$ rpki-client -vvf rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/CF834404B27511EFA614D07EC4F9AE02.roa File: CF834404B27511EFA614D07EC4F9AE02.roa (raw, json) Hash identifier: teLLfJcXs/WVE6HHR1PJI4gLt00YbMNATiTLdmWgtzg= Subject key identifier: FB:0F:0C:3D:F2:76:39:1C:95:67:CE:A5:29:A5:C7:94:24:F1:B6:3D Certificate issuer: /CN=A919FE07/serialNumber=7BD4D5C5A8EF5CDFC74C59A09364594E5EF9FAE7 Certificate serial: 62 Authority key identifier: 7B:D4:D5:C5:A8:EF:5C:DF:C7:4C:59:A0:93:64:59:4E:5E:F9:FA:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9TVxajvXN_HTFmgk2RZTl75-uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/CF834404B27511EFA614D07EC4F9AE02.roa Signing time: Fri 06 Jun 2025 19:14:43 +0000 ROA not before: Fri 06 Jun 2025 19:14:43 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 17995 IP address blocks: 123.253.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/e9TVxajvXN_HTFmgk2RZTl75-uc.crl rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/e9TVxajvXN_HTFmgk2RZTl75-uc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9TVxajvXN_HTFmgk2RZTl75-uc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FE07, serialNumber=7BD4D5C5A8EF5CDFC74C59A09364594E5EF9FAE7 Validity Not Before: Jun 6 19:14:43 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68433e22-d173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:56:92:3d:cf:cb:7f:c4:18:b9:19:02:62:61: a1:5e:1a:c1:23:bc:b8:07:2a:05:90:7c:e4:f5:0b: ad:18:c9:b0:a2:0b:c6:15:c8:a7:1b:46:59:00:3e: aa:7d:38:1b:09:97:34:95:7a:f3:f0:68:b3:23:68: ed:6b:62:c5:06:d6:44:0a:79:b6:64:d3:32:ea:54: 1e:3c:6a:7b:94:31:5e:f1:46:10:3b:80:9b:58:cc: b9:f6:f3:f4:a6:28:ab:93:80:9b:93:53:7c:97:a0: a0:a1:e2:5c:06:a2:98:5c:07:2e:ad:52:92:fd:50: b1:71:0f:28:52:47:f1:9f:18:6d:eb:a9:a3:96:45: 3e:d5:6e:43:51:24:37:67:81:e9:15:0e:83:9f:61: bb:24:9f:2b:f9:b1:79:fd:98:5b:fd:fb:9f:06:04: a9:39:6a:68:88:26:20:0f:4d:fd:5a:4e:57:eb:39: 50:9f:18:9d:3c:b0:2e:6c:8c:60:70:bf:c3:30:12: 8e:f6:e3:6b:b8:0f:c0:30:d0:41:53:c9:39:8c:98: 16:97:30:42:a3:b3:c6:06:d5:1a:01:3a:10:30:9e: 0c:6b:6f:53:18:22:f2:ab:3d:ec:2e:52:39:16:7a: 71:8d:c0:cc:e6:7d:7f:ea:e5:79:84:22:8b:a3:1a: bd:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:0F:0C:3D:F2:76:39:1C:95:67:CE:A5:29:A5:C7:94:24:F1:B6:3D X509v3 Authority Key Identifier: keyid:7B:D4:D5:C5:A8:EF:5C:DF:C7:4C:59:A0:93:64:59:4E:5E:F9:FA:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/e9TVxajvXN_HTFmgk2RZTl75-uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9TVxajvXN_HTFmgk2RZTl75-uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/CF834404B27511EFA614D07EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.76.