$ rpki-client -vvf rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/C8E6CF687AE811EFA0337A38C4F9AE02.roa File: C8E6CF687AE811EFA0337A38C4F9AE02.roa (raw, json) Hash identifier: UYQj695a2OmzGWejM8q0zjVy0UfE2w5YDuGLHHyUkKE= Subject key identifier: 8C:FB:7E:D8:AF:81:F8:2D:7B:B7:ED:D7:FA:AA:59:44:09:61:8A:92 Certificate issuer: /CN=A919BE9A/serialNumber=A79B82887031441990B18D1A05F9E271E7E7B8E6 Certificate serial: 01D4 Authority key identifier: A7:9B:82:88:70:31:44:19:90:B1:8D:1A:05:F9:E2:71:E7:E7:B8:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/C8E6CF687AE811EFA0337A38C4F9AE02.roa Signing time: Sun 11 May 2025 02:31:47 +0000 ROA not before: Sun 11 May 2025 02:31:47 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 36530 IP address blocks: 2400:e3e0:aa00::/40 maxlen: 48 2400:e3e0:ab00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.crl rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BE9A, serialNumber=A79B82887031441990B18D1A05F9E271E7E7B8E6 Validity Not Before: May 11 02:31:47 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68200c13-8b4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c8:75:31:40:5b:89:ba:da:6a:5b:82:f8:3c: 26:11:39:7c:9d:27:86:a2:ba:41:55:a1:b8:dc:20: 50:d3:cf:3d:20:23:a2:01:84:91:7d:14:64:83:df: 8e:0c:4b:ad:29:53:34:fa:1f:04:46:9e:18:96:88: 47:f0:7c:cb:71:a0:d2:05:25:5c:1c:9a:3f:37:04: df:e7:be:13:18:c1:b2:16:f3:e3:60:93:c4:6c:25: 3f:4a:ec:d8:30:80:98:de:8e:79:29:36:7c:0f:e4: 97:a9:ed:72:b3:29:34:0d:04:99:ad:67:ca:4e:34: 2c:3a:a5:e9:f5:f1:42:bc:e0:1e:be:4f:dc:31:69: 2e:2f:61:b0:e8:51:ff:ed:69:46:28:11:12:b5:6a: 52:01:da:b1:af:11:9a:90:2c:ee:22:6d:36:dc:e5: 6a:ea:c8:27:5d:42:2a:90:ac:67:22:69:24:82:94: 9f:91:56:a8:c3:29:81:54:7d:10:9a:b1:27:f5:df: 13:e5:4a:80:14:83:de:24:bb:84:17:ed:07:5c:b6: 0b:14:48:fd:90:ce:46:15:54:19:93:f7:e3:0e:11: be:ef:fb:c8:ad:cb:73:a3:d1:67:3b:b4:43:df:86: 32:af:5d:38:88:8d:c2:43:ab:f2:f1:68:91:6c:dc: 5e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:FB:7E:D8:AF:81:F8:2D:7B:B7:ED:D7:FA:AA:59:44:09:61:8A:92 X509v3 Authority Key Identifier: keyid:A7:9B:82:88:70:31:44:19:90:B1:8D:1A:05:F9:E2:71:E7:E7:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/C8E6CF687AE811EFA0337A38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:e3e0:aa00::/39 Signature Algorithm: sha256WithRSAEncryption 6d:9d:3f:bf:fa:71:67:39:68:a1:55:e0:62:96:f7:8e:91:ca: