$ rpki-client -vvf rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/C85D817E3C4711F0AFDE9245C4F9AE02.roa File: C85D817E3C4711F0AFDE9245C4F9AE02.roa (raw, json) Hash identifier: I/B7AGWyw1/RmN+cyUcawyFJOy5RTeqibeslM6vZhvY= Subject key identifier: 8D:8F:74:43:19:A4:A8:3E:54:41:71:40:FF:18:12:ED:FF:BB:05:9C Certificate issuer: /CN=A918C287/serialNumber=D8B1E2389BA591FD79B9A504AF5A44DAE0A6E828 Certificate serial: B8 Authority key identifier: D8:B1:E2:38:9B:A5:91:FD:79:B9:A5:04:AF:5A:44:DA:E0:A6:E8:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2LHiOJulkf15uaUEr1pE2uCm6Cg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/C85D817E3C4711F0AFDE9245C4F9AE02.roa Signing time: Thu 29 May 2025 04:52:49 +0000 ROA not before: Thu 29 May 2025 04:52:49 +0000 ROA not after: Sat 01 May 2038 00:00:00 +0000 asID: 4608 IP address blocks: 2001:df0:90::/48 maxlen: 48 2401:4600::/64 maxlen: 64 2401:4600:0:1::/64 maxlen: 64 2401:4600:0:2::/64 maxlen: 64 2401:4600:0:3::/64 maxlen: 64 2401:4600:0:4::/64 maxlen: 64 2401:4600:0:5::/64 maxlen: 64 2401:4600:0:6::/64 maxlen: 64 2401:4600:0:7::/64 maxlen: 64 2401:4600:0:8::/64 maxlen: 64 2401:4600:0:9::/64 maxlen: 64 2401:4600:0:a::/64 maxlen: 64 2401:4600:0:b::/64 maxlen: 64 2401:4600:0:c::/64 maxlen: 64 2401:4600:0:d::/64 maxlen: 64 2401:4600:0:e::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.crl rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2LHiOJulkf15uaUEr1pE2uCm6Cg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 08:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C287, serialNumber=D8B1E2389BA591FD79B9A504AF5A44DAE0A6E828 Validity Not Before: May 29 04:52:49 2025 GMT Not After : May 1 00:00:00 2038 GMT Subject: CN=6837e821-2639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a0:25:52:3b:3b:2a:13:37:57:8f:e8:ec:1b: aa:57:08:75:52:ea:6a:b4:ef:7c:68:61:9f:a7:60: 47:9e:9b:c3:5c:68:5b:ca:5a:d0:c3:63:6f:11:eb: 80:73:6c:11:b7:db:00:f8:1d:35:1e:3c:76:f8:dd: 13:d0:19:45:e7:a0:29:57:dc:41:98:70:f9:ff:fc: d4:49:02:52:10:48:78:07:a4:8d:8e:17:3d:60:dc: 7b:a4:2f:8e:1f:f0:ec:23:ee:9e:59:6c:9f:74:fa: ea:5c:59:a9:7a:54:1e:ae:f1:bd:3f:ca:73:ec:1b: a7:bb:6a:bf:03:08:eb:41:b9:2e:9f:55:ea:ad:e8: 5d:15:56:50:e3:6b:eb:c5:4b:ca:f2:94:ee:26:6f: 58:fa:b5:be:fb:64:18:9e:38:1b:dc:b9:6a:dc:82: 13:02:4b:4d:c6:50:ee:d4:33:67:f4:a2:3e:3d:bf: 64:f7:73:b8:57:82:62:2c:e1:a0:75:7b:0e:45:64: 05:80:d2:5c:d7:ce:a3:94:2b:6c:4d:28:76:79:bf: 3a:17:fe:75:1c:09:6a:54:4c:9a:77:66:4f:d4:46: ef:7e:da:91:80:d7:40:c1:97:cc:1a:3e:18:e1:8d: d0:e2:ae:98:51:ea:67:b2:83:f8:96:8d:00:75:c1: 4b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:8F:74:43:19:A4:A8:3E:54:41:71:40:FF:18:12:ED:FF:BB:05:9C X509v3 Authority Key Identifier: