$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/3F2E65045F0811EDB42DC97FC4F9AE02.roa File: 3F2E65045F0811EDB42DC97FC4F9AE02.roa (raw, json) Hash identifier: M+VldN3Zj4ItVsLXsshINI4uEpHeIoXEm9jDZJqFneg= Subject key identifier: A1:56:5D:B1:79:FF:69:81:6C:C2:4D:EB:99:77:E3:D6:A0:48:91:FC Certificate issuer: /CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Certificate serial: 023B Authority key identifier: BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/3F2E65045F0811EDB42DC97FC4F9AE02.roa Signing time: Fri 03 Oct 2025 02:27:48 +0000 ROA not before: Fri 03 Oct 2025 02:27:48 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 150314 IP address blocks: 2001:df1:48c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:03:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA27, serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Validity Not Before: Oct 3 02:27:48 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68df34a3-21f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:78:ae:7b:a6:50:5e:1a:c5:ed:fa:cf:24:4c: 79:f8:cc:fd:4e:cc:61:5f:24:36:33:33:6f:27:b7: 83:d3:bb:5f:d1:66:c6:26:44:22:7d:47:13:88:df: cb:d2:05:6c:e1:36:25:30:04:23:bc:4e:75:53:c9: 1d:bd:60:13:c5:2e:36:c5:23:af:ec:46:43:18:08: bd:45:7a:59:08:58:e3:ac:59:92:55:9a:bd:87:27: a0:a4:f0:18:28:b3:da:09:af:59:06:f4:38:85:26: 4f:5e