$ rpki-client -vvf rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/470E849A389E11EF83D66176C4F9AE02.roa File: 470E849A389E11EF83D66176C4F9AE02.roa (raw, json) Hash identifier: N6wnq+SiTT7KZAm9ihuMhFBquoYx3YiKfww2FuMhesA= Subject key identifier: EE:F6:66:06:76:FC:2D:D9:CD:87:21:2C:F7:0C:0B:B2:35:0B:BA:C4 Certificate issuer: /CN=A913F2BD/serialNumber=97D04159FBB37EA67462B896976C1140C959E691 Certificate serial: BF Authority key identifier: 97:D0:41:59:FB:B3:7E:A6:74:62:B8:96:97:6C:11:40:C9:59:E6:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/470E849A389E11EF83D66176C4F9AE02.roa Signing time: Mon 07 Jul 2025 06:13:37 +0000 ROA not before: Mon 07 Jul 2025 06:13:37 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153048 IP address blocks: 2001:df4:c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.crl rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 Aug 2025 06:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F2BD, serialNumber=97D04159FBB37EA67462B896976C1140C959E691 Validity Not Before: Jul 7 06:13:37 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686b6590-8147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:88:6e:b0:0f:f8:28:c0:05:19:1c:2a:97:16: d8:6a:c0:5b:11:27:71:7a:21:03:0d:14:a5:b4:1e: 3e:85:27:ae:3b:ad:76:11:c3:4a:2a:62:a8:50:ca: 98:b4:31:35:ed:f3:3b:41:c2:30:a6:72:99:f5:24: f6:88:a4:4b:5e:51:3c:eb:94:1d:b4:36:9b:a8:e8: 63:1d:f0:e9:55:6d:91:eb:ab:d7:e6:81:99:32:7c: aa:19:52:77:70:f3:49:6b:7e:24:99:ff:7e:c2:83: 54:43:68:24:61:d7:a3:02:f2:dd:6f:c1:b5:21:14: 37:fb:88:64:2f:8e:7f:6d:f5:5f:d8:b8:7b:74:f3: 37:80:38:3a:df:c3:73:01:b8:5f:2a:f5:93:d5:15: af:69:0e:5a:0e:1c:02:20:95:cc:d3:59:ae:fa:8f: f0:c0:db:4a:3b:8f:d7:5c:06:5e:44:13:0c:ea:25: 0d:4e:4c:04:2a:16:40:fe:3e:4d:d5:05:e6:d2:3f: 6c:b7:c4:fd:99:3c:ee:de:df:3c:e5:d8:92:cf:f2: b9:28:d9:43:4d:bd:da:47:49:ba:98:06:7c:cb:cd: c1:4d:af:ce:f3:5c:78:f0:3e:de:b7:cc:6a:f6:d4: a2:6a:d5:8e:39:6c:41:ea:1b:7d:10:c5:0c:26:a5: 14:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:F6:66:06:76:FC:2D:D9:CD:87:21:2C:F7:0C:0B:B2:35:0B:BA:C4 X509v3 Authority Key Identifier: keyid:97:D0:41:59:FB:B3:7E:A6:74:62:B8:96:97:6C:11:40:C9:59:E6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/470E849A389E11EF83D66176C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:c0::/48 Signature Algorithm: sha256WithRSAEncryption