$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/22EA7FCC21F111EC85C6186EC4F9AE02.roa File: 22EA7FCC21F111EC85C6186EC4F9AE02.roa (raw, json) Hash identifier: TBXM5JKe9WQFg+eymDKm9rzq3YFGl2pFt087HO+fACs= Subject key identifier: DD:3B:A5:F1:A4:A5:6E:F3:3B:5D:11:7B:C7:1E:1F:C2:E7:9B:64:01 Certificate issuer: /CN=A919F0DA/serialNumber=94D587B6E75BF108AF5B424922C4A8BAAB3EE946 Certificate serial: 0806 Authority key identifier: 94:D5:87:B6:E7:5B:F1:08:AF:5B:42:49:22:C4:A8:BA:AB:3E:E9:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNWHtudb8QivW0JJIsSouqs-6UY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/22EA7FCC21F111EC85C6186EC4F9AE02.roa Signing time: Wed 30 Jul 2025 14:20:12 +0000 ROA not before: Wed 30 Jul 2025 14:20:12 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 55824 IP address blocks: 2001:4408:4300::/45 maxlen: 45 2001:4408:4508::/45 maxlen: 45 2001:4408:4d00::/45 maxlen: 45 2001:4408:4d08::/48 maxlen: 48 2001:4408:5b00::/45 maxlen: 45 2001:4408:6700::/45 maxlen: 45 2001:4408:6700::/48 maxlen: 48 2001:4408:6701::/48 maxlen: 48 2001:4408:6708::/45 maxlen: 45 2001:4408:6d00::/45 maxlen: 45 2001:4408:6d08::/45 maxlen: 45 2001:4408:8508::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/lNWHtudb8QivW0JJIsSouqs-6UY.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/lNWHtudb8QivW0JJIsSouqs-6UY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNWHtudb8QivW0JJIsSouqs-6UY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2054 (0x806) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=94D587B6E75BF108AF5B424922C4A8BAAB3EE946 Validity Not Before: Jul 30 14:20:12 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688a2a1b-07a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:db:c9:4f:49:c0:44:dd:e9:bb:71:63:fd:bb: 5f:74:cd:a7:1b:86:51:73:45:63:a0:00:c1:07:ec: 3f:f8:36:88:a0:da:63:b1:4c:ab:86:6d:a0:90:f5: 08:32:c6:45:fa:fc:44:68:86:42:25:6d:3e:dc:5a: 5b:41:8b:e9:90:4d:ba:0b:9e:89:bf:a3:4f:16:15: 47:4c:d0:f0:e2:11:93:83:1e:3e:91:6c:09:56:07: eb:18:77:f4:a5:31:a8:a2:04:3e:15:75:73:41:5d: 7a:d8:27:21:bf:3c:d4:b0:44:5b:ed:ed:18:dc:75: 9a:51:d2:fb:dc:93:77:b7:d5:a7:17:50:7b:f4:28: 1c:97:d1:1a:60:a3:03:43:92:12:7f:c3:17:25:09: 97:a4:96:8f:17:d7:45:9e:ca:d9:e2:ac:c2:da:f6: 24:09:a3:8a:3d:4a:a5:77:6e:4c:f2:9c:c8:a6:07: 42:4f:4c:7e:48:29:a5:e5:4a:90:72:1d:5b:21:f3: 3f:7d:58:ed:83:ff:04:7e:74:ba:d9:71:57:cf:db: d4:ac:d4:01:d8:7c:e0:08:f6:57:1a:5a:d7:eb:21: 5e:42:f7:7f:c4:0b:ff:43:c7:c3:ca:3e:ea:70:3b: 89:99:22:63:7e:82:39:11:eb:4f:33:e8:c3:98:71: af:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:3B:A5:F1:A4:A5:6E:F3:3B:5D:11:7B:C7:1E:1F:C2:E7:9B:64:01 X509v3 Authority Key Identifier: keyid:94:D5:87:B6:E7:5B:F1:08:AF:5B:42:49:22:C4:A8:BA:AB:3E:E9:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/lNWHtudb8QivW0JJIsSouqs-6UY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNWHtudb8QivW0JJIsSouqs-6UY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/22EA7FCC21F111EC85C6186EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:4408:4300::/45 