$ rpki-client -vvf rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/E0AE0960457811EDA501504AC4F9AE02.roa File: E0AE0960457811EDA501504AC4F9AE02.roa (raw, json) Hash identifier: 1sOapiiUanKllNe/+g0UPifOXHz9i1edOTGe9WGOS80= Subject key identifier: 8D:22:1C:52:41:10:6E:63:F2:A0:02:CE:40:8E:36:1F:C4:0C:BE:C1 Certificate issuer: /CN=A916B837/serialNumber=F5522DE313844E96E3EBF38034ECA09BE2AA0AD5 Certificate serial: 037D Authority key identifier: F5:52:2D:E3:13:84:4E:96:E3:EB:F3:80:34:EC:A0:9B:E2:AA:0A:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9VIt4xOETpbj6_OANOygm-KqCtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/E0AE0960457811EDA501504AC4F9AE02.roa Signing time: Mon 19 May 2025 00:57:51 +0000 ROA not before: Mon 19 May 2025 00:57:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 202820 IP address blocks: 2400:70e0:bad::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9VIt4xOETpbj6_OANOygm-KqCtU.crl rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9VIt4xOETpbj6_OANOygm-KqCtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9VIt4xOETpbj6_OANOygm-KqCtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 00:37:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 893 (0x37d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B837, serialNumber=F5522DE313844E96E3EBF38034ECA09BE2AA0AD5 Validity Not Before: May 19 00:57:51 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682a820e-50c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:de:ff:8b:78:68:ba:c7:ca:9d:e9:e3:4e:f8: cd:4b:90:0e:75:67:f6:3a:19:02:6c:72:97:0f:c4: a7:1d:0f:ba:29:ff:2e:b7:b4:9f:d5:a5:65:e6:24: 82:ff:3b:2e:39:61:e9:98:99:74:e6:c3:f9:cd:5a: 62:3c:b8:f7:4a:6a:52:5e:fa:10:ca:40:50:6b:99: 1d:1d:a1:97:f9:34:be:b1:97:38:1f:e5:0e:ed:e1: 54:5c:62:6b:b1:e9:51:b3:fe:61:ce:12:31:03:50: e7:8b:b8:fd:9f:99:04:18:52:5b:ee:b4:c7:8f:4c: bf:eb:95:22:a6:d2:73:da:77:d8:86:7f:05:20:3a: 70:9d:9c:0f:33:15:a6:de:4c:2d:50:44:98:a9:d8: 59:84:64:3e:4c:1b:34:04:db:0f:40:78:b3:00:4f: 3a:4f:72:2d:33:2d:a2:0c:fa:3e:12:c3:f2:7c:c5: ea:20:03:76:bb:31:85:71:01:01:7a:54:d4:30:1a: 4a:d4:ac:5b:49:fe:2b:0b:cc:03:fe:7d:85:72:a1: 6c:e5:80:87:5e:3d:60:35:2d:59:1b:4b:70:b8:12: c1:24:ea:a4:e1:de:11:36:8a:94:d9:6e:ab:c8:03: fd:3e:35:0a:e9:a0:ec:b2:4d:b3:54:6a:89:d0:04: 92:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:22:1C:52:41:10:6E:63:F2:A0:02:CE:40:8E:36:1F:C4:0C:BE:C1 X509v3 Authority Key Identifier: keyid:F5:52:2D:E3:13:84:4E:96:E3:EB:F3:80:34:EC:A0:9B:E2:AA:0A:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9VIt4xOETpbj6_OANOygm-KqCtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9VIt4xOETpbj6_OANOygm-KqCtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/E0AE0960457811EDA501504AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:70e0:bad::/48 