$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/0DF3B25E70E911E2B36D4B6B2979BB20/F22C58CEE69611EAA594260CC4F9AE02.roa File: F22C58CEE69611EAA594260CC4F9AE02.roa (raw, json) Hash identifier: fnrYZYlCN57UVfp7zz/b0ADCI8GQeD8xxQSWqXCF91M= Subject key identifier: 2F:1F:DC:32:AB:E9:61:11:96:69:D1:BF:7D:66:54:EC:A4:08:59:27 Certificate issuer: /CN=A918EDB2/serialNumber=35A3F61FC5DFF192C1D90C74AB82C7A25D7E16D8 Certificate serial: 191C Authority key identifier: 35:A3:F6:1F:C5:DF:F1:92:C1:D9:0C:74:AB:82:C7:A2:5D:7E:16:D8 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/0DF3B25E70E911E2B36D4B6B2979BB20/F22C58CEE69611EAA594260CC4F9AE02.roa Signing time: Thu 08 May 2025 15:51:58 +0000 ROA not before: Thu 08 May 2025 15:51:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 7633 IP address blocks: 196.12.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/0DF3B25E70E911E2B36D4B6B2979BB20/NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.crl rsync://rpki.apnic.net/member_repository/A918EDB2/0DF3B25E70E911E2B36D4B6B2979BB20/NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6428 (0x191c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=35A3F61FC5DFF192C1D90C74AB82C7A25D7E16D8 Validity Not Before: May 8 15:51:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd31d-9879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9a:4c:d9:87:92:02:32:bd:b7:3e:0e:22:78: b4:3a:a4:eb:c3:5e:a5:3a:a8:e4:6d:7f:d7:f5:36: b5:35:ff:f0:e2:3a:ee:d2:6a:e7:4d:a7:5f:7d:0d: 35:46:bb:98:8d:6e:7f:d2:72:4e:4e:b4:b2:21:c7: 7c:4c:ce:e1:7d:e3:7a:23:3a:94:30:12:93:1d:0b: d9:a7:a5:28:45:60:a7:af:30:85:87:0e:6d:42:df: 83:af:e7:5c:1f:a9:dd:78:a5:9a:10:4c:61:45:ce: b5:bf:80:dd:97:76:fd:5e:02:b2:7a:34:d6:b8:ba: 14:80:e2:28:89:f1:27:03:bd:66:c9:31:3d:21:6e: 36:40:c4:39:a3:ce:50:61:f6:f7:ca:8b:b1:ca:b9: 6e:14:f5:6f:79:2b:41:3c:20:5e:74:22:29:d0:40: aa:70:4d:c4:7b:f9:38:8b:d2:ab:c6:9e:df:de:4b: 95:00:3d:d7:cd:88:30:2f:eb:e2:49:ac:98:11:ec: 99:3b:fe:d6:ec:29:21:d6:4f:92:83:8b:46:05:24: 88:53:73:ed:14:36:a5:d3:bf:d1:a5:48:29:46:57: 87:a6:0b:6d:7e:1a:c3:e6:bd:f6:00:fc:42:9f:5f: 91:bd:0f:b0:01:6f:5e:59:9c:50:f1:8a:9c:eb:ec: 20:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:1F:DC:32:AB:E9:61:11:96:69:D1:BF:7D:66:54:EC:A4:08:59:27 X509v3 Authority Key Identifier: keyid:35:A3:F6:1F:C5:DF:F1:92:C1:D9:0C:74:AB:82:C7:A2:5D:7E:16:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/0DF3B25E70E911E2B36D4B6B2979BB20/NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/0DF3B25E70E911E2B36D4B6B2979BB20/F22C58CEE69611EAA594260CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 