2001:4408:4508::/45 2001:4408:4d00::-2001:4408:4d08:ffff:ffff:ffff:ffff:ffff 2001:4408:5b00::/45 2001:4408:6700::/44 2001:4408:6d00::/44 2001:4408:8508::/45 Signature Algorithm: sha256WithRSAEncryption 5a:cd:98:03:dc:56:90:44:89:28:9d:ec:b1:4c:04:56:fd:2b: 69:d1:d7:9f:2a:4c:e7:3b:78:3d:9b:9f:4a:a1:ee:db:16:53: 24:b4:ef:52:f9:c1:7d:f6:e1:ef:91:96:54:37:b4:70:43:7b: be:54:d6:a4:9c:5b:c2:2c:4e:06:c4:36:93:3f:12:f3:5b:7d: ca:09:6c:b6:0f:90:a6:d2:64:c4:d1:50:53:f1:3b:3f:4c:3e: d6:81:71:f8:b8:57:d6:62:5e:73:dc:15:ce:ea:f7:92:81:8f: 4b:22:71:21:58:99:7d:35:14:c4:02:85:49:ea:31:a4:2a:7a: cd:d5:c7:e1:e7:3b:56:b5:22:1b:81:8e:d5:ae:54:e7:5b:07: 0d:af:53:96:ff:51:0a:7c:1e:f5:df:81:93:c0:df:aa:75:85: cd:d1:6a:61:8f:ee:60:9c:af:2c:8c:fd:1a:cf:8a:5b:9f:69: e7:12:2f:cf:9f:f0:37:05:90:03:25:cc:16:ee:55:fa:f3:16: 67:6b:cf:9c:1e:81:8c:51:62:50:8b:b4:80:9c:be:75:bc:78: ea:62:3d:49:e5:35:5b:e2:53:50:c9:fd:03:b5:57:bd:80:82: 66:b7:db:e7:72:58:bf:c9:a1:cb:c5:1a:43:97:2d:3b:32:2c: 93:b5:16:d3 -----BEGIN CERTIFICATE----- MIIFtDCCBJygAwIBAgICCAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDk0RDU4N0I2RTc1QkYxMDhBRjVCNDI0OTIyQzRBOEJB QUIzRUU5NDYwHhcNMjUwNzMwMTQyMDEyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhMmExYi0wN2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9vJT0nARN3pu3Fj/btfdM2nG4ZRc0VjoADBB+w/+DaIoNpjsUyrhm2gkPUI MsZF+vxEaIZCJW0+3FpbQYvpkE26C56Jv6NPFhVHTNDw4hGTgx4+kWwJVgfrGHf0 pTGoogQ+FXVzQV162CchvzzUsERb7e0Y3HWaUdL73JN3t9WnF1B79Cgcl9EaYKMD Q5ISf8MXJQmXpJaPF9dFnsrZ4qzC2vYkCaOKPUqld25M8pzIpgdCT0x+SCml5UqQ ch1bIfM/fVjtg/8EfnS62XFXz9vUrNQB2HzgCPZXGlrX6yFeQvd/xAv/Q8fDyj7q cDuJmSJjfoI5EetPM+jDmHGvvQIDAQABo4IC2DCCAtQwHQYDVR0OBBYEFN07pfGk pW7zO10Re8ceH8Lnm2QBMB8GA1UdIwQYMBaAFJTVh7bnW/EIr1tCSSLEqLqrPulG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9sTldIdHVkYjhRaXZXMEpKSXNTb3Vxcy02 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xOV0h0dWRiOFFpdlcwSkpJc1NvdXFzLTZVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUYwREEvMTUwRDNFRjQxRDY4MTFFMjhDMTgyOEE0MDhCMDJDRDIvMjJFQTdGQ0My MUYxMTFFQzg1QzYxODZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwYgYIKwYBBQUHAQcBAf8E UzBRME8EAgACMEkDBwMgAUQIQwADBwMgAUQIRQgwEQMGACABRAhNAwcAIAFECE0I AwcDIAFECFsAAwcEIAFECGcAAwcEIAFECG0AAwcDIAFECIUIMA0GCSqGSIb3DQEB CwUAA4IBAQBazZgD3FaQRIkoneyxTARW/Stp0defKkznO3g9m59Koe7bFlMktO9S +cF99uHvkZZUN7RwQ3u+VNaknFvCLE4GxDaTPxLzW33KCWy2D5Cm0mTE0VBT8Ts/ TD7WgXH4uFfWYl5z3BXO6veSgY9LInEhWJl9NRTEAoVJ6jGkKnrN1cfh5ztWtSIb gY7VrlTnWwcNr1OW/1EKfB7134GTwN+qdYXN0Wphj+5gnK8sjP0az4pbn2nnEi/P n/A3BZADJcwW7lX68xZna8+cHoGMUWJQi7SAnL51vHjqYj1J5TVb4lNQyf0DtVe9 gIJmt9vncli/yaHLxRpDly07MiyTtRbT -----END CERTIFICATE-----Generated at Sat Aug 9 14:18:36 2025 by rpki-client