$ rpki-client -vvf rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa File: 0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa (raw, json) Hash identifier: e53H18n/zt4tMpCTzx/LyyJ5rGfSmD0vKN+ZK6rIQ0U= Subject key identifier: 78:59:21:98:23:7A:BB:00:C9:D3:CF:93:E5:AD:DB:17:B3:5F:8B:60 Certificate issuer: /CN=A9118749/serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Certificate serial: 41 Authority key identifier: 95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa Signing time: Thu 15 May 2025 20:45:46 +0000 ROA not before: Thu 15 May 2025 20:45:46 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 206804 IP address blocks: 2401:eaa0:1::/48 maxlen: 48 2401:eaa0:2::/48 maxlen: 48 2401:eaa0:3::/48 maxlen: 48 2401:eaa0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:18:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118749, serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Validity Not Before: May 15 20:45:46 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=68265279-c5b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:10:0a:80:d9:36:98:ef:97:c4:ec:09:f4:8b: aa:2e:9f:b3:5e:fc:19:cd:ed:a4:76:ac:14:07:48: 9b:f3:e0:06:b0:06:54:ee:0a:ea:69:d6:ca:29:6b: 88:19:16:6e:1c:61:9c:ec:6a:c1:f4:63:df:8e:e9: 1f:e2:d7:73:34:d5:8a:30:14:b6:8d:76:6e:82:26: 4b:6d:91:e1:1b:8a:47:70:54:42:5f:40:73:78:8b: 0a:f8:fe:d4:72:71:b0:d0:f2:a4:21:6e:96:ae:51: a8:19:59:95:6b:d9:77:eb:47:a7:27:d6:e0:c8:f7: 8f:3f:1e:87:9e:c4:1b:59:5e:78:3c:d9:5f:24:26: 1a:04:70:6f:ee:59:74:5a:32:db:e3:38:b2:c7:90: 58:a3:23:da:bb:b6:16:af:7a:99:59:7d:8b:03:d0: b6:28:20:eb:c5:86:83:3a:c8:02:fc:ff:c4:7d:82: a7:5c:13:a6:ec:50:35:25:b1:ba:a4:42:80:a8:6d: 77:37:b2:8f:53:56:65:f6:28:2e:18:20:ba:bb:52: 07:dc:9b:a4:6d:7c:d0:08:b6:55:45:26:3d:18:e8: b4:6f:93:51:8c:dc:82:b6:0b:ae:e5:64:f8:d9:22: 34:6d:af:eb:c6:6d:d7:10:97:47:f5:35:26:1d:e1: 7d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:59:21:98:23:7A:BB:00:C9:D3:CF:93:E5:AD:DB:17:B3:5F:8B:60 X509v3 Authority Key Identifier: keyid:95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:eaa0:1::-2401:eaa0:4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 37:99:90:c4:02:64:ad:64:fc:a6:3a:24:65:40:bb:05:78:5d: 62:bb:c0:f4:e0:61:44:ea:b2:71:a5:86:49:cb:ec:38:d0:ff: 71:e7:5d:fd:2d:72:d2:a0:f4:ca:c1:74:e0:44:97:e8:37:35: 8e:13:5a:21:4c:a3:af:bc:68:a3:8d:34:da:a5:c3:47:24:fe: 0d:ce:5d:75:87:4f:4a:a6:b0:0d:64:2c:b2:dc:02:0a:89:6f: f5:ea:d0:c3:da:9d:25:19:ea:7c:36:9d:ef:2b:a2:52:f0:6e: a9:e7:a9:04:75:ae:e4:54:5a:fd:ba:69:82:b9:5d:7a:6c:2a: 82:a8:92:75:a1:55:f6:f5:fd:b9:12:ed:60:95:db:95:a8:ba: 67:e4:e7:4a:a2:2e:ad:6b:91:30:46:9b:f2:96:fe:cf:17:1f: 77:9e:1f:b4:6b:bb:24:cc:06:bf:3b:0a:4a:a8:08:d3:c8:5e: 9d:7f:94:42:5e:91:b0:2b:2e:e6:5d:dc:6b:a7:f8:63:7c:ad: ff:d6:fe:63:d8:69:19:c1:7d:04:40:bb:88:55:97:a3:f7:66: 89:b7:42:6a:5d:e3:3f:31:83:2b:a8:7a:3f:28:56:c0:1e:3b: 86:7e:bf:5a:62:de:e5:78:a8:50:9b:a0:68:9f:e4:ed:48:f1: 73:8b:bf:7a -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODc0OTExMC8GA1UEBRMoOTU0NTlENUQxRUIwNDA5NUZEMTYzRjBEODREMUYzQTQ2 QzE1RTRGMDAeFw0yNTA1MTUyMDQ1NDZaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjY1Mjc5LWM1YjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbEAqA2TaY75fE7An0i6oun7Ne/BnN7aR2rBQHSJvz4AawBlTuCupp1sopa4gZ Fm4cYZzsasH0Y9+O6R/i13M01YowFLaNdm6CJkttkeEbikdwVEJfQHN4iwr4/tRy cbDQ8qQhbpauUagZWZVr2XfrR6cn1uDI948/HoeexBtZXng82V8kJhoEcG/uWXRa MtvjOLLHkFijI9q7thaveplZfYsD0LYoIOvFhoM6yAL8/8R9gqdcE6bsUDUlsbqk QoCobXc3so9TVmX2KC4YILq7Ugfcm6RtfNAItlVFJj0Y6LRvk1GM3IK2C67lZPjZ IjRtr+vGbdcQl0f1NSYd4X0dAgMBAAGjggKjMIICnzAdBgNVHQ4EFgQUeFkhmCN6 uwDJ08+T5a3bF7Nfi2AwHwYDVR0jBBgwFoAUlUWdXR6wQJX9Fj8NhNHzpGwV5PAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NzQ5L0JBNTdEQkE2REMy MDExRUY5MUI1NDAxRUM0RjlBRTAyL2xVV2RYUjZ3UUpYOUZqOE5oTkh6cEd3VjVQ QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFVXZFhSNndRSlg5Rmo4TmhOSHpwR3dWNVBBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODc0OS9CQTU3REJBNkRDMjAxMUVGOTFCNTQwMUVDNEY5QUUwMi8wRDlEOEM4Q0RD MjMxMUVGQUVCMkY2NzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAtBggrBgEFBQcBBwEB/wQe MBwwGgQCAAIwFDASAwcAJAHqoAABAwcAJAHqoAAEMA0GCSqGSIb3DQEBCwUAA4IB AQA3mZDEAmStZPymOiRlQLsFeF1iu8D04GFE6rJxpYZJy+w40P9x5139LXLSoPTK wXTgRJfoNzWOE1ohTKOvvGijjTTapcNHJP4Nzl11h09KprANZCyy3AIKiW/16tDD 2p0lGep8Np3vK6JS8G6p56kEda7kVFr9ummCuV16bCqCqJJ1oVX29f25Eu1glduV qLpn5OdKoi6ta5EwRpvylv7PFx93nh+0a7skzAa/OwpKqAjTyF6df5RCXpGwKy7m Xdxrp/hjfK3/1v5j2GkZwX0EQLuIVZej92aJt0JqXeM/MYMrqHo/KFbAHjuGfr9a Yt7leKhQm6Bon+TtSPFzi796 -----END CERTIFICATE-----Generated at Tue Jun 3 23:39:08 2025 by rpki-client