$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/FEC5694C482311F0B2B5E45DC4F9AE02.roa File: FEC5694C482311F0B2B5E45DC4F9AE02.roa (raw, json) Hash identifier: lNd0dhVh9oVMjkR+5hS3U5ljCVkdpvgCie/KVi3bQe8= Subject key identifier: 04:AA:ED:6C:C6:46:9F:52:52:43:EE:DA:E1:64:FC:28:BC:09:F1:1B Certificate issuer: /CN=A917E1FA/serialNumber=F15C5C5BA521453707C81F5FEC0811BF21CFF40E Certificate serial: 0D Authority key identifier: F1:5C:5C:5B:A5:21:45:37:07:C8:1F:5F:EC:08:11:BF:21:CF:F4:0E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/FEC5694C482311F0B2B5E45DC4F9AE02.roa Signing time: Fri 13 Jun 2025 06:59:48 +0000 ROA not before: Fri 13 Jun 2025 06:59:48 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137474 IP address blocks: 160.250.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.crl rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 07:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FA, serialNumber=F15C5C5BA521453707C81F5FEC0811BF21CFF40E Validity Not Before: Jun 13 06:59:48 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=684bcc64-4943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:6a:f9:31:0f:c7:89:4d:53:c0:bd:a1:fe:6a: 18:fa:1b:1d:4b:ed:c5:be:04:76:81:2d:7f:cc:c2: 6c:61:d9:95:86:c4:2d:5e:a8:4e:18:91:5b:3f:28: 0c:7d:4c:2d:96:ae:3c:21:10:c2:99:4e:8f:88:4d: 36:f5:44:74:ea:2b:d4:9d:61:49:1a:a5:04:75:18: 00:77:de:c3:af:f1:99:f5:dd:9e:77:bc:3a:0d:bf: 2d:54:05:0e:cd:f3:58:f1:1c:db:e2:2f:a5:61:03: 96:33:70:4e:b6:f5:19:8f:83:44:d7:67:89:c8:9e: e8:73:5e:e2:7f:62:01:c8:21:b9:22:a2:2c:5c:7a: 41:a6:4b:d8:70:3f:39:3b:8c:3a:0b:10:03:38:f2: b6:26:42:e7:fe:e0:ec:6e:b1:2d:ee:de:6f:e0:fa: 36:e3:13:32:95:4f:10:07:72:8d:bb:be:33:6d:98: 07:c2:07:7a:be:b9:46:d9:12:6f:89:a5:b3:94:46: 56:b5:6f:ed:70:9c:1e:60:ed:0c:52:39:6c:50:eb: 18:0b:27:4b:79:38:f9:3f:4a:46:e3:18:07:d0:eb: 99:dd:3e:db:68:0f:67:35:c2:2a:2e:e0:47:e4:36: e3:2a:87:08:35:39:1e:a7:44:e0:ce:c8:2a:79:e3: 71:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:AA:ED:6C:C6:46:9F:52:52:43:EE:DA:E1:64:FC:28:BC:09:F1:1B X509v3 Authority Key Identifier: keyid:F1:5C:5C:5B:A5:21:45:37:07:C8:1F:5F:EC:08:11:BF:21:CF:F4:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/FEC5694C482311F0B2B5E45DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.212.