$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/FDA89E2CA33511EBA984863CC4F9AE02.roa File: FDA89E2CA33511EBA984863CC4F9AE02.roa (raw, json) Hash identifier: WZaPuq2ePLoM0KjlrMWH8IWVHfB/Av+7ec0Tgw3cu6Q= Subject key identifier: F7:A5:B8:26:B6:FB:D8:C3:DF:1B:74:66:39:0E:7A:B1:F6:DE:CF:5B Certificate issuer: /CN=A918495F/serialNumber=0C5A542A1E9B3FB5C8E49686EBEBCFC050CCE4A5 Certificate serial: 1756 Authority key identifier: 0C:5A:54:2A:1E:9B:3F:B5:C8:E4:96:86:EB:EB:CF:C0:50:CC:E4:A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DFpUKh6bP7XI5JaG6-vPwFDM5KU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/FDA89E2CA33511EBA984863CC4F9AE02.roa Signing time: Thu 08 May 2025 17:17:41 +0000 ROA not before: Thu 08 May 2025 17:17:41 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 4515 IP address blocks: 168.70.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/DFpUKh6bP7XI5JaG6-vPwFDM5KU.crl rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/DFpUKh6bP7XI5JaG6-vPwFDM5KU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DFpUKh6bP7XI5JaG6-vPwFDM5KU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5974 (0x1756) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F, serialNumber=0C5A542A1E9B3FB5C8E49686EBEBCFC050CCE4A5 Validity Not Before: May 8 17:17:41 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ce735-1fb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:73:8a:36:16:31:3d:f9:79:18:3c:f2:a8:1b: e4:ea:2a:e1:ac:c3:5f:57:a5:27:e5:54:3f:18:86: d4:0c:b9:4d:17:e3:18:8c:8f:92:7f:6b:db:a6:9b: 5b:c8:85:d5:b3:d7:29:ef:03:2c:ac:f6:8e:83:dd: e5:cf:b6:c6:89:61:f7:32:37:87:7f:b3:bb:a1:4b: 56:90:52:10:85:cf:95:27:09:0a:f3:d1:be:80:5b: 5f:d9:7b:30:40:11:67:20:50:a9:f9:3b:72:af:74: 65:64:02:96:e0:fa:44:67:8b:76:c3:6a:42:25:56: 92:62:68:5f:cc:65:c6:86:8b:b5:86:3c:c9:c0:c8: 68:03:c0:6f:df:0c:bf:ad:8e:83:64:20:69:d4:73: d9:40:5f:2a:67:4c:0d:47:37:f0:7a:84:5b:00:62: 74:21:00:fc:40:06:4e:80:7c:ff:14:17:3e:eb:ec: 05:37:89:b7:6f:58:f4:7d:0e:da:25:a3:55:42:6b: 1a:1f:3b:c5:e7:bf:b4:df:df:7f:ea:83:b9:a1:ab: 09:48:86:85:ec:5f:76:7d:db:bf:59:df:a4:d7:85: 33:d2:b2:67:8e:8b:ee:50:27:a1:68:03:5d:f9:71: e0:c6:24:a9:b6:3f:9b:1e:9a:4d:ad:2a:73:e9:be: b3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A5:B8:26:B6:FB:D8:C3:DF:1B:74:66:39:0E:7A:B1:F6:DE:CF:5B X509v3 Authority Key Identifier: keyid:0C:5A:54:2A:1E:9B:3F:B5:C8:E4:96:86:EB:EB:CF:C0:50:CC:E4:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/DFpUKh6bP7XI5JaG6-vPwFDM5KU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DFpUKh6bP7XI5JaG6-vPwFDM5KU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/FDA89E2CA33511EBA984863CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.70.