$ rpki-client -vvf rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/A2E6430C595F11EF8C3B3D31C4F9AE02.roa File: A2E6430C595F11EF8C3B3D31C4F9AE02.roa (raw, json) Hash identifier: rsXfvz54a2T+jOGss3629AVS3vLaxkP1937oobR11UI= Subject key identifier: FC:51:FE:53:96:B4:BD:E9:DD:57:D4:56:D7:41:4B:D0:73:9E:FC:CE Certificate issuer: /CN=A912698E/serialNumber=C0B9C11B1B160F321B8AEC4CFCDDDAD895FC47DE Certificate serial: 0E70 Authority key identifier: C0:B9:C1:1B:1B:16:0F:32:1B:8A:EC:4C:FC:DD:DA:D8:95:FC:47:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLnBGxsWDzIbiuxM_N3a2JX8R94.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/A2E6430C595F11EF8C3B3D31C4F9AE02.roa Signing time: Thu 24 Apr 2025 17:46:48 +0000 ROA not before: Thu 24 Apr 2025 17:46:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 997 IP address blocks: 2404:8ac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/wLnBGxsWDzIbiuxM_N3a2JX8R94.crl rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/wLnBGxsWDzIbiuxM_N3a2JX8R94.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLnBGxsWDzIbiuxM_N3a2JX8R94.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:46:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3696 (0xe70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912698E, serialNumber=C0B9C11B1B160F321B8AEC4CFCDDDAD895FC47DE Validity Not Before: Apr 24 17:46:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680a7908-0a8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:74:42:c8:9e:3d:ee:b2:c7:fc:93:d2:5e:96: 18:3a:29:17:e4:b2:4e:37:74:67:10:9f:5f:6a:30: ab:ed:86:e1:a1:9d:b3:bc:6b:92:f0:d4:82:80:85: 5f:f0:85:9a:f9:17:bf:ef:70:5e:be:30:46:5d:3c: 75:4b:1b:a1:82:db:95:a0:d4:e5:49:79:52:e0:37: 86:c5:a4:f8:ad:a7:bb:45:db:ef:05:db:c4:81:48: e5:a3:56:63:96:51:8b:45:fe:1d:7f:cf:57:4d:ec: 69:7a:ec:a6:aa:ad:e4:df:13:d1:0d:43:6d:fc:a9: c4:23:16:b3:b5:60:7a:03:65:d2:d0:9d:5c:14:18: c2:37:2c:e4:62:c9:22:96:cd:18:c9:00:2b:46:c1: 13:36:3e:c6:d4:43:09:62:ae:fd:01:c3:b4:da:38: a4:39:62:c3:01:17:96:a7:4f:82:7a:c4:cb:8e:f9: c2:d2:a8:73:11:e8:e1:2d:37:67:47:74:62:ea:9a: 99:9a:3e:1e:0c:43:c4:67:07:c6:7f:48:36:a1:f1: 55:69:12:be:2a:e0:c0:12:be:0c:22:f8:c9:85:57: ad:51:9f:e2:f9:fa:1e:f0:56:62:0a:9a:35:02:f5: ea:bd:f6:dd:17:8d:38:c9:a5:bd:b3:e9:4d:e3:71: 30:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:51:FE:53:96:B4:BD:E9:DD:57:D4:56:D7:41:4B:D0:73:9E:FC:CE X509v3 Authority Key Identifier: keyid:C0:B9:C1:1B:1B:16:0F:32:1B:8A:EC:4C:FC:DD:DA:D8:95:FC:47:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/wLnBGxsWDzIbiuxM_N3a2JX8R94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLnBGxsWDzIbiuxM_N3a2JX8R94.