$ rpki-client -vvf rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/D922E45E468D11F0B5D0835EC4F9AE02.roa File: D922E45E468D11F0B5D0835EC4F9AE02.roa (raw, json) Hash identifier: RqRFm0koAI1zOC0qjZBwbHn7EgeV9Uebi2RR1Lc++cg= Subject key identifier: 7E:55:41:9B:5B:6C:E7:12:BD:D3:C0:52:28:A4:61:2B:49:E0:AE:E7 Certificate issuer: /CN=A911750B/serialNumber=3B8358535BC628564AF56F31D8758648E1D04304 Certificate serial: 02 Authority key identifier: 3B:83:58:53:5B:C6:28:56:4A:F5:6F:31:D8:75:86:48:E1:D0:43:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/D922E45E468D11F0B5D0835EC4F9AE02.roa Signing time: Wed 11 Jun 2025 06:32:30 +0000 ROA not before: Wed 11 Jun 2025 06:32:30 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151660 IP address blocks: 2402:1060::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 07:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911750B, serialNumber=3B8358535BC628564AF56F31D8758648E1D04304 Validity Not Before: Jun 11 06:32:30 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=684922fd-ad9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d6:5e:07:6f:44:f3:e7:bf:d2:14:8d:48:08: e9:d9:9e:59:5c:a9:e2:7b:03:59:13:7f:74:05:10: 16:f3:bc:69:c2:49:1c:a4:99:bd:9d:95:4c:84:ba: 1b:7b:6a:e0:74:e4:14:ce:c5:dc:cd:48:f6:27:4c: 71:e3:e6:dc:34:e7:24:d3:fa:39:d4:6f:76:02:de: cf:33:56:10:4f:7f:a0:77:5f:33:97:fb:a0:be:9f: c4:28:f0:e3:25:da:be:f3:bd:eb:9e:21:87:6e:38: fe:f5:fb:be:aa:b6:40:fa:9c:95:a8:9d:c7:be:02: 2c:00:0c:0e:29:ae:54:5f:a5:61:7d:39:e7:63:f3: a0:05:1d:93:3a:d9:e8:47:e5:41:99:f1:d6:88:a1: b0:7f:bc:a3:5a:74:4c:2d:b8:da:c6:ae:8e:a0:ce: 27:8a:62:ed:65:84:51:c2:01:01:14:bc:a8:27:ca: fb:ef:62:95:05:35:47:21:4c:4b:8d:c3:4c:83:a4: 76:72:0f:22:b2:90:3b:99:02:13:0e:1d:d2:00:5f: 1e:53:66:90:f2:1a:3b:63:14:67:fc:61:7b:34:63: db:c5:b6:9f:51:c4:03:73:3e:63:23:55:43:a0:30: d1:9f:98:7a:2c:29:2c:b5:8a:b0:98:01:b2:df:9f: e8:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:55:41:9B:5B:6C:E7:12:BD:D3:C0:52:28:A4:61:2B:49:E0:AE:E7 X509v3 Authority Key Identifier: keyid:3B:83:58:53:5B:C6:28:56:4A:F5:6F:31:D8:75:86:48:E1:D0:43:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/D922E45E468D11F0B5D0835EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:1060::/32 Signature Algorithm: sha256WithRSAEncryption 10:df:95:25:f2:7a:72:94:b1:2d:b0:7c:73:8c:2c:0d:45:34: f6:a3:63:a4:43:f8:fa:8d:cc:85:a7:f7:43:3b:ff:74:b7:11: f2:1b:a4:b5:c7:6a:68:dc:70:96:75:03:47:85:b8:69:7a:42: 1e:3b:2a:e6:2d:57:30:64:1b:de:17:82:db:7e:6d:65:81:05: dd:82:d2:ec:33:84:f2:1e:a7:a3:2b:65:99:be:51:4c:cb:a6: 09:2e:19:03:2d:ec:9b:06:59:c4:01:62:01:0e:35:ab:38:21: 11:55:da:8e:8b:53:35:3e:3e:f9:02:86:4e:75:b7:47:fd:aa: a2:a2:03:05:cc:34:6c:32:7a:62:36:73:9c:55:a4:21:0e:2b: c6:3b:a4:dc:b8:e2:1b:f7:ad:b4:8b:6b:ed:03:65:d3:82:b2: eb:0c:32:df:1a:21:c8:17:af:b8:84:dd:83:86:c3:a8:36:c4: 5d:9b:8d:1b:05:93:42:9f:b5:0f:cd:bd:a2:df:93:72:f5:ca: 2e:39:1c:dc:66:7a:b8:03:d7:be:4d:d9:4f:61:d9:aa:4f:7b: 8a:da:3c:85:c7:4c:20:67:9f:52:5d:9d:ba:4a:8f:d2:8f:13: b7:1c:75:58:cd:30:33:07:4c:5f:52:8d:45:c7:d0:b6:d7:58: 54:30:62:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzUwQjExMC8GA1UEBRMoM0I4MzU4NTM1QkM2Mjg1NjRBRjU2RjMxRDg3NTg2NDhF MUQwNDMwNDAeFw0yNTA2MTEwNjMyMzBaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NDkyMmZkLWFkOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx1l4Hb0Tz57/SFI1ICOnZnllcqeJ7A1kTf3QFEBbzvGnCSRykmb2dlUyEuht7 auB05BTOxdzNSPYnTHHj5tw05yTT+jnUb3YC3s8zVhBPf6B3XzOX+6C+n8Qo8OMl 2r7zveueIYduOP71+76qtkD6nJWonce+AiwADA4prlRfpWF9Oedj86AFHZM62ehH 5UGZ8daIobB/vKNadEwtuNrGro6gzieKYu1lhFHCAQEUvKgnyvvvYpUFNUchTEuN w0yDpHZyDyKykDuZAhMOHdIAXx5TZpDyGjtjFGf8YXs0Y9vFtp9RxANzPmMjVUOg MNGfmHosKSy1irCYAbLfn+jzAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUflVBm1ts 5xK908BSKKRhK0ngrucwHwYDVR0jBBgwFoAUO4NYU1vGKFZK9W8x2HWGSOHQQwQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NTBCLzY0RDA3NzQ4NDY4 QzExRjA4NEI2QTUzOUM0RjlBRTAyL080TllVMXZHS0ZaSzlXOHgySFdHU09IUVF3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTzROWVUxdkdLRlpLOVc4eDJIV0dTT0hRUXdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzUwQi82NEQwNzc0ODQ2OEMxMUYwODRCNkE1MzlDNEY5QUUwMi9EOTIyRTQ1RTQ2 OEQxMUYwQjVEMDgzNUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQCEGAwDQYJKoZIhvcNAQELBQADggEBABDflSXyenKUsS2w fHOMLA1FNPajY6RD+PqNzIWn90M7/3S3EfIbpLXHamjccJZ1A0eFuGl6Qh47KuYt VzBkG94Xgtt+bWWBBd2C0uwzhPIep6MrZZm+UUzLpgkuGQMt7JsGWcQBYgEONas4 IRFV2o6LUzU+PvkChk51t0f9qqKiAwXMNGwyemI2c5xVpCEOK8Y7pNy44hv3rbSL a+0DZdOCsusMMt8aIcgXr7iE3YOGw6g2xF2bjRsFk0KftQ/NvaLfk3L1yi45HNxm ergD175N2U9h2apPe4raPIXHTCBnn1JdnbpKj9KPE7ccdVjNMDMHTF9SjUXH0LbX WFQwYj4= -----END CERTIFICATE-----Generated at Sun Jun 15 08:47:18 2025 by rpki-client