$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/AF14F7EC516411F08E03714FC4F9AE02.roa File: AF14F7EC516411F08E03714FC4F9AE02.roa (raw, json) Hash identifier: sh0Y5QkQRJLw2PzMnrx92KrfNcOOqsL5LvYlvLQUjWk= Subject key identifier: AB:4E:DA:9D:92:89:D6:59:20:8C:E1:67:FA:11:DB:6D:FF:A4:13:05 Certificate issuer: /CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Certificate serial: 137A Authority key identifier: 89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/AF14F7EC516411F08E03714FC4F9AE02.roa Signing time: Wed 25 Jun 2025 01:35:33 +0000 ROA not before: Wed 25 Jun 2025 01:35:33 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139074 IP address blocks: 2403:b4c0:ae00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4986 (0x137a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E, serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Validity Not Before: Jun 25 01:35:33 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=685b5264-dbe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8a:ed:84:8f:74:2e:1b:01:18:90:4e:36:26: d4:ea:d6:f1:59:0a:b7:76:c1:10:f6:eb:9a:11:88: 34:6e:62:2e:84:7a:a4:ff:55:52:44:8f:65:65:12: 6f:c3:3a:de:02:42:29:ce:de:5b:40:a7:35:0d:79: 74:8e:cc:1a:50:6f:77:3c:a1:7e:10:bf:38:8d:f9: 00:0d:76:c1:1f:95:6b:97:fa:a0:99:f2:61:c2:fa: e3:b5:56:d2:7d:5f:44:5c:b0:47:f6:a7:be:3b:16: 17:f4:cb:87:54:5d:9d:95:b8:de:8e:35:25:95:ea: c7:6a:6c:8d:ca:9b:5b:16:f8:3d:52:eb:4d:37:d1: be:ec:58:e5:c6:cd:b4:92:1a:3e:a7:19:39:bd:5d: a1:37:59:cf:32:a5:bc:94:75:1b:95:25:f9:3e:da: fe:5f:f6:92:07:bb:03:b9:76:e8:01:34:56:f9:ee: f4:ad:b8:6d:85:71:01:1b:bc:0e:b5:f6:ec:84:55: 41:b1:57:3b:52:73:39:f3:5e:db:00:49:f0:93:86: 52:fb:68:b3:d3:36:ee:ea:b0:b0:04:8c:67:49:13: a9:bf:18:14:a3:d9:5f:95:b8:5b:41:2d:a2:c8:69: 0e:cf:29:9e:df:92:07:8d:80:a8:9b:0c:a1:3b:ae: 85:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:4E:DA:9D:92:89:D6:59:20:8C:E1:67:FA:11:DB:6D:FF:A4:13:05 X509v3 Authority Key Identifier: keyid:89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/AF14F7EC516411F08E03714FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:b4c0:ae00::/40 Signature Algorithm: sha256WithRSAEncryption 30:89:fa:cf:12:32:59:6c:38:b0:fc:75:a8:60:61:87:8a:7c: b3:eb:b9:e6:e6:38:b4:f2:d3:bf:cf:c9:a3:af:9f:8b:60:aa: 95:aa:cf:58:04:4a:5c:59:fa:5f:c6:6e:d1:f6:f9:ed:5b:b6: f0:0f:0f:7e:9d:34:a1:65:79:36:be:d6:3e:0e:75:57:14:c4: 72:32:12:4d:c3:c5:b0:3d:4b:2a:b8:4a:f0:a1:82:3f:9f:e0: 0b:16:85:b0:83:78:49:d3:8c:2f:57:c2:86:b1:01:e1:eb:93: 8e:56:a4:83:8e:82:b3:cc:43:f2:a4:17:12:c3:da:a1:a6:d6: 7c:43:43:27:56:4e:05:54:54:08:00:01:9d:c2:33:da:a9:12: 37:45:b0:3f:62:35:24:85:78:44:a4:8c:bf:6a:65:1c:48:4b: 05:93:28:24:50:6b:3f:c9:15:9e:39:b6:86:ff:c2:38:ae:92: 45:66:ff:58:d7:b8:04:9d:08:e4:e5:ec:ad:08:49:54:ae:11: aa:57:ce:75:12:d8:5b:40:8a:40:6e:38:62:7a:27:f9:94:17: 7a:a7:7b:74:bc:79:1a:fb:5a:e1:ea:aa:4f:0c:f0:83:62:90: 0a:a8:74:66:fd:6d:9f:e4:ab:67:0f:1b:fa:4a:a1:3a:0e:04: 3a:6c:38:9a -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICE3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKDg5NEZFMTEzOThCNjc5QUVCMUIxMThCMUJERTY3M0Ux OENGNkU5MzQwHhcNMjUwNjI1MDEzNTMzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViNTI2NC1kYmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIrthI90LhsBGJBONibU6tbxWQq3dsEQ9uuaEYg0bmIuhHqk/1VSRI9lZRJv wzreAkIpzt5bQKc1DXl0jswaUG93PKF+EL84jfkADXbBH5Vrl/qgmfJhwvrjtVbS fV9EXLBH9qe+OxYX9MuHVF2dlbjejjUllerHamyNyptbFvg9UutNN9G+7Fjlxs20 kho+pxk5vV2hN1nPMqW8lHUblSX5Ptr+X/aSB7sDuXboATRW+e70rbhthXEBG7wO tfbshFVBsVc7UnM5817bAEnwk4ZS+2iz0zbu6rCwBIxnSROpvxgUo9lflbhbQS2i yGkOzyme35IHjYComwyhO66FzQIDAQABo4IClzCCApMwHQYDVR0OBBYEFKtO2p2S idZZIIzhZ/oR223/pBMFMB8GA1UdIwQYMBaAFIlP4ROYtnmusbEYsb3mc+GM9uk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS9CQ0VERjQ0MkIw QkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVhNnhzUml4dmVaejRZejI2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVX2hFNWkyZWE2eHNSaXh2ZVp6NFl6MjZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM0N0UvQkNFREY0NDJCMEJGMTFFODg2MzkyMjM3QzRGOUFFMDIvQUYxNEY3RUM1 MTY0MTFGMDhFMDM3MTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkA7TArjANBgkqhkiG9w0BAQsFAAOCAQEAMIn6zxIyWWw4 sPx1qGBhh4p8s+u55uY4tPLTv8/Jo6+fi2CqlarPWARKXFn6X8Zu0fb57Vu28A8P fp00oWV5Nr7WPg51VxTEcjISTcPFsD1LKrhK8KGCP5/gCxaFsIN4SdOML1fChrEB 4euTjlakg46Cs8xD8qQXEsPaoabWfENDJ1ZOBVRUCAABncIz2qkSN0WwP2I1JIV4 RKSMv2plHEhLBZMoJFBrP8kVnjm2hv/COK6SRWb/WNe4BJ0I5OXsrQhJVK4RqlfO dRLYW0CKQG44Ynon+ZQXeqd7dLx5Gvta4eqqTwzwg2KQCqh0Zv1tn+SrZw8b+kqh Og4EOmw4mg== -----END CERTIFICATE-----Generated at Thu Jul 3 17:13:11 2025 by rpki-client