$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/5C2186C444B011F0B9799F48C4F9AE02.roa File: 5C2186C444B011F0B9799F48C4F9AE02.roa (raw, json) Hash identifier: JJ/1SR0EZ5l7PECR67PAK+euRry+RLFa/pJug2YY29I= Subject key identifier: 95:98:A5:28:C8:FA:8D:76:71:86:4E:91:A9:01:C4:69:E7:35:87:98 Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 049D Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/5C2186C444B011F0B9799F48C4F9AE02.roa Signing time: Sun 08 Jun 2025 21:34:30 +0000 ROA not before: Sun 08 Jun 2025 21:34:30 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 147051 IP address blocks: 2400:1360:c000::/34 maxlen: 34 2400:1360:c000::/48 maxlen: 48 2400:1360:c001::/48 maxlen: 48 2400:1360:c002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1181 (0x49d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D, serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Jun 8 21:34:30 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=684601e6-865b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:69:b6:2c:c2:84:0f:7d:5e:47:c8:6f:40:f5: 7a:39:2c:82:ad:d2:94:a4:47:9b:67:86:1e:0b:db: ba:d2:c2:c2:83:43:36:95:d4:13:16:96:11:4c:3f: cd:65:1e:fd:09:fa:72:44:98:cd:9d:5c:f5:27:83: 33:ad:a7:ca:9b:7d:99:30:c5:63:c5:94:e7:23:e7: b5:01:69:7b:ca:58:83:70:78:cf:41:91:8f:a8:8d: 5c:c8:9f:1c:2b:3f:88:87:23:4e:87:e8:7a:7f:93: 8b:76:44:f8:df:07:d5:36:66:55:4d:ff:88:c3:33: d3:a5:32:aa:81:13:de:3f:a6:68:8b:e1:3f:d4:a9: 71:b1:52:49:b6:85:5b:b3:ff:46:03:d3:42:96:6e: e9:0e:0a:27:23:53:6c:c4:0c:78:b9:f2:b3:fe:78: 9a:24:bb:26:f8:95:f4:46:98:3f:97:ae:94:d0:44: 10:71:d9:e3:b5:dc:37:a1:3d:ac:b1:39:e9:18:03: f4:a8:1f:01:0e:17:e1:38:d2:3f:fa:19:09:a6:13: a1:bc:dd:13:b2:5f:7b:77:69:f1:5d:c2:9c:98:f2: 15:f7:7c:d6:7d:56:3d:75:1b:7e:07:99:47:34:bc: 89:09:5d:3e:14:1c:54:96:2b:c8:b3:9d:ae:49:9e: a0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:98:A5:28:C8:FA:8D:76:71:86:4E:91:A9:01:C4:69:E7:35:87:98 X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/5C2186C444B011F0B9799F48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:1360:c000::/34 Signature Algorithm: sha256WithRSAEncryption 4e:64:7d:b6:a2:c5:c3:34:90:9d:c1:5b:6f:68:ab:e4:8d:6b: db:fa:c4:71:e7:e5:a5:09:06:35:63:4d:8a:76:0c:e4:0d:a1: ee:78:4d:f0:20:81:09:80:fa:92:88:0f:be:4e:fc:1e:cb:b3: 2a:07:6c:d6:f6:47:45:83:67:55:70:f0:71:76:a4:c4:97:f2: 38:d6:1a:3c:b4:ca:48:eb:63:a8:28:b9:70:22:f4:17:e8:c5: 6a:75:db:86:7d:91:ea:d5:27:e3:dc:35:91:ad:ea:31:5d:bb: 53:dc:b8:0f:0d:71:30:60:f5:43:ca:0b:29:84:a1:bd:db:02: da:3c:fb:7c:e1:b8:04:6d:61:97:43:7e:1c:41:ad:30:ee:08: 00:b6:dc:49:75:b1:6e:e4:40:85:bc:fa:3e:d8:34:d8:5e:9a: c0:be:fb:8a:0c:35:64:57:9f:ed:ae:d8:f0:70:4c:c8:eb:57: c1:9c:ff:2e:b3:9f:d2:19:6f:b5:e0:12:86:b3:eb:13:0d:02: e6:d2:e4:39:ed:7d:48:8b:18:a1:cc:6b:1a:b0:87:ca:fc:6b: 19:37:9a:b9:87:c1:82:eb:c3:43:3a:10:4d:cc:f9:32:7d:44: b4:4f:b7:4c:98:7c:36:f7:52:f3:5e:03:59:ad:8a:74:73:c0: b1:58:a3:e6 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICBJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjUwNjA4MjEzNDMwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ2MDFlNi04NjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWm2LMKED31eR8hvQPV6OSyCrdKUpEebZ4YeC9u60sLCg0M2ldQTFpYRTD/N ZR79CfpyRJjNnVz1J4MzrafKm32ZMMVjxZTnI+e1AWl7yliDcHjPQZGPqI1cyJ8c Kz+IhyNOh+h6f5OLdkT43wfVNmZVTf+IwzPTpTKqgRPeP6Zoi+E/1KlxsVJJtoVb s/9GA9NClm7pDgonI1NsxAx4ufKz/niaJLsm+JX0Rpg/l66U0EQQcdnjtdw3oT2s sTnpGAP0qB8BDhfhONI/+hkJphOhvN0Tsl97d2nxXcKcmPIV93zWfVY9dRt+B5lH NLyJCV0+FBxUlivIs52uSZ6goQIDAQABo4IClzCCApMwHQYDVR0OBBYEFJWYpSjI +o12cYZOkakBxGnnNYeYMB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODE5NkQvNjIwMkFBM0U0MTEwMTFFQzk5MzlDMDBGQzRGOUFFMDIvNUMyMTg2QzQ0 NEIwMTFGMEI5Nzk5RjQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgYkABNgwDANBgkqhkiG9w0BAQsFAAOCAQEATmR9tqLFwzSQ ncFbb2ir5I1r2/rEceflpQkGNWNNinYM5A2h7nhN8CCBCYD6kogPvk78HsuzKgds 1vZHRYNnVXDwcXakxJfyONYaPLTKSOtjqCi5cCL0F+jFanXbhn2R6tUn49w1ka3q MV27U9y4Dw1xMGD1Q8oLKYShvdsC2jz7fOG4BG1hl0N+HEGtMO4IALbcSXWxbuRA hbz6Ptg02F6awL77igw1ZFef7a7Y8HBMyOtXwZz/LrOf0hlvteAShrPrEw0C5tLk Oe19SIsYocxrGrCHyvxrGTeauYfBguvDQzoQTcz5Mn1EtE+3TJh8NvdS814DWa2K dHPAsVij5g== -----END CERTIFICATE-----Generated at Sun Jun 15 10:01:51 2025 by rpki-client