$ rpki-client -vvf rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/EC6F91D234E111F0AC656B38C4F9AE02.roa File: EC6F91D234E111F0AC656B38C4F9AE02.roa (raw, json) Hash identifier: wjeIwGtzinYej0T7YxQW1+hC3DUeNGDaisEjFRqBYo0= Subject key identifier: AA:2F:3F:F7:96:2E:27:32:26:BA:FB:67:58:A4:3F:33:DD:AB:2B:A8 Certificate issuer: /CN=A917315B/serialNumber=196F92773293E4954B4D97A5D37AC820A745C2E0 Certificate serial: 0343 Authority key identifier: 19:6F:92:77:32:93:E4:95:4B:4D:97:A5:D3:7A:C8:20:A7:45:C2:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW-SdzKT5JVLTZel03rIIKdFwuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/EC6F91D234E111F0AC656B38C4F9AE02.roa Signing time: Mon 21 Jul 2025 01:38:20 +0000 ROA not before: Mon 21 Jul 2025 01:38:20 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 208171 IP address blocks: 2001:df0:d840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/GW-SdzKT5JVLTZel03rIIKdFwuA.crl rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/GW-SdzKT5JVLTZel03rIIKdFwuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW-SdzKT5JVLTZel03rIIKdFwuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 835 (0x343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917315B, serialNumber=196F92773293E4954B4D97A5D37AC820A745C2E0 Validity Not Before: Jul 21 01:38:20 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687d9a0c-261e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a9:44:6a:ac:fb:29:e6:48:93:03:ad:e9:55: cb:90:3d:d9:6e:31:f2:f3:c7:d1:ff:91:56:22:4d: 74:f9:ff:81:96:e6:6a:04:fb:85:1c:de:6d:8f:55: 9e:46:5d:eb:09:00:12:ee:c3:c0:44:2d:68:03:a1: 0f:51:64:42:2b:de:af:ab:0b:10:8c:39:b1:2b:89: 42:8b:82:32:03:5d:27:05:c9:6e:a2:11:60:81:bd: c0:23:26:57:ac:8a:1a:55:74:93:80:4a:35:b7:96: ed:7c:0b:e8:6c:32:f8:e3:cb:5b:28:62:ee:10:93: 1f:9e:1f:48:e2:a1:41:ed:96:16:12:a0:38:72:69: 93:a8:1d:32:cb:4c:19:81:7c:09:4f:91:b5:d4:49: 48:4c:d5:7f:a6:6c:74:87:8c:18:de:48:62:55:7b: 84:b4:e1:55:72:cf:53:0c:a1:be:21:8b:4e:a7:57: a9:0b:e6:e7:12:1c:db:a7:27:8d:21:da:95:84:59: fc:b4:17:b1:ac:d3:98:03:17:82:07:8c:31:06:ed: 75:4c:f1:33:10:83:71:85:22:90:2a:10:6e:f9:ee: d2:0e:eb:4c:c8:e9:93:42:7a:00:9e:41:60:de:e4: 31:72:7d:b0:ba:5e:15:c0:d7:78:3a:21:d5:99:e0: 55:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:2F:3F:F7:96:2E:27:32:26:BA:FB:67:58:A4:3F:33:DD:AB:2B:A8 X509v3 Authority Key Identifier: keyid:19:6F:92:77:32:93:E4:95:4B:4D:97:A5:D3:7A:C8:20:A7:45:C2:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/GW-SdzKT5JVLTZel03rIIKdFwuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW-SdzKT5JVLTZel03rIIKdFwuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/EC6F91D234E111F0AC656B38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:d840::/48 