$ rpki-client -vvf rpki.apnic.net/member_repository/A9117CD5/66C3320E5FA811F0B5978C2CC4F9AE02/0BC2889A5FA911F0BE187C31C4F9AE02.roa File: 0BC2889A5FA911F0BE187C31C4F9AE02.roa (raw, json) Hash identifier: J+H6csOZmYsW7V01nBKq8FR/OiHNtxdZOxR4C+LUEPs= Subject key identifier: D0:9E:B6:F6:A1:0B:9B:48:87:80:B7:E8:41:96:27:13:6E:3D:68:9E Certificate issuer: /CN=A9117CD5/serialNumber=6C42F04F80BB068EC246CE6887177EF17C86CF33 Certificate serial: 02 Authority key identifier: 6C:42:F0:4F:80:BB:06:8E:C2:46:CE:68:87:17:7E:F1:7C:86:CF:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bELwT4C7Bo7CRs5ohxd-8XyGzzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117CD5/66C3320E5FA811F0B5978C2CC4F9AE02/0BC2889A5FA911F0BE187C31C4F9AE02.roa Signing time: Sun 13 Jul 2025 05:20:10 +0000 ROA not before: Sun 13 Jul 2025 05:20:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151351 IP address blocks: 2402:1760::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117CD5/66C3320E5FA811F0B5978C2CC4F9AE02/bELwT4C7Bo7CRs5ohxd-8XyGzzM.crl rsync://rpki.apnic.net/member_repository/A9117CD5/66C3320E5FA811F0B5978C2CC4F9AE02/bELwT4C7Bo7CRs5ohxd-8XyGzzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bELwT4C7Bo7CRs5ohxd-8XyGzzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 08:22:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117CD5, serialNumber=6C42F04F80BB068EC246CE6887177EF17C86CF33 Validity Not Before: Jul 13 05:20:10 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6873420a-2336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6f:fd:72:31:83:7d:8b:89:28:c5:14:0d:1e: 75:05:4b:d1:30:79:14:2a:30:bb:ef:a0:f0:9c:e5: 75:00:a8:53:92:6b:8a:0f:01:23:ef:b5:59:20:8f: a3:7c:fe:2d:f4:15:c1:f5:8f:ba:2a:fd:03:aa:04: 04:13:66:0b:58:21:6c:db:85:a7:84:59:db:c2:82: 36:51:7b:68:c9:3e:7b:d9:45:0b:ed:bf:09:9e:a7: 20:31:c8:00:d8:4a:c9:a5:fd:a4:6c:9a:1b:8f:05: b7:82:e5:64:8c:85:dc:16:38:c7:10:73:b6:7c:9d: 8d:e3:da:cc:62:5d:b6:79:df:62:37:47:36:ec:a1: 28:80:02:41:e8:29:18:19:e1:5b:f4:a7:c0:78:71: d3:e5:22:67:a8:64:62:f6:b0:0a:c3:4c:a0:9e:63: b7:33:2f:09:86:f4:04:84:48:21:3f:4a:d7:63:9a: 2e:22:08:63:63:fd:4a:d8:a8:49:a6:01:1c:24:37: bc:eb:19:14:27:03:81:3c:27:08:7f:ac:c9:b5:27: 89:75:94:a7:7c:f7:bf:8b:8f:4b:be:3a:05:50:2a: 4c:c1:45:a4:9e:2b:17:80:d5:a1:e8:f2:92:44:75: 4f:b0:ff:81:63:04:4a:a3:21:94:fc:9d:a2:1d:59: 52:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:9E:B6:F6:A1:0B:9B:48:87:80:B7:E8:41:96:27:13:6E:3D:68:9E X509v3 Authority Key Identifier: