$ rpki-client -vvf rpki.apnic.net/member_repository/A914B758/4C7A2868D36E11ECB2614453C4F9AE02/1CA2FA08D37711EC9A8FF526C4F9AE02.roa File: 1CA2FA08D37711EC9A8FF526C4F9AE02.roa (raw, json) Hash identifier: 5YLYcly93145UErNSmHTZCyYs7eD4zU0w+fdftiuni0= Subject key identifier: 17:B8:C6:9D:99:EE:5A:77:D4:4D:3B:D5:CB:76:E6:2B:3C:53:71:4C Certificate issuer: /CN=A914B758/serialNumber=AF55581BA127E2090A0A5462FE7BCE70616F2CDC Certificate serial: 031A Authority key identifier: AF:55:58:1B:A1:27:E2:09:0A:0A:54:62:FE:7B:CE:70:61:6F:2C:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r1VYG6En4gkKClRi_nvOcGFvLNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B758/4C7A2868D36E11ECB2614453C4F9AE02/1CA2FA08D37711EC9A8FF526C4F9AE02.roa Signing time: Tue 03 Jun 2025 01:55:44 +0000 ROA not before: Tue 03 Jun 2025 01:55:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149830 IP address blocks: 2001:df0:bac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B758/4C7A2868D36E11ECB2614453C4F9AE02/r1VYG6En4gkKClRi_nvOcGFvLNw.crl rsync://rpki.apnic.net/member_repository/A914B758/4C7A2868D36E11ECB2614453C4F9AE02/r1VYG6En4gkKClRi_nvOcGFvLNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r1VYG6En4gkKClRi_nvOcGFvLNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 794 (0x31a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B758, serialNumber=AF55581BA127E2090A0A5462FE7BCE70616F2CDC Validity Not Before: Jun 3 01:55:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683e5620-05b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:60:1f:70:b2:c7:50:68:26:b8:00:b4:c1:f0: 78:c7:43:e4:e9:4e:09:0c:fb:11:a7:cf:a2:c4:8e: 0a:5c:d3:5b:34:1f:5e:cf:35:9e:b1:08:6d:07:cf: f4:84:cd:5f:ff:7c:88:e3:a7:7d:23:ec:77:83:0d: 28:50:5a:5f:88:c1:e9:c6:9e:6a:20:0f:25:a2:22: f2:3a:f0:20:e8:1b:df:cb:fc:a6:45:9e:a7:93:eb: 22:d9:c4:aa:c7:54:77:74:7b:42:20:9b:49:1b:bb: 70:71:f1:a2:8c:1b:36:d7:5f:1a:8b:56:12:be:81: c7:f0:12:0b:33:b5:8e:09:e9:42:40:8d:be:67:cf: 61:f8:df:6c:df:4d:c2:dd:9d:fc:a5:21:df:2b:d9: 7a:47:4e:5d:91:e9:94:3a:ab:cd:a8:ea:c7:6b:31: f2:e8:b0:de:5e:99:d9:43:7f:c8:77:cd:c5:ca:24: 10:76:38:55:07:48:b4:68:1d:05:42:6f:4c:fb:82: 58:20:ba:69:84:95:c5:0c:82:ae:66:43:f7:4f:5d: 60:05:cb:a4:bc:b0:1c:fa:a8:3d:ad:e8:12:ba:0a: ac:90:7d:81:40:e0:a7:ea:a3:9e:41:06:d8:dd:e0: 8a:6c:80:66:df:88:5f:d0:2f:e8:1b:73:1e:9a:92: fd:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B8:C6:9D:99:EE:5A:77:D4:4D:3B:D5:CB:76:E6:2B:3C:53:71:4C X509v3 Authority Key Identifier: keyid:AF:55:58:1B:A1:27:E2:09:0A:0A:54:62:FE:7B:CE:70:61:6F:2C:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B758/4C7A2868D36E11ECB2614453C4F9AE02/r1VYG6En4gkKClRi_nvOcGFvLNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r1VYG6En4gkKClRi_nvOcGFvLNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B758/4C7A2868D36E11ECB2614453C4F9AE02/1CA2FA08D37711EC9A8FF526C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:bac0::/48 Signature Algorithm: sha256WithRSAEncryption 2a:43:bb:f7:3d:d6:81:06:e1:d0:31:90:a3:c0:6d:5e:eb:10: ce:0f:87:66:4d:53:20:69:3e:c9:07:ff:70:6b:de:51:20:32: dd:58:30:65:07:92:8e:e1:cd:5e:97:da:e4:7c:c0:17:0c:3d: 9c:d3:7c:9c:0f:97:f8:de:83:0c:43:e0:b0:c6:41:3b:4f:0b: 52:bf:7f:19:7e:19:be:ef:f0:64:4a:78:c8:7e:a4:d5:db:38: 22:d3:d9:22:ad:39:ba:08:33:20:13:a0:f8:3f:35:92:f3:0d: 4b:36:ce:9d:a0:e0:db:b7:1d:69:5d:61:a6:18:e7:64:d8:72: 51:f6:0c:f7:2d:f3:5b:d5:63:4a:48:85:0c:83:72:df:74:5b: cf:82:5b:c7:79:b9:63:f1:3b:90:e8:a9:ee:16:a1:7d:95:25: 0e:46:81:c1:11:0d:70:4a:99:76:16:30:b8:08:83:71:88:e1: e7:01:64:d8:60:7e:f7:8c:7f:e9:00:32:9e:43:5b:39:f4:8f: af:2c:62:ba:99:07:72:85:7a:ec:0c:6a:cb:b1:e5:7b:04:8b: fb:fe:ff:2d:bc:a5:99:74:a2:7d:bd:c5:04:d0:d8:c5:22:64: 0e:c2:14:50:44:68:6c:a0:95:ba:a5:e2:f8:fa:4a:f6:68:bc: 50:fc:4c:90 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI3NTgxMTAvBgNVBAUTKEFGNTU1ODFCQTEyN0UyMDkwQTBBNTQ2MkZFN0JDRTcw NjE2RjJDREMwHhcNMjUwNjAzMDE1NTQ0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNTYyMC0wNWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GAfcLLHUGgmuAC0wfB4x0Pk6U4JDPsRp8+ixI4KXNNbNB9ezzWesQhtB8/0 hM1f/3yI46d9I+x3gw0oUFpfiMHpxp5qIA8loiLyOvAg6Bvfy/ymRZ6nk+si2cSq x1R3dHtCIJtJG7twcfGijBs2118ai1YSvoHH8BILM7WOCelCQI2+Z89h+N9s303C 3Z38pSHfK9l6R05dkemUOqvNqOrHazHy6LDeXpnZQ3/Id83FyiQQdjhVB0i0aB0F Qm9M+4JYILpphJXFDIKuZkP3T11gBcukvLAc+qg9regSugqskH2BQOCn6qOeQQbY 3eCKbIBm34hf0C/oG3MempL9CQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBe4xp2Z 7lp31E071ct25is8U3FMMB8GA1UdIwQYMBaAFK9VWBuhJ+IJCgpUYv57znBhbyzc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Qjc1OC80QzdBMjg2OEQz NkUxMUVDQjI2MTQ0NTNDNEY5QUUwMi9yMVZZRzZFbjRna0tDbFJpX252T2NHRnZM TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IxVllHNkVuNGdrS0NsUmlfbnZPY0dGdkxOdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEI3NTgvNEM3QTI4NjhEMzZFMTFFQ0IyNjE0NDUzQzRGOUFFMDIvMUNBMkZBMDhE Mzc3MTFFQzlBOEZGNTI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wusAwDQYJKoZIhvcNAQELBQADggEBACpDu/c91oEG 4dAxkKPAbV7rEM4Ph2ZNUyBpPskH/3Br3lEgMt1YMGUHko7hzV6X2uR8wBcMPZzT fJwPl/jegwxD4LDGQTtPC1K/fxl+Gb7v8GRKeMh+pNXbOCLT2SKtOboIMyAToPg/ NZLzDUs2zp2g4Nu3HWldYaYY52TYclH2DPct81vVY0pIhQyDct90W8+CW8d5uWPx O5Doqe4WoX2VJQ5GgcERDXBKmXYWMLgIg3GI4ecBZNhgfveMf+kAMp5DWzn0j68s YrqZB3KFeuwMasux5XsEi/v+/y28pZl0on29xQTQ2MUiZA7CFFBEaGyglbql4vj6 SvZovFD8TJA= -----END CERTIFICATE-----Generated at Tue Jun 3 23:55:43 2025 by rpki-client