$ rpki-client -vvf rpki.apnic.net/member_repository/A918E951/5BB0743C623A11F0A7E2760BC4F9AE02/A24902C8623B11F0BEB49510C4F9AE02.roa File: A24902C8623B11F0BEB49510C4F9AE02.roa (raw, json) Hash identifier: n1d9JBQkYzZszHXWzHvHiVJmG5oLenIhoEtEgvVSpN4= Subject key identifier: BE:5F:89:18:58:42:2D:27:E6:6A:19:B2:1F:9A:19:4F:E8:70:B3:5B Certificate issuer: /CN=A918E951/serialNumber=4D8F580C8F5759467DB8EA0F08C311A96D3B3FBB Certificate serial: 02 Authority key identifier: 4D:8F:58:0C:8F:57:59:46:7D:B8:EA:0F:08:C3:11:A9:6D:3B:3F:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TY9YDI9XWUZ9uOoPCMMRqW07P7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E951/5BB0743C623A11F0A7E2760BC4F9AE02/A24902C8623B11F0BEB49510C4F9AE02.roa Signing time: Wed 16 Jul 2025 11:54:31 +0000 ROA not before: Wed 16 Jul 2025 11:54:31 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 45773 IP address blocks: 2001:df5:d2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E951/5BB0743C623A11F0A7E2760BC4F9AE02/TY9YDI9XWUZ9uOoPCMMRqW07P7s.crl rsync://rpki.apnic.net/member_repository/A918E951/5BB0743C623A11F0A7E2760BC4F9AE02/TY9YDI9XWUZ9uOoPCMMRqW07P7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TY9YDI9XWUZ9uOoPCMMRqW07P7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E951, serialNumber=4D8F580C8F5759467DB8EA0F08C311A96D3B3FBB Validity Not Before: Jul 16 11:54:31 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=687792f7-3a84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3b:9b:04:7c:6a:37:2e:59:50:67:d8:ca:4e: 7d:f7:b2:1e:d5:d4:b0:a3:a9:e8:f7:70:c0:ce:f1: 3e:27:85:56:e2:43:37:4e:94:46:db:1e:a6:23:b6: a3:fb:cd:9d:a2:04:4e:61:9f:41:de:de:b0:13:9c: 56:b7:9b:e2:8c:3c:c9:45:22:87:7f:dc:3d:f8:83: 6a:e1:ff:29:a5:02:3a:7c:f9:52:80:8e:76:41:95: f7:14:7c:29:9f:80:00:c7:f3:70:6a:b0:65:c0:c0: b4:f8:e3:1c:cb:5b:d4:85:fe:54:60:53:98:78:de: 22:70:fa:2f:72:1d:06:76:44:dc:ba:c6:e5:bd:79: 05:62:ed:11:be:a1:fc:13:f3:63:cb:d7:21:48:3a: fd:76:0c:8e:d5:ed:f5:00:40:4b:82:5c:ff:aa:c9: a5:bb:0d:c7:b2:9a:d6:1a:c2:50:b5:93:04:1f:38: 9c:50:4e:5c:76:84:da:fb:10:71:90:9b:c0:a9:06: 5e:da:e7:5a:1b:31:6f:68:7a:dc:02:96:e4:49:db: 57:de:f7:b8:7f:8a:6d:cf:25:cd:fe:72:a1:18:00: e6:03:19:31:53:da:d8:55:fc:18:81:9f:5a:2a:30: 86:b1:2a:f6:bc:7b:2b:c2:34:df:c2:fb:4c:a6:0c: 5b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:5F:89:18:58:42:2D:27:E6:6A:19:B2:1F:9A:19:4F:E8:70:B3:5B X509v3 Authority Key Identifier: keyid:4D:8F:58:0C:8F:57:59:46:7D:B8:EA:0F:08:C3:11:A9:6D:3B:3F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E951/5BB0743C623A11F0A7E2760BC4F9AE02/TY9YDI9XWUZ9uOoPCMMRqW07P7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TY9YDI9XWUZ9uOoPCMMRqW07P7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E951/5BB0743C623A11F0A7E2760BC4F9AE02/A24902C8623B11F0BEB49510C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:d2c0::/48 