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:27:a7:f6:49:9f:cf:4a:bc:c6:73:21:27:d8:db:69:75:f8: 0f:2a:3b:6f:2d:9c:e1:06:f2:76:30:cf:67:aa:ea:fd:7f:39: 80:44:e2:fc:66:63:c3:06:26:d0:2d:9f:5e:43:ba:bd:3f:a9: 49:b6:f5:b2:5c:6b:60:ae:98:a0:71:e7:c2:1a:ab:cb:99:4c: 8f:e7:92:70:4b:64:1f:4d:c3:a4:e7:03:bd:e2:ba:dd:86:0b: 81:fa:ab:2d:00:07:7b:d3:13:28:0f:4c:93:03:1f:88:ff:45: e3:ef:87:f3:8f:45:2a:f2:5e:ea:f8:10:8e:43:ff:d5:a8:45: 23:17:1f:c5:24:12:c7:e6:27:08:6f:23:e4:d3:3c:8a:7c:8d: 81:7b:78:e4:62:3d:34:3b:d2:ae:07:11:30:4f:6c:1e:e9:92: 0b:88:92:cd:b5:78:83:52:19:e4:6c:59:57:90:a7:39:e8:51: 8a:0b:e8:7e:fe:ff:03:eb:3e:42:d4:b6:43:84:d2:08:96:af: 4a:f1:a6:6a:6b:0f:a9:d1:d9:7e:79:8b:b9:21:96:b6:09:e1: 49:e0:d4:ba:8e:df:6d:97:fe:f4:ef:46:af:ef:b6:8e:c5:5e: 1c:56:e7:f5:7a:98:d3:16:1a:39:03:8f:ec:f3:b6:50:da:df: 66:3a:45:87 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTFGQTExMC8GA1UEBRMoRjE1QzVDNUJBNTIxNDUzNzA3QzgxRjVGRUMwODExQkYy MUNGRjQwRTAeFw0yNTA2MTMwNjU5NDhaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NGJjYzY0LTQ5NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDoavkxD8eJTVPAvaH+ahj6Gx1L7cW+BHaBLX/Mwmxh2ZWGxC1eqE4YkVs/KAx9 TC2WrjwhEMKZTo+ITTb1RHTqK9SdYUkapQR1GAB33sOv8Zn13Z53vDoNvy1UBQ7N 81jxHNviL6VhA5YzcE629RmPg0TXZ4nInuhzXuJ/YgHIIbkioixcekGmS9hwPzk7 jDoLEAM48rYmQuf+4OxusS3u3m/g+jbjEzKVTxAHco27vjNtmAfCB3q+uUbZEm+J pbOURla1b+1wnB5g7QxSOWxQ6xgLJ0t5OPk/SkbjGAfQ65ndPttoD2c1wiou4Efk NuMqhwg1OR6nRODOyCp543ErAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUBKrtbMZG n1JSQ+7a4WT8KLwJ8RswHwYDVR0jBBgwFoAU8VxcW6UhRTcHyB9f7AgRvyHP9A4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMUZBLzlBODczRUIwNDVB MzExRjA5NUVGRkQ0OEM0RjlBRTAyLzhWeGNXNlVoUlRjSHlCOWY3QWdSdnlIUDlB NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOFZ4Y1c2VWhSVGNIeUI5ZjdBZ1J2eUhQOUE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTFGQS85QTg3M0VCMDQ1QTMxMUYwOTVFRkZENDhDNEY5QUUwMi9GRUM1Njk0QzQ4 MjMxMUYwQjJCNUU0NURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD61DANBgkqhkiG9w0BAQsFAAOCAQEAnSen9kmfz0q8xnMh J9jbaXX4Dyo7by2c4QbydjDPZ6rq/X85gETi/GZjwwYm0C2fXkO6vT+pSbb1slxr YK6YoHHnwhqry5lMj+eScEtkH03DpOcDveK63YYLgfqrLQAHe9MTKA9MkwMfiP9F 4++H849FKvJe6vgQjkP/1ahFIxcfxSQSx+YnCG8j5NM8inyNgXt45GI9NDvSrgcR ME9sHumSC4iSzbV4g1IZ5GxZV5CnOehRigvofv7/A+s+QtS2Q4TSCJavSvGmamsP qdHZfnmLuSGWtgnhSeDUuo7fbZf+9O9Gr++2jsVeHFbn9XqY0xYaOQOP7PO2UNrf ZjpFhw== -----END CERTIFICATE-----Generated at Sun Jun 15 22:58:54 2025 by rpki-client