$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A56F72B43A0111F09FBCCC21C4F9AE02.roa File: A56F72B43A0111F09FBCCC21C4F9AE02.roa (raw, json) Hash identifier: 8elQtPHrwXcobdS6Yyte6lxh9L3j+y0g+NaPDeSBC20= Subject key identifier: 09:30:AD:8D:6E:84:79:C1:49:54:5B:52:FC:A2:2A:BA:56:37:86:12 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: BBE2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A56F72B43A0111F09FBCCC21C4F9AE02.roa Signing time: Mon 26 May 2025 07:18:39 +0000 ROA not before: Mon 26 May 2025 07:18:39 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150035 IP address blocks: 2001:df0:1480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48098 (0xbbe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 26 07:18:39 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683415cf-3118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:30:5f:b2:b5:12:cf:30:25:c5:26:1f:af:c5: e7:33:17:7f:f4:dd:ff:ea:8b:ee:6d:bd:09:16:37: 47:68:23:5a:4c:9a:48:fb:85:96:04:c0:7b:28:39: 6b:57:4c:87:12:c3:72:0c:b2:d3:83:41:bb:e0:34: 37:c0:67:7d:59:1d:5d:18:ea:93:82:e9:13:a3:d6: 43:66:b1:42:5b:2c:b7:1f:2a:29:c1:9f:8e:8b:90: da:c5:57:2a:6f:66:8f:c6:51:ac:7f:c3:50:61:4d: f9:c4:96:73:98:bf:fb:94:96:3e:26:52:44:c0:8d: 64:b3:d0:5f:c0:c1:c8:f7:54:5f:68:a6:2a:6e:52: 83:fe:24:8a:ac:21:b9:cb:08:70:5e:ca:4c:e7:24: b7:b2:14:99:f4:9a:5d:06:ab:42:87:5a:41:cb:d7: 8c:db:7f:5f:f8:9c:a9:4c:c8:a9:e8:75:3e:ad:ad: ef:ab:20:bb:a1:c1:ba:b6:af:d7:d8:b1:10:02:6e: 5d:a4:28:b7:93:c4:18:cc:c2:22:36:ff:3a:92:2e: f1:c9:81:76:15:57:36:ce:0c:87:43:a8:fb:8a:f2: e6:ba:89:76:d8:5b:4f:f4:92:51:44:f0:26:5e:a0: 1f:b3:b6:11:be:5a:78:f7:46:b9:8e:ab:cf:3f:b4: 17:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:30:AD:8D:6E:84:79:C1:49:54:5B:52:FC:A2:2A:BA:56:37:86:12 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A56F72B43A0111F09FBCCC21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:1480::/48 Signature Algorithm: sha256WithRSAEncryption 30:2e:e9:a7:f3:14:ac:6e:e3:05:a0:58:c1:3a:21:ce:62:e3: c7:3f:a0:ea:cd:04:f6:79:67:b7:6f:38:1e:7e:80:b2:38:46: 2e:54:c1:e2:92:af:17:3a:62:ab:af:88:bb:bf:ab:bd:ec:9a: 77:5a:f5:4e:f9:1d:9d:58:30:43:f8:60:14:5f:6a:60:84:4d: c9:7c:2f:6b:b2:9d:1a:7e:0f:89:69:08:9c:b9:1b:96:a8:27: e9:a8:59:6a:7b:3a:59:c7:9d:a8:a2:2d:ad:79:22:23:80:86: 5a:7d:f0:05:f1:0e:51:47:de:a6:41:1f:e2:c1:72:b7:4c:f2: 15:69:52:91:7e:a3:aa:88:3b:e6:d0:a3:c3:d8:a9:78:48:38: d6:b4:04:62:79:1e:d5:57:a7:8c:5d:c4:7d:33:fe:17:25:55: 4f:00:af:16:00:fc:1d:c6:ae:45:e4:06:4c:c2:ac:50:98:a9: a4:cc:15:44:29:6e:1f:12:46:10:92:5f:74:38:5a:ed:46:77: 87:5b:a1:87:fd:c4:12:1e:d3:6c:01:c3:d9:f5:09:8c:b4:72: a7:33:30:45:8d:eb:f3:a6:7c:fe:cb:fe:69:d0:31:87:85:a5: ea:6e:f5:cd:a2:ed:f5:44:14:84:68:e8:b7:8d:29:56:32:ec: 6b:2e:e9:29 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDALviMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUyNjA3MTgzOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgzNDE1Y2YtMzExODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALQwX7K1Es8wJcUmH6/F5zMXf/Td/+qL7m29CRY3R2gjWkyaSPuFlgTAeyg5 a1dMhxLDcgyy04NBu+A0N8BnfVkdXRjqk4LpE6PWQ2axQlsstx8qKcGfjouQ2sVX Km9mj8ZRrH/DUGFN+cSWc5i/+5SWPiZSRMCNZLPQX8DByPdUX2imKm5Sg/4kiqwh ucsIcF7KTOckt7IUmfSaXQarQodaQcvXjNt/X/icqUzIqeh1Pq2t76sgu6HBurav 19ixEAJuXaQot5PEGMzCIjb/OpIu8cmBdhVXNs4Mh0Oo+4ry5rqJdthbT/SSUUTw Jl6gH7O2Eb5aePdGuY6rzz+0FyECAwEAAaOCApgwggKUMB0GA1UdDgQWBBQJMK2N boR5wUlUW1L8oiq6VjeGEjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0E1NkY3MkI0 M0EwMTExRjA5RkJDQ0MyMUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN8BSAMA0GCSqGSIb3DQEBCwUAA4IBAQAwLumn8xSs buMFoFjBOiHOYuPHP6DqzQT2eWe3bzgefoCyOEYuVMHikq8XOmKrr4i7v6u97Jp3 WvVO+R2dWDBD+GAUX2pghE3JfC9rsp0afg+JaQicuRuWqCfpqFlqezpZx52ooi2t eSIjgIZaffAF8Q5RR96mQR/iwXK3TPIVaVKRfqOqiDvm0KPD2Kl4SDjWtARieR7V V6eMXcR9M/4XJVVPAK8WAPwdxq5F5AZMwqxQmKmkzBVEKW4fEkYQkl90OFrtRneH W6GH/cQSHtNsAcPZ9QmMtHKnMzBFjevzpnz+y/5p0DGHhaXqbvXNou31RBSEaOi3 jSlWMuxrLukp -----END CERTIFICATE-----Generated at Wed Nov 5 16:31:18 2025 by rpki-client