$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5AD6E95441EE11F083FC6C54C4F9AE02.roa File: 5AD6E95441EE11F083FC6C54C4F9AE02.roa (raw, json) Hash identifier: 5YsqBIKzi+Y516R3aKncUC87OIxuT29+kDWe28EW8Jk= Subject key identifier: 60:59:95:1D:F1:14:7F:AA:BC:35:0F:03:8F:12:BE:B5:3D:C3:2E:B7 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: BD24 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5AD6E95441EE11F083FC6C54C4F9AE02.roa Signing time: Thu 05 Jun 2025 09:20:43 +0000 ROA not before: Thu 05 Jun 2025 09:20:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153926 IP address blocks: 2001:df5:9f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48420 (0xbd24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 5 09:20:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6841616b-4ab0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e9:3f:1c:72:6d:3f:75:46:09:17:1a:9e:96: 4b:00:80:04:7c:a7:b7:13:25:1e:41:ca:ee:a9:6a: b9:08:3c:d7:05:e2:60:0c:33:e8:5f:ab:c9:6f:71: 4d:22:52:45:29:0a:f8:7c:72:19:77:d2:a5:ff:d4: 11:4e:60:f0:e1:8d:bb:ca:1d:bd:dc:41:bf:2e:46: db:c8:5e:64:0c:61:40:ba:1f:83:34:77:59:af:16: dc:d4:ee:44:2f:10:44:bf:1b:52:e4:07:41:8f:c7: 0e:29:4b:5b:3d:4d:bd:f0:9c:34:0a:f8:47:a1:3c: d9:e5:9d:27:4a:7a:de:8f:a7:2f:74:e3:8b:e5:b0: e5:13:30:d8:f3:9d:20:60:20:a9:8f:90:84:41:48: cb:b8:50:bf:c0:a6:68:3a:e4:26:fd:4c:9a:41:34: 20:07:05:53:48:ed:3f:5e:97:4c:92:ab:e9:e0:25: 56:81:33:5c:2d:61:d1:6e:ff:f8:89:ef:02:44:c1: 28:9c:33:8e:e9:36:94:c3:bd:90:89:5e:d3:06:d4: 98:f4:ed:dd:2e:16:bc:48:3f:7f:b1:b2:56:bf:f9: 6b:df:ee:25:65:10:6f:5b:8a:a1:88:4c:dc:1d:a2: 52:a4:0b:3e:50:94:69:a2:d0:67:cc:7c:46:b2:73: 52:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:59:95:1D:F1:14:7F:AA:BC:35:0F:03:8F:12:BE:B5:3D:C3:2E:B7 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5AD6E95441EE11F083FC6C54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:9f40::/48 Signature Algorithm: sha256WithRSAEncryption 1d:9f:46:f4:d6:29:86:d1:a9:97:68:62:12:3e:ec:84:bc:14: 9f:2c:f2:60:67:1c:d6:25:47:a8:51:e7:3f:1f:d9:ad:b2:c4: 4a:01:18:22:04:2c:5e:dc:a8:01:e9:f9:01:39:7d:d2:d5:d3: 05:05:ca:ea:81:5d:3a:23:67:48:30:90:c4:3c:fd:f1:b0:3a: 2d:ba:07:a1:9f:36:ab:7d:ad:b5:ef:15:39:12:d1:2c:84:a4: b1:1d:5b:44:2f:d1:41:fb:8a:9c:89:63:5a:46:0d:92:66:cd: 72:3e:ed:3a:3d:a7:c7:dc:0b:0f:22:f0:9e:2b:52:2f:2d:22: 2c:7c:d9:40:eb:cc:73:9e:e3:39:cd:68:48:2f:e6:c6:73:99: d1:7f:57:8d:73:bb:96:fc:d5:53:ed:2c:63:9b:89:d9:a3:cb: d3:8a:79:9c:a5:e5:3a:eb:9f:52:94:1f:51:af:c6:2d:c6:bb: a5:92:d2:a1:9e:5c:f0:62:87:59:09:fb:d9:bf:25:dd:f1:45: 33:0e:7d:dd:0b:5c:a3:f3:e5:d2:86:a0:3e:09:c9:31:06:2e: c0:fe:d6:c9:06:65:dc:3d:6a:84:93:67:f2:55:79:a8:11:ef: 5b:fe:ed:68:e3:30:ef:54:6c:7c:76:24:23:30:70:a4:56:3d: b1:37:95:96 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAL0kMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDYwNTA5MjA0M1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjg0MTYxNmItNGFiMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALLpPxxybT91RgkXGp6WSwCABHyntxMlHkHK7qlquQg81wXiYAwz6F+ryW9x TSJSRSkK+HxyGXfSpf/UEU5g8OGNu8odvdxBvy5G28heZAxhQLofgzR3Wa8W3NTu RC8QRL8bUuQHQY/HDilLWz1NvfCcNAr4R6E82eWdJ0p63o+nL3Tji+Ww5RMw2POd IGAgqY+QhEFIy7hQv8CmaDrkJv1MmkE0IAcFU0jtP16XTJKr6eAlVoEzXC1h0W7/ +InvAkTBKJwzjuk2lMO9kIle0wbUmPTt3S4WvEg/f7GyVr/5a9/uJWUQb1uKoYhM 3B2iUqQLPlCUaaLQZ8x8RrJzUp8CAwEAAaOCApgwggKUMB0GA1UdDgQWBBRgWZUd 8RR/qrw1DwOPEr61PcMutzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzVBRDZFOTU0 NDFFRTExRjA4M0ZDNkM1NEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN9Z9AMA0GCSqGSIb3DQEBCwUAA4IBAQAdn0b01imG 0amXaGISPuyEvBSfLPJgZxzWJUeoUec/H9mtssRKARgiBCxe3KgB6fkBOX3S1dMF BcrqgV06I2dIMJDEPP3xsDotugehnzarfa217xU5EtEshKSxHVtEL9FB+4qciWNa Rg2SZs1yPu06PafH3AsPIvCeK1IvLSIsfNlA68xznuM5zWhIL+bGc5nRf1eNc7uW /NVT7Sxjm4nZo8vTinmcpeU6659SlB9Rr8YtxrulktKhnlzwYodZCfvZvyXd8UUz Dn3dC1yj8+XShqA+CckxBi7A/tbJBmXcPWqEk2fyVXmoEe9b/u1o4zDvVGx8diQj MHCkVj2xN5WW -----END CERTIFICATE-----Generated at Sun Jun 15 08:37:49 2025 by rpki-client