keyid:6C:42:F0:4F:80:BB:06:8E:C2:46:CE:68:87:17:7E:F1:7C:86:CF:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117CD5/66C3320E5FA811F0B5978C2CC4F9AE02/bELwT4C7Bo7CRs5ohxd-8XyGzzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bELwT4C7Bo7CRs5ohxd-8XyGzzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117CD5/66C3320E5FA811F0B5978C2CC4F9AE02/0BC2889A5FA911F0BE187C31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:1760::/32 Signature Algorithm: sha256WithRSAEncryption ad:89:aa:f2:d2:6d:9a:32:91:4c:aa:45:42:4c:c4:dc:66:df: 57:c4:58:09:53:80:7e:bc:d3:98:1b:db:a4:61:71:ed:52:73: 51:27:07:8a:28:a6:64:dd:57:da:8c:b8:16:0a:54:7b:21:4b: cf:22:61:a5:b7:90:06:6b:4c:f9:17:e6:1f:b5:34:2a:67:62: 99:ba:a5:2f:9a:43:6c:e3:6c:c7:1c:e7:65:60:31:95:cd:95: 94:5e:7c:3e:b8:ee:03:ae:07:52:59:08:e3:87:b5:9f:8c:41: e4:0d:e1:0a:0b:eb:eb:a8:17:b6:53:5a:a8:87:d1:bd:73:51: 04:73:92:74:a4:d1:8f:22:97:82:f4:04:41:c6:33:29:34:47: 66:b5:49:61:c2:17:25:06:f6:24:a4:65:f4:09:f3:ff:6b:d3: b3:d3:25:98:e9:cb:76:76:1d:5d:76:3e:16:09:d6:f7:b8:aa: b2:f2:9b:59:ec:81:0d:c1:b4:15:e7:12:d7:4b:65:3d:29:05: 83:dc:84:4e:c4:b2:94:a4:ff:be:39:44:4b:e1:b2:a7:39:92: a2:4f:11:2f:5d:d7:13:22:3c:30:cd:ad:6f:fb:8b:46:e9:b1: a5:75:66:f4:c5:55:54:b0:29:f3:dd:71:fc:51:46:2c:5d:69: 5a:4b:c0:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx N0NENTExMC8GA1UEBRMoNkM0MkYwNEY4MEJCMDY4RUMyNDZDRTY4ODcxNzdFRjE3 Qzg2Q0YzMzAeFw0yNTA3MTMwNTIwMTBaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzM0MjBhLTIzMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUb/1yMYN9i4koxRQNHnUFS9EweRQqMLvvoPCc5XUAqFOSa4oPASPvtVkgj6N8 /i30FcH1j7oq/QOqBAQTZgtYIWzbhaeEWdvCgjZRe2jJPnvZRQvtvwmepyAxyADY Ssml/aRsmhuPBbeC5WSMhdwWOMcQc7Z8nY3j2sxiXbZ532I3RzbsoSiAAkHoKRgZ 4Vv0p8B4cdPlImeoZGL2sArDTKCeY7czLwmG9ASESCE/Stdjmi4iCGNj/UrYqEmm ARwkN7zrGRQnA4E8Jwh/rMm1J4l1lKd897+Lj0u+OgVQKkzBRaSeKxeA1aHo8pJE dU+w/4FjBEqjIZT8naIdWVJhAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQU0J629qEL m0iHgLfoQZYnE249aJ4wHwYDVR0jBBgwFoAUbELwT4C7Bo7CRs5ohxd+8XyGzzMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3Q0Q1LzY2QzMzMjBFNUZB ODExRjBCNTk3OEMyQ0M0RjlBRTAyL2JFTHdUNEM3Qm83Q1JzNW9oeGQtOFh5R3p6 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkVMd1Q0QzdCbzdDUnM1b2h4ZC04WHlHenpNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0NENS82NkMzMzIwRTVGQTgxMUYwQjU5NzhDMkNDNEY5QUUwMi8wQkMyODg5QTVG QTkxMUYwQkUxODdDMzFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQCF2AwDQYJKoZIhvcNAQELBQADggEBAK2JqvLSbZoykUyq RUJMxNxm31fEWAlTgH6805gb26Rhce1Sc1EnB4oopmTdV9qMuBYKVHshS88iYaW3 kAZrTPkX5h+1NCpnYpm6pS+aQ2zjbMcc52VgMZXNlZRefD647gOuB1JZCOOHtZ+M QeQN4QoL6+uoF7ZTWqiH0b1zUQRzknSk0Y8il4L0BEHGMyk0R2a1SWHCFyUG9iSk ZfQJ8/9r07PTJZjpy3Z2HV12PhYJ1ve4qrLym1nsgQ3BtBXnEtdLZT0pBYPchE7E spSk/745REvhsqc5kqJPES9d1xMiPDDNrW/7i0bpsaV1ZvTFVVSwKfPdcfxRRixd aVpLwC8= -----END CERTIFICATE-----Generated at Wed Jul 23 06:28:44 2025 by rpki-client