$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7379A9A02FB11F09EE8E723C4F9AE02.roa File: B7379A9A02FB11F09EE8E723C4F9AE02.roa (raw, json) Hash identifier: W3nqyUSpxq7tPhbBB4uwekia9GMF5RMVedsRB0aXlHM= Subject key identifier: 06:AB:56:55:D7:B6:49:2B:C0:1B:9F:7B:CC:3E:C0:53:1E:6C:C8:3A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B9A3 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7379A9A02FB11F09EE8E723C4F9AE02.roa Signing time: Thu 08 May 2025 16:29:13 +0000 ROA not before: Thu 08 May 2025 16:29:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153270 IP address blocks: 2001:df5:15c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47523 (0xb9a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:29:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdbd9-4f49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:59:b2:3e:59:8f:7a:40:bd:28:f0:71:e2:c2: 27:f5:c8:0a:9c:67:27:78:e7:f9:a2:14:57:49:07: 06:ec:ce:06:ee:b8:57:d3:05:ef:19:a1:d0:33:d1: 8a:3f:92:b8:70:dd:2e:82:37:00:f4:6c:1e:37:0a: 71:53:61:8d:b7:6e:b6:a5:57:cc:0a:48:1b:d1:cf: 13:0f:94:7e:38:58:97:fb:3d:30:7b:eb:b9:67:46: 05:77:b3:cb:b2:72:63:c2:2f:97:d3:0b:b7:b8:c8: 68:fe:14:8a:08:5f:5f:ea:ef:4c:71:03:5e:fb:41: 0f:8f:6b:9d:6a:4d:49:56:27:23:f8:8a:4d:63:19: 69:e9:e9:77:dc:9b:18:da:02:93:f8:f8:5b:8a:f1: 9c:4b:64:c4:e5:6a:d1:0e:4f:9a:69:16:cf:a7:20: a6:82:b5:7b:9b:8a:20:a2:52:18:d7:bf:d6:54:56: 71:1a:98:4f:71:d2:96:5b:da:91:5b:60:9c:45:9e: eb:0c:df:82:e6:20:ad:29:91:74:f3:8c:39:55:aa: 4b:35:3f:5c:81:d8:cc:d2:fb:64:1a:0e:03:af:74: 0a:7f:a1:9d:a5:43:78:7d:ea:1f:29:71:d4:57:d7: 6a:78:ac:8a:7d:6e:b4:e9:59:af:50:02:80:3f:a0: 04:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:AB:56:55:D7:B6:49:2B:C0:1B:9F:7B:CC:3E:C0:53:1E:6C:C8:3A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7379A9A02FB11F09EE8E723C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:15c0::/48 Signature Algorithm: sha256WithRSAEncryption 0d:e1:d7:01:48:3e:2e:ae:e2:47:ac:6e:cf:b3:a0:64:77:a4: 6c:4a:27:ae:19:7b:f7:e0:b6:15:0b:40:6d:53:ab:b1:8a:e8: 4c:fe:69:bf:60:9b:5d:64:57:c4:87:9d:4c:ea:e5:57:0b:d9: b0:30:c1:43:68:f4:81:63:56:8e:a4:b7:b7:c7:1c:5f:f5:a6: 59:42:61:c7:e4:fd:74:f6:59:bd:84:fc:88:bc:ff:9d:b3:0c: 17:ef:51:26:be:e2:0a:a6:21:08:64:4c:c8:d6:8e:54:71:f9: 88:5b:7d:81:20:7a:6b:79:28:9c:a6:99:7e:22:38:ba:a0:23: 4b:b1:a8:74:b4:c5:d8:37:3e:b4:cb:83:4c:30:86:11:6d:80: 73:56:4e:45:55:c3:ad:4a:39:40:df:3e:c6:44:42:ba:93:e0: 69:b5:6e:7b:88:70:53:11:f4:fd:50:84:16:b1:6d:d7:06:fa: 1a:39:8b:40:9b:5e:41:94:06:77:e2:34:bf:c3:a3:fe:88:b9: ca:4d:10:8e:64:d9:6e:dd:67:2e:29:a0:db:9c:a1:10:78:0a: 18:9e:e2:d0:7c:39:5d:e2:14:b5:72:f5:5b:1b:14:9d:c2:1b: d8:23:8f:f9:42:c5:ac:6f:5a:5a:18:3c:02:ae:5e:11:81:f0: 4d:b7:0c:8e -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDALmjMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjkxM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RiZDktNGY0OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNZsj5Zj3pAvSjwceLCJ/XICpxnJ3jn+aIUV0kHBuzOBu64V9MF7xmh0DPR ij+SuHDdLoI3APRsHjcKcVNhjbdutqVXzApIG9HPEw+UfjhYl/s9MHvruWdGBXez y7JyY8Ivl9MLt7jIaP4UighfX+rvTHEDXvtBD49rnWpNSVYnI/iKTWMZaenpd9yb GNoCk/j4W4rxnEtkxOVq0Q5PmmkWz6cgpoK1e5uKIKJSGNe/1lRWcRqYT3HSllva kVtgnEWe6wzfguYgrSmRdPOMOVWqSzU/XIHYzNL7ZBoOA690Cn+hnaVDeH3qHylx 1FfXanisin1utOlZr1ACgD+gBLsCAwEAAaOCApgwggKUMB0GA1UdDgQWBBQGq1ZV 17ZJK8Abn3vMPsBTHmzIOjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0I3Mzc5QTlB MDJGQjExRjA5RUU4RTcyM0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN9RXAMA0GCSqGSIb3DQEBCwUAA4IBAQAN4dcBSD4u ruJHrG7Ps6Bkd6RsSieuGXv34LYVC0BtU6uxiuhM/mm/YJtdZFfEh51M6uVXC9mw MMFDaPSBY1aOpLe3xxxf9aZZQmHH5P109lm9hPyIvP+dswwX71EmvuIKpiEIZEzI 1o5UcfmIW32BIHpreSicppl+Iji6oCNLsah0tMXYNz60y4NMMIYRbYBzVk5FVcOt SjlA3z7GREK6k+BptW57iHBTEfT9UIQWsW3XBvoaOYtAm15BlAZ34jS/w6P+iLnK TRCOZNlu3WcuKaDbnKEQeAoYnuLQfDld4hS1cvVbGxSdwhvYI4/5QsWsb1paGDwC rl4RgfBNtwyO -----END CERTIFICATE-----Generated at Wed Nov 5 23:50:36 2025 by rpki-client