$ rpki-client -vvf rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/849C352211F811EF820BF24FC4F9AE02.roa File: 849C352211F811EF820BF24FC4F9AE02.roa (raw, json) Hash identifier: b3uced97w9HX8eWf4q1QzAvxi1eeuc/tsrxa1EU++kg= Subject key identifier: DE:BD:3B:84:9D:27:61:91:B4:B2:50:86:1C:13:E7:2E:72:C4:6C:BE Certificate issuer: /CN=A911B6FB/serialNumber=AD234E3F1EBBADAD019FE09AFFF70E8075AFDE17 Certificate serial: CB Authority key identifier: AD:23:4E:3F:1E:BB:AD:AD:01:9F:E0:9A:FF:F7:0E:80:75:AF:DE:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSNOPx67ra0Bn-Ca__cOgHWv3hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/849C352211F811EF820BF24FC4F9AE02.roa Signing time: Tue 03 Jun 2025 06:05:00 +0000 ROA not before: Tue 03 Jun 2025 06:05:00 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152853 IP address blocks: 2001:df3:cec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/rSNOPx67ra0Bn-Ca__cOgHWv3hc.crl rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/rSNOPx67ra0Bn-Ca__cOgHWv3hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSNOPx67ra0Bn-Ca__cOgHWv3hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:05:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B6FB, serialNumber=AD234E3F1EBBADAD019FE09AFFF70E8075AFDE17 Validity Not Before: Jun 3 06:05:00 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683e908b-b5aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:6f:94:fe:6f:b7:cf:2e:64:66:93:ef:23:87: 02:4d:da:3c:63:5e:94:f3:9d:97:12:ac:f6:77:7d: e7:da:75:3f:ec:69:1e:f1:1e:6a:bd:59:11:d5:b7: 50:4b:d2:80:1d:6a:77:d7:d4:07:d1:e1:28:d8:94: 63:cd:f4:67:1c:be:bf:67:93:cb:13:31:aa:ab:43: 0e:73:7a:22:b1:20:a0:13:f9:64:27:03:c9:79:22: 5d:30:5e:1e:71:3c:5c:6c:17:dc:f2:db:59:2d:b1: 08:86:42:5e:88:ff:9a:6a:2b:ac:e8:4c:d7:c1:0e: b0:e0:34:c1:e7:8d:41:e5:05:80:cb:70:aa:cf:72: 5a:bb:54:cc:2a:ea:d9:8a:c9:6e:d4:eb:ef:df:49: c3:2a:82:01:f2:b9:06:10:c0:21:c2:c4:b9:16:7e: aa:91:8a:4b:ab:75:99:03:c9:57:0d:66:19:01:18: c2:13:4e:da:e2:2e:e2:e7:7f:21:9d:61:44:b9:89: 1e:01:d7:00:56:3f:7a:7d:58:57:48:ed:9f:c7:fd: c3:78:e8:c5:e9:ea:c9:55:c9:d7:79:d7:6c:82:d3: 7d:d7:00:44:01:ee:57:91:8e:53:05:a1:13:37:4a: 11:0f:9d:75:9f:8e:81:78:9f:91:1f:a4:1d:85:49: e8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:BD:3B:84:9D:27:61:91:B4:B2:50:86:1C:13:E7:2E:72:C4:6C:BE X509v3 Authority Key Identifier: keyid:AD:23:4E:3F:1E:BB:AD:AD:01:9F:E0:9A:FF:F7:0E:80:75:AF:DE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/rSNOPx67ra0Bn-Ca__cOgHWv3hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSNOPx67ra0Bn-Ca__cOgHWv3hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/849C352211F811EF820BF24FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:cec0::/48 