$ rpki-client -vvf rpki.apnic.net/member_repository/A919F06A/F1A9BABC33A411EBAC54852EC4F9AE02/0ECDB4C65E7011EC8FE5F56DC4F9AE02.roa File: 0ECDB4C65E7011EC8FE5F56DC4F9AE02.roa (raw, json) Hash identifier: PgsReX4a/HcM3MuEijdLXSrLd7Vlscm+5dJmyynTyh0= Subject key identifier: 43:01:C6:64:81:3F:8B:21:E9:67:5F:44:7B:C2:F3:1D:3D:B1:ED:D6 Certificate issuer: /CN=A919F06A/serialNumber=BCB80DE44705CFC4F83978590C9F3FC2E2C2F852 Certificate serial: 0756 Authority key identifier: BC:B8:0D:E4:47:05:CF:C4:F8:39:78:59:0C:9F:3F:C2:E2:C2:F8:52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vLgN5EcFz8T4OXhZDJ8_wuLC-FI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F06A/F1A9BABC33A411EBAC54852EC4F9AE02/0ECDB4C65E7011EC8FE5F56DC4F9AE02.roa Signing time: Wed 02 Jul 2025 22:02:43 +0000 ROA not before: Wed 02 Jul 2025 22:02:43 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 141367 IP address blocks: 149.234.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F06A/F1A9BABC33A411EBAC54852EC4F9AE02/vLgN5EcFz8T4OXhZDJ8_wuLC-FI.crl rsync://rpki.apnic.net/member_repository/A919F06A/F1A9BABC33A411EBAC54852EC4F9AE02/vLgN5EcFz8T4OXhZDJ8_wuLC-FI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vLgN5EcFz8T4OXhZDJ8_wuLC-FI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1878 (0x756) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F06A, serialNumber=BCB80DE44705CFC4F83978590C9F3FC2E2C2F852 Validity Not Before: Jul 2 22:02:43 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6865ac82-bd6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:84:7e:97:14:3e:c2:90:88:2d:5c:9b:38:6a: 1c:fd:5a:77:47:b5:d8:05:b5:2e:03:be:4b:ba:ea: e5:97:6d:97:09:05:35:96:e4:36:59:c2:9f:29:5e: 21:3c:09:44:50:25:aa:95:0b:66:13:c9:2e:b8:b7: ed:06:38:54:6f:42:20:ea:16:fe:f7:32:c4:e1:bc: 09:47:80:c4:37:78:9e:47:db:25:96:31:90:e9:a9: 0b:cf:a2:c5:e0:ab:60:ab:1f:23:6c:d2:27:ff:2b: 0b:b9:c7:55:c0:6b:d7:55:57:e2:1a:00:d8:0c:bd: f5:5b:8a:9f:ed:c9:af:ca:e0:94:f2:88:0e:5f:f7: f6:79:8b:df:ce:be:e9:ef:ab:22:b9:ba:b2:57:15: 76:45:87:12:e3:71:a3:75:57:53:21:2d:d8:35:a7: df:51:67:43:6e:65:f7:7d:d0:eb:31:4d:fe:fb:1b: 41:34:3e:40:e2:a0:47:2e:5e:0d:cc:b3:02:86:8c: 66:82:f2:bc:26:a1:ed:58:c5:c7:b9:21:22:e0:08: 87:da:fc:37:1b:06:ea:1f:6e:0a:67:07:72:b9:91: dc:5e:1e:d3:21:fd:f7:99:7e:36:6e:d2:15:23:d3: 5d:15:8c:4b:8b:5e:75:ed:f3:ed:35:1f:74:62:b9: df:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:01:C6:64:81:3F:8B:21:E9:67:5F:44:7B:C2:F3:1D:3D:B1:ED:D6 X509v3 Authority Key Identifier: keyid:BC:B8:0D:E4:47:05:CF:C4:F8:39:78:59:0C:9F:3F:C2:E2:C2:F8:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F06A/F1A9BABC33A411EBAC54852EC4F9AE02/vLgN5EcFz8T4OXhZDJ8_wuLC-FI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vLgN5EcFz8T4OXhZDJ8_wuLC-FI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F06A/F1A9BABC33A411EBAC54852EC4F9AE02/0ECDB4C65E7011EC8FE5F56DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 149.234.188.