$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/168F2F085B2B11F08278F87DC4F9AE02.roa File: 168F2F085B2B11F08278F87DC4F9AE02.roa (raw, json) Hash identifier: 2PVKgK1lFqB+86MimaDHLMa5si0ZjrS1vmwk8fotq+E= Subject key identifier: 59:5D:51:B0:D9:46:E4:89:EB:99:51:30:A4:5C:F4:78:ED:D3:06:43 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: BFBA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/168F2F085B2B11F08278F87DC4F9AE02.roa Signing time: Mon 07 Jul 2025 12:08:27 +0000 ROA not before: Mon 07 Jul 2025 12:08:27 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153744 IP address blocks: 2001:df0:8ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49082 (0xbfba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 7 12:08:27 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=686bb8bb-efd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:20:33:1a:fb:3e:18:8d:1a:b3:d2:d4:65:a0: a0:cb:0a:2a:72:de:20:d6:69:15:4b:d8:33:7b:a4: 12:0d:42:a6:63:79:31:86:81:18:59:96:e2:dd:9f: 5b:4f:70:98:b2:06:40:c7:34:13:4c:0b:9b:c7:47: 68:00:8e:78:48:f3:8f:01:7e:17:3a:02:f1:40:9b: a6:ff:cc:a2:94:f9:1c:ee:fb:c6:f7:3f:10:be:45: fe:bb:14:3b:57:a0:06:ab:12:2b:4f:4f:ae:44:4e: 43:6b:88:01:d1:f9:d8:a4:8a:c2:d4:2c:94:26:c3: 31:99:63:a5:ed:b6:f5:42:ac:f7:b8:7b:a7:57:ea: d3:1e:8e:dd:31:5f:57:60:28:2d:b3:db:6e:15:9c: 9a:ce:1a:18:ed:e3:a0:c5:0e:69:b7:70:3b:e5:1c: 35:f4:d9:ed:22:81:fb:a6:87:e8:9a:4b:ac:56:30: 8e:de:cb:de:d3:3e:64:87:e8:db:71:09:55:a7:a3: 40:39:52:6c:ab:04:3b:b9:0a:6b:43:f2:1a:85:2d: ec:e1:1f:db:72:85:a2:d2:6f:83:d5:96:6b:ad:af: 49:06:a0:f9:84:f7:a9:20:10:35:67:a9:42:3d:17: 11:d2:eb:f3:9f:5b:ec:bc:63:eb:d2:55:c5:fb:8b: 55:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:5D:51:B0:D9:46:E4:89:EB:99:51:30:A4:5C:F4:78:ED:D3:06:43 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/168F2F085B2B11F08278F87DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:8ec0::/48 Signature Algorithm: sha256WithRSAEncryption 5d:96:b0:4c:47:20:41:47:29:4e:47:16:78:cd:aa:eb:b0:03: 3c:15:35:dc:b7:cd:85:9d:7c:b6:23:13:0d:7e:25:2c:85:82: a3:23:f0:0a:b4:7f:8a:d9:8f:88:2e:37:fc:32:ae:59:7a:57: b6:ad:6a:0c:d9:cd:6f:68:1d:bf:1a:be:eb:63:56:69:6b:39: 35:fd:b8:ff:c7:0c:64:f6:08:97:cd:9e:df:f2:3a:e0:73:a4: 0d:fe:66:54:15:03:0e:39:b2:6d:31:a7:30:10:a1:8f:65:c2: 85:60:85:2a:ba:83:bf:4e:9c:55:f8:e9:8b:0f:ac:d5:fe:64: 1c:dc:70:1b:c4:50:5d:cd:a9:9f:5a:d6:5d:8d:ba:85:33:30: 5a:7b:76:7a:8c:e1:af:83:3b:52:91:25:14:b5:ee:3f:66:94: eb:cb:04:bd:bd:69:14:db:97:23:f1:48:96:10:b7:5b:4f:fa: ed:62:1b:de:3c:93:7a:2a:ba:56:cc:9d:3b:6e:35:7d:98:48: 18:6e:fa:6a:94:39:a1:66:4d:71:e5:be:9c:36:9f:d9:f5:8e: 0f:84:63:cd:e0:56:39:32:d1:18:38:c8:da:16:c2:ac:20:b5: 1a:40:1d:e6:48:64:a4:18:91:d7:df:2d:2b:5d:6f:55:a1:cd: 5a:de:f4:bf -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAL+6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDcwNzEyMDgyN1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjg2YmI4YmItZWZkNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKggMxr7PhiNGrPS1GWgoMsKKnLeINZpFUvYM3ukEg1CpmN5MYaBGFmW4t2f W09wmLIGQMc0E0wLm8dHaACOeEjzjwF+FzoC8UCbpv/MopT5HO77xvc/EL5F/rsU O1egBqsSK09PrkROQ2uIAdH52KSKwtQslCbDMZljpe229UKs97h7p1fq0x6O3TFf V2AoLbPbbhWcms4aGO3joMUOabdwO+UcNfTZ7SKB+6aH6JpLrFYwjt7L3tM+ZIfo 23EJVaejQDlSbKsEO7kKa0PyGoUt7OEf23KFotJvg9WWa62vSQag+YT3qSAQNWep Qj0XEdLr859b7Lxj69JVxfuLVRECAwEAAaOCApgwggKUMB0GA1UdDgQWBBRZXVGw 2UbkieuZUTCkXPR47dMGQzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzE2OEYyRjA4 NUIyQjExRjA4Mjc4Rjg3REM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN8I7AMA0GCSqGSIb3DQEBCwUAA4IBAQBdlrBMRyBB RylORxZ4zarrsAM8FTXct82FnXy2IxMNfiUshYKjI/AKtH+K2Y+ILjf8Mq5Zele2 rWoM2c1vaB2/Gr7rY1Zpazk1/bj/xwxk9giXzZ7f8jrgc6QN/mZUFQMOObJtMacw EKGPZcKFYIUquoO/TpxV+OmLD6zV/mQc3HAbxFBdzamfWtZdjbqFMzBae3Z6jOGv gztSkSUUte4/ZpTrywS9vWkU25cj8UiWELdbT/rtYhvePJN6KrpWzJ07bjV9mEgY bvpqlDmhZk1x5b6cNp/Z9Y4PhGPN4FY5MtEYOMjaFsKsILUaQB3mSGSkGJHX3y0r XW9Voc1a3vS/ -----END CERTIFICATE-----Generated at Sun Jul 20 22:34:22 2025 by rpki-client