Signature Algorithm: sha256WithRSAEncryption a5:db:cd:28:0b:82:40:16:ff:81:94:a0:ed:3b:ad:89:91:cf: df:c0:a2:c7:27:4e:24:89:59:be:b5:8c:b3:22:94:91:af:ca: 01:8a:2f:d6:0a:41:a5:1e:a7:d7:9f:00:d6:f5:23:7b:94:d6: ad:53:2a:e6:94:99:d5:8f:36:32:c1:13:0d:f3:a2:34:2b:b2: bc:7a:81:3d:95:f8:ba:07:85:91:62:44:98:06:bb:bd:6b:c1: cf:a3:99:16:56:3a:e4:4e:18:ac:31:de:34:61:cc:fc:71:9c: 7b:88:ec:d6:34:6c:b1:34:80:3c:20:26:f6:b9:06:d0:a8:8a: 3e:c8:bd:e8:86:91:ce:e3:33:73:5b:27:5e:ec:9b:6d:3d:03: 96:cc:49:2e:8a:ee:d6:c8:9b:89:d4:39:94:5f:82:c6:4c:23: 8c:aa:93:5a:3b:72:f6:96:10:c7:52:8a:7e:ac:0d:5c:a4:7e: 16:e4:6b:de:8a:36:a8:36:f5:df:d6:7a:fe:c6:38:1b:a8:97: c4:40:22:73:d6:c0:d2:92:4f:65:2d:07:fe:09:f8:dd:a9:c2: da:5f:ee:db:fc:93:b4:4f:75:d7:f1:a0:16:0a:f6:a0:51:cc: fa:9e:6c:ea:4b:c6:88:c0:be:52:42:0e:d8:2b:67:f6:87:0d: 38:90:99:1b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxNUIxMTAvBgNVBAUTKDE5NkY5Mjc3MzI5M0U0OTU0QjREOTdBNUQzN0FDODIw QTc0NUMyRTAwHhcNMjUwNzIxMDEzODIwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdkOWEwYy0yNjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6lEaqz7KeZIkwOt6VXLkD3ZbjHy88fR/5FWIk10+f+BluZqBPuFHN5tj1We Rl3rCQAS7sPARC1oA6EPUWRCK96vqwsQjDmxK4lCi4IyA10nBcluohFggb3AIyZX rIoaVXSTgEo1t5btfAvobDL448tbKGLuEJMfnh9I4qFB7ZYWEqA4cmmTqB0yy0wZ gXwJT5G11ElITNV/pmx0h4wY3khiVXuEtOFVcs9TDKG+IYtOp1epC+bnEhzbpyeN IdqVhFn8tBexrNOYAxeCB4wxBu11TPEzEINxhSKQKhBu+e7SDutMyOmTQnoAnkFg 3uQxcn2wul4VwNd4OiHVmeBVuwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKovP/eW LicyJrr7Z1ikPzPdqyuoMB8GA1UdIwQYMBaAFBlvkncyk+SVS02XpdN6yCCnRcLg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzE1Qi9ENzM1QTNCNEVE NEIxMUVDQTk1NTM3NzhDNEY5QUUwMi9HVy1TZHpLVDVKVkxUWmVsMDNySUlLZEZ3 dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dXLVNkektUNUpWTFRaZWwwM3JJSUtkRnd1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzMxNUIvRDczNUEzQjRFRDRCMTFFQ0E5NTUzNzc4QzRGOUFFMDIvRUM2RjkxRDIz NEUxMTFGMEFDNjU2QjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3w2EAwDQYJKoZIhvcNAQELBQADggEBAKXbzSgLgkAW /4GUoO07rYmRz9/AoscnTiSJWb61jLMilJGvygGKL9YKQaUep9efANb1I3uU1q1T KuaUmdWPNjLBEw3zojQrsrx6gT2V+LoHhZFiRJgGu71rwc+jmRZWOuROGKwx3jRh zPxxnHuI7NY0bLE0gDwgJva5BtCoij7IveiGkc7jM3NbJ17sm209A5bMSS6K7tbI m4nUOZRfgsZMI4yqk1o7cvaWEMdSin6sDVykfhbka96KNqg29d/Wev7GOBuol8RA InPWwNKST2UtB/4J+N2pwtpf7tv8k7RPddfxoBYK9qBRzPqebOpLxojAvlJCDtgr Z/aHDTiQmRs= -----END CERTIFICATE-----Generated at Mon Aug 11 07:27:27 2025 by rpki-client