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:f8:87:dc:fe:44:34:ee:8a:0a:7e:a6:95:cc:23:50:e3:62: 35:1d:f4:06:db:69:0d:67:b3:fc:dc:3e:b5:a7:0d:7f:c9:29: 18:da:2e:b1:bd:0d:fc:de:7b:31:66:3d:4f:c7:a9:de:a4:55: bb:71:bd:97:2e:49:43:83:3d:5e:67:ed:14:e3:61:cd:3e:f1: 0c:2d:a8:ec:c6:a5:66:37:dd:fd:f1:b9:e5:07:88:97:17:c9: 9e:26:a0:c2:8d:13:0d:2f:20:72:f7:1b:1a:d3:50:0c:51:59: 5c:4c:71:cb:3d:fd:f8:b6:a1:73:cc:ba:2c:0a:e1:2f:b5:06: 20:b9:3c:2c:4a:8c:55:76:10:e1:90:1e:a1:4d:e1:27:5f:fe: ff:d6:4c:ed:71:b7:7e:88:40:c1:a5:dd:db:3b:5a:32:90:7a: a3:04:28:42:b5:d7:54:b8:a7:0f:f0:2d:99:32:5f:88:22:d2: f1:c2:d2:3b:83:a0:89:9a:36:dc:bb:05:b6:8b:1d:73:6f:16: 6d:8a:80:7f:c1:06:d1:c2:cd:6e:91:bf:62:73:4b:6d:87:53: 16:7a:33:4f:67:53:6a:06:66:a5:e7:20:ac:db:86:b5:31:56: 76:d0:3e:e6:a6:13:d5:26:7e:6e:05:6a:75:bc:a2:4e:9d:81: a4:7a:41:7d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwNkExMTAvBgNVBAUTKEJDQjgwREU0NDcwNUNGQzRGODM5Nzg1OTBDOUYzRkMy RTJDMkY4NTIwHhcNMjUwNzAyMjIwMjQzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YWM4Mi1iZDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYR+lxQ+wpCILVybOGoc/Vp3R7XYBbUuA75Luurll22XCQU1luQ2WcKfKV4h PAlEUCWqlQtmE8kuuLftBjhUb0Ig6hb+9zLE4bwJR4DEN3ieR9slljGQ6akLz6LF 4Ktgqx8jbNIn/ysLucdVwGvXVVfiGgDYDL31W4qf7cmvyuCU8ogOX/f2eYvfzr7p 76siubqyVxV2RYcS43GjdVdTIS3YNaffUWdDbmX3fdDrMU3++xtBND5A4qBHLl4N zLMChoxmgvK8JqHtWMXHuSEi4AiH2vw3GwbqH24KZwdyuZHcXh7TIf33mX42btIV I9NdFYxLi1517fPtNR90Yrnf4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFEMBxmSB P4sh6WdfRHvC8x09se3WMB8GA1UdIwQYMBaAFLy4DeRHBc/E+Dl4WQyfP8LiwvhS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjA2QS9GMUE5QkFCQzMz QTQxMUVCQUM1NDg1MkVDNEY5QUUwMi92TGdONUVjRno4VDRPWGhaREo4X3d1TEMt RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZMZ041RWNGejhUNE9YaFpESjhfd3VMQy1GSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUYwNkEvRjFBOUJBQkMzM0E0MTFFQkFDNTQ4NTJFQzRGOUFFMDIvMEVDREI0QzY1 RTcwMTFFQzhGRTVGNTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACV6rwwDQYJKoZIhvcNAQELBQADggEBAB/4h9z+RDTuigp+ ppXMI1DjYjUd9AbbaQ1ns/zcPrWnDX/JKRjaLrG9DfzeezFmPU/Hqd6kVbtxvZcu SUODPV5n7RTjYc0+8QwtqOzGpWY33f3xueUHiJcXyZ4moMKNEw0vIHL3GxrTUAxR WVxMccs9/fi2oXPMuiwK4S+1BiC5PCxKjFV2EOGQHqFN4Sdf/v/WTO1xt36IQMGl 3ds7WjKQeqMEKEK111S4pw/wLZkyX4gi0vHC0juDoImaNty7BbaLHXNvFm2KgH/B BtHCzW6Rv2JzS22HUxZ6M09nU2oGZqXnIKzbhrUxVnbQPuamE9Umfm4FanW8ok6d gaR6QX0= -----END CERTIFICATE-----Generated at Fri Jul 4 06:43:29 2025 by rpki-client