$ rpki-client -vvf rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/F73A3EA458FF11F0831F6664C4F9AE02.roa File: F73A3EA458FF11F0831F6664C4F9AE02.roa (raw, json) Hash identifier: 9HomyUX0PomXvq45psvaACwfTmVg8wmvwSi8lzKvi40= Subject key identifier: F9:56:8B:09:99:DD:1C:EC:45:EF:5E:4E:B7:B7:95:5E:92:82:FC:0A Certificate issuer: /CN=A919A777/serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Certificate serial: 0128 Authority key identifier: 64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/F73A3EA458FF11F0831F6664C4F9AE02.roa Signing time: Wed 16 Jul 2025 18:27:22 +0000 ROA not before: Wed 16 Jul 2025 18:27:22 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 53356 IP address blocks: 2403:ad80:5012::/48 maxlen: 48 2403:ad80:5016::/48 maxlen: 48 2403:ad80:5017::/48 maxlen: 48 2403:ad80:5019::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A777, serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Validity Not Before: Jul 16 18:27:22 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6877ef09-48ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:43:9b:64:4f:11:db:a9:1e:74:1b:f7:42:1f: c9:1c:47:3b:b0:36:b4:bf:da:36:25:ed:05:25:d9: ad:eb:c6:fc:25:0d:01:fe:0c:9d:8d:b7:16:c1:8f: ec:82:8a:72:84:73:36:e9:80:f6:de:2f:d7:f2:fd: 85:57:77:56:bc:36:d6:a2:17:7c:31:a8:52:33:48: e6:88:44:cd:b0:97:5e:76:75:65:2b:f7:c3:3d:ca: 85:0d:69:b0:18:af:c3:c1:a6:73:d5:07:dd:6c:4c: 62:8c:45:fd:5d:a6:76:d7:66:69:2d:21:5a:9a:59: b9:db:c2:cc:8c:b1:8b:e5:76:2f:f7:7d:fb:14:f8: 6b:91:86:12:56:aa:a3:21:97:a7:bf:f9:93:ca:5b: 02:ea:e5:84:a5:b9:1c:ba:97:74:40:52:d1:8c:ce: 11:9d:88:2c:fd:fe:16:bf:27:23:29:6b:1a:bb:76: 2b:57:10:29:e9:ac:0c:06:66:a6:23:2a:c1:ab:65: 89:f8:81:1a:86:0a:94:7c:03:ec:20:96:72:e7:08: d0:43:95:56:73:c4:42:84:07:7f:68:ac:c7:32:5f: ef:e6:91:53:f2:f9:0c:4b:01:ec:6e:db:fb:c9:69: a6:68:42:a3:d8:f9:d7:1b:65:c2:ba:be:13:88:6e: 09:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:56:8B:09:99:DD:1C:EC:45:EF:5E:4E:B7:B7:95:5E:92:82:FC:0A X509v3 Authority Key Identifier: keyid:64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/F73A3EA458FF11F0831F6664C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:ad80:5012::/48 2403:ad80:5016::/47 2403:ad80:5019::/48 Signature Algorithm: sha256WithRSAEncryption 13:a7:9e:2e:ce:89:e5:39:a4:bd:7f:d7:d3:61:38:a0:9a:b9: 9f:4a:c1:2e:89:92:bd:87:97:95:19:0e:80:c4:56:19:a3:e4: 77:b1:ac:78:08:9d:50:35:3b:ab:d1:0d:cb:d3:73:1f:94:0c: 0f:6d:8c:f1:6c:2d:bd:72:04:64:c3:7d:7a:3c:46:a3:75:f3: ce:a2:0b:b4:49:95:60:b5:aa:19:2e:05:1e:f6:dc:6e:f3:2a: 34:b3:ad:8e:f1:f9:ee:ba:9b:5d:18:60:21:77:1e:ea:81:ce: ec:a2:24:3b:62:2f:20:1c:e2:e0:4b:c0:3f:8f:9e:6e:fd:c5: 80:be:b4:4f:5f:5e:4c:12:1d:ff:ad:ac:3b:e7:2e:3b:ea:a6: 0c:b0:59:91:4f:a2:04:91:e6:1e:02:68:64:de:8c:25:8c:7b: fe:9a:b7:e2:4b:22:ea:56:01:95:e7:23:50:00:54:95:0f:d7: e2:70:e7:2a:45:6f:25:fe:55:40:d1:5b:24:1f:0c:87:fd:23: 60:ed:dd:4b:a4:54:c5:47:b1:73:42:81:ae:12:31:9b:2c:aa: e8:66:be:48:ad:67:58:ff:17:eb:05:81:15:31:fd:07:5b:b6: 8c:0d:d4:da:f4:3a:15:70:f0:8b:b8:62:99:76:b6:53:a6:d8: 5b:59:37:ce -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3NzcxMTAvBgNVBAUTKDY0N0QwOTI3REIzQjE3OEUyRjY1NEEzMjY4NTU3RkU1 QjVENjcyOUMwHhcNMjUwNzE2MTgyNzIyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc3ZWYwOS00OGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUObZE8R26kedBv3Qh/JHEc7sDa0v9o2Je0FJdmt68b8JQ0B/gydjbcWwY/s gopyhHM26YD23i/X8v2FV3dWvDbWohd8MahSM0jmiETNsJdednVlK/fDPcqFDWmw GK/DwaZz1QfdbExijEX9XaZ212ZpLSFamlm528LMjLGL5XYv9337FPhrkYYSVqqj IZenv/mTylsC6uWEpbkcupd0QFLRjM4RnYgs/f4WvycjKWsau3YrVxAp6awMBmam IyrBq2WJ+IEahgqUfAPsIJZy5wjQQ5VWc8RChAd/aKzHMl/v5pFT8vkMSwHsbtv7 yWmmaEKj2PnXG2XCur4TiG4JRQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFPlWiwmZ 3RzsRe9eTre3lV6SgvwKMB8GA1UdIwQYMBaAFGR9CSfbOxeOL2VKMmhVf+W11nKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTc3Ny8wQkE1NzJCMEVD NEYxMUVFQTFCMzg4NjZDNEY5QUUwMi9aSDBKSjlzN0Y0NHZaVW95YUZWXzViWFdj cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pIMEpKOXM3RjQ0dlpVb3lhRlZfNWJYV2Nwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3NzcvMEJBNTcyQjBFQzRGMTFFRUExQjM4ODY2QzRGOUFFMDIvRjczQTNFQTQ1 OEZGMTFGMDgzMUY2NjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMCEEAgACMBsDBwAkA62AUBIDBwEkA62AUBYDBwAkA62AUBkwDQYJKoZIhvcN AQELBQADggEBABOnni7OieU5pL1/19NhOKCauZ9KwS6Jkr2Hl5UZDoDEVhmj5Hex rHgInVA1O6vRDcvTcx+UDA9tjPFsLb1yBGTDfXo8RqN1886iC7RJlWC1qhkuBR72 3G7zKjSzrY7x+e66m10YYCF3HuqBzuyiJDtiLyAc4uBLwD+Pnm79xYC+tE9fXkwS Hf+trDvnLjvqpgywWZFPogSR5h4CaGTejCWMe/6at+JLIupWAZXnI1AAVJUP1+Jw 5ypFbyX+VUDRWyQfDIf9I2Dt3UukVMVHsXNCga4SMZssquhmvkitZ1j/F+sFgRUx /QdbtowN1Nr0OhVw8Iu4Ypl2tlOm2FtZN84= -----END CERTIFICATE-----Generated at Sun Jul 20 14:36:16 2025 by rpki-client