bf:f4:fd:df:bd:94:1b:13:8d:08:cc:cf:f1:0d:a4:04:b8:dd: 0a:20:7b:de:3a:f1:dc:2e:11:f5:4f:5d:48:29:d6:3c:69:81: 2e:08:31:90:94:b4:f4:ec:17:b6:6c:09:25:73:5c:ec:52:b0: a9:da:4a:e0:f3:d5:06:f8:81:5e:7c:1f:ef:74:c2:94:e7:e2: 5d:50:1d:41:e9:42:2f:f5:09:56:62:69:62:7c:ca:2a:b0:e8: 87:eb:1d:54:ce:83:07:b9:16:7c:a0:7f:39:96:9d:92:c3:ed: 03:1c:0b:f0:fd:71:b1:fb:a1:03:f8:fe:56:b8:02:b2:38:c4: 66:b7:97:38:72:23:49:3f:c9:7a:0f:c8:9c:86:7d:3c:01:38: ae:5e:1d:4d:69:22:c9:59:6e:0d:56:db:64:7b:96:64:b7:06: c7:99:58:f2:fe:ed:3a:86:6d:80:c3:95:5c:71:a4:a9:c7:91: 4a:dc:48:96:cb:24:e7:5c:36:64:9d:a6:69:cd:79:f5:db:6a: 13:e5:7e:8a:3c:65:87:6a:3c:ab:fd:6e:d4:c7:f3:91:ac:e0: 73:d4:62:06:44:4c:8d:b9:cf:1a:8f:14:72:dc:8a:04:59:6e: 44:48:67:87 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFOUExMTAvBgNVBAUTKEE3OUI4Mjg4NzAzMTQ0MTk5MEIxOEQxQTA1RjlFMjcx RTdFN0I4RTYwHhcNMjUwNTExMDIzMTQ3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODIwMGMxMy04YjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzch1MUBbibraaluC+DwmETl8nSeGorpBVaG43CBQ0889ICOiAYSRfRRkg9+O DEutKVM0+h8ERp4YlohH8HzLcaDSBSVcHJo/NwTf574TGMGyFvPjYJPEbCU/SuzY MICY3o55KTZ8D+SXqe1ysyk0DQSZrWfKTjQsOqXp9fFCvOAevk/cMWkuL2Gw6FH/ 7WlGKBEStWpSAdqxrxGakCzuIm023OVq6sgnXUIqkKxnImkkgpSfkVaowymBVH0Q mrEn9d8T5UqAFIPeJLuEF+0HXLYLFEj9kM5GFVQZk/fjDhG+7/vIrctzo9FnO7RD 34Yyr104iI3CQ6vy8WiRbNxehwIDAQABo4IClzCCApMwHQYDVR0OBBYEFIz7ftiv gfgte7ft1/qqWUQJYYqSMB8GA1UdIwQYMBaAFKebgohwMUQZkLGNGgX54nHn57jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkU5QS84RkExRjU2RUI4 NUUxMUVEOEU2RjQyMTNDNEY5QUUwMi9wNXVDaUhBeFJCbVFzWTBhQmZuaWNlZm51 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A1dUNpSEF4UkJtUXNZMGFCZm5pY2VmbnVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJFOUEvOEZBMUY1NkVCODVFMTFFRDhFNkY0MjEzQzRGOUFFMDIvQzhFNkNGNjg3 QUU4MTFFRkEwMzM3QTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgEkAOPgqjANBgkqhkiG9w0BAQsFAAOCAQEAbZ0/v/pxZzlo oVXgYpb3jpHKv/T9372UGxONCMzP8Q2kBLjdCiB73jrx3C4R9U9dSCnWPGmBLggx kJS09OwXtmwJJXNc7FKwqdpK4PPVBviBXnwf73TClOfiXVAdQelCL/UJVmJpYnzK KrDoh+sdVM6DB7kWfKB/OZadksPtAxwL8P1xsfuhA/j+VrgCsjjEZreXOHIjST/J eg/InIZ9PAE4rl4dTWkiyVluDVbbZHuWZLcGx5lY8v7tOoZtgMOVXHGkqceRStxI lssk51w2ZJ2mac159dtqE+V+ijxlh2o8q/1u1Mfzkazgc9RiBkRMjbnPGo8UctyK BFluREhnhw== -----END CERTIFICATE-----Generated at Fri May 16 07:53:52 2025 by rpki-client