$ rpki-client -vvf rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/FD18A8AAD97B11EAB138A00FC4F9AE02.roa File: FD18A8AAD97B11EAB138A00FC4F9AE02.roa (raw, json) Hash identifier: dUADLZNofYstB4J1GHJqZ4NyoXP/5OBBFPnTwTmX5d0= Subject key identifier: 5A:51:A2:ED:E9:4B:6A:F8:99:69:0E:F4:40:ED:07:23:1A:E9:D1:01 Certificate issuer: /CN=A917647E/serialNumber=FDD2507822183CE80759419D56540606A2486B4B Certificate serial: 0837 Authority key identifier: FD:D2:50:78:22:18:3C:E8:07:59:41:9D:56:54:06:06:A2:48:6B:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dJQeCIYPOgHWUGdVlQGBqJIa0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/FD18A8AAD97B11EAB138A00FC4F9AE02.roa Signing time: Fri 16 May 2025 21:19:17 +0000 ROA not before: Fri 16 May 2025 21:19:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132335 IP address blocks: 123.253.8.0/24 maxlen: 24 123.253.9.0/24 maxlen: 24 123.253.10.0/24 maxlen: 24 2400:ffc0:1::/48 maxlen: 48 2400:ffc0:4::/48 maxlen: 48 2400:ffc0:5::/48 maxlen: 48 2400:ffc0:6::/48 maxlen: 48 2400:ffc0:13c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/_dJQeCIYPOgHWUGdVlQGBqJIa0s.crl rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/_dJQeCIYPOgHWUGdVlQGBqJIa0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dJQeCIYPOgHWUGdVlQGBqJIa0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 20:34:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2103 (0x837) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917647E, serialNumber=FDD2507822183CE80759419D56540606A2486B4B Validity Not Before: May 16 21:19:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6827abd5-1989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:09:4b:7a:59:3c:12:fc:8f:48:88:2b:bd:71: a1:51:c0:71:02:47:ad:da:ee:9f:69:e8:24:9e:a2: 06:b6:94:70:ef:85:9d:19:2e:4c:fa:42:f6:7f:26: f0:3f:fb:91:7c:47:52:db:05:0d:23:a0:16:8e:a8: 0b:a7:f8:f4:e0:85:5c:e2:23:6c:2c:a2:15:d2:2d: 64:6c:11:20:cc:ed:fa:f4:f2:a3:0b:5e:df:96:26: ae:d5:c9:8d:15:f6:73:aa:a6:6b:ef:0f:f2:c1:87: d4:b2:58:b8:6b:89:5c:20:2e:53:76:73:b8:08:44: 39:83:20:d7:a9:28:90:f5:f8:db:69:3b:0d:3f:ab: 42:30:53:b5:30:5a:1d:87:6a:73:5c:d2:5d:a4:81: dd:27:1d:ad:3c:5e:52:a1:b2:a8:cb:76:45:fd:fa: 66:f9:58:6b:2a:74:fa:ba:87:08:d2:86:81:91:01: b2:ce:b0:48:01:2f:c3:fe:26:3d:73:19:dc:7f:e2: 30:22:d0:a6:a1:c0:a0:42:bb:78:8a:7d:79:f6:e9: 47:da:5f:68:77:9d:ae:be:13:87:f0:0b:9d:3e:a4: 8a:7f:14:6a:d4:85:c3:aa:60:f0:66:91:32:ae:48: 21:72:64:85:a6:ff:ff:ca:9c:43:4c:e5:24:24:12: 13:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:51:A2:ED:E9:4B:6A:F8:99:69:0E:F4:40:ED:07:23:1A:E9:D1:01 X509v3 Authority Key Identifier: keyid:FD:D2:50:78:22:18:3C:E8:07:59:41:9D:56:54:06:06:A2:48:6B:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/_dJQeCIYPOgHWUGdVlQGBqJIa0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dJQeCIYPOgHWUGdVlQGBqJIa0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/FD18A8AAD97B11EAB138A00FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.8.0-123.253.10.255 