196.12.32.0/19 Signature Algorithm: sha256WithRSAEncryption 05:08:61:31:0a:3d:ba:6b:66:e0:97:81:54:42:f8:f0:8a:d4: 71:c0:33:1f:61:df:68:77:00:8b:ab:a2:64:a3:86:c2:27:13: 0c:6a:89:e0:41:f5:2c:7e:8f:bc:e4:ea:d5:06:f1:9f:11:d3: bd:27:c9:5a:f6:4a:c8:73:c9:04:fc:01:b8:4d:4d:86:a3:2f: b2:32:98:1c:71:0b:6c:f4:11:60:cb:ab:0a:77:d2:06:22:5d: 60:17:9f:db:9a:5f:30:4b:fc:49:be:b6:92:62:ed:f6:66:92: 0d:6b:9f:a6:e6:f1:b6:a8:c2:b3:ab:37:85:ff:18:08:12:33: 84:0a:0b:4d:3e:64:a4:94:97:f6:70:dc:28:16:eb:61:d7:51: e8:b9:f6:fb:62:61:ea:fa:99:2c:29:26:00:53:98:fd:38:79: 16:a8:01:c1:1f:53:69:c4:62:17:4d:cc:a2:84:ca:e5:9e:12: 5e:78:b9:35:c7:c2:1e:da:e7:1f:93:0f:09:1a:5e:96:01:18: 7f:1d:bd:24:97:ca:de:82:0b:b8:46:9b:b2:81:4c:9e:9b:29: 3b:9e:f1:f7:2b:52:63:02:df:50:e2:38:b6:21:b8:54:0d:10: 34:b9:95:56:b3:88:6a:a2:81:e6:27:e7:36:05:22:f2:0d:74: 61:82:ed:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDM1QTNGNjFGQzVERkYxOTJDMUQ5MEM3NEFCODJDN0Ey NUQ3RTE2RDgwHhcNMjUwNTA4MTU1MTU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDMxZC05ODc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ppM2YeSAjK9tz4OIni0OqTrw16lOqjkbX/X9Ta1Nf/w4jru0mrnTadffQ01 RruYjW5/0nJOTrSyIcd8TM7hfeN6IzqUMBKTHQvZp6UoRWCnrzCFhw5tQt+Dr+dc H6ndeKWaEExhRc61v4Ddl3b9XgKyejTWuLoUgOIoifEnA71myTE9IW42QMQ5o85Q Yfb3youxyrluFPVveStBPCBedCIp0ECqcE3Ee/k4i9Krxp7f3kuVAD3XzYgwL+vi SayYEeyZO/7W7Ckh1k+Sg4tGBSSIU3PtFDal07/RpUgpRleHpgttfhrD5r32APxC n1+RvQ+wAW9eWZxQ8Yqc6+wgYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC8f3DKr 6WERlmnRv31mVOykCFknMB8GA1UdIwQYMBaAFDWj9h/F3/GSwdkMdKuCx6JdfhbY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8wREYzQjI1RTcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9OYVAySDhYZjhaTEIyUXgwcTRMSG9sMS1G dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL05hUDJIOFhmOFpMQjJReDBxNExIb2wxLUZ0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMERGM0IyNUU3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjIyQzU4Q0VF Njk2MTFFQUE1OTQyNjBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAXEDCAwDQYJKoZIhvcNAQELBQADggEBAAUIYTEKPbprZuCX gVRC+PCK1HHAMx9h32h3AIuromSjhsInEwxqieBB9Sx+j7zk6tUG8Z8R070nyVr2 SshzyQT8AbhNTYajL7IymBxxC2z0EWDLqwp30gYiXWAXn9uaXzBL/Em+tpJi7fZm kg1rn6bm8baowrOrN4X/GAgSM4QKC00+ZKSUl/Zw3CgW62HXUei59vtiYer6mSwp JgBTmP04eRaoAcEfU2nEYhdNzKKEyuWeEl54uTXHwh7a5x+TDwkaXpYBGH8dvSSX yt6CC7hGm7KBTJ6bKTue8fcrUmMC31DiOLYhuFQNEDS5lVaziGqigeYn5zYFIvIN dGGC7Q8= -----END CERTIFICATE-----Generated at Wed Nov 5 13:32:19 2025 by rpki-client