$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/EE78BE36068611EDA1C2070DC4F9AE02.roa File: EE78BE36068611EDA1C2070DC4F9AE02.roa (raw, json) Hash identifier: X7Dq3eZ/GJf+9yPNH4D4Wvo3ddILMQm0OljP2i+67DY= Subject key identifier: 79:68:E6:45:72:6E:AE:6E:59:B3:9D:0B:57:3B:07:23:1B:99:56:DB Certificate issuer: /CN=A918EF94/serialNumber=A777E4818CA0DCC6382E5625706F98C81E930720 Certificate serial: 0DF2 Authority key identifier: A7:77:E4:81:8C:A0:DC:C6:38:2E:56:25:70:6F:98:C8:1E:93:07:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/EE78BE36068611EDA1C2070DC4F9AE02.roa Signing time: Tue 04 Feb 2025 17:45:39 +0000 ROA not before: Tue 04 Feb 2025 17:45:39 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 7645 IP address blocks: 2402:6940::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.crl rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:49:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3570 (0xdf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF94, serialNumber=A777E4818CA0DCC6382E5625706F98C81E930720 Validity Not Before: Feb 4 17:45:39 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a25243-8e23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:38:d8:f9:9f:0c:ab:99:d1:8d:b4:cb:ca:ff: 17:2d:53:85:96:58:28:f3:72:27:5b:d9:d0:e5:3b: cf:25:a3:07:ec:ee:6e:cb:05:b2:ff:69:83:57:7d: 96:97:4f:dc:9b:8c:51:04:49:77:38:d5:ec:a5:c9: 62:2e:d8:c8:95:1f:17:6a:26:17:2a:8d:39:00:2c: 4e:c0:59:b2:30:98:72:dd:34:5c:1f:87:54:7b:b8: fa:ec:e8:ba:8d:9b:0c:46:82:26:8d:73:3b:bc:fd: 96:82:8f:a3:c1:62:67:58:65:10:43:c2:93:20:bb: 04:ff:f6:1e:2f:95:61:8c:9d:04:35:0b:7c:64:52: 6b:e4:7f:03:26:d1:2b:67:8a:b8:33:0b:8b:49:b3: 91:0a:2f:8e:00:69:46:61:3c:02:99:36:a0:fc:e6: 3d:69:20:fb:18:d2:22:f0:1c:47:97:96:ad:45:ea: 54:db:dc:91:9e:10:8f:bf:18:65:51:3e:8e:eb:49: 3e:ad:65:c5:1d:b2:31:29:f3:ba:2a:68:25:4d:36: 9a:c3:be:ed:ed:82:2a:f0:95:65:44:ac:f0:d2:8b: 0e:4a:e2:67:a0:34:06:e6:97:12:b5:5f:28:4d:01: 2b:a6:53:e7:50:a7:5a:3d:a2:a9:de:4c:cf:e2:17: d5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:68:E6:45:72:6E:AE:6E:59:B3:9D:0B:57:3B:07:23:1B:99:56:DB X509v3 Authority Key Identifier: keyid:A7:77:E4:81:8C:A0:DC:C6:38:2E:56:25:70:6F:98:C8:1E:93:07:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/EE78BE36068611EDA1C2070DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:6940::/32 Signature Algorithm: sha256WithRSAEncryption