$ rpki-client -vvf rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/00CB73CC5B1011F08269C50FC4F9AE02.roa File: 00CB73CC5B1011F08269C50FC4F9AE02.roa (raw, json) Hash identifier: tee5qyYUeYtzVgY5XM9ROj+LoDAFDMjISaly7p7VUNU= Subject key identifier: A9:D5:87:04:B6:B3:C9:37:BC:70:79:CC:86:24:FC:56:8B:47:91:0B Certificate issuer: /CN=A9113C02/serialNumber=BE764EFEF53D869C44F6070996113E0A1818411B Certificate serial: 02 Authority key identifier: BE:76:4E:FE:F5:3D:86:9C:44:F6:07:09:96:11:3E:0A:18:18:41:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vnZO_vU9hpxE9gcJlhE-ChgYQRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/00CB73CC5B1011F08269C50FC4F9AE02.roa Signing time: Mon 07 Jul 2025 08:54:34 +0000 ROA not before: Mon 07 Jul 2025 08:54:34 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 133605 IP address blocks: 2401:2cc0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/vnZO_vU9hpxE9gcJlhE-ChgYQRs.crl rsync://rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/vnZO_vU9hpxE9gcJlhE-ChgYQRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vnZO_vU9hpxE9gcJlhE-ChgYQRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:21:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113C02, serialNumber=BE764EFEF53D869C44F6070996113E0A1818411B Validity Not Before: Jul 7 08:54:34 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=686b8b4a-a21a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cd:41:9c:18:31:53:16:79:a4:b7:48:8e:5d: ac:d3:72:d8:0e:41:eb:e0:d3:e0:9c:73:03:42:a6: 47:8b:6a:16:7f:bd:72:9c:4a:f1:1c:d0:c8:2e:11: 8d:02:c4:73:99:d9:24:c9:4e:e4:ff:ad:6a:6e:49: fe:d5:3d:64:61:be:ff:64:5b:cd:f4:9d:97:c7:2d: 6f:b6:fe:36:fd:a0:fb:86:f2:23:d5:82:31:51:02: de:4c:5d:58:cf:24:00:43:dc:50:2a:58:a9:fb:e7: 61:50:4b:4e:44:50:f0:1f:1f:4e:7c:23:11:70:8e: 1e:0e:e2:55:7b:73:4e:e0:e9:14:58:12:be:de:15: 30:df:70:ae:94:5b:1d:36:bb:a8:52:87:86:f5:69: 21:e8:e3:c6:53:20:76:68:82:0b:12:ea:63:68:b2: 49:68:2e:4b:fc:29:04:40:db:b0:f5:99:0f:b3:17: c8:d5:c7:59:01:f1:97:9e:03:88:e2:4c:73:8c:d0: 04:00:43:0b:dc:46:35:1f:02:ba:bd:94:47:50:69: 80:72:ed:c7:d9:09:b7:5c:6d:8d:3a:f1:7d:00:7a: 2a:a0:2f:1e:21:a5:61:4a:49:c9:f9:13:fe:a4:59: 77:48:71:59:d2:58:b4:2a:a3:e4:ae:95:a4:02:ef: 01:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:D5:87:04:B6:B3:C9:37:BC:70:79:CC:86:24:FC:56:8B:47:91:0B X509v3 Authority Key Identifier: keyid:BE:76:4E:FE:F5:3D:86:9C:44:F6:07:09:96:11:3E:0A:18:18:41:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/vnZO_vU9hpxE9gcJlhE-ChgYQRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vnZO_vU9hpxE9gcJlhE-ChgYQRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/00CB73CC5B1011F08269C50FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 