$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AE58A49C2A4111EBA1B1BB3DC4F9AE02.roa File: AE58A49C2A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: DxsPcmRyMvqxvilkvhZcPekY1GWFfShT1K4h6XO4HIU= Subject key identifier: 68:C3:A0:61:C3:47:AB:AE:20:1D:AC:2D:ED:90:85:0A:0B:63:12:82 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0884 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AE58A49C2A4111EBA1B1BB3DC4F9AE02.roa Signing time: Tue 20 May 2025 21:50:50 +0000 ROA not before: Tue 20 May 2025 21:50:50 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 17823 IP address blocks: 2001:c00:4618:3000::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2180 (0x884) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: May 20 21:50:50 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=682cf93a-b5f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c5:99:90:89:ec:83:96:b7:6e:81:c7:64:13: 3f:bc:d2:9a:23:ad:cb:01:fa:26:7a:ec:72:5e:f2: 57:ce:33:bd:54:e6:40:f6:1b:0b:03:6f:f3:7e:5e: 2c:24:92:43:00:33:99:69:05:9e:b8:3a:31:13:9f: 32:b4:d9:bc:b8:e5:9e:13:0c:44:65:31:93:10:05: 4b:5a:81:0a:7e:87:f9:4f:44:61:79:b3:68:64:06: 3b:3c:b4:df:99:c1:d3:ab:0a:87:58:56:aa:ef:d3: 0c:e0:10:df:8c:47:e0:46:69:7a:44:c9:3a:09:4d: e0:35:9e:91:e5:f1:43:4d:8f:17:00:85:b1:14:33: 1a:32:31:a9:82:e0:a2:2d:8c:89:b6:fd:86:d2:a2: 24:85:c3:f2:c3:3d:fc:42:8c:bc:59:fd:69:ff:c7: 45:00:02:f4:24:d2:80:ee:26:08:d1:4d:50:4d:27: 7d:c6:13:85:45:ee:e6:80:98:60:48:76:b9:80:3f: 39:96:ba:e6:56:a3:d4:c2:50:ec:f6:83:cc:e8:53: 41:d0:da:39:fb:e5:c3:13:bc:1f:b7:36:62:2f:ee: 28:0e:5d:52:7c:df:16:a9:df:b9:d2:36:ae:10:3b: 5c:56:b7:c0:93:32:99:f9:1a:47:59:f4:cf:5f:e2: c6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C3:A0:61:C3:47:AB:AE:20:1D:AC:2D:ED:90:85:0A:0B:63:12:82 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AE58A49C2A4111EBA1B1BB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:c00:4618:3000::/64 Signature Algorithm: sha256WithRSAEncryption 71:a8:02:20:7f:1a:49:93:8f:10:3a:e7:83:74:87:cf:4d:85: 08:43:00:c5:5a:52:d5:24:d8:02:87:4e:49:06:1c:b6:dd:9c: fd:ed:9d:a2:95:76:ef:7e:64:27:8f:56:ae:48:8f:55:4b:d9: a3:57:3d:7a:54:ae:33:75:87:aa:42:34:ff:c0:dc:a0:2a:41: 32:05:70:71:db:ba:fc:fe:f6:59:94:67:41:d8:a0:a5:ae:10: 4a:be:4d:33:80:f9:b6:83:31:f3:5b:3b:5c:d0:df:a7:f8:c4: 37:53:43:5b:2b:8d:a2:41:1f:25:50:38:29:d9:bc:32:ee:47: ad:14:b7:e4:9e:c4:1c:42:26:8b:95:24:a3:89:d1:df:cd:2d: 27:84:eb:c7:e0:40:34:d7:cb:4b:c2:0f:d1:a7:40:ca:a5:b5: ef:60:f3:fe:0d:1e:fb:19:62:67:8b:43:2d:c4:ba:65:d0:c8: 77:3e:b8:17:0f:d5:4f:14:9b:57:60:49:f1:09:d2:52:93:77: d1:b5:53:50:94:26:2b:92:d6:f7:ef:73:5c:0b:96:2c:2d:ee: 37:3c:2a:6d:9e:94:4d:57:88:21:7e:3e:06:51:6a:ee:af:02: 0b:78:82:99:18:b6:ce:d8:eb:f0:58:c3:b4:c4:09:13:8b:36: 8f:32:60:b9 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICCIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwNTIwMjE1MDUwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjZjkzYS1iNWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMWZkInsg5a3boHHZBM/vNKaI63LAfomeuxyXvJXzjO9VOZA9hsLA2/zfl4s JJJDADOZaQWeuDoxE58ytNm8uOWeEwxEZTGTEAVLWoEKfof5T0RhebNoZAY7PLTf mcHTqwqHWFaq79MM4BDfjEfgRml6RMk6CU3gNZ6R5fFDTY8XAIWxFDMaMjGpguCi LYyJtv2G0qIkhcPywz38Qoy8Wf1p/8dFAAL0JNKA7iYI0U1QTSd9xhOFRe7mgJhg SHa5gD85lrrmVqPUwlDs9oPM6FNB0No5++XDE7wftzZiL+4oDl1SfN8Wqd+50jau EDtcVrfAkzKZ+RpHWfTPX+LGdQIDAQABo4ICmjCCApYwHQYDVR0OBBYEFGjDoGHD R6uuIB2sLe2QhQoLYxKCMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQUU1OEE0OUMy QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgACMAsDCQAgAQwARhgwADANBgkqhkiG9w0BAQsFAAOCAQEAcagCIH8a SZOPEDrng3SHz02FCEMAxVpS1STYAodOSQYctt2c/e2dopV2735kJ49WrkiPVUvZ o1c9elSuM3WHqkI0/8DcoCpBMgVwcdu6/P72WZRnQdigpa4QSr5NM4D5toMx81s7 XNDfp/jEN1NDWyuNokEfJVA4Kdm8Mu5HrRS35J7EHEImi5Uko4nR380tJ4Trx+BA NNfLS8IP0adAyqW172Dz/g0e+xliZ4tDLcS6ZdDIdz64Fw/VTxSbV2BJ8QnSUpN3 0bVTUJQmK5LW9+9zXAuWLC3uNzwqbZ6UTVeIIX4+BlFq7q8CC3iCmRi2ztjr8FjD tMQJE4s2jzJguQ== -----END CERTIFICATE-----Generated at Wed Jun 4 00:13:07 2025 by rpki-client