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:e5:13:45:91:c2:3a:1d:76:56:23:1b:f1:e0:4c:25:c5:c4: 19:09:31:e4:d3:8e:e3:5f:1b:fe:1c:5e:71:7f:ce:09:2e:3c: e3:0f:3b:66:3e:02:3e:d4:61:da:b6:78:3e:73:fd:5b:35:cf: ac:8f:62:a0:66:4a:62:05:7a:2f:92:51:d8:46:e1:50:15:95: 49:cc:95:a6:81:f4:7a:21:40:a3:0f:98:f1:6e:3b:13:a8:80: 2d:f4:33:51:66:7a:22:01:12:72:07:01:45:a1:58:1d:dc:cb: c9:54:11:0d:d1:25:90:d6:31:e5:9b:ed:99:25:5f:1d:34:ca: 27:32:a4:c8:03:9b:85:c3:73:db:5e:cf:00:67:f3:07:fe:0f: d8:4e:82:61:8f:79:7a:ae:39:68:fb:13:43:97:06:96:52:52: 11:95:cc:6a:38:49:73:4c:f1:a5:4e:1f:50:ab:84:89:ca:ea: e6:25:0e:aa:73:ca:69:55:77:e6:e3:f6:e2:af:13:ae:09:4f: 6e:90:05:a0:ce:a5:78:ff:9b:53:f6:53:be:59:a3:6c:52:b1: f2:75:ae:3a:1a:5d:31:ae:bb:9a:0d:dd:31:f5:2d:41:55:aa: 46:8c:35:ee:9e:9c:03:98:48:df:61:9e:19:b9:6c:f5:0b:53: 34:3b:8c:25 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RkUwNzExMC8GA1UEBRMoN0JENEQ1QzVBOEVGNUNERkM3NEM1OUEwOTM2NDU5NEU1 RUY5RkFFNzAeFw0yNTA2MDYxOTE0NDNaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NDMzZTIyLWQxNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCVpI9z8t/xBi5GQJiYaFeGsEjvLgHKgWQfOT1C60YybCiC8YVyKcbRlkAPqp9 OBsJlzSVevPwaLMjaO1rYsUG1kQKebZk0zLqVB48anuUMV7xRhA7gJtYzLn28/Sm KKuTgJuTU3yXoKCh4lwGophcBy6tUpL9ULFxDyhSR/GfGG3rqaOWRT7VbkNRJDdn gekVDoOfYbsknyv5sXn9mFv9+58GBKk5amiIJiAPTf1aTlfrOVCfGJ08sC5sjGBw v8MwEo7242u4D8Aw0EFTyTmMmBaXMEKjs8YG1RoBOhAwngxrb1MYIvKrPewuUjkW enGNwMzmfX/q5XmEIoujGr1lAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU+w8MPfJ2 ORyVZ86lKaXHlCTxtj0wHwYDVR0jBBgwFoAUe9TVxajvXN/HTFmgk2RZTl75+ucw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGRTA3L0ExNkE4OERBMzA2 QTExRUE5OThDOEYzMEM0RjlBRTAyL2U5VFZ4YWp2WE5fSFRGbWdrMlJaVGw3NS11 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZTlUVnhhanZYTl9IVEZtZ2syUlpUbDc1LXVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkUwNy9BMTZBODhEQTMwNkExMUVBOTk4QzhGMzBDNEY5QUUwMi9DRjgzNDQwNEIy NzUxMUVGQTYxNEQwN0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAnv9TDANBgkqhkiG9w0BAQsFAAOCAQEAXeUTRZHCOh12ViMb 8eBMJcXEGQkx5NOO418b/hxecX/OCS484w87Zj4CPtRh2rZ4PnP9WzXPrI9ioGZK YgV6L5JR2EbhUBWVScyVpoH0eiFAow+Y8W47E6iALfQzUWZ6IgEScgcBRaFYHdzL yVQRDdElkNYx5ZvtmSVfHTTKJzKkyAObhcNz217PAGfzB/4P2E6CYY95eq45aPsT Q5cGllJSEZXMajhJc0zxpU4fUKuEicrq5iUOqnPKaVV35uP24q8TrglPbpAFoM6l eP+bU/ZTvlmjbFKx8nWuOhpdMa67mg3dMfUtQVWqRow17p6cA5hI32GeGbls9QtT NDuMJQ== -----END CERTIFICATE-----Generated at Wed Jul 2 03:26:26 2025 by rpki-client