$ rpki-client -vvf rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/1CFC5814474611F087FA4A1DC4F9AE02.roa File: 1CFC5814474611F087FA4A1DC4F9AE02.roa (raw, json) Hash identifier: TvxmtDuu0g+5vHIGbKKqvtivjp3MqjbTQqIf6Vqxlu4= Subject key identifier: C7:6A:12:65:EE:27:16:50:93:96:11:6F:9C:96:E3:DD:88:A8:CC:EE Certificate issuer: /CN=A919337F/serialNumber=33740622DF86B3BFE7BF4ABD5DF1361587F03912 Certificate serial: 0CC2 Authority key identifier: 33:74:06:22:DF:86:B3:BF:E7:BF:4A:BD:5D:F1:36:15:87:F0:39:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/1CFC5814474611F087FA4A1DC4F9AE02.roa Signing time: Thu 12 Jun 2025 04:31:31 +0000 ROA not before: Thu 12 Jun 2025 04:31:31 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 133429 IP address blocks: 2401:31c0:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.crl rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:04:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3266 (0xcc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919337F, serialNumber=33740622DF86B3BFE7BF4ABD5DF1361587F03912 Validity Not Before: Jun 12 04:31:31 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=684a5823-0469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a9:66:d4:14:da:57:0a:a2:ca:ee:54:d5:9d: bd:4e:e3:8a:1b:dc:69:96:ef:3d:99:45:8d:d5:d1: 74:63:2b:73:6f:bc:20:07:ec:b3:b1:c2:45:58:b2: 7a:c6:07:dc:91:bc:b9:49:ff:a9:41:30:94:82:48: 3d:80:80:d5:e2:4a:98:f4:2e:75:22:cb:2f:3f:df: 34:bb:a4:b6:bc:4c:96:f2:25:bd:72:e7:4f:cc:b3: 76:16:91:81:90:85:04:19:eb:90:cd:a5:50:26:46: 8a:28:38:d7:3c:7f:cd:13:b0:13:f7:86:37:cf:8c: ea:6c:3f:0a:12:d1:41:5c:5c:31:e5:f3:fa:89:06: 26:20:09:04:9b:75:57:bb:2a:fd:da:4e:e6:e6:01: df:cb:87:b4:fd:9c:94:3a:0c:33:8d:ba:07:60:78: 39:bc:a6:86:29:e9:ca:46:8e:af:ce:2c:4f:51:57: 99:7b:72:04:d2:83:f3:c8:4f:a5:55:09:6c:5e:4c: dd:8a:c9:d5:76:7e:a3:93:29:09:ac:31:54:c3:61: ca:62:04:9c:5c:1d:86:65:3a:46:37:ad:a5:e7:30: 72:40:6f:67:3d:93:83:ed:30:5e:63:0a:c0:50:ee: 30:87:f1:4e:ee:bf:c3:cf:1f:32:42:9a:18:c2:4c: 24:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:6A:12:65:EE:27:16:50:93:96:11:6F:9C:96:E3:DD:88:A8:CC:EE X509v3 Authority Key Identifier: keyid:33:74:06:22:DF:86:B3:BF:E7:BF:4A:BD:5D:F1:36:15:87:F0:39:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/1CFC5814474611F087FA4A1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:31c0:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 0c:be:be:1c:bd:35:9e:e8:01:38:b7:e6:30:82:f0:4f:be:65: 88:d3:27:f5:21:74:a1:bc:13:a0:b3:d1:4d:09:7c:e5:e2:4b: 3c:d1:0e:2f:fc:e9:21:e0:80:4a:d0:2a:a0:26:c9:2a:53:05: cf:39:df:9d:df:3c:c9:10:68:c6:56:75:18:47:12:40:aa:28: 76:fd:6a:f3:d7:6d:d4:5f:f7:6d:3d:e3:6a:e6:d5:a5:c7:21: 32:24:6e:73:a5:55:12:c2:7d:8d:b9:f2:82:3a:00:03:e6:12: 73:e3:93:7d:d3:4c:6a:d6:4f:00:99:34:8d:36:e6:60:f4:e7: 8e:5b:c7:3b:73:35:1b:3c:b4:1a:06:8e:c4:b8:a8:df:22:13: 37:63:1b:86:8e:9a:c8:20:7b:5d:5d:d0:1f:84:83:9d:d0:a9: 7b:b6:74:9f:21:fd:c8:30:a9:9d:e7:4b:4d:49:e5:c6:8a:0d: e7:d1:61:23:3f:90:17:0f:5d:46:35:28:45:2e:e8:b8:0e:92: 0f:ac:d3:c2:c0:96:c5:db:38:3a:80:ef:b4:ec:d7:45:71:3a: 88:b3:64:87:86:65:53:a7:61:2f:eb:43:9f:e5:37:4f:2f:20: 11:35:8c:02:6d:72:15:28:2c:a9:47:57:42:10:9f:fc:b6:8a: 16:7c:d4:69 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzN0YxMTAvBgNVBAUTKDMzNzQwNjIyREY4NkIzQkZFN0JGNEFCRDVERjEzNjE1 ODdGMDM5MTIwHhcNMjUwNjEyMDQzMTMxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRhNTgyMy0wNDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqlm1BTaVwqiyu5U1Z29TuOKG9xplu89mUWN1dF0Yytzb7wgB+yzscJFWLJ6 xgfckby5Sf+pQTCUgkg9gIDV4kqY9C51IssvP980u6S2vEyW8iW9cudPzLN2FpGB kIUEGeuQzaVQJkaKKDjXPH/NE7AT94Y3z4zqbD8KEtFBXFwx5fP6iQYmIAkEm3VX uyr92k7m5gHfy4e0/ZyUOgwzjboHYHg5vKaGKenKRo6vzixPUVeZe3IE0oPzyE+l VQlsXkzdisnVdn6jkykJrDFUw2HKYgScXB2GZTpGN62l5zByQG9nPZOD7TBeYwrA UO4wh/FO7r/Dzx8yQpoYwkwkyQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMdqEmXu JxZQk5YRb5yW492IqMzuMB8GA1UdIwQYMBaAFDN0BiLfhrO/579KvV3xNhWH8DkS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzM3Ri8xRTE3RTAxQ0Yy NTQxMUU5QUQzQkZCNjFDNEY5QUUwMi9NM1FHSXQtR3M3X252MHE5WGZFMkZZZndP UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00zUUdJdC1HczdfbnYwcTlYZkUyRllmd09SSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMzN0YvMUUxN0UwMUNGMjU0MTFFOUFEM0JGQjYxQzRGOUFFMDIvMUNGQzU4MTQ0 NzQ2MTFGMDg3RkE0QTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkATHA//8wDQYJKoZIhvcNAQELBQADggEBAAy+vhy9NZ7o ATi35jCC8E++ZYjTJ/UhdKG8E6Cz0U0JfOXiSzzRDi/86SHggErQKqAmySpTBc85 353fPMkQaMZWdRhHEkCqKHb9avPXbdRf920942rm1aXHITIkbnOlVRLCfY258oI6 AAPmEnPjk33TTGrWTwCZNI025mD0545bxztzNRs8tBoGjsS4qN8iEzdjG4aOmsgg e11d0B+Eg53QqXu2dJ8h/cgwqZ3nS01J5caKDefRYSM/kBcPXUY1KEUu6LgOkg+s 08LAlsXbODqA77Ts10VxOoizZIeGZVOnYS/rQ5/lN08vIBE1jAJtchUoLKlHV0IQ n/y2ihZ81Gk= -----END CERTIFICATE-----Generated at Thu Jun 19 20:05:26 2025 by rpki-client