$ rpki-client -vvf rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/CBDDFCB8566711F097EEEB3BC4F9AE02.roa File: CBDDFCB8566711F097EEEB3BC4F9AE02.roa (raw, json) Hash identifier: 2KmIbtJ7UaF2MDiuvTLXH++DfEFeA4IP4Tmg0ICkLkc= Subject key identifier: 28:84:C9:C9:F9:D6:3D:9A:E6:E4:FC:1F:8B:C5:8D:6C:83:E8:B1:0D Certificate issuer: /CN=A919A777/serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Certificate serial: 0115 Authority key identifier: 64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/CBDDFCB8566711F097EEEB3BC4F9AE02.roa Signing time: Tue 01 Jul 2025 10:40:25 +0000 ROA not before: Tue 01 Jul 2025 10:40:25 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 151883 IP address blocks: 2403:ad80:5012::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A777, serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Validity Not Before: Jul 1 10:40:25 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6863bb19-463e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ab:f2:fc:7c:16:4a:52:fe:7a:bc:e3:a1:5e: 82:77:cf:c2:da:32:12:57:de:28:26:d8:55:79:24: d6:7d:1c:ec:f0:be:22:a4:a4:a0:a1:d8:cf:1c:4a: b5:1a:50:f5:d1:96:5e:ac:3f:dd:61:da:c7:af:74: 68:47:b9:48:28:ed:9d:c0:71:64:ca:05:22:59:4e: 8e:54:bd:11:b7:31:5b:0b:1d:78:36:1a:5c:87:49: c3:3b:f0:da:b7:2d:4d:13:ae:a9:e6:9d:1f:a9:03: 9a:d9:fb:9e:5f:82:78:a4:d3:59:06:19:d2:1a:05: aa:38:cc:49:8b:b1:a8:c5:16:b1:52:8a:5c:d6:60: 6a:94:23:1a:a4:da:18:76:c9:40:b2:fe:b9:e3:d0: 0d:01:47:0c:fe:d2:43:6e:32:2a:81:0e:0d:64:45: 08:fc:76:56:61:f0:16:ca:c7:44:c6:a4:d6:e8:37: 52:14:d2:5b:25:b1:c3:af:2d:86:dd:05:67:8e:72: 97:82:c0:d2:9b:c2:96:79:30:ea:06:f9:30:fa:18: 54:65:8c:1f:20:28:9a:24:65:53:69:d7:37:e5:07: c5:9f:b7:a7:71:9e:79:79:e5:88:c7:4d:a2:6f:ce: de:fc:86:c0:77:53:1f:d0:e9:f6:b0:1b:87:ce:3d: c1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:84:C9:C9:F9:D6:3D:9A:E6:E4:FC:1F:8B:C5:8D:6C:83:E8:B1:0D X509v3 Authority Key Identifier: keyid:64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/CBDDFCB8566711F097EEEB3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:ad80:5012::/48 Signature Algorithm: sha256WithRSAEncryption 3b:76:e2:93:7e:4f:42:97:03:4d:c6:dc:85:9a:3e:71:38:08: 0c:46:52:ba:9e:79:6f:47:85:93:72:21:ee:7a:e0:5c:8c:e7: ad:6b:91:52:68:37:99:f0:f1:d3:54:75:e9:a5:38:a3:d5:8e: bb:3c:a5:cc:db:3b:37:a1:5e:ac:21:ef:87:49:93:e9:59:b7: b1:6f:97:de:e2:9c:e2:be:2c:a0:da:dd:9d:f2:89:dc:46:91: 33:62:48:41:00:0d:cd:6d:7c:00:1b:38:56:47:8d:09:94:e6: bc:3c:d0:3e:20:5d:02:d9:33:86:fe:42:d6:8c:bf:65:2b:1a: 05:ce:48:28:b5:38:61:f9:39:b7:20:d1:b2:14:ec:ad:d9:1a: 4d:24:10:f8:f5:0b:bd:6d:1b:08:61:ee:fd:97:e6:43:f3:fa: fc:3b:48:f4:ba:e1:c3:50:49:d5:df:70:92:26:c2:7f:9a:fc: 85:67:dc:4c:7e:58:07:50:bb:e0:f1:47:9d:39:c0:27:8f:b7: 98:fa:4a:21:06:2b:22:60:b3:fd:dc:6b:7f:a3:7f:cd:7d:dd: f2:b2:bc:26:c4:eb:ba:13:cf:2e:07:e9:5a:8c:e3:d5:9e:0c: 1d:07:9e:03:8e:e6:e5:e9:da:1b:89:c6:b4:ab:17:23:50:af: aa:84:df:f6 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3NzcxMTAvBgNVBAUTKDY0N0QwOTI3REIzQjE3OEUyRjY1NEEzMjY4NTU3RkU1 QjVENjcyOUMwHhcNMjUwNzAxMTA0MDI1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzYmIxOS00NjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6vy/HwWSlL+erzjoV6Cd8/C2jISV94oJthVeSTWfRzs8L4ipKSgodjPHEq1 GlD10ZZerD/dYdrHr3RoR7lIKO2dwHFkygUiWU6OVL0RtzFbCx14Nhpch0nDO/Da ty1NE66p5p0fqQOa2fueX4J4pNNZBhnSGgWqOMxJi7GoxRaxUopc1mBqlCMapNoY dslAsv6549ANAUcM/tJDbjIqgQ4NZEUI/HZWYfAWysdExqTW6DdSFNJbJbHDry2G 3QVnjnKXgsDSm8KWeTDqBvkw+hhUZYwfICiaJGVTadc35QfFn7encZ55eeWIx02i b87e/IbAd1Mf0On2sBuHzj3B4QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFCiEycn5 1j2a5uT8H4vFjWyD6LENMB8GA1UdIwQYMBaAFGR9CSfbOxeOL2VKMmhVf+W11nKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTc3Ny8wQkE1NzJCMEVD NEYxMUVFQTFCMzg4NjZDNEY5QUUwMi9aSDBKSjlzN0Y0NHZaVW95YUZWXzViWFdj cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pIMEpKOXM3RjQ0dlpVb3lhRlZfNWJYV2Nwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3NzcvMEJBNTcyQjBFQzRGMTFFRUExQjM4ODY2QzRGOUFFMDIvQ0JEREZDQjg1 NjY3MTFGMDk3RUVFQjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkA62AUBIwDQYJKoZIhvcNAQELBQADggEBADt24pN+T0KX A03G3IWaPnE4CAxGUrqeeW9HhZNyIe564FyM561rkVJoN5nw8dNUdemlOKPVjrs8 pczbOzehXqwh74dJk+lZt7Fvl97inOK+LKDa3Z3yidxGkTNiSEEADc1tfAAbOFZH jQmU5rw80D4gXQLZM4b+QtaMv2UrGgXOSCi1OGH5Obcg0bIU7K3ZGk0kEPj1C71t Gwhh7v2X5kPz+vw7SPS64cNQSdXfcJImwn+a/IVn3Ex+WAdQu+DxR505wCePt5j6 SiEGKyJgs/3ca3+jf8193fKyvCbE67oTzy4H6VqM49WeDB0HngOO5uXp2huJxrSr FyNQr6qE3/Y= -----END CERTIFICATE-----Generated at Fri Jul 4 17:59:10 2025 by rpki-client