Signature Algorithm: sha256WithRSAEncryption 1d:81:f8:27:96:0a:0b:69:b5:31:31:38:f7:f3:44:7d:60:71: 43:50:32:66:cb:02:3c:6f:20:d3:3d:f0:42:10:99:e7:26:0c: 5d:55:fb:c1:75:58:c2:a2:78:c7:1d:70:67:e8:ba:96:00:2e: 2e:94:fd:3e:b0:41:8b:96:41:00:37:85:b3:30:60:87:e3:b4: 6c:7c:82:74:ba:fe:30:a3:a7:ac:95:1d:34:69:c0:88:24:b8: 28:8f:a2:e0:19:9e:ed:14:11:f0:a5:ae:36:fd:9e:1d:c3:90: 67:f8:c2:09:8c:c8:c3:6a:45:1e:a1:3b:c6:2e:75:d2:b0:15: 9b:c3:bc:a1:63:bf:e4:a3:ea:4e:18:97:db:c3:f8:b2:39:9d: b7:8c:1d:e2:ed:3b:3b:d7:c1:8b:dc:c8:24:37:c0:47:74:a4: f0:b4:6c:4e:ef:b6:24:92:f0:1a:a5:c3:14:e2:5e:0e:87:c8: c8:6a:84:83:88:b5:e9:b2:e1:23:98:b4:e8:13:9a:1e:8a:a2: be:74:e7:6f:81:92:bc:0b:e5:0f:82:2b:02:a6:cb:e1:8b:e7: 80:b9:23:36:a5:19:51:3b:99:85:02:1d:71:04:0d:c4:d6:2c: 32:28:ae:d0:bd:ac:cd:59:70:04:f9:0c:38:2a:22:a0:1d:de: 1c:fa:38:75 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI4MzcxMTAvBgNVBAUTKEY1NTIyREUzMTM4NDRFOTZFM0VCRjM4MDM0RUNBMDlC RTJBQTBBRDUwHhcNMjUwNTE5MDA1NzUxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJhODIwZS01MGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwd7/i3housfKnenjTvjNS5AOdWf2OhkCbHKXD8SnHQ+6Kf8ut7Sf1aVl5iSC /zsuOWHpmJl05sP5zVpiPLj3SmpSXvoQykBQa5kdHaGX+TS+sZc4H+UO7eFUXGJr selRs/5hzhIxA1Dni7j9n5kEGFJb7rTHj0y/65UiptJz2nfYhn8FIDpwnZwPMxWm 3kwtUESYqdhZhGQ+TBs0BNsPQHizAE86T3ItMy2iDPo+EsPyfMXqIAN2uzGFcQEB elTUMBpK1KxbSf4rC8wD/n2FcqFs5YCHXj1gNS1ZG0twuBLBJOqk4d4RNoqU2W6r yAP9PjUK6aDssk2zVGqJ0ASSWwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFI0iHFJB EG5j8qACzkCONh/EDL7BMB8GA1UdIwQYMBaAFPVSLeMThE6W4+vzgDTsoJviqgrV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjgzNy85RDkwQUI2MkMx NUExMUVDQTQ0RjUzNjBDNEY5QUUwMi85Vkl0NHhPRVRwYmo2X09BTk95Z20tS3FD dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlWSXQ0eE9FVHBiajZfT0FOT3lnbS1LcUN0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI4MzcvOUQ5MEFCNjJDMTVBMTFFQ0E0NEY1MzYwQzRGOUFFMDIvRTBBRTA5NjA0 NTc4MTFFREE1MDE1MDRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAHDgC60wDQYJKoZIhvcNAQELBQADggEBAB2B+CeWCgtp tTExOPfzRH1gcUNQMmbLAjxvINM98EIQmecmDF1V+8F1WMKieMcdcGfoupYALi6U /T6wQYuWQQA3hbMwYIfjtGx8gnS6/jCjp6yVHTRpwIgkuCiPouAZnu0UEfClrjb9 nh3DkGf4wgmMyMNqRR6hO8YuddKwFZvDvKFjv+Sj6k4Yl9vD+LI5nbeMHeLtOzvX wYvcyCQ3wEd0pPC0bE7vtiSS8BqlwxTiXg6HyMhqhIOItemy4SOYtOgTmh6Kor50 52+BkrwL5Q+CKwKmy+GL54C5IzalGVE7mYUCHXEEDcTWLDIortC9rM1ZcAT5DDgq IqAd3hz6OHU= -----END CERTIFICATE-----Generated at Mon Jun 9 20:00:35 2025 by rpki-client