$ rpki-client -vvf rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/164D3C32379711EF9ECC714EC4F9AE02.roa File: 164D3C32379711EF9ECC714EC4F9AE02.roa (raw, json) Hash identifier: lQyGuB+L8Q0ZdMDNXQZ2OEDjjQlCXslq1mAc1K3qnWc= Subject key identifier: FA:FC:22:5E:12:F7:DC:FC:75:5F:4D:4B:74:CE:99:29:14:6F:5E:F6 Certificate issuer: /CN=A911B22E/serialNumber=FACC3352BCE3802853DBF4B040525CFC1E152E60 Certificate serial: CB Authority key identifier: FA:CC:33:52:BC:E3:80:28:53:DB:F4:B0:40:52:5C:FC:1E:15:2E:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-swzUrzjgChT2_SwQFJc_B4VLmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/164D3C32379711EF9ECC714EC4F9AE02.roa Signing time: Tue 29 Jul 2025 06:12:12 +0000 ROA not before: Tue 29 Jul 2025 06:12:12 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 152932 IP address blocks: 2001:df3:f940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.crl rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-swzUrzjgChT2_SwQFJc_B4VLmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B22E, serialNumber=FACC3352BCE3802853DBF4B040525CFC1E152E60 Validity Not Before: Jul 29 06:12:12 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6888663c-4288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:17:45:c6:5e:18:20:8a:77:51:28:54:30:45: 6e:bb:5f:4a:49:a0:de:e8:19:d9:b0:47:99:ed:34: 65:04:ac:40:28:65:11:83:3d:98:cf:bd:0e:a8:ea: c5:99:4c:cd:3b:0c:e1:98:0a:21:4a:31:1f:2c:6f: 2f:24:8e:a8:e7:fd:2c:a1:77:be:24:08:8e:4b:d0: 6b:29:d2:0c:df:93:1e:2c:69:b7:93:5e:4d:47:11: be:d2:22:53:1f:ea:9a:7f:7b:42:00:5e:82:40:1e: e3:33:ac:f0:1b:43:52:e4:79:79:1d:39:a6:49:df: 16:60:96:fe:ab:e8:a0:8d:d0:1c:fa:dd:73:fc:c4: 75:ef:31:bc:49:1e:74:3c:2b:8b:40:14:17:c1:fa: 6b:8a:d4:50:b3:26:75:a0:ce:86:c5:66:12:ea:37: d3:e0:77:1a:96:46:f5:fb:d7:d9:3d:40:64:e7:be: 24:dd:28:aa:c6:8f:ec:32:2b:64:c1:a7:3c:03:da: b6:fe:bb:86:78:fe:bc:f9:7e:8e:96:d3:1e:9f:e3: b2:63:0d:9c:3c:5b:ff:f2:d9:80:37:24:b6:59:ed: 8b:dd:60:64:b6:27:24:3c:38:24:c8:12:2c:61:4f: 54:98:5d:48:e3:a0:d7:7c:f6:4d:8d:d5:5d:62:cc: 52:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:FC:22:5E:12:F7:DC:FC:75:5F:4D:4B:74:CE:99:29:14:6F:5E:F6 X509v3 Authority Key Identifier: keyid:FA:CC:33:52:BC:E3:80:28:53:DB:F4:B0:40:52:5C:FC:1E:15:2E:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-swzUrzjgChT2_SwQFJc_B4VLmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/164D3C32379711EF9ECC714EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:f940::/48 