$ rpki-client -vvf rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/26B1D24C2A4211F08783A40EC4F9AE02.roa File: 26B1D24C2A4211F08783A40EC4F9AE02.roa (raw, json) Hash identifier: 3bcDVvnCHw6LlppchOqrgSyXHliARmZhxXNaF8dSpvk= Subject key identifier: 66:36:3E:B4:7A:94:0D:B1:75:C0:CD:B0:68:BD:49:5F:37:56:06:9E Certificate issuer: /CN=A919130F/serialNumber=CBB35BDFA35A8BEB2709A4DBB32E3D2162EC1FA8 Certificate serial: 02 Authority key identifier: CB:B3:5B:DF:A3:5A:8B:EB:27:09:A4:DB:B3:2E:3D:21:62:EC:1F:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7Nb36Nai-snCaTbsy49IWLsH6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/26B1D24C2A4211F08783A40EC4F9AE02.roa Signing time: Tue 06 May 2025 06:20:06 +0000 ROA not before: Tue 06 May 2025 06:20:06 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 59246 IP address blocks: 203.12.84.0/24 maxlen: 24 203.12.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.crl rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7Nb36Nai-snCaTbsy49IWLsH6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919130F, serialNumber=CBB35BDFA35A8BEB2709A4DBB32E3D2162EC1FA8 Validity Not Before: May 6 06:20:06 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6819aa15-10bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2f:3d:4a:8a:33:d0:bd:9f:48:29:77:d2:db: f6:70:d3:19:09:8b:17:cd:1b:73:ea:86:e8:e4:85: bf:c4:ee:21:65:ae:78:c0:55:78:9b:9f:41:b4:1b: fb:99:8d:86:7b:a9:0c:5c:1d:0b:ca:d8:b1:cc:55: 78:7a:ef:c0:d1:23:08:89:5f:3d:a6:cc:2d:73:9f: 60:27:5b:84:a1:77:f2:1b:05:ff:d0:fb:64:a2:9e: 80:b6:da:ce:e7:28:bc:2c:96:c5:b8:4f:17:54:1d: de:c6:ef:22:b3:ef:14:5f:95:33:ac:7f:5c:ec:f3: d1:bb:60:91:88:f2:8a:e5:9f:9b:27:f8:32:5f:f8: 0c:a5:df:70:12:82:68:69:77:2b:dd:d6:4d:64:82: 4a:ca:ef:69:58:87:02:1f:56:dc:57:9d:27:1b:45: a4:c8:09:ba:e4:86:de:88:32:8b:37:55:c1:00:fa: 21:11:08:bd:eb:b3:3c:54:95:fd:d0:97:e6:1b:ef: 77:1c:b0:49:99:bb:72:1f:95:12:91:d2:96:40:d1: 29:b7:70:a1:93:c9:3e:b1:d0:5d:ff:2c:73:43:b5: 22:11:76:2e:c4:c3:a8:dc:09:93:82:ad:6e:a6:4a: 09:7b:26:f1:a3:86:7e:1b:e8:d2:10:13:46:96:50: 7e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:36:3E:B4:7A:94:0D:B1:75:C0:CD:B0:68:BD:49:5F:37:56:06:9E X509v3 Authority Key Identifier: keyid:CB:B3:5B:DF:A3:5A:8B:EB:27:09:A4:DB:B3:2E:3D:21:62:EC:1F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7Nb36Nai-snCaTbsy49IWLsH6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/26B1D24C2A4211F08783A40EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.12.84.