Signature Algorithm: sha256WithRSAEncryption 71:e2:bf:78:62:4d:ec:88:8c:79:7a:7d:c6:64:27:e9:84:1c: 78:95:9d:30:ec:02:b3:be:cb:ac:eb:6d:fb:40:59:29:57:ec: e9:f0:e1:30:c7:94:16:da:da:7b:de:a5:86:68:54:1c:5b:6b: bb:e8:96:92:a6:79:a2:9e:31:7c:7e:11:3b:5e:87:36:40:0a: 7c:ed:36:9d:32:a6:b6:34:43:7e:bf:73:52:1a:e7:30:07:fb: f6:99:f4:db:1e:80:02:94:bc:af:d2:9f:e1:82:98:9f:67:99: 4e:3d:a6:40:55:a4:2f:da:94:8f:bd:dc:0c:91:10:60:3e:52: b8:d7:eb:b1:90:9b:00:03:9b:a7:de:82:23:1b:58:e8:f6:be: 80:cc:4b:a3:f1:93:6b:29:83:6c:3e:63:11:03:1c:9b:6a:6c: 03:d8:a4:3c:d3:30:2f:bd:aa:4d:3a:6e:28:6d:18:4e:d0:91: 84:2b:c3:43:63:3c:b3:16:71:cf:32:b2:a0:19:5d:9a:9f:72: b7:33:e8:02:9c:aa:d5:35:89:20:03:41:82:1d:51:2e:f6:be: b3:3c:42:03:5f:c0:4c:38:6c:a3:f8:92:55:6f:90:d1:f1:ac: 8f:91:af:6f:43:3c:34:23:5b:f5:64:1c:e4:66:f5:1e:80:2e: df:28:fa:bd -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI2RkIxMTAvBgNVBAUTKEFEMjM0RTNGMUVCQkFEQUQwMTlGRTA5QUZGRjcwRTgw NzVBRkRFMTcwHhcNMjUwNjAzMDYwNTAwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlOTA4Yi1iNWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6G+U/m+3zy5kZpPvI4cCTdo8Y16U852XEqz2d33n2nU/7Gke8R5qvVkR1bdQ S9KAHWp319QH0eEo2JRjzfRnHL6/Z5PLEzGqq0MOc3oisSCgE/lkJwPJeSJdMF4e cTxcbBfc8ttZLbEIhkJeiP+aaius6EzXwQ6w4DTB541B5QWAy3Cqz3Jau1TMKurZ islu1Ovv30nDKoIB8rkGEMAhwsS5Fn6qkYpLq3WZA8lXDWYZARjCE07a4i7i538h nWFEuYkeAdcAVj96fVhXSO2fx/3DeOjF6erJVcnXeddsgtN91wBEAe5XkY5TBaET N0oRD511n46BeJ+RH6QdhUnoWQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFN69O4Sd J2GRtLJQhhwT5y5yxGy+MB8GA1UdIwQYMBaAFK0jTj8eu62tAZ/gmv/3DoB1r94X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjZGQi9EOUNDOUVERTEx RjcxMUVGOTNCRDk0NEVDNEY5QUUwMi9yU05PUHg2N3JhMEJuLUNhX19jT2dIV3Yz aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTTk9QeDY3cmEwQm4tQ2FfX2NPZ0hXdjNoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI2RkIvRDlDQzlFREUxMUY3MTFFRjkzQkQ5NDRFQzRGOUFFMDIvODQ5QzM1MjIx MUY4MTFFRjgyMEJGMjRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zzsAwDQYJKoZIhvcNAQELBQADggEBAHHiv3hiTeyI jHl6fcZkJ+mEHHiVnTDsArO+y6zrbftAWSlX7Onw4TDHlBba2nvepYZoVBxba7vo lpKmeaKeMXx+ETtehzZACnztNp0yprY0Q36/c1Ia5zAH+/aZ9NsegAKUvK/Sn+GC mJ9nmU49pkBVpC/alI+93AyREGA+UrjX67GQmwADm6fegiMbWOj2voDMS6Pxk2sp g2w+YxEDHJtqbAPYpDzTMC+9qk06bihtGE7QkYQrw0NjPLMWcc8ysqAZXZqfcrcz 6AKcqtU1iSADQYIdUS72vrM8QgNfwEw4bKP4klVvkNHxrI+Rr29DPDQjW/VkHORm 9R6ALt8o+r0= -----END CERTIFICATE-----Generated at Wed Jun 4 00:12:36 2025 by rpki-client