Signature Algorithm: sha256WithRSAEncryption 27:07:c5:d7:6a:ed:4b:b7:67:41:2b:1a:bd:83:90:f0:76:b4: ac:f9:10:f8:da:7a:dc:5b:e6:d7:f9:55:0c:70:01:ff:db:de: ee:44:7c:b8:a9:af:9a:35:0c:e8:06:b7:ab:6d:52:66:54:71: c8:2d:f0:ce:4b:10:9b:fe:ad:c0:47:dd:ea:66:56:db:9c:60: 28:f5:6d:96:bf:03:67:b5:ab:15:92:5b:e6:56:ba:69:f4:8e: 67:24:34:de:4f:e2:23:f0:36:ee:e8:fa:bc:4d:24:72:5a:da: 69:11:61:73:76:f5:65:08:7d:41:f3:0b:70:5a:00:44:36:5a: cf:ec:57:11:5c:26:31:07:7c:cd:14:3c:2a:56:ae:38:7d:9f: 3a:d0:f2:a0:42:32:a6:23:78:6c:1c:e5:62:f9:c3:7a:ef:ff: 9d:38:61:74:b0:20:76:7e:fc:76:18:09:cb:0b:42:02:12:75: 2e:19:76:2c:d1:ac:04:b6:e4:0c:46:98:25:a6:90:1a:86:96: 78:db:83:13:2e:d4:c9:bf:be:b3:10:6c:89:e4:b1:5f:66:40: 9e:82:11:27:d7:58:a8:93:ec:6d:25:fa:8f:f1:14:01:3b:bf: 99:1c:24:9f:69:76:54:6a:2d:a5:80:a1:7e:ce:a3:d0:44:f5: 53:e9:4d:5b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIyMkUxMTAvBgNVBAUTKEZBQ0MzMzUyQkNFMzgwMjg1M0RCRjRCMDQwNTI1Q0ZD MUUxNTJFNjAwHhcNMjUwNzI5MDYxMjEyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg4NjYzYy00Mjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBdFxl4YIIp3UShUMEVuu19KSaDe6BnZsEeZ7TRlBKxAKGURgz2Yz70OqOrF mUzNOwzhmAohSjEfLG8vJI6o5/0soXe+JAiOS9BrKdIM35MeLGm3k15NRxG+0iJT H+qaf3tCAF6CQB7jM6zwG0NS5Hl5HTmmSd8WYJb+q+igjdAc+t1z/MR17zG8SR50 PCuLQBQXwfpritRQsyZ1oM6GxWYS6jfT4Hcalkb1+9fZPUBk574k3Siqxo/sMitk wac8A9q2/ruGeP68+X6OltMen+OyYw2cPFv/8tmANyS2We2L3WBktickPDgkyBIs YU9UmF1I46DXfPZNjdVdYsxS3QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPr8Il4S 99z8dV9NS3TOmSkUb172MB8GA1UdIwQYMBaAFPrMM1K844AoU9v0sEBSXPweFS5g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjIyRS84QkUxMDA4NDM3 OTUxMUVGODdDRkQ2NEJDNEY5QUUwMi8tc3d6VXJ6amdDaFQyX1N3UUZKY19CNFZM bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1zd3pVcnpqZ0NoVDJfU3dRRkpjX0I0VkxtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUIyMkUvOEJFMTAwODQzNzk1MTFFRjg3Q0ZENjRCQzRGOUFFMDIvMTY0RDNDMzIz Nzk3MTFFRjlFQ0M3MTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3z+UAwDQYJKoZIhvcNAQELBQADggEBACcHxddq7Uu3 Z0ErGr2DkPB2tKz5EPjaetxb5tf5VQxwAf/b3u5EfLipr5o1DOgGt6ttUmZUccgt 8M5LEJv+rcBH3epmVtucYCj1bZa/A2e1qxWSW+ZWumn0jmckNN5P4iPwNu7o+rxN JHJa2mkRYXN29WUIfUHzC3BaAEQ2Ws/sVxFcJjEHfM0UPCpWrjh9nzrQ8qBCMqYj eGwc5WL5w3rv/504YXSwIHZ+/HYYCcsLQgISdS4ZdizRrAS25AxGmCWmkBqGlnjb gxMu1Mm/vrMQbInksV9mQJ6CESfXWKiT7G0l+o/xFAE7v5kcJJ9pdlRqLaWAoX7O o9BE9VPpTVs= -----END CERTIFICATE-----Generated at Mon Aug 11 06:15:46 2025 by rpki-client