keyid:D8:B1:E2:38:9B:A5:91:FD:79:B9:A5:04:AF:5A:44:DA:E0:A6:E8:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2LHiOJulkf15uaUEr1pE2uCm6Cg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/C85D817E3C4711F0AFDE9245C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:90::/48 2401:4600::-2401:4600:0:e:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 28:30:ed:06:70:38:54:b4:31:61:09:3a:49:06:d6:06:08:26: 86:e0:dc:c8:d8:1d:ef:53:e6:22:58:8c:db:02:ba:89:7c:db: 47:a6:35:ee:00:ff:47:3f:22:23:2b:c7:40:3a:83:a9:64:53: 0b:f2:43:9c:c1:ab:ae:80:51:30:e5:8c:66:f0:de:52:26:4b: 20:9b:9c:6c:8f:84:2c:f4:98:fc:eb:01:00:46:ed:19:9f:ca: 6c:90:bd:54:ac:8a:68:c1:f9:d7:1a:f6:db:45:54:a8:b7:67: 77:69:6d:66:c4:d8:83:fa:e9:44:c3:03:ce:ac:d4:b3:cd:8d: 1c:eb:4d:95:25:ac:3c:88:cf:6a:3d:ee:47:8d:1b:35:c9:6d: 9f:ab:f1:79:97:1a:db:09:6f:a9:00:8c:9d:28:97:58:86:c2: 10:ca:d3:28:a0:03:36:f3:d2:c9:65:af:9c:b8:cc:31:bb:38: 37:49:90:45:a6:0e:2c:b3:c5:ba:6e:a0:bb:67:5b:af:ba:bc: d4:eb:76:bb:c7:a6:2f:33:f1:db:3d:ae:42:a9:b2:c1:86:91: e7:51:a9:25:b9:50:08:2f:c9:01:9a:66:01:0f:a7:ad:77:87: 82:9d:22:b3:04:f3:48:91:81:d1:74:32:74:e6:33:36:76:92: 08:99:92:b8 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMyODcxMTAvBgNVBAUTKEQ4QjFFMjM4OUJBNTkxRkQ3OUI5QTUwNEFGNUE0NERB RTBBNkU4MjgwHhcNMjUwNTI5MDQ1MjQ5WhcNMzgwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM3ZTgyMS0yNjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqAlUjs7KhM3V4/o7BuqVwh1UupqtO98aGGfp2BHnpvDXGhbylrQw2NvEeuA c2wRt9sA+B01Hjx2+N0T0BlF56ApV9xBmHD5//zUSQJSEEh4B6SNjhc9YNx7pC+O H/DsI+6eWWyfdPrqXFmpelQervG9P8pz7Bunu2q/AwjrQbkun1XqrehdFVZQ42vr xUvK8pTuJm9Y+rW++2QYnjgb3Llq3IITAktNxlDu1DNn9KI+Pb9k93O4V4JiLOGg dXsORWQFgNJc186jlCtsTSh2eb86F/51HAlqVEyad2ZP1EbvftqRgNdAwZfMGj4Y 4Y3Q4q6YUepnsoP4lo0AdcFL/wIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFI2PdEMZ pKg+VEFxQP8YEu3/uwWcMB8GA1UdIwQYMBaAFNix4jibpZH9ebmlBK9aRNrgpugo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzI4Ny8zMDdDRkYxRUIz NzcxMUVGQjkxODREN0FDNEY5QUUwMi8yTEhpT0p1bGtmMTV1YVVFcjFwRTJ1Q202 Q2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJMSGlPSnVsa2YxNXVhVUVyMXBFMnVDbTZDZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEMyODcvMzA3Q0ZGMUVCMzc3MTFFRkI5MTg0RDdBQzRGOUFFMDIvQzg1RDgxN0Uz QzQ3MTFGMEFGREU5MjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgACMBwDBwAgAQ3wAJAwEQMEASQBRgMJACQBRgAAAAAOMA0GCSqGSIb3 DQEBCwUAA4IBAQAoMO0GcDhUtDFhCTpJBtYGCCaG4NzI2B3vU+YiWIzbArqJfNtH pjXuAP9HPyIjK8dAOoOpZFML8kOcwauugFEw5Yxm8N5SJksgm5xsj4Qs9Jj86wEA Ru0Zn8pskL1UrIpowfnXGvbbRVSot2d3aW1mxNiD+ulEwwPOrNSzzY0c602VJaw8 iM9qPe5HjRs1yW2fq/F5lxrbCW+pAIydKJdYhsIQytMooAM289LJZa+cuMwxuzg3 SZBFpg4ss8W6bqC7Z1uvurzU63a7x6YvM/HbPa5CqbLBhpHnUakluVAIL8kBmmYB D6etd4eCnSKzBPNIkYHRdDJ05jM2dpIImZK4 -----END CERTIFICATE-----Generated at Mon Oct 27 11:44:28 2025 by rpki-client