$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F0275A6C66CD11F08E50CB41C4F9AE02.roa File: F0275A6C66CD11F08E50CB41C4F9AE02.roa (raw, json) Hash identifier: HwGKfpOQ7rtBJ6CPismSMJ38hBjnJO8R8Y+84kynwl0= Subject key identifier: 76:2F:E5:99:D0:2B:F6:8B:FF:8C:A0:58:56:06:29:17:F7:74:6B:95 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C0B9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F0275A6C66CD11F08E50CB41C4F9AE02.roa Signing time: Tue 22 Jul 2025 07:31:53 +0000 ROA not before: Tue 22 Jul 2025 07:31:53 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154057 IP address blocks: 2402:17e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49337 (0xc0b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 22 07:31:53 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=687f3e69-0f03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:47:cc:9c:4a:21:7b:a3:f5:0f:60:ed:04:70: 99:50:62:9f:4e:00:5a:2d:12:05:70:97:44:c4:c6: 5a:c4:97:2d:14:f9:b2:19:02:98:d5:fa:b0:1b:3a: ce:cc:2c:09:0b:5d:1c:ca:c2:7a:64:a5:6f:f9:28: 98:63:b6:ce:4c:54:8b:ab:45:93:da:b4:f3:31:07: ea:91:52:02:d7:77:a8:fb:a5:d7:87:8b:22:6c:6b: 85:3c:82:96:87:32:32:b6:81:f1:a2:8b:80:94:c5: c6:04:7b:98:2a:e3:dd:26:c0:a6:97:af:cc:40:c9: f1:1a:5c:d0:d8:6c:6f:0a:bb:ce:92:77:cf:a8:0e: f7:bd:c6:4a:32:66:04:dc:54:68:ea:e9:41:6f:5e: 8a:b0:a7:34:a6:ae:9c:c5:6d:1d:2c:71:85:01:d4: 70:f5:67:7e:ab:d7:34:52:82:ca:94:7e:46:fd:b2: 3b:6b:56:07:99:3c:83:5b:6f:ad:51:82:c1:41:5d: 3f:fd:83:9b:ef:d2:8e:6d:41:4f:42:fe:9b:0d:a0: 85:18:46:75:d0:1e:9c:5b:a4:7b:ca:06:6c:58:ad: 18:7c:21:24:44:7d:db:86:1f:2b:69:22:01:93:08: 96:d6:5f:95:72:85:35:c1:63:3c:05:51:ba:4c:43: 73:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:2F:E5:99:D0:2B:F6:8B:FF:8C:A0:58:56:06:29:17:F7:74:6B:95 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F0275A6C66CD11F08E50CB41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:17e0::/32 Signature Algorithm: sha256WithRSAEncryption 50:c1:2b:f5:bf:0d:ed:29:da:8a:79:8c:31:11:62:e9:b6:55: 5a:5c:fe:72:1a:26:99:b4:25:08:a9:6a:e2:4e:8b:06:cf:a5: da:be:5b:52:ac:a7:73:a5:11:a4:4e:ed:c2:51:da:ea:1f:7c: 13:c3:a9:1a:52:ca:51:ac:20:4f:ce:39:32:b9:15:4f:29:96: 73:dc:a5:f7:aa:25:1e:d8:1b:45:80:0d:bc:87:06:2d:6b:06: 77:74:78:49:9b:f3:8b:35:0e:3c:31:2f:b1:b6:de:ed:58:bd: ae:cc:73:54:c0:20:20:8c:03:72:9b:76:59:e8:9e:05:05:8c: fa:71:53:20:b7:d9:fc:54:18:03:43:8c:2c:a1:da:97:cf:fa: 4d:b9:6f:c2:cc:95:dd:5a:b4:63:2a:e6:fc:35:d2:bc:29:f9: 91:5a:d3:93:20:c5:ff:64:e4:00:f2:a3:f5:3e:24:66:77:ec: 7e:c6:7e:b4:1f:e6:ec:db:0f:e6:a7:1d:72:72:6d:9e:a9:13: 04:4c:51:01:cb:37:f4:54:b5:fc:0f:8d:82:c5:5d:a2:30:cd: 7b:82:de:77:8a:38:81:5b:0f:53:23:ef:f1:18:7b:b7:54:d3: 92:3f:15:64:2e:0f:53:db:67:b2:4c:3b:dd:8e:07:47:cf:68: ad:ee:86:c3 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIDAMC5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDcyMjA3MzE1M1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjg3ZjNlNjktMGYwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVHzJxKIXuj9Q9g7QRwmVBin04AWi0SBXCXRMTGWsSXLRT5shkCmNX6sBs6 zswsCQtdHMrCemSlb/komGO2zkxUi6tFk9q08zEH6pFSAtd3qPul14eLImxrhTyC locyMraB8aKLgJTFxgR7mCrj3SbAppevzEDJ8Rpc0Nhsbwq7zpJ3z6gO973GSjJm BNxUaOrpQW9eirCnNKaunMVtHSxxhQHUcPVnfqvXNFKCypR+Rv2yO2tWB5k8g1tv rVGCwUFdP/2Dm+/Sjm1BT0L+mw2ghRhGddAenFuke8oGbFitGHwhJER924YfK2ki AZMIltZflXKFNcFjPAVRukxDcxkCAwEAAaOCApYwggKSMB0GA1UdDgQWBBR2L+WZ 0Cv2i/+MoFhWBikX93RrlTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0YwMjc1QTZD NjZDRDExRjA4RTUwQ0I0MUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/ BBEwDzANBAIAAjAHAwUAJAIX4DANBgkqhkiG9w0BAQsFAAOCAQEAUMEr9b8N7Sna inmMMRFi6bZVWlz+chommbQlCKlq4k6LBs+l2r5bUqync6URpE7twlHa6h98E8Op GlLKUawgT845MrkVTymWc9yl96olHtgbRYANvIcGLWsGd3R4SZvzizUOPDEvsbbe 7Vi9rsxzVMAgIIwDcpt2WeieBQWM+nFTILfZ/FQYA0OMLKHal8/6TblvwsyV3Vq0 Yyrm/DXSvCn5kVrTkyDF/2TkAPKj9T4kZnfsfsZ+tB/m7NsP5qcdcnJtnqkTBExR Acs39FS1/A+NgsVdojDNe4Led4o4gVsPUyPv8Rh7t1TTkj8VZC4PU9tnskw73Y4H R89ore6Gww== -----END CERTIFICATE-----Generated at Sun Aug 10 13:47:01 2025 by rpki-client