Signature Algorithm: sha256WithRSAEncryption 9e:6b:72:b0:2d:84:1a:23:9f:31:61:8b:99:82:b5:d8:a1:8a: c5:b7:21:34:fe:48:0a:eb:2a:8b:76:0a:9c:74:73:09:e4:11: 3b:3c:4b:60:a7:69:58:a6:88:81:5a:a4:5e:11:4d:f8:b6:8f: d4:29:e2:52:e7:3d:6a:3f:67:7a:70:29:3e:d5:90:5c:89:97: 6c:56:ca:fa:2a:5a:e5:44:a0:c6:d3:82:9f:1f:0e:d9:b5:07: ce:82:5f:55:fa:9d:5e:d6:50:ba:8c:c1:3b:a7:29:0d:e3:8c: fa:fe:46:05:25:22:1a:73:1f:cb:cb:b8:d1:1a:6f:12:31:41: 0f:f1:d7:00:ce:14:51:d0:e4:54:cf:b1:a5:ac:6d:00:f4:09: 33:4c:d9:0f:19:b7:7d:d2:68:c2:71:63:6c:90:ab:94:88:a1: c4:dd:b7:53:eb:99:24:d2:b1:c4:c2:43:65:a9:21:c0:66:78: 12:02:31:4d:1c:85:25:4c:3e:62:e9:3b:cc:fb:c8:6d:88:ee: 49:e7:a8:ef:aa:9e:6d:d4:11:7c:af:cf:9b:49:1a:6a:31:7f: 91:23:a6:5d:08:09:51:2c:54:b1:ad:b7:21:49:89:ea:c4:40: 6a:3d:d3:ea:94:19:c6:51:3e:17:34:4c:5c:bd:a9:f0:aa:70: ae:51:f1:f1 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTk1MTExMC8GA1UEBRMoNEQ4RjU4MEM4RjU3NTk0NjdEQjhFQTBGMDhDMzExQTk2 RDNCM0ZCQjAeFw0yNTA3MTYxMTU0MzFaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Nzc5MmY3LTNhODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFO5sEfGo3LllQZ9jKTn33sh7V1LCjqej3cMDO8T4nhVbiQzdOlEbbHqYjtqP7 zZ2iBE5hn0He3rATnFa3m+KMPMlFIod/3D34g2rh/ymlAjp8+VKAjnZBlfcUfCmf gADH83BqsGXAwLT44xzLW9SF/lRgU5h43iJw+i9yHQZ2RNy6xuW9eQVi7RG+ofwT 82PL1yFIOv12DI7V7fUAQEuCXP+qyaW7DceymtYawlC1kwQfOJxQTlx2hNr7EHGQ m8CpBl7a51obMW9oetwCluRJ21fe97h/im3PJc3+cqEYAOYDGTFT2thV/BiBn1oq MIaxKva8eyvCNN/C+0ymDFsbAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUvl+JGFhC LSfmahmyH5oZT+hws1swHwYDVR0jBBgwFoAUTY9YDI9XWUZ9uOoPCMMRqW07P7sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFOTUxLzVCQjA3NDNDNjIz QTExRjBBN0UyNzYwQkM0RjlBRTAyL1RZOVlESTlYV1VaOXVPb1BDTU1ScVcwN1A3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVFk5WURJOVhXVVo5dU9vUENNTVJxVzA3UDdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTk1MS81QkIwNzQzQzYyM0ExMUYwQTdFMjc2MEJDNEY5QUUwMi9BMjQ5MDJDODYy M0IxMUYwQkVCNDk1MTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfXSwDANBgkqhkiG9w0BAQsFAAOCAQEAnmtysC2EGiOf MWGLmYK12KGKxbchNP5ICusqi3YKnHRzCeQROzxLYKdpWKaIgVqkXhFN+LaP1Cni Uuc9aj9nenApPtWQXImXbFbK+ipa5USgxtOCnx8O2bUHzoJfVfqdXtZQuozBO6cp DeOM+v5GBSUiGnMfy8u40RpvEjFBD/HXAM4UUdDkVM+xpaxtAPQJM0zZDxm3fdJo wnFjbJCrlIihxN23U+uZJNKxxMJDZakhwGZ4EgIxTRyFJUw+Yuk7zPvIbYjuSeeo 76qebdQRfK/Pm0kaajF/kSOmXQgJUSxUsa23IUmJ6sRAaj3T6pQZxlE+FzRMXL2p 8KpwrlHx8Q== -----END CERTIFICATE-----Generated at Sun Aug 10 18:54:52 2025 by rpki-client