$ rpki-client -vvf rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/B2FCD95C55AA11F09B8A7E4AC4F9AE02.roa File: B2FCD95C55AA11F09B8A7E4AC4F9AE02.roa (raw, json) Hash identifier: a4WQSUXqPLBs6hBYXUzBgrWs1nsWnI2pLDicQNKog6o= Subject key identifier: B8:B1:10:ED:33:66:B2:CF:A2:A4:71:10:F4:A3:CE:E1:60:E7:55:BD Certificate issuer: /CN=A912C738/serialNumber=7FB23916037E9332966376F2E075541224162AF4 Certificate serial: 05D9 Authority key identifier: 7F:B2:39:16:03:7E:93:32:96:63:76:F2:E0:75:54:12:24:16:2A:F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f7I5FgN-kzKWY3by4HVUEiQWKvQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/B2FCD95C55AA11F09B8A7E4AC4F9AE02.roa Signing time: Mon 30 Jun 2025 12:06:48 +0000 ROA not before: Mon 30 Jun 2025 12:06:48 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 16509 IP address blocks: 199.166.34.0/23 maxlen: 23 199.166.36.0/23 maxlen: 23 207.189.184.0/24 maxlen: 24 207.189.185.0/24 maxlen: 24 207.189.186.0/24 maxlen: 24 207.189.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/f7I5FgN-kzKWY3by4HVUEiQWKvQ.crl rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/f7I5FgN-kzKWY3by4HVUEiQWKvQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f7I5FgN-kzKWY3by4HVUEiQWKvQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:29:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1497 (0x5d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C738, serialNumber=7FB23916037E9332966376F2E075541224162AF4 Validity Not Before: Jun 30 12:06:48 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68627dd8-2c03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fd:11:07:96:c2:0e:25:45:69:e8:e4:8f:ea: 85:20:94:ca:39:8c:67:94:22:8e:79:93:26:bd:ab: f5:95:57:a6:dc:be:3a:38:b3:42:07:5f:39:f5:37: 96:bd:a0:cc:6c:a2:43:60:87:eb:2a:fa:a6:b2:3f: 52:d6:2d:6b:81:d0:8c:54:8e:8b:8f:2e:69:46:02: 8d:07:c3:a3:a0:88:f1:a4:af:42:5b:c4:9b:ff:8e: f2:33:30:a5:02:9c:35:8d:ad:ea:e7:13:aa:a5:3f: 07:f6:91:bb:a5:f1:40:2f:7f:72:ad:f0:27:5c:e6: 74:47:67:74:cc:36:f8:df:91:80:80:5e:f7:3a:a5: ac:d0:6b:31:5d:1c:9d:eb:26:49:f8:a8:77:a9:23: 0a:b8:da:fd:27:2c:fd:e1:f7:f7:f6:3b:f4:01:10: 06:5a:26:96:2d:67:a7:0e:e8:c6:a1:be:e3:93:9b: 7f:2c:5d:c7:32:1e:f9:39:39:c1:9f:48:e9:c8:52: d2:74:a5:82:b6:43:80:2e:fe:0b:37:ef:d9:6a:c3: e5:82:97:1c:c4:2a:90:83:01:f2:f2:dd:7e:d5:17: 82:08:a6:2e:0a:ab:07:c2:ad:14:ee:6f:09:52:dd: a1:9f:10:6a:cf:1c:50:07:1e:f9:83:93:42:31:2e: 4a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B1:10:ED:33:66:B2:CF:A2:A4:71:10:F4:A3:CE:E1:60:E7:55:BD X509v3 Authority Key Identifier: keyid:7F:B2:39:16:03:7E:93:32:96:63:76:F2:E0:75:54:12:24:16:2A:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/f7I5FgN-kzKWY3by4HVUEiQWKvQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f7I5FgN-kzKWY3by4HVUEiQWKvQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/B2FCD95C55AA11F09B8A7E4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 199.166.34.0-199.166.37.255 207.189.184.0/22 Signature Algorithm: sha256WithRSAEncryption 38:c7:e5:5d:82:9e:f7:c1:ed:f2:ef:34:12:4d:4b:e4:45:46: aa:07:c7:23:3e:8d:8b:a8:e5:29:36:4c:ae:e5:95:6d:c4:97: f0:8b:a5:91:a7:9f:92:c6:9b:a8:dd:66:19:af:cb:0a:5b:2f: 72:22:e4:5b:05:7a:d3:fa:8a:b2:c6:4f:f1:36:93:4f:a7:14: 08:73:a0:bd:33:e3:7d:f4:d7:60:5b:cb:8b:81:0b:21:54:4e: 15:a6:c3:ef:6e:ce:3d:e7:6f:68:3f:87:5d:0c:f3:7c:e0:69: 8d:1a:1d:9f:6f:54:df:f9:f5:4e:88:7d:f1:b5:94:24:17:c5: ab:76:45:0a:3b:14:6e:38:f3:75:90:24:09:5e:31:dd:3a:fd: 05:8f:56:38:0f:f8:1a:85:73:1a:30:66:ba:27:1b:02:ab:33: c1:47:f5:3d:39:c8:82:13:8c:fc:35:d6:0a:35:0d:f9:50:34: 02:d3:af:68:3a:55:cd:af:7c:66:ac:6f:7f:82:3e:88:9d:c5: ba:1a:39:bf:84:70:60:80:ac:ee:5e:a8:df:9d:24:57:b2:82: 96:9c:49:60:d4:78:cb:a4:e2:c0:7c:af:fe:62:4d:ba:bf:17: 07:85:6c:75:29:e4:a1:f9:b8:38:ac:d1:fc:5f:58:02:1f:c2: 7b:d2:98:0c -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM3MzgxMTAvBgNVBAUTKDdGQjIzOTE2MDM3RTkzMzI5NjYzNzZGMkUwNzU1NDEy MjQxNjJBRjQwHhcNMjUwNjMwMTIwNjQ4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyN2RkOC0yYzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuf0RB5bCDiVFaejkj+qFIJTKOYxnlCKOeZMmvav1lVem3L46OLNCB1859TeW vaDMbKJDYIfrKvqmsj9S1i1rgdCMVI6Ljy5pRgKNB8OjoIjxpK9CW8Sb/47yMzCl Apw1ja3q5xOqpT8H9pG7pfFAL39yrfAnXOZ0R2d0zDb435GAgF73OqWs0GsxXRyd 6yZJ+Kh3qSMKuNr9Jyz94ff39jv0ARAGWiaWLWenDujGob7jk5t/LF3HMh75OTnB n0jpyFLSdKWCtkOALv4LN+/ZasPlgpccxCqQgwHy8t1+1ReCCKYuCqsHwq0U7m8J Ut2hnxBqzxxQBx75g5NCMS5KTQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFLixEO0z ZrLPoqRxEPSjzuFg51W9MB8GA1UdIwQYMBaAFH+yORYDfpMylmN28uB1VBIkFir0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzczOC8zMjBDM0E5QUM5 RDExMUVCOERDNUQyMTBDNEY5QUUwMi9mN0k1RmdOLWt6S1dZM2J5NEhWVUVpUVdL dlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2Y3STVGZ04ta3pLV1kzYnk0SFZVRWlRV0t2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM3MzgvMzIwQzNBOUFDOUQxMTFFQjhEQzVEMjEwQzRGOUFFMDIvQjJGQ0Q5NUM1 NUFBMTFGMDlCOEE3RTRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAcemIgMEAcemJAMEAs+9uDANBgkqhkiG9w0BAQsFAAOC AQEAOMflXYKe98Ht8u80Ek1L5EVGqgfHIz6Ni6jlKTZMruWVbcSX8Iulkaefksab qN1mGa/LClsvciLkWwV60/qKssZP8TaTT6cUCHOgvTPjffTXYFvLi4ELIVROFabD 727OPedvaD+HXQzzfOBpjRodn29U3/n1Toh98bWUJBfFq3ZFCjsUbjjzdZAkCV4x 3Tr9BY9WOA/4GoVzGjBmuicbAqszwUf1PTnIghOM/DXWCjUN+VA0AtOvaDpVza98 Zqxvf4I+iJ3Fuho5v4RwYICs7l6o350kV7KClpxJYNR4y6TiwHyv/mJNur8XB4Vs dSnkofm4OKzR/F9YAh/Ce9KYDA== -----END CERTIFICATE-----Generated at Tue Jul 1 01:21:52 2025 by rpki-client