$ rpki-client -vvf rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/2BB9711E5DE111F09B775D76C4F9AE02.roa File: 2BB9711E5DE111F09B775D76C4F9AE02.roa (raw, json) Hash identifier: p5eDJJHEh4Ku0YkaqmxVa+vpX9QHKpmMPC5rYwtTVzI= Subject key identifier: E8:7A:AF:BB:22:18:23:5D:78:4B:F5:29:06:56:78:00:19:7B:9E:C2 Certificate issuer: /CN=A916C473/serialNumber=FB7B058783651E93FA30DD96D6265E6E2F352554 Certificate serial: 02 Authority key identifier: FB:7B:05:87:83:65:1E:93:FA:30:DD:96:D6:26:5E:6E:2F:35:25:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/2BB9711E5DE111F09B775D76C4F9AE02.roa Signing time: Thu 10 Jul 2025 22:56:53 +0000 ROA not before: Thu 10 Jul 2025 22:56:53 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135310 IP address blocks: 2001:df5:d940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.crl rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C473, serialNumber=FB7B058783651E93FA30DD96D6265E6E2F352554 Validity Not Before: Jul 10 22:56:53 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68704535-13a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a0:9a:a1:5d:e2:e4:4c:63:7c:af:0b:5b:32: 74:b8:08:44:90:7c:9a:61:01:54:ff:84:9b:68:e0: 15:a6:c0:9f:c0:6d:28:6a:52:50:a3:59:87:c0:48: 4e:4c:fb:db:c4:47:5b:21:64:af:57:c9:da:c2:d5: ec:d8:ef:b8:e4:7f:af:32:a5:c2:d8:a0:d4:0c:4b: c8:2f:6a:8a:f2:3b:17:d8:78:a8:54:7d:f6:dc:a6: 16:90:9f:3e:af:b2:a7:98:45:96:e7:3c:a5:85:57: dc:a9:36:92:4a:df:13:c6:f2:e4:22:31:a5:f4:e4: f2:07:3c:d8:e5:2a:65:fd:3f:bb:83:fb:1b:45:9b: 5f:e0:14:a5:bb:6a:52:d1:0b:1c:a8:a8:4c:23:11: 9e:c0:ae:60:d7:6f:4d:e3:9e:e8:78:56:4b:46:71: b3:ce:35:8b:0e:32:d7:d6:00:70:6b:92:a7:13:ac: 00:be:8d:9a:3c:97:bf:d3:2a:b9:1f:6b:44:6a:d2: a1:9c:d3:b6:78:b5:ce:19:3f:c3:d8:ab:f5:72:49: 40:80:49:6a:22:47:06:01:57:58:02:57:aa:d3:31: 3e:b6:06:cd:d5:90:1d:5a:79:6d:2f:00:72:a2:7b: b3:ed:9e:fa:6e:ce:08:aa:3e:24:a3:70:0a:30:59: a4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:7A:AF:BB:22:18:23:5D:78:4B:F5:29:06:56:78:00:19:7B:9E:C2 X509v3 Authority Key Identifier: keyid:FB:7B:05:87:83:65:1E:93:FA:30:DD:96:D6:26:5E:6E:2F:35:25:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/2BB9711E5DE111F09B775D76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:d940::/48 Signature Algorithm: sha256WithRSAEncryption 87:11:c8:79:b4:c0:27:69:50:ef:d5:6c:80:13:b4:9d:ba:a4: 