$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/3DC39FDAE82D11EF86C76B75C4F9AE02.roa File: 3DC39FDAE82D11EF86C76B75C4F9AE02.roa (raw, json) Hash identifier: Vg52JJ41h9xujYIYRb6O5TyTlL0/xesWwRzbmWjYrbY= Subject key identifier: 00:7C:2F:E1:4D:DD:D3:BB:5C:78:17:5F:6D:31:CC:6D:09:AA:09:61 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 07FB Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/3DC39FDAE82D11EF86C76B75C4F9AE02.roa Signing time: Tue 01 Jul 2025 07:24:20 +0000 ROA not before: Tue 01 Jul 2025 07:24:20 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136173 IP address blocks: 36.255.192.0/24 maxlen: 24 36.255.194.0/24 maxlen: 24 43.229.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2043 (0x7fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Jul 1 07:24:20 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68638d24-6dba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:2d:d9:88:9c:c8:0f:a9:28:eb:97:4d:cc:14: c4:dc:10:a8:4a:e5:fd:91:59:16:5c:cc:d6:25:0e: c5:ce:e0:e1:4a:b2:35:34:8e:80:90:42:42:c1:5b: 7e:0f:b1:98:f9:8a:95:94:f1:98:48:e5:01:ed:49: 61:bb:fd:19:1b:6a:9f:ec:41:3f:27:3f:4d:80:9a: 84:4a:f9:a9:37:5e:f0:d3:cf:23:5f:26:57:5a:eb: 23:46:e9:7a:18:07:d1:9d:b5:74:6f:04:e1:0c:69: 3f:4b:34:97:47:42:37:ff:b9:66:7b:8d:0b:df:9e: 47:eb:6f:61:fc:8a:7e:dc:c1:18:26:cf:a8:8e:1b: 0f:30:2d:c7:1e:21:e1:34:5a:57:0b:6a:aa:dc:cb: b9:da:37:d7:70:41:cf:e9:58:6b:c5:5a:42:07:dd: 19:a1:98:81:0e:d0:20:c0:25:8c:ec:96:fb:ef:ac: 9f:bf:5c:78:94:a8:b7:6c:f2:c7:02:61:d1:4d:f4: 5e:ef:c0:fa:67:7d:8f:0a:c1:98:10:d2:0a:17:f5: 6b:af:f2:00:c5:6c:d8:76:f6:66:6f:9c:83:f6:a1: 56:06:7b:fc:31:24:77:ab:3a:3f:60:2a:8f:38:b2: ab:84:42:bd:3d:98:ea:31:8c:35:0f:f3:82:ad:bd: 29:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:7C:2F:E1:4D:DD:D3:BB:5C:78:17:5F:6D:31:CC:6D:09:AA:09:61 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/3DC39FDAE82D11EF86C76B75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.192.0/24 36.255.194.0/24 43.229.155.0/24 Signature Algorithm: sha256WithRSAEncryption ad:7c:c9:88:ff:d4:6a:ce:e9:28:2d:7b:de:f8:64:35:74:1c: 6c:2b:28:cf:69:77:2a:c9:79:1d:db:77:83:ba:9b:40:88:b8: 99:20:dc:9d:30:0f:03:3b:a2:55:db:02:ba:44:97:9d:ca:6b: c1:21:97:c3:d3:1c:f6:6e:56:84:3f:78:44:6f:4c:29:8d:4c: ed:e7:5a:a4:7a:44:a5:ed:da:4f:98:3a:15:df:98:4e:e0:97: 26:3d:c7:b7:8f:a4:7f:2e:02:7d:17:91:ed:6f:7a:cb:8d:2b: a7:e1:34:f4:ef:38:ef:69:5f:8c:18:7e:99:4e:ee:75:69:50: 69:f5:0f:f5:b2:83:9d:5b:5e:01:45:6e:51:76:27:1f:4a:94: 81:e5:3f:3f:d5:46:a2:7d:14:7d:09:1e:bf:f8:96:1d:1a:29: 67:11:e4:a0:2e:0d:64:18:24:5d:21:6b:ce:6e:82:ef:aa:49: ae:2a:f6:f7:7b:f9:30:a2:f6:5c:d8:22:4b:ce:11:1c:53:73: d4:3b:0f:a5:e2:a1:e5:b9:fe:a9:18:db:14:ba:b9:4e:84:a0: 36:26:03:0d:02:8d:39:a0:70:e2:a2:ef:ab:cf:f0:7a:d4:c0: 3b:5c:f0:bd:c4:0f:be:52:a2:f3:fb:53:c2:3b:ee:0c:86:23: 41:b6:29:f3 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICB/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUwNzAxMDcyNDIwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzOGQyNC02ZGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6y3ZiJzID6ko65dNzBTE3BCoSuX9kVkWXMzWJQ7FzuDhSrI1NI6AkEJCwVt+ D7GY+YqVlPGYSOUB7Ulhu/0ZG2qf7EE/Jz9NgJqESvmpN17w088jXyZXWusjRul6 GAfRnbV0bwThDGk/SzSXR0I3/7lme40L355H629h/Ip+3MEYJs+ojhsPMC3HHiHh NFpXC2qq3Mu52jfXcEHP6VhrxVpCB90ZoZiBDtAgwCWM7Jb776yfv1x4lKi3bPLH AmHRTfRe78D6Z32PCsGYENIKF/Vrr/IAxWzYdvZmb5yD9qFWBnv8MSR3qzo/YCqP OLKrhEK9PZjqMYw1D/OCrb0pIwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFAB8L+FN 3dO7XHgXX20xzG0JqglhMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvM0RDMzlGREFF ODJEMTFFRjg2Qzc2Qjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAk/8ADBAAk/8IDBAAr5ZswDQYJKoZIhvcNAQELBQADggEB AK18yYj/1GrO6Sgte974ZDV0HGwrKM9pdyrJeR3bd4O6m0CIuJkg3J0wDwM7olXb ArpEl53Ka8Ehl8PTHPZuVoQ/eERvTCmNTO3nWqR6RKXt2k+YOhXfmE7glyY9x7eP pH8uAn0Xke1vesuNK6fhNPTvOO9pX4wYfplO7nVpUGn1D/Wyg51bXgFFblF2Jx9K lIHlPz/VRqJ9FH0JHr/4lh0aKWcR5KAuDWQYJF0ha85ugu+qSa4q9vd7+TCi9lzY IkvOERxTc9Q7D6XioeW5/qkY2xS6uU6EoDYmAw0CjTmgcOKi76vP8HrUwDtc8L3E D75SovP7U8I77gyGI0G2KfM= -----END CERTIFICATE-----Generated at Fri Jul 4 14:27:57 2025 by rpki-client