34:25:e2:43:1d:99:1b:60:8b:db:be:c1:57:66:e4:64:7b:b9: 72:39:76:46:d3:9d:76:84:45:67:d8:ca:d0:f5:ab:65:9b:de: cc:ae:6a:60:cc:70:18:38:1d:32:22:8f:bf:c0:2a:a2:90:8e: 02:27:5b:31:9c:65:e5:eb:b8:1b:2c:a1:f5:6b:f5:13:ba:c2: e7:4e:1d:bf:ea:72:87:88:0f:5e:2e:49:17:27:2b:b7:9a:e5: 26:62:d8:52:d4:ac:a8:71:0b:b9:fe:47:b1:63:23:5e:df:f0: 83:60:de:ec:e3:9c:eb:05:58:c0:97:bd:41:1b:9a:10:5c:db: 9c:03:fe:f7:03:19:91:4c:81:87:86:2f:48:0b:b1:51:39:24: 6b:c7:fa:e6:7c:7c:13:de:36:92:96:0a:42:e1:de:53:32:ab: ef:f8:31:5e:38:2c:1e:71:06:83:81:0d:ae:56:f7:65:28:b4: 5f:c2:d2:02:7d:2a:a1:b9:f0:81:fb:fb:1a:a2:ad:31:a2:50: 0c:e5:5f:35:eb:82:61:04:d2:91:c7:ff:d9:92:1e:96:41:9d: 2d:16:cb:b6:2f:e4:e1:7e:75:e0:53:66:d8:18:16:0c:d8:52: 4b:53:08:64:4e:ab:e8:9a:76:11:50:c6:1b:03:8d:03:87:e8: b8:98:ac:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx M0MwMjExMC8GA1UEBRMoQkU3NjRFRkVGNTNEODY5QzQ0RjYwNzA5OTYxMTNFMEEx ODE4NDExQjAeFw0yNTA3MDcwODU0MzRaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NmI4YjRhLWEyMWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyzUGcGDFTFnmkt0iOXazTctgOQevg0+CccwNCpkeLahZ/vXKcSvEc0MguEY0C xHOZ2STJTuT/rWpuSf7VPWRhvv9kW830nZfHLW+2/jb9oPuG8iPVgjFRAt5MXVjP JABD3FAqWKn752FQS05EUPAfH058IxFwjh4O4lV7c07g6RRYEr7eFTDfcK6UWx02 u6hSh4b1aSHo48ZTIHZoggsS6mNoskloLkv8KQRA27D1mQ+zF8jVx1kB8ZeeA4ji THOM0AQAQwvcRjUfArq9lEdQaYBy7cfZCbdcbY068X0AeiqgLx4hpWFKScn5E/6k WXdIcVnSWLQqo+SulaQC7wGxAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUqdWHBLaz yTe8cHnMhiT8VotHkQswHwYDVR0jBBgwFoAUvnZO/vU9hpxE9gcJlhE+ChgYQRsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEzQzAyLzRDNDA2RkI2NDA1 NjExRTdBRjA0MUEzNUM0RjlBRTAyL3ZuWk9fdlU5aHB4RTlnY0psaEUtQ2hnWVFS cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdm5aT192VTlocHhFOWdjSmxoRS1DaGdZUVJzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0MwMi80QzQwNkZCNjQwNTYxMUU3QUYwNDFBMzVDNEY5QUUwMi8wMENCNzNDQzVC MTAxMUYwODI2OUM1MEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBLMAwDQYJKoZIhvcNAQELBQADggEBADQl4kMdmRtgi9u+ wVdm5GR7uXI5dkbTnXaERWfYytD1q2Wb3syuamDMcBg4HTIij7/AKqKQjgInWzGc ZeXruBssofVr9RO6wudOHb/qcoeID14uSRcnK7ea5SZi2FLUrKhxC7n+R7FjI17f 8INg3uzjnOsFWMCXvUEbmhBc25wD/vcDGZFMgYeGL0gLsVE5JGvH+uZ8fBPeNpKW CkLh3lMyq+/4MV44LB5xBoOBDa5W92UotF/C0gJ9KqG58IH7+xqirTGiUAzlXzXr gmEE0pHH/9mSHpZBnS0Wy7Yv5OF+deBTZtgYFgzYUktTCGROq+iadhFQxhsDjQOH 6LiYrMA= -----END CERTIFICATE-----Generated at Mon Jul 21 12:38:16 2025 by rpki-client