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:b0:85:69:d9:24:9a:e5:29:5b:6a:a3:e8:e3:c4:60:f0:26: 9e:68:d5:a3:34:e8:35:3c:c2:5a:6a:03:88:c8:09:0f:71:74: e6:d6:49:76:6e:f2:fb:2f:37:63:1f:94:70:ec:66:6d:94:f4: 79:2a:fa:02:0d:08:07:e0:18:b1:12:a7:16:b5:87:ff:9a:a4: 14:70:a2:fd:60:48:06:d3:84:47:fd:1c:1f:35:60:d3:7a:67: d8:0c:69:bd:20:3c:ab:55:da:9b:75:9d:c1:61:0f:28:fc:b5: 3a:7c:5a:12:42:d9:5c:df:f9:e9:45:68:f4:17:13:a5:b9:11: 3b:49:04:20:31:10:01:64:1f:1b:cd:c1:c5:e8:af:de:65:ce: 13:00:b3:2f:49:ab:ff:e4:f2:5f:71:87:01:24:0e:18:65:e0: 15:a3:23:4d:bb:08:14:b9:64:7d:d7:e6:3c:ef:9a:f3:5e:18: 34:66:f1:36:65:11:e3:00:85:c1:2d:db:7c:98:5a:74:fd:04: 64:0e:85:7f:bf:e6:99:b9:da:be:63:f0:1c:14:5d:0b:6d:7b: 23:ed:eb:46:53:26:28:f7:ac:94:e7:5a:85:3e:b3:a8:4c:11: f2:58:de:ee:6f:01:e6:3e:c8:be:56:1e:93:8b:5e:30:ae:b3: c2:3a:b7:e5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MTMwRjExMC8GA1UEBRMoQ0JCMzVCREZBMzVBOEJFQjI3MDlBNERCQjMyRTNEMjE2 MkVDMUZBODAeFw0yNTA1MDYwNjIwMDZaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTlhYTE1LTEwYmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDLz1KijPQvZ9IKXfS2/Zw0xkJixfNG3Pqhujkhb/E7iFlrnjAVXibn0G0G/uZ jYZ7qQxcHQvK2LHMVXh678DRIwiJXz2mzC1zn2AnW4Shd/IbBf/Q+2SinoC22s7n KLwslsW4TxdUHd7G7yKz7xRflTOsf1zs89G7YJGI8orln5sn+DJf+Ayl33ASgmhp dyvd1k1kgkrK72lYhwIfVtxXnScbRaTICbrkht6IMos3VcEA+iERCL3rszxUlf3Q l+Yb73ccsEmZu3IflRKR0pZA0Sm3cKGTyT6x0F3/LHNDtSIRdi7Ew6jcCZOCrW6m Sgl7JvGjhn4b6NIQE0aWUH4pAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUZjY+tHqU DbF1wM2waL1JXzdWBp4wHwYDVR0jBBgwFoAUy7Nb36Nai+snCaTbsy49IWLsH6gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkxMzBGLzcyRTJDNDI0MkE0 MTExRjA4MzIxOTM0Q0M0RjlBRTAyL3k3TmIzNk5haS1zbkNhVGJzeTQ5SVdMc0g2 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveTdOYjM2TmFpLXNuQ2FUYnN5NDlJV0xzSDZnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTMwRi83MkUyQzQyNDJBNDExMUYwODMyMTkzNENDNEY5QUUwMi8yNkIxRDI0QzJB NDIxMUYwODc4M0E0MEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcsMVDANBgkqhkiG9w0BAQsFAAOCAQEAfrCFadkkmuUpW2qj 6OPEYPAmnmjVozToNTzCWmoDiMgJD3F05tZJdm7y+y83Yx+UcOxmbZT0eSr6Ag0I B+AYsRKnFrWH/5qkFHCi/WBIBtOER/0cHzVg03pn2AxpvSA8q1Xam3WdwWEPKPy1 OnxaEkLZXN/56UVo9BcTpbkRO0kEIDEQAWQfG83Bxeiv3mXOEwCzL0mr/+TyX3GH ASQOGGXgFaMjTbsIFLlkfdfmPO+a814YNGbxNmUR4wCFwS3bfJhadP0EZA6Ff7/m mbnavmPwHBRdC217I+3rRlMmKPeslOdahT6zqEwR8lje7m8B5j7IvlYek4teMK6z wjq35Q== -----END CERTIFICATE-----Generated at Mon Jun 2 07:09:33 2025 by rpki-client