$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/96C7C3E471E511F09456DC2DC4F9AE02.roa File: 96C7C3E471E511F09456DC2DC4F9AE02.roa (raw, json) Hash identifier: eolb9DojZqdObxprv9K9XAbVVdLS0l5tAnPQuJRKZHo= Subject key identifier: 77:03:34:11:05:83:BB:B2:CE:FB:CC:C1:53:D5:71:68:67:4B:88:05 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1F49 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/96C7C3E471E511F09456DC2DC4F9AE02.roa Signing time: Tue 05 Aug 2025 10:18:54 +0000 ROA not before: Tue 05 Aug 2025 10:18:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141794 IP address blocks: 192.156.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8009 (0x1f49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Aug 5 10:18:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6891da8e-d005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6d:38:58:91:3a:a4:a1:2a:a8:08:a4:1d:f7: 76:32:28:00:34:ab:d8:a2:cd:4a:e4:98:1f:ff:81: ad:fc:a3:a7:fa:06:b4:3b:62:12:58:bc:69:88:af: 6f:74:de:46:28:ae:48:b3:88:e0:f5:2b:87:43:bb: 97:b8:d3:ef:ba:b6:47:b6:f0:f2:16:ae:e6:9c:57: ec:0c:f6:32:08:a9:cf:f1:42:a8:98:24:12:a5:dc: 6a:49:ee:e6:33:b5:5e:4d:aa:ba:e0:3c:b0:c9:e8: c0:d7:df:99:56:7d:98:4c:62:0b:59:9f:eb:a0:21: 7f:2e:98:42:7d:5c:8f:04:b3:73:0e:e7:07:7e:92: 25:32:8b:8b:cf:f1:59:d2:a7:c8:fb:c7:2a:b1:ba: af:c8:32:f7:59:35:5e:0f:40:d8:ce:c4:3a:b4:11: 51:6f:7d:d2:c4:0b:56:b8:11:a6:e2:1d:c7:cf:17: 81:5b:f6:06:7c:33:db:f8:e5:96:49:e4:44:06:73: ea:ec:11:79:ce:a7:32:43:d2:08:87:8b:57:9e:51: b3:86:4b:13:d2:8e:c2:58:e7:1b:53:17:a8:f8:03: 15:a3:4b:ad:34:36:5c:77:af:2e:93:c2:84:ac:51: c6:b2:54:88:c5:53:d9:8f:bd:5b:5e:17:12:d9:52: 16:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:03:34:11:05:83:BB:B2:CE:FB:CC:C1:53:D5:71:68:67:4B:88:05 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/96C7C3E471E511F09456DC2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.156.152.0/24 Signature Algorithm: sha256WithRSAEncryption 17:35:a7:49:72:8e:b6:fb:2b:23:c9:55:9d:bb:4d:7a:4c:7a: 03:e7:4c:46:e7:6d:dc:9d:c1:52:3f:6e:01:a4:65:63:36:36: c4:b0:3d:01:22:bd:d9:77:97:8f:5c:9c:ae:7a:5c:5b:e7:4f: f6:09:fa:52:9c:3a:97:dd:50:38:34:00:1b:fc:a4:d7:31:d3: 9d:dd:8b:d5:b8:f0:d3:df:39:2c:9b:66:a7:a6:4a:d2:ae:06: a1:a7:2a:35:a6:f8:85:2d:4b:96:96:98:0e:f2:8e:83:f7:1c: b4:d4:8c:57:89:69:a4:b4:e9:b0:bd:76:ee:27:e4:38:46:40: e7:a5:9e:c6:62:0f:01:78:af:96:2f:33:17:92:15:1f:c8:6f: ec:f2:a1:78:b3:a0:05:86:6d:30:1f:29:88:86:0f:91:d5:e2: 89:d9:87:4a:8b:fb:8b:7c:2f:e0:07:6b:ff:af:29:87:06:79: 00:d2:79:04:aa:49:f1:bf:ce:a9:50:f9:8e:21:1d:a8:29:26: 7a:6b:a8:2b:b7:88:7f:84:53:53:a3:02:1d:99:a6:2e:72:38: aa:dc:d0:88:6a:7f:ed:2b:6e:07:a4:26:25:84:15:91:c5:a8: ed:d1:e3:4e:b5:4e:b3:37:08:e0:48:a2:c4:51:fe:75:b4:4c: 0d:be:ad:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwODA1MTAxODU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxZGE4ZS1kMDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyG04WJE6pKEqqAikHfd2MigANKvYos1K5Jgf/4Gt/KOn+ga0O2ISWLxpiK9v dN5GKK5Is4jg9SuHQ7uXuNPvurZHtvDyFq7mnFfsDPYyCKnP8UKomCQSpdxqSe7m M7VeTaq64DywyejA19+ZVn2YTGILWZ/roCF/LphCfVyPBLNzDucHfpIlMouLz/FZ 0qfI+8cqsbqvyDL3WTVeD0DYzsQ6tBFRb33SxAtWuBGm4h3HzxeBW/YGfDPb+OWW SeREBnPq7BF5zqcyQ9IIh4tXnlGzhksT0o7CWOcbUxeo+AMVo0utNDZcd68uk8KE rFHGslSIxVPZj71bXhcS2VIWwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHcDNBEF g7uyzvvMwVPVcWhnS4gFMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOTZDN0MzRTQ3 MUU1MTFGMDk0NTZEQzJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAnJgwDQYJKoZIhvcNAQELBQADggEBABc1p0lyjrb7KyPJ VZ27TXpMegPnTEbnbdydwVI/bgGkZWM2NsSwPQEivdl3l49cnK56XFvnT/YJ+lKc OpfdUDg0ABv8pNcx053di9W48NPfOSybZqemStKuBqGnKjWm+IUtS5aWmA7yjoP3 HLTUjFeJaaS06bC9du4n5DhGQOelnsZiDwF4r5YvMxeSFR/Ib+zyoXizoAWGbTAf KYiGD5HV4onZh0qL+4t8L+AHa/+vKYcGeQDSeQSqSfG/zqlQ+Y4hHagpJnprqCu3 iH+EU1OjAh2Zpi5yOKrc0Ihqf+0rbgekJiWEFZHFqO3R4061TrM3COBIosRR/nW0 TA2+rYQ= -----END CERTIFICATE-----Generated at Sat Aug 9 20:40:12 2025 by rpki-client