IPv6: 2400:ffc0:1::/48 2400:ffc0:4::-2400:ffc0:6:ffff:ffff:ffff:ffff:ffff 2400:ffc0:13c::/48 Signature Algorithm: sha256WithRSAEncryption 05:cb:54:0b:3a:dc:16:e0:c1:4d:07:db:d0:cb:f8:9b:54:09: 62:59:64:66:8e:46:9d:f5:02:13:51:32:b4:ab:0f:eb:e9:eb: b3:20:02:ad:99:83:c5:29:d7:d4:0e:41:3b:de:24:e7:4d:c0: 0a:a0:4c:3a:bd:d6:ad:51:78:4a:42:df:9c:13:e5:e4:f0:1b: 59:29:b7:f4:67:14:32:22:3e:6d:b5:a6:f4:8b:42:96:4d:6c: b9:86:47:bb:9d:31:c2:ed:4b:a6:66:5a:b3:f8:7b:c7:6e:ed: 16:f4:0c:79:25:25:29:83:2f:f2:be:70:28:3d:8a:fe:ca:01: 8b:5f:86:58:be:06:1d:13:c9:45:29:9d:68:93:bd:75:b2:0a: cf:72:b2:57:97:01:3c:1b:38:a1:4c:6f:ba:55:28:61:67:3b: cf:95:2e:74:7d:ee:ca:c1:ae:5f:ba:ac:bb:d1:a9:41:f5:83: 95:78:ed:9d:9d:b5:e7:a0:38:f8:c8:c9:bd:fb:3b:8e:d8:16: 57:36:b8:98:e4:73:f7:e5:a4:c5:0a:43:a5:33:85:e8:f4:4a: 01:67:98:7e:c5:cb:62:04:16:ee:4f:96:1c:66:d8:2d:5e:e5: f7:4d:f6:41:f9:53:54:76:51:43:65:c4:23:a7:ae:41:ae:85: 24:ae:7a:29 -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgICCDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0N0UxMTAvBgNVBAUTKEZERDI1MDc4MjIxODNDRTgwNzU5NDE5RDU2NTQwNjA2 QTI0ODZCNEIwHhcNMjUwNTE2MjExOTE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3YWJkNS0xOTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QlLelk8EvyPSIgrvXGhUcBxAket2u6faegknqIGtpRw74WdGS5M+kL2fybw P/uRfEdS2wUNI6AWjqgLp/j04IVc4iNsLKIV0i1kbBEgzO369PKjC17fliau1cmN FfZzqqZr7w/ywYfUsli4a4lcIC5TdnO4CEQ5gyDXqSiQ9fjbaTsNP6tCMFO1MFod h2pzXNJdpIHdJx2tPF5SobKoy3ZF/fpm+VhrKnT6uocI0oaBkQGyzrBIAS/D/iY9 cxncf+IwItCmocCgQrt4in159ulH2l9od52uvhOH8AudPqSKfxRq1IXDqmDwZpEy rkghcmSFpv//ypxDTOUkJBITHwIDAQABo4ICyzCCAscwHQYDVR0OBBYEFFpRou3p S2r4mWkO9EDtByMa6dEBMB8GA1UdIwQYMBaAFP3SUHgiGDzoB1lBnVZUBgaiSGtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjQ3RS8wRDEwQjgwNEQ2 MzExMUVBOUE1QTU4M0JDNEY5QUUwMi9fZEpRZUNJWVBPZ0hXVUdkVmxRR0JxSklh MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19kSlFlQ0lZUE9nSFdVR2RWbFFHQnFKSWEwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzY0N0UvMEQxMEI4MDRENjMxMTFFQTlBNUE1ODNCQzRGOUFFMDIvRkQxOEE4QUFE OTdCMTFFQUIxMzhBMDBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVQYIKwYBBQUHAQcBAf8E RjBEMBQEAgABMA4wDAMEA3v9CAMEAHv9CjAsBAIAAjAmAwcAJAD/wAABMBIDBwIk AP/AAAQDBwAkAP/AAAYDBwAkAP/AATwwDQYJKoZIhvcNAQELBQADggEBAAXLVAs6 3BbgwU0H29DL+JtUCWJZZGaORp31AhNRMrSrD+vp67MgAq2Zg8Up19QOQTveJOdN wAqgTDq91q1ReEpC35wT5eTwG1kpt/RnFDIiPm21pvSLQpZNbLmGR7udMcLtS6Zm WrP4e8du7Rb0DHklJSmDL/K+cCg9iv7KAYtfhli+Bh0TyUUpnWiTvXWyCs9ysleX ATwbOKFMb7pVKGFnO8+VLnR97srBrl+6rLvRqUH1g5V47Z2dteegOPjIyb37O47Y Flc2uJjkc/flpMUKQ6Uzhej0SgFnmH7Fy2IEFu5Plhxm2C1e5fdN9kH5U1R2UUNl xCOnrkGuhSSueik= -----END CERTIFICATE-----Generated at Wed Jun 18 04:59:44 2025 by rpki-client