26:8b:b6:56:0f:43:71:6e:46:57:c8:26:aa:23:68:09:8d:89: c7:94:a8:14:0e:3a:c2:b7:1c:64:a1:36:7e:ce:e6:63:dc:a3: eb:28:eb:1c:5e:dd:f7:48:de:a5:e0:08:ef:05:1e:55:29:64: a9:3e:c9:3b:38:fe:ee:76:22:08:e3:6f:5b:d2:e7:81:32:38: e1:c7:61:72:11:e5:ce:f7:00:a7:d1:37:b2:56:f7:5c:d2:5f: b5:d7:d7:db:69:e3:f5:7d:da:85:8d:3f:36:19:7a:47:2b:82: 1e:ae:d5:e3:56:ed:e7:0c:5b:3e:c5:d0:92:00:18:c1:f5:3d: 4a:62:60:a8:a1:1d:e9:4a:a5:a4:de:a6:01:be:1c:3e:59:2c: 3e:fb:d9:f6:cc:32:a1:05:0b:54:e8:fb:15:9d:44:98:41:f2: 91:bd:47:af:63:4b:e2:31:07:bb:0a:da:be:6f:a3:2f:3d:51: e2:ed:64:4b:74:c5:6a:63:e8:03:b8:92:7d:76:8c:7c:78:e8: bf:c4:18:e7:3c:f9:62:34:c7:e5:bb:49:5d:c0:07:ef:b0:f4: 2f:89:be:55:b7:3c:50:35:d5:30:c9:8a:c8:07:aa:48:04:ad: 3d:b3:9b:2f -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QzQ3MzExMC8GA1UEBRMoRkI3QjA1ODc4MzY1MUU5M0ZBMzBERDk2RDYyNjVFNkUy RjM1MjU1NDAeFw0yNTA3MTAyMjU2NTNaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzA0NTM1LTEzYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJoJqhXeLkTGN8rwtbMnS4CESQfJphAVT/hJto4BWmwJ/AbShqUlCjWYfASE5M +9vER1shZK9XydrC1ezY77jkf68ypcLYoNQMS8gvaoryOxfYeKhUffbcphaQnz6v sqeYRZbnPKWFV9ypNpJK3xPG8uQiMaX05PIHPNjlKmX9P7uD+xtFm1/gFKW7alLR CxyoqEwjEZ7ArmDXb03jnuh4VktGcbPONYsOMtfWAHBrkqcTrAC+jZo8l7/TKrkf a0Rq0qGc07Z4tc4ZP8PYq/VySUCASWoiRwYBV1gCV6rTMT62Bs3VkB1aeW0vAHKi e7PtnvpuzgiqPiSjcAowWaSpAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU6HqvuyIY I114S/UpBlZ4ABl7nsIwHwYDVR0jBBgwFoAU+3sFh4NlHpP6MN2W1iZebi81JVQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDNDczL0ZFQUUxMkEyNURE RjExRjBBNUJGRDY2RkM0RjlBRTAyLy0zc0ZoNE5sSHBQNk1OMlcxaVplYmk4MUpW US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTNzRmg0TmxIcFA2TU4yVzFpWmViaTgxSlZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzQ3My9GRUFFMTJBMjVEREYxMUYwQTVCRkQ2NkZDNEY5QUUwMi8yQkI5NzExRTVE RTExMUYwOUI3NzVENzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfXZQDANBgkqhkiG9w0BAQsFAAOCAQEAhxHIebTAJ2lQ 79VsgBO0nbqkJou2Vg9DcW5GV8gmqiNoCY2Jx5SoFA46wrccZKE2fs7mY9yj6yjr HF7d90jepeAI7wUeVSlkqT7JOzj+7nYiCONvW9LngTI44cdhchHlzvcAp9E3slb3 XNJftdfX22nj9X3ahY0/Nhl6RyuCHq7V41bt5wxbPsXQkgAYwfU9SmJgqKEd6Uql pN6mAb4cPlksPvvZ9swyoQULVOj7FZ1EmEHykb1Hr2NL4jEHuwravm+jLz1R4u1k S3TFamPoA7iSfXaMfHjov8QY5zz5YjTH5btJXcAH77D0L4m+Vbc8UDXVMMmKyAeq SAStPbObLw== -----END CERTIFICATE-----Generated at Sun Jul 20 18:59:57 2025 by rpki-client