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/A2E6430C595F11EF8C3B3D31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:8ac0::/32 Signature Algorithm: sha256WithRSAEncryption 89:35:74:b8:90:9d:a6:99:3e:ac:a0:2f:01:3a:ff:02:97:f1: 15:c1:c3:33:db:b6:8a:58:9b:e2:ae:c8:56:de:7e:f1:e4:dd: eb:02:46:45:87:81:f8:5f:3d:de:8d:22:63:b0:48:81:54:91: f3:2a:d1:a0:16:c5:1b:10:31:dc:03:94:a7:a5:9f:64:53:a5: 31:82:a7:42:fc:0c:a6:03:73:d4:43:4b:1b:58:eb:d9:2f:f4: 95:5d:97:d2:e8:83:fb:3d:79:35:12:6a:77:69:70:e4:43:2d: 8c:28:5b:9e:f9:70:d4:37:35:a5:4f:97:5d:63:55:1f:5a:f0: 9a:5b:dc:4a:a1:eb:d0:cd:2d:72:eb:3d:87:81:17:64:2e:cb: f0:f0:9d:7e:45:07:a3:11:cd:e0:6a:fc:3e:7f:8b:9c:b7:6c: 86:bf:d7:ba:15:59:44:69:9e:41:84:f0:fd:57:e9:49:9e:02: e7:43:3d:7a:92:3c:f6:f9:c5:ca:eb:45:14:d5:40:f3:db:d5: 00:62:2c:24:bd:61:3e:19:da:3a:65:a1:16:08:40:0c:67:2a: d6:42:e9:28:da:d2:81:c4:18:4e:fa:fd:ea:fb:fa:8c:5b:bd: 42:6e:1d:3b:5d:31:cb:5b:1c:c7:20:98:3b:7d:21:49:59:c7: 65:f9:13:74 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjY5OEUxMTAvBgNVBAUTKEMwQjlDMTFCMUIxNjBGMzIxQjhBRUM0Q0ZDREREQUQ4 OTVGQzQ3REUwHhcNMjUwNDI0MTc0NjQ4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhNzkwOC0wYThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8HRCyJ497rLH/JPSXpYYOikX5LJON3RnEJ9fajCr7YbhoZ2zvGuS8NSCgIVf 8IWa+Re/73BevjBGXTx1SxuhgtuVoNTlSXlS4DeGxaT4rae7RdvvBdvEgUjlo1Zj llGLRf4df89XTexpeuymqq3k3xPRDUNt/KnEIxaztWB6A2XS0J1cFBjCNyzkYski ls0YyQArRsETNj7G1EMJYq79AcO02jikOWLDAReWp0+CesTLjvnC0qhzEejhLTdn R3Ri6pqZmj4eDEPEZwfGf0g2ofFVaRK+KuDAEr4MIvjJhVetUZ/i+foe8FZiCpo1 AvXqvfbdF404yaW9s+lN43EwZwIDAQABo4ICljCCApIwHQYDVR0OBBYEFPxR/lOW tL3p3VfUVtdBS9BznvzOMB8GA1UdIwQYMBaAFMC5wRsbFg8yG4rsTPzd2tiV/Efe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjk4RS9GMTlBN0M5NDlD MUMxMUU5OTJGQUZCMUJDNEY5QUUwMi93TG5CR3hzV0R6SWJpdXhNX04zYTJKWDhS OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dMbkJHeHNXRHpJYml1eE1fTjNhMkpYOFI5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjY5OEUvRjE5QTdDOTQ5QzFDMTFFOTkyRkFGQjFCQzRGOUFFMDIvQTJFNjQzMEM1 OTVGMTFFRjhDM0IzRDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBIrAMA0GCSqGSIb3DQEBCwUAA4IBAQCJNXS4kJ2mmT6s oC8BOv8Cl/EVwcMz27aKWJvirshW3n7x5N3rAkZFh4H4Xz3ejSJjsEiBVJHzKtGg FsUbEDHcA5SnpZ9kU6UxgqdC/AymA3PUQ0sbWOvZL/SVXZfS6IP7PXk1Emp3aXDk Qy2MKFue+XDUNzWlT5ddY1UfWvCaW9xKoevQzS1y6z2HgRdkLsvw8J1+RQejEc3g avw+f4uct2yGv9e6FVlEaZ5BhPD9V+lJngLnQz16kjz2+cXK60UU1UDz29UAYiwk vWE+Gdo6ZaEWCEAMZyrWQuko2tKBxBhO+v3q+/qMW71Cbh07XTHLWxzHIJg7fSFJ Wcdl+RN0 -----END CERTIFICATE-----Generated at Sat Apr 26 09:39:51 2025 by rpki-client