a1:3e:b7:84:25:2f:f0:cd:ff:07:27:2f:87:68:39:3d:be:c8: 9f:27:31:c8:b0:20:75:78:bb:b2:8d:db:78:86:7d:1f:26:28: 3b:6c:bc:c7:5a:6e:de:51:a3:07:64:30:86:8c:74:cb:33:64: 99:e1:6c:88:6f:2f:32:10:81:ab:03:f6:40:be:d4:4e:cd:23: b8:bd:a9:36:78:16:cb:b1:8f:0b:6b:5f:21:6e:65:07:b4:41: fe:52:53:3c:2f:d9:46:08:3f:e4:9a:46:0d:48:0d:e6:f2:a6: b2:e3:17:b3:d0:56:9f:e9:ee:9d:5d:eb:fe:43:6f:9a:df:c7: ad:e6:c9:fa:ab:44:09:d1:3a:2d:c4:b7:58:24:b8:ba:dd:6e: 74:00:74:05:fd:e1:ed:7b:b6:71:b8:25:eb:a2:cc:f3:05:6a: 9f:24:9c:7b:2e:b8:e0:7d:06:6c:a2:a5:82:65:44:60:33:9f: 88:ff:b6:99:83:ea:c9:20:06:97:e7:2a:33:3b:f0:b3:38:ad: a7:9c:62:06:c5:54:87:8a:12:4f:f5:ab:8b:4f:d2:28:d7:a4: ed:52:0b:c9:79:fe:b3:c9:bd:87:b1:83:49:a6:8c:18:e1:6d: a9:d0:48:cb:08:7f:a7:87:3d:88:fc:ff:b1:21:71:f4:93:9c: e6:df:7a:79 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YyQkQxMTAvBgNVBAUTKDk3RDA0MTU5RkJCMzdFQTY3NDYyQjg5Njk3NkMxMTQw Qzk1OUU2OTEwHhcNMjUwNzA3MDYxMzM3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZiNjU5MC04MTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqohusA/4KMAFGRwqlxbYasBbESdxeiEDDRSltB4+hSeuO612EcNKKmKoUMqY tDE17fM7QcIwpnKZ9ST2iKRLXlE865QdtDabqOhjHfDpVW2R66vX5oGZMnyqGVJ3 cPNJa34kmf9+woNUQ2gkYdejAvLdb8G1IRQ3+4hkL45/bfVf2Lh7dPM3gDg638Nz AbhfKvWT1RWvaQ5aDhwCIJXM01mu+o/wwNtKO4/XXAZeRBMM6iUNTkwEKhZA/j5N 1QXm0j9st8T9mTzu3t885diSz/K5KNlDTb3aR0m6mAZ8y83BTa/O81x48D7et8xq 9tSiatWOOWxB6ht9EMUMJqUU8wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFO72ZgZ2 /C3ZzYchLPcMC7I1C7rEMB8GA1UdIwQYMBaAFJfQQVn7s36mdGK4lpdsEUDJWeaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjJCRC80Nzg0NDIwMDM4 OTYxMUVGOUVERTgxMzZDNEY5QUUwMi9sOUJCV2Z1emZxWjBZcmlXbDJ3UlFNbFo1 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5QkJXZnV6ZnFaMFlyaVdsMndSUU1sWjVwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0YyQkQvNDc4NDQyMDAzODk2MTFFRjlFREU4MTM2QzRGOUFFMDIvNDcwRTg0OUEz ODlFMTFFRjgzRDY2MTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30AMAwDQYJKoZIhvcNAQELBQADggEBAKE+t4QlL/DN /wcnL4doOT2+yJ8nMciwIHV4u7KN23iGfR8mKDtsvMdabt5RowdkMIaMdMszZJnh bIhvLzIQgasD9kC+1E7NI7i9qTZ4FsuxjwtrXyFuZQe0Qf5SUzwv2UYIP+SaRg1I DebyprLjF7PQVp/p7p1d6/5Db5rfx63myfqrRAnROi3Et1gkuLrdbnQAdAX94e17 tnG4JeuizPMFap8knHsuuOB9BmyipYJlRGAzn4j/tpmD6skgBpfnKjM78LM4raec YgbFVIeKEk/1q4tP0ijXpO1SC8l5/rPJvYexg0mmjBjhbanQSMsIf6eHPYj8/7Eh cfSTnObfenk= -----END CERTIFICATE-----Generated at Wed Jul 30 22:18:40 2025 by rpki-client