$ rpki-client -vvf rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/89D7E6869E9211EF8726F76AC4F9AE02.roa File: 89D7E6869E9211EF8726F76AC4F9AE02.roa (raw, json) Hash identifier: 1uxD9+JBsmHAELgtODtowZ9H7bGY5PrdUNrrDTftS4k= Subject key identifier: 65:BA:36:8D:5A:90:52:BD:08:A6:4D:A3:5D:1A:EB:A9:B2:4C:0C:B3 Certificate issuer: /CN=A913B4BE/serialNumber=DD36E45C71D3D92B3CD1A72D5F5AB325B346ADCA Certificate serial: EE Authority key identifier: DD:36:E4:5C:71:D3:D9:2B:3C:D1:A7:2D:5F:5A:B3:25:B3:46:AD:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3TbkXHHT2Ss80actX1qzJbNGrco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/89D7E6869E9211EF8726F76AC4F9AE02.roa Signing time: Sat 17 May 2025 05:05:51 +0000 ROA not before: Sat 17 May 2025 05:05:51 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152482 IP address blocks: 2001:df3:7940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/3TbkXHHT2Ss80actX1qzJbNGrco.crl rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/3TbkXHHT2Ss80actX1qzJbNGrco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3TbkXHHT2Ss80actX1qzJbNGrco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B4BE, serialNumber=DD36E45C71D3D92B3CD1A72D5F5AB325B346ADCA Validity Not Before: May 17 05:05:51 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6828192e-fc88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fd:3f:fc:32:f9:50:8e:49:36:55:82:5c:a3: 43:3b:85:81:e9:db:ce:73:f2:c4:d7:64:06:f3:a1: 0a:e2:ad:19:45:79:dd:1a:1f:fd:b1:81:21:f0:5a: ea:49:81:3e:5b:9b:ad:a9:e4:ab:1c:cc:f8:5a:67: 92:db:16:44:2d:3c:76:9a:3a:f1:54:63:41:b7:90: c3:19:30:05:30:5a:1d:f7:ee:fb:f9:ea:67:38:b2: a1:4d:2e:1b:12:4a:d9:7f:ee:33:7e:6c:91:11:ae: c6:c7:89:62:b0:14:5b:46:cc:e9:68:42:ce:bb:31: c0:6b:06:e5:52:09:f7:b6:71:88:39:29:76:ad:6b: 7b:fe:7c:66:51:64:c0:4e:31:bc:5b:68:3d:73:bd: 65:3f:34:d5:20:7d:e3:31:51:27:e5:a5:c0:80:76: 3b:b1:01:8b:d5:57:b8:69:42:00:e4:0e:8e:6a:6f: 41:26:91:e3:aa:7b:9b:05:d8:46:08:b4:67:72:9a: bf:b6:38:e3:b5:b7:f8:0e:20:8b:3d:08:1a:02:78: 89:ab:f8:ac:eb:66:13:a5:61:ca:1e:37:af:ed:14: 7c:6c:bb:9f:68:64:f7:18:23:8a:b3:69:99:ee:3c: 12:41:2f:20:b7:d6:96:11:b9:83:87:83:b6:57:64: 11:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:BA:36:8D:5A:90:52:BD:08:A6:4D:A3:5D:1A:EB:A9:B2:4C:0C:B3 X509v3 Authority Key Identifier: keyid:DD:36:E4:5C:71:D3:D9:2B:3C:D1:A7:2D:5F:5A:B3:25:B3:46:AD:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/3TbkXHHT2Ss80actX1qzJbNGrco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3TbkXHHT2Ss80actX1qzJbNGrco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/89D7E6869E9211EF8726F76AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:7940::/48 Signature Algorithm: sha256WithRSAEncryption 09:2a:a1:59:a2:e6:b6:de:8b:3d:ae:33:60:c4:d1:4c:d6:f5: 4a:98:17:b4:e1:10:43:71:dd:64:f9:c7:a1:9c:6e:4a:7e:88: 6d:73:42:9a:bb:4a:2e:1b:4e:71:4c:83:19:b8:49:4a:bd:05: 4c:7b:ef:ff:3a:6e:34:c1:cf:4a:a3:d6:a1:19:b0:48:92:30: 9f:44:ae:e8:08:4a:fe:01:61:fa:fa:db:19:8f:af:24:6d:a4: 01:14:16:66:f6:f9:c5:8c:ee:a4:80:6f:c3:5c:30:bb:68:23: 64:b7:3b:0a:88:f8:26:8e:57:55:0b:60:0e:78:8b:eb:6b:b5: 2d:d7:9f:b8:43:b0:dd:cc:f9:9a:9b:a5:6b:4c:5b:2d:e4:10: 82:7a:29:9d:0e:ff:06:ef:71:a9:97:8f:20:00:44:29:50:7e: c8:9e:d5:e2:1f:71:36:e3:f5:b5:43:ab:b4:4a:ea:01:fa:51: ed:d2:3f:f2:6d:da:c6:a2:77:81:39:2d:b6:87:a3:56:e2:80: 75:8b:63:99:83:49:f5:54:43:51:88:81:65:d8:d7:3b:a9:b8: cf:f2:91:e9:e9:4c:a3:7b:06:aa:95:57:e9:9f:63:79:63:54: 32:ab:69:8b:38:f5:3d:9f:e4:cd:f6:61:de:41:b5:49:59:a7: 3a:20:6f:3f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I0QkUxMTAvBgNVBAUTKEREMzZFNDVDNzFEM0Q5MkIzQ0QxQTcyRDVGNUFCMzI1 QjM0NkFEQ0EwHhcNMjUwNTE3MDUwNTUxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI4MTkyZS1mYzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtP0//DL5UI5JNlWCXKNDO4WB6dvOc/LE12QG86EK4q0ZRXndGh/9sYEh8Frq SYE+W5utqeSrHMz4WmeS2xZELTx2mjrxVGNBt5DDGTAFMFod9+77+epnOLKhTS4b EkrZf+4zfmyREa7Gx4lisBRbRszpaELOuzHAawblUgn3tnGIOSl2rWt7/nxmUWTA TjG8W2g9c71lPzTVIH3jMVEn5aXAgHY7sQGL1Ve4aUIA5A6Oam9BJpHjqnubBdhG CLRncpq/tjjjtbf4DiCLPQgaAniJq/is62YTpWHKHjev7RR8bLufaGT3GCOKs2mZ 7jwSQS8gt9aWEbmDh4O2V2QRJwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGW6No1a kFK9CKZNo10a66myTAyzMB8GA1UdIwQYMBaAFN025Fxx09krPNGnLV9asyWzRq3K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjRCRS83OEJEMzIyNEND RjcxMUVFOUU4OUQ2N0FDNEY5QUUwMi8zVGJrWEhIVDJTczgwYWN0WDFxekpiTkdy Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNUYmtYSEhUMlNzODBhY3RYMXF6SmJOR3Jjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I0QkUvNzhCRDMyMjRDQ0Y3MTFFRTlFODlENjdBQzRGOUFFMDIvODlEN0U2ODY5 RTkyMTFFRjg3MjZGNzZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zeUAwDQYJKoZIhvcNAQELBQADggEBAAkqoVmi5rbe iz2uM2DE0UzW9UqYF7ThEENx3WT5x6Gcbkp+iG1zQpq7Si4bTnFMgxm4SUq9BUx7 7/86bjTBz0qj1qEZsEiSMJ9ErugISv4BYfr62xmPryRtpAEUFmb2+cWM7qSAb8Nc MLtoI2S3OwqI+CaOV1ULYA54i+trtS3Xn7hDsN3M+ZqbpWtMWy3kEIJ6KZ0O/wbv camXjyAARClQfsie1eIfcTbj9bVDq7RK6gH6Ue3SP/Jt2said4E5LbaHo1bigHWL Y5mDSfVUQ1GIgWXY1zupuM/ykenpTKN7BqqVV+mfY3ljVDKraYs49T2f5M32Yd5B tUlZpzogbz8= -----END CERTIFICATE-----Generated at Wed Jun 4 00:16:49 2025 by rpki-client