$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0FFCF3AA816A11EF8B3CC90DC4F9AE02.roa File: 0FFCF3AA816A11EF8B3CC90DC4F9AE02.roa (raw, json) Hash identifier: PMocT8gVsRRUgN44HxN4Sjz7kt+/wucntkqo39mGWPM= Subject key identifier: CE:1E:F0:D3:A1:49:10:C6:DC:FB:16:20:E7:8C:80:16:F1:B7:45:38 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: BE09 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0FFCF3AA816A11EF8B3CC90DC4F9AE02.roa Signing time: Fri 13 Jun 2025 10:50:38 +0000 ROA not before: Fri 13 Jun 2025 10:50:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135695 IP address blocks: 36.50.214.0/24 maxlen: 24 2401:5ca0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48649 (0xbe09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 13 10:50:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=684c027e-fa28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:68:d2:13:96:26:16:03:88:97:36:8f:a5:0f: 6b:6e:a7:90:93:dc:ff:85:b0:cd:3a:62:f2:a8:d4: 82:dc:82:47:c4:14:3f:9f:a3:60:9b:d0:1e:ba:66: 56:2c:1e:72:64:2b:63:4a:ff:c2:d0:8f:9d:58:af: 64:d9:18:34:5e:6d:7e:9d:a6:12:4f:50:af:35:25: da:ad:0e:21:14:3b:01:94:16:5c:a7:a4:74:58:dc: cb:54:47:ff:6c:83:96:cc:74:8c:6e:43:e7:11:a4: 10:55:52:40:da:86:e8:2d:78:8c:e7:e5:84:0c:69: e6:cc:25:ae:66:7f:c8:0e:8d:bc:2c:8d:de:74:aa: cf:17:c4:2f:d4:08:25:00:41:09:5d:44:f4:6b:42: 0f:cb:c2:e3:c6:9a:67:de:5d:82:79:a8:d0:76:d6: fc:05:a0:99:dd:af:99:eb:49:61:8c:1e:4a:ac:b1: 74:42:79:93:ef:c0:0e:d1:89:56:0e:52:ad:bd:85: 75:fb:44:23:08:81:ae:21:53:d0:75:c8:93:3a:3d: a2:36:33:d5:3a:d1:cd:6f:d8:56:4b:d0:ee:8a:98: d1:5f:21:09:d9:0e:42:c6:1b:85:98:5b:69:9e:2d: 34:6b:b2:a7:db:7b:f8:a2:b0:cd:6d:26:00:53:d4: 47:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:1E:F0:D3:A1:49:10:C6:DC:FB:16:20:E7:8C:80:16:F1:B7:45:38 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0FFCF3AA816A11EF8B3CC90DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.214.0/24 IPv6: 2401:5ca0::/32 Signature Algorithm: sha256WithRSAEncryption 1a:6f:b8:77:cb:6a:4d:09:0f:3d:3a:08:c7:a4:1e:d6:f6:35: 00:95:6f:27:85:dc:9f:7b:06:c3:30:7f:14:5b:81:a4:af:c8: 60:3c:f3:05:aa:2c:9b:d0:79:81:27:fb:90:7c:36:70:8c:ff: be:7d:b2:a7:39:6e:f9:6a:34:aa:7b:06:4e:7f:2e:10:34:83: 29:1f:94:ac:90:96:1a:57:7d:47:c7:30:fc:a9:3f:f5:f4:2c: d2:7a:1b:32:59:23:f1:ce:09:d7:09:60:ec:21:ed:cc:27:c0: eb:04:66:22:45:de:0b:31:fa:0b:de:87:b1:f2:f3:e2:82:c0: ba:85:ed:04:aa:02:63:4b:69:35:f4:aa:dd:d8:cf:aa:d7:32: 83:fd:a9:f7:26:74:79:6b:01:ba:ab:22:d9:bd:77:fe:7d:16: d3:fe:00:07:f0:ee:7c:08:94:71:ed:c4:80:0f:a9:52:29:e2: 45:10:40:46:bc:22:17:f7:98:09:98:79:9e:72:1c:c6:c2:84: e9:d0:95:58:7c:56:9c:ca:df:24:4c:47:e9:72:0e:2b:74:8b: 83:bb:88:70:7f:78:79:75:57:1c:8b:97:91:be:ac:83:79:eb: 57:0d:d8:79:fb:62:b6:68:e4:51:a0:ff:c1:21:5e:8c:53:7a: 10:7f:a4:52 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIDAL4JMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDYxMzEwNTAzOFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjg0YzAyN2UtZmEyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKpo0hOWJhYDiJc2j6UPa26nkJPc/4WwzTpi8qjUgtyCR8QUP5+jYJvQHrpm ViwecmQrY0r/wtCPnVivZNkYNF5tfp2mEk9QrzUl2q0OIRQ7AZQWXKekdFjcy1RH /2yDlsx0jG5D5xGkEFVSQNqG6C14jOflhAxp5swlrmZ/yA6NvCyN3nSqzxfEL9QI JQBBCV1E9GtCD8vC48aaZ95dgnmo0HbW/AWgmd2vmetJYYweSqyxdEJ5k+/ADtGJ Vg5Srb2FdftEIwiBriFT0HXIkzo9ojYz1TrRzW/YVkvQ7oqY0V8hCdkOQsYbhZhb aZ4tNGuyp9t7+KKwzW0mAFPURx8CAwEAAaOCAqQwggKgMB0GA1UdDgQWBBTOHvDT oUkQxtz7FiDnjIAW8bdFODAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzBGRkNGM0FB ODE2QTExRUY4QjNDQzkwREM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMC4GCCsGAQUFBwEHAQH/ BB8wHTAMBAIAATAGAwQAJDLWMA0EAgACMAcDBQAkAVygMA0GCSqGSIb3DQEBCwUA A4IBAQAab7h3y2pNCQ89OgjHpB7W9jUAlW8nhdyfewbDMH8UW4Gkr8hgPPMFqiyb 0HmBJ/uQfDZwjP++fbKnOW75ajSqewZOfy4QNIMpH5SskJYaV31HxzD8qT/19CzS ehsyWSPxzgnXCWDsIe3MJ8DrBGYiRd4LMfoL3oex8vPigsC6he0EqgJjS2k19Krd 2M+q1zKD/an3JnR5awG6qyLZvXf+fRbT/gAH8O58CJRx7cSAD6lSKeJFEEBGvCIX 95gJmHmechzGwoTp0JVYfFacyt8kTEfpcg4rdIuDu4hwf3h5dVcci5eRvqyDeetX Ddh5+2K2aORRoP/BIV6MU3oQf6RS -----END CERTIFICATE-----Generated at Sun Jun 15 09:54:00 2025 by rpki-client