$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/1E6777AA932511EEBE987F60C4F9AE02/756EDE70611611EF83B51C41C4F9AE02.roa File: 756EDE70611611EF83B51C41C4F9AE02.roa (raw, json) Hash identifier: fv6RLao5liFr7afB3PhUjumYqWdJXB/03IwWC/f2YMo= Subject key identifier: B0:57:9E:5A:C8:32:E2:76:22:78:95:B0:89:F7:6E:C2:ED:E3:ED:CB Certificate issuer: /CN=A918C3B7/serialNumber=8FA698651C7AC24DB827D239D0FC8B2C8DA366B8 Certificate serial: 0115 Authority key identifier: 8F:A6:98:65:1C:7A:C2:4D:B8:27:D2:39:D0:FC:8B:2C:8D:A3:66:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j6aYZRx6wk24J9I50PyLLI2jZrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/1E6777AA932511EEBE987F60C4F9AE02/756EDE70611611EF83B51C41C4F9AE02.roa Signing time: Fri 23 May 2025 04:14:49 +0000 ROA not before: Fri 23 May 2025 04:14:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45128 IP address blocks: 2001:df0:93::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/1E6777AA932511EEBE987F60C4F9AE02/j6aYZRx6wk24J9I50PyLLI2jZrg.crl rsync://rpki.apnic.net/member_repository/A918C3B7/1E6777AA932511EEBE987F60C4F9AE02/j6aYZRx6wk24J9I50PyLLI2jZrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j6aYZRx6wk24J9I50PyLLI2jZrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 04:13:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7, serialNumber=8FA698651C7AC24DB827D239D0FC8B2C8DA366B8 Validity Not Before: May 23 04:14:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682ff638-87f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:64:3b:b5:fb:5d:85:28:59:9c:db:31:46:99: 29:92:c8:df:17:14:9d:b9:58:ef:52:41:94:24:02: b7:16:f2:7d:9b:7c:30:75:82:0a:52:5b:28:09:29: c9:9e:81:fb:03:51:3b:64:fb:be:c2:14:af:10:7e: 27:60:e2:94:e6:14:e2:c3:e2:04:eb:1d:a4:fb:e3: 8e:5d:5b:10:2a:cd:f1:0f:10:4b:c8:a8:fb:69:8e: 31:91:2c:7e:80:d0:d2:b1:4c:d3:ec:db:dc:b4:ff: a0:08:b8:8e:da:cb:71:bf:6d:38:a5:9e:6b:41:57: e4:f2:08:9a:9a:94:3b:b3:6f:b7:e9:d1:2c:2b:90: 8d:44:e8:16:69:76:44:2e:d1:f4:57:0c:2a:c0:28: 48:73:2d:55:a5:63:43:f0:79:c6:e6:33:31:0f:7e: 41:c0:86:bb:0a:10:2b:86:f5:02:c5:a1:9c:0a:51: 11:42:1f:91:9b:67:0e:96:1d:9f:7c:2c:1c:52:76: 1e:86:a7:c8:9a:e1:26:61:40:fb:d3:ec:78:c7:b2: 96:95:4d:6c:99:c5:c3:f3:dd:dc:2e:b2:6c:da:14: 76:b5:e9:bb:d0:80:8b:54:01:a9:1b:5b:47:5b:06: 33:27:ee:bb:26:d4:9a:b3:89:7f:f0:57:3c:50:e3: 6a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:57:9E:5A:C8:32:E2:76:22:78:95:B0:89:F7:6E:C2:ED:E3:ED:CB X509v3 Authority Key Identifier: keyid:8F:A6:98:65:1C:7A:C2:4D:B8:27:D2:39:D0:FC:8B:2C:8D:A3:66:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/1E6777AA932511EEBE987F60C4F9AE02/j6aYZRx6wk24J9I50PyLLI2jZrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j6aYZRx6wk24J9I50PyLLI2jZrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/1E6777AA932511EEBE987F60C4F9AE02/756EDE70611611EF83B51C41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:93::/48 Signature Algorithm: sha256WithRSAEncryption 87:61:45:82:71:90:fb:ae:70:9b:ae:04:33:ca:e4:8f:e6:27: 1e:1b:26:32:e1:93:81:47:19:ae:3a:84:37:4a:ca:ea:95:e4: 8e:44:51:b0:4e:48:9f:58:d5:8e:70:d0:cb:51:6d:f0:c3:7c: 66:86:a6:9a:c0:d0:42:ef:35:db:a0:44:06:1a:0d:f8:c5:fa: 53:ce:df:89:69:da:61:f2:ee:37:07:ee:a0:bc:26:ad:97:d7: 4f:a3:e3:8f:b3:fe:85:e1:82:6f:80:49:39:d1:4a:8d:25:80: 4f:8c:7d:8a:b8:02:6f:a3:60:42:87:0d:35:70:b1:2e:a5:b5: c0:06:e8:c9:b4:bc:2d:98:fa:7e:4d:ce:ff:47:95:08:60:e3: cf:a6:ce:29:4a:a3:bf:2f:0c:f2:26:0e:50:0a:c4:04:26:07: 8e:aa:aa:4a:e6:6c:17:61:13:31:7a:21:90:55:f7:38:e5:18: d3:02:1e:04:8d:cc:39:93:cd:41:a2:2f:db:91:87:37:d2:c9: 4c:fb:09:71:79:25:7f:0d:5b:92:9c:66:b5:8a:8c:e3:49:fd: 58:40:da:8c:66:28:cc:64:ce:df:63:65:2e:4d:8c:87:e1:bc: 32:b1:8b:51:52:05:08:cc:b9:ca:b6:a9:64:73:f1:eb:e8:8e: fb:e7:95:4a -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDhGQTY5ODY1MUM3QUMyNERCODI3RDIzOUQwRkM4QjJD OERBMzY2QjgwHhcNMjUwNTIzMDQxNDQ5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmZjYzOC04N2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2WQ7tftdhShZnNsxRpkpksjfFxSduVjvUkGUJAK3FvJ9m3wwdYIKUlsoCSnJ noH7A1E7ZPu+whSvEH4nYOKU5hTiw+IE6x2k++OOXVsQKs3xDxBLyKj7aY4xkSx+ gNDSsUzT7NvctP+gCLiO2stxv204pZ5rQVfk8giampQ7s2+36dEsK5CNROgWaXZE LtH0VwwqwChIcy1VpWND8HnG5jMxD35BwIa7ChArhvUCxaGcClERQh+Rm2cOlh2f fCwcUnYehqfImuEmYUD70+x4x7KWlU1smcXD893cLrJs2hR2tem70ICLVAGpG1tH WwYzJ+67JtSas4l/8Fc8UONqRQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLBXnlrI MuJ2IniVsIn3bsLt4+3LMB8GA1UdIwQYMBaAFI+mmGUcesJNuCfSOdD8iyyNo2a4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xRTY3NzdBQTkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9qNmFZWlJ4NndrMjRKOUk1MFB5TExJMmpa cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o2YVlaUng2d2syNEo5STUwUHlMTEkyalpyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEMzQjcvMUU2Nzc3QUE5MzI1MTFFRUJFOTg3RjYwQzRGOUFFMDIvNzU2RURFNzA2 MTE2MTFFRjgzQjUxQzQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wAJMwDQYJKoZIhvcNAQELBQADggEBAIdhRYJxkPuu cJuuBDPK5I/mJx4bJjLhk4FHGa46hDdKyuqV5I5EUbBOSJ9Y1Y5w0MtRbfDDfGaG pprA0ELvNdugRAYaDfjF+lPO34lp2mHy7jcH7qC8Jq2X10+j44+z/oXhgm+ASTnR So0lgE+MfYq4Am+jYEKHDTVwsS6ltcAG6Mm0vC2Y+n5Nzv9HlQhg48+mzilKo78v DPImDlAKxAQmB46qqkrmbBdhEzF6IZBV9zjlGNMCHgSNzDmTzUGiL9uRhzfSyUz7 CXF5JX8NW5KcZrWKjONJ/VhA2oxmKMxkzt9jZS5NjIfhvDKxi1FSBQjMucq2qWRz 8evojvvnlUo= -----END CERTIFICATE-----Generated at Thu Jun 5 20:06:51 2025 by rpki-client