b4:ff:f4:43:73:36:07:37:49:9e:16:92:f0:26:33:c0:aa:c0: 7f:17:64:f3:5d:4b:27:12:3f:b2:86:28:bc:6d:7c:bc:8a:eb: b3:a4:ce:ad:26:94:71:f8:4b:45:80:45:9f:ff:b7:6f:dc:03: 04:77:9c:6f:f9:a1:e5:94:a3:10:c9:5e:b2:60:86:1f:ee:1a: 47:47:96:3e:e8:93:64:26:6b:f5:e5:e9:7b:ff:39:1d:f0:5f: 54:c0:2e:08:df:6c:1b:7c:2f:8e:31:a1:d9:8d:55:d0:15:d4: 94:cd:8b:1e:5e:ab:a9:a9:5a:d2:c0:3e:85:7f:8e:a7:b4:89: 84:3b:3f:f1:0e:0f:7d:ef:62:5e:9f:d2:44:fd:4b:06:00:e4: 77:25:22:9d:38:2f:d2:1e:4e:96:f9:e6:98:ac:da:c9:0f:56: ea:4e:f9:37:1c:98:2e:fb:18:0d:b8:c4:b8:91:98:00:b0:1c: 5b:4d:61:3b:1c:a6:6f:bb:da:ab:5d:1b:8a:6b:68:5c:a4:de: 55:60:7b:a3:bd:9f:74:73:9b:7d:d4:2a:1f:06:32:c2:35:52: 09:6f:d7:32:45:c3:bf:1e:15:46:da:4a:a9:73:19:6e:c4:d1: 25:09:8e:94:f8:85:fd:1b:9f:8e:92:a5:9d:0d:07:e3:e5:8e: c0:19:c3:b8 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVGOTQxMTAvBgNVBAUTKEE3NzdFNDgxOENBMERDQzYzODJFNTYyNTcwNkY5OEM4 MUU5MzA3MjAwHhcNMjUwMjA0MTc0NTM5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyNTI0My04ZTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjjY+Z8Mq5nRjbTLyv8XLVOFllgo83InW9nQ5TvPJaMH7O5uywWy/2mDV32W l0/cm4xRBEl3ONXspcliLtjIlR8XaiYXKo05ACxOwFmyMJhy3TRcH4dUe7j67Oi6 jZsMRoImjXM7vP2Wgo+jwWJnWGUQQ8KTILsE//YeL5VhjJ0ENQt8ZFJr5H8DJtEr Z4q4MwuLSbORCi+OAGlGYTwCmTag/OY9aSD7GNIi8BxHl5atRepU29yRnhCPvxhl UT6O60k+rWXFHbIxKfO6KmglTTaaw77t7YIq8JVlRKzw0osOSuJnoDQG5pcStV8o TQErplPnUKdaPaKp3kzP4hfVYQIDAQABo4ICljCCApIwHQYDVR0OBBYEFHlo5kVy bq5uWbOdC1c7ByMbmVbbMB8GA1UdIwQYMBaAFKd35IGMoNzGOC5WJXBvmMgekwcg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUY5NC81QjI0QTVDOEE2 QzExMUU5OEMzNzlFMEZDNEY5QUUwMi9wM2ZrZ1l5ZzNNWTRMbFlsY0ctWXlCNlRC eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AzZmtnWXlnM01ZNExsWWxjRy1ZeUI2VEJ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVGOTQvNUIyNEE1QzhBNkMxMTFFOThDMzc5RTBGQzRGOUFFMDIvRUU3OEJFMzYw Njg2MTFFREExQzIwNzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAmlAMA0GCSqGSIb3DQEBCwUAA4IBAQC0//RDczYHN0me FpLwJjPAqsB/F2TzXUsnEj+yhii8bXy8iuuzpM6tJpRx+EtFgEWf/7dv3AMEd5xv +aHllKMQyV6yYIYf7hpHR5Y+6JNkJmv15el7/zkd8F9UwC4I32wbfC+OMaHZjVXQ FdSUzYseXqupqVrSwD6Ff46ntImEOz/xDg9972Jen9JE/UsGAOR3JSKdOC/SHk6W +eaYrNrJD1bqTvk3HJgu+xgNuMS4kZgAsBxbTWE7HKZvu9qrXRuKa2hcpN5VYHuj vZ90c5t91CofBjLCNVIJb9cyRcO/HhVG2kqpcxluxNElCY6U+IX9G5+OkqWdDQfj 5Y7AGcO4 -----END CERTIFICATE-----Generated at Wed Nov 5 20:06:47 2025 by rpki-client