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4c:b2:f8:74:dd:89:08:5b:75:d7:9a:09:05:74:d4:a5:f6:8e: f5:0c:95:c2:a3:a3:ac:09:12:ef:f0:09:88:09:ac:fc:5a:1b: 17:2f:19:b6:63:eb:91:b6:aa:e5:b6:d7:2d:1d:77:18:02:e9: bb:e2:5b:ec:74:7b:c2:10:b0:74:f9:5c:52:91:4f:03:77:93: e3:37:02:f0:f7:55:1a:bd:4b:62:50:cc:da:14:70:dd:64:48: 3a:90:d4:4f:0c:29:e5:bb:ab:13:eb:63:21:08:88:36:99:b7: 26:b1:f9:23:a3:9a:5f:8d:f1:6a:77:70:af:cf:60:ce:71:02: ab:b0:0a:6c:71:60:a5:28:d4:6c:3e:85:4b:27:71:70:14:f2: d3:49:93:d2:81:db:a2:cc:76:f5:f4:9a:0c:94:81:b6:b3:7b: da:a2:69:42:67:2e:4e:0e:0c:31:2b:c0:52:0e:69:2c:e9:9d: 39:20:8d:8a:90:4f:0e:82:bc:61:39:e7:e7:10:92:8f:61:42: ae:29:a1:ad:c2:7e:a8:0b:4b:21:f4:7a:19:9a:71:ca:89:76: b0:b6:b3:eb:3e:fc:41:54:9e:c0:69:6d:b0:6d:8d:d8:a6:80: 42:67:e3:6e:59:e3:0a:fa:a6:dd:66:39:da:c3:7e:0d:c1:a6: 79:80:39:a8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICF1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDBDNUE1NDJBMUU5QjNGQjVDOEU0OTY4NkVCRUJDRkMw NTBDQ0U0QTUwHhcNMjUwNTA4MTcxNzQxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZTczNS0xZmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA83OKNhYxPfl5GDzyqBvk6irhrMNfV6Un5VQ/GIbUDLlNF+MYjI+Sf2vbpptb yIXVs9cp7wMsrPaOg93lz7bGiWH3MjeHf7O7oUtWkFIQhc+VJwkK89G+gFtf2Xsw QBFnIFCp+Ttyr3RlZAKW4PpEZ4t2w2pCJVaSYmhfzGXGhou1hjzJwMhoA8Bv3wy/ rY6DZCBp1HPZQF8qZ0wNRzfweoRbAGJ0IQD8QAZOgHz/FBc+6+wFN4m3b1j0fQ7a JaNVQmsaHzvF57+0399/6oO5oasJSIaF7F92fdu/Wd+k14Uz0rJnjovuUCehaANd +XHgxiSptj+bHppNrSpz6b6zuwIDAQABo4IClDCCApAwHQYDVR0OBBYEFPeluCa2 +9jD3xt0ZjkOerH23s9bMB8GA1UdIwQYMBaAFAxaVCoemz+1yOSWhuvrz8BQzOSl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri83OEQ1RDg5NkRG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9ERnBVS2g2YlA3WEk1SmFHNi12UHdGRE01 S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0RGcFVLaDZiUDdYSTVKYUc2LXZQd0ZETTVLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5NUYvNzhENUQ4OTZERkVDMTFFN0EyN0EyMjEzQzRGOUFFMDIvRkRBODlFMkNB MzM1MTFFQkE5ODQ4NjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCoRjANBgkqhkiG9w0BAQsFAAOCAQEATLL4dN2JCFt115oJ BXTUpfaO9QyVwqOjrAkS7/AJiAms/FobFy8ZtmPrkbaq5bbXLR13GALpu+Jb7HR7 whCwdPlcUpFPA3eT4zcC8PdVGr1LYlDM2hRw3WRIOpDUTwwp5burE+tjIQiINpm3 JrH5I6OaX43xandwr89gznECq7AKbHFgpSjUbD6FSydxcBTy00mT0oHbosx29fSa DJSBtrN72qJpQmcuTg4MMSvAUg5pLOmdOSCNipBPDoK8YTnn5xCSj2FCrimhrcJ+ qAtLIfR6GZpxyol2sLaz6z78QVSewGltsG2N2KaAQmfjblnjCvqm3WY52sN+DcGm eYA5qA== -----END CERTIFICATE-----Generated at Sun Jul 20 20:31:56 2025 by rpki-client