0AhjBr0fF6ZOiGispKE5MMsk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy82REUzQ0U3QzM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9jZlFDR01HdlI4WHBrNklhS3lrb1Rrd3l5 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2NmUUNHTUd2UjhYcGs2SWFLeWtvVGt3eXlUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNkRFM0NFN0MzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvOURCMUZCNTY1 RUE1MTFFRkJBNzBGRDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABTdmMwDQYJKoZIhvcNAQELBQADggEBALZVLtnW7Hh+v8uh Z7j4pwxQkNpk1e+K5KrxyHc6ca341wOVZEuD65ZlKcfOTsHR5Gv2pyocjoRAljpN goK7d9Sg73EIot5R46rM3OeQOP0o8DsI8g0hi48aOFAhfJZd8Wc5HnkHQTvhCM0z SXTqzm33rlJzja/hH/2V8fOUnwJnxVZbVy6wbTBMP2R8QoAgRw98eNMLQKd5G2Vs 7bsUzqZQ0KlGkFRxSSpX7A5onHl4sQn9RqZyIqxT4raauIN1e/caf6iBbpiRLCE+ YEOb03tiRT8vjAjk9B+W4hMzacT79mMlU5a3bTP956Wi44UzQZ2TDqQG9B155mvo uu+O5UU= -----END CERTIFICATE-----Generated at Thu Jul 3 21:48:15 2025 by rpki-client