$ rpki-client -vvf rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/A2369FBA595F11EF8C3B3D31C4F9AE02.roa File: A2369FBA595F11EF8C3B3D31C4F9AE02.roa (raw, json) Hash identifier: 1zS8XWzZTz7+tGBFQYN1Yj55+aHf93rbvK5YUu69PHI= Subject key identifier: CA:7B:FA:DD:64:8C:01:04:8B:5E:8B:67:AE:22:C8:4F:40:7E:D4:FE Certificate issuer: /CN=A912698E/serialNumber=C0B9C11B1B160F321B8AEC4CFCDDDAD895FC47DE Certificate serial: 0E6F Authority key identifier: C0:B9:C1:1B:1B:16:0F:32:1B:8A:EC:4C:FC:DD:DA:D8:95:FC:47:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLnBGxsWDzIbiuxM_N3a2JX8R94.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/A2369FBA595F11EF8C3B3D31C4F9AE02.roa Signing time: Thu 24 Apr 2025 17:46:47 +0000 ROA not before: Thu 24 Apr 2025 17:46:47 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18254 IP address blocks: 2404:8ac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/wLnBGxsWDzIbiuxM_N3a2JX8R94.crl rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/wLnBGxsWDzIbiuxM_N3a2JX8R94.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLnBGxsWDzIbiuxM_N3a2JX8R94.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:46:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3695 (0xe6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912698E, serialNumber=C0B9C11B1B160F321B8AEC4CFCDDDAD895FC47DE Validity Not Before: Apr 24 17:46:47 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680a7907-2ed7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:60:29:b1:39:12:25:1a:45:e1:a6:31:6d:ae: 5f:8b:df:fb:f1:f0:ec:b8:57:b2:ae:5b:b7:fe:75: 2b:5e:0c:a7:63:40:15:74:a5:e9:dd:32:fa:56:6f: 12:9a:84:5b:10:8e:f8:32:8b:03:b7:68:51:dd:22: c7:3e:15:1c:c1:5d:2d:de:50:5d:f7:44:5c:1e:f2: 9b:75:62:dd:a1:72:c3:f3:45:26:a5:56:21:7f:30: 5f:a4:a2:9a:49:73:f9:7a:84:e5:13:5b:96:38:c8: ce:f2:10:40:6e:8c:63:72:7c:02:2a:0c:68:e1:b8: 91:67:a5:0c:13:54:5f:6e:b3:0c:d0:35:88:b7:fb: 27:40:c8:fb:30:2c:a8:e8:71:8b:ef:87:e1:4e:f2: 05:49:d6:36:f0:4c:5d:dc:1f:41:a0:26:e2:3e:2b: b3:fd:61:4f:ab:20:76:65:91:d8:c1:de:fc:04:56: 32:b9:c0:1d:64:c8:71:fa:db:93:26:92:c4:3c:b3: 0d:98:07:6a:df:0c:76:91:d5:eb:4e:83:bf:ed:ea: e8:a9:15:f8:f3:90:43:bd:9d:e1:21:b4:9b:0a:69: d7:f6:3f:e0:99:1b:fa:86:d7:66:90:99:8f:46:67: 7e:1f:a9:de:e9:ef:c4:21:46:01:91:9b:d8:ba:2f: 32:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:7B:FA:DD:64:8C:01:04:8B:5E:8B:67:AE:22:C8:4F:40:7E:D4:FE X509v3 Authority Key Identifier: keyid:C0:B9:C1:1B:1B:16:0F:32:1B:8A:EC:4C:FC:DD:DA:D8:95:FC:47:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/wLnBGxsWDzIbiuxM_N3a2JX8R94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLnBGxsWDzIbiuxM_N3a2JX8R94.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/A2369FBA595F11EF8C3B3D31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:8ac0::/32 Signature Algorithm: sha256WithRSAEncryption 28:24:1e:24:d0:50:62:d0:8e:0b:bc:d3:37:55:e4:08:89:38: 8a:3d:e6:1d:1e:a1:05:84:ab:0d:95:c5:c2:49:f9:9d:9a:6a: ed:21:e8:4d:66:6e:4d:33:25:2a:b8:5c:04:10:77:67:0c:ec: 85:d9:6d:32:2f:6f:09:19:09:c6:57:1e:79:b4:5e:55:81:fc: 5b:7a:3a:8b:48:cc:03:a0:3b:af:2d:15:1c:55:a5:ec:11:0d: a0:e0:6b:d0:a2:64:6a:58:0c:bc:86:17:c0:10:d2:ac:cd:d2: ab:5d:e2:55:25:57:34:0d:81:20:91:ba:77:c2:24:5e:e6:14: 5b:05:b8:0d:7f:4d:83:61:7d:0b:fd:2c:49:dc:81:ce:02:f9: 2b:66:1e:7b:e8:04:f0:be:97:dd:dc:ed:20:74:33:7e:43:14: d4:43:84:5e:b7:e4:ed:20:0f:82:55:8d:fe:b8:01:59:4e:ac: 03:7e:24:36:78:bd:07:c9:42:40:01:d0:dd:57:cf:e5:9b:48: 57:cf:74:83:5e:aa:45:5f:84:a4:f2:e0:fd:cf:96:36:16:d3: 23:c9:c2:70:c1:72:b1:43:1f:1f:da:9c:44:4f:b1:0f:6b:e9: 8a:5a:42:c5:c3:6c:3d:58:0b:da:45:bf:04:8a:6a:0f:0a:af: b8:71:0f:07 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjY5OEUxMTAvBgNVBAUTKEMwQjlDMTFCMUIxNjBGMzIxQjhBRUM0Q0ZDREREQUQ4 OTVGQzQ3REUwHhcNMjUwNDI0MTc0NjQ3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhNzkwNy0yZWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2ApsTkSJRpF4aYxba5fi9/78fDsuFeyrlu3/nUrXgynY0AVdKXp3TL6Vm8S moRbEI74MosDt2hR3SLHPhUcwV0t3lBd90RcHvKbdWLdoXLD80UmpVYhfzBfpKKa SXP5eoTlE1uWOMjO8hBAboxjcnwCKgxo4biRZ6UME1RfbrMM0DWIt/snQMj7MCyo 6HGL74fhTvIFSdY28Exd3B9BoCbiPiuz/WFPqyB2ZZHYwd78BFYyucAdZMhx+tuT JpLEPLMNmAdq3wx2kdXrToO/7eroqRX485BDvZ3hIbSbCmnX9j/gmRv6htdmkJmP Rmd+H6ne6e/EIUYBkZvYui8yiQIDAQABo4ICljCCApIwHQYDVR0OBBYEFMp7+t1k jAEEi16LZ64iyE9AftT+MB8GA1UdIwQYMBaAFMC5wRsbFg8yG4rsTPzd2tiV/Efe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjk4RS9GMTlBN0M5NDlD MUMxMUU5OTJGQUZCMUJDNEY5QUUwMi93TG5CR3hzV0R6SWJpdXhNX04zYTJKWDhS OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dMbkJHeHNXRHpJYml1eE1fTjNhMkpYOFI5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjY5OEUvRjE5QTdDOTQ5QzFDMTFFOTkyRkFGQjFCQzRGOUFFMDIvQTIzNjlGQkE1 OTVGMTFFRjhDM0IzRDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBIrAMA0GCSqGSIb3DQEBCwUAA4IBAQAoJB4k0FBi0I4L vNM3VeQIiTiKPeYdHqEFhKsNlcXCSfmdmmrtIehNZm5NMyUquFwEEHdnDOyF2W0y L28JGQnGVx55tF5VgfxbejqLSMwDoDuvLRUcVaXsEQ2g4GvQomRqWAy8hhfAENKs zdKrXeJVJVc0DYEgkbp3wiRe5hRbBbgNf02DYX0L/SxJ3IHOAvkrZh576ATwvpfd 3O0gdDN+QxTUQ4Ret+TtIA+CVY3+uAFZTqwDfiQ2eL0HyUJAAdDdV8/lm0hXz3SD XqpFX4Sk8uD9z5Y2FtMjycJwwXKxQx8f2pxET7EPa+mKWkLFw2w9WAvaRb8EimoP Cq+4cQ8H -----END CERTIFICATE-----Generated at Sat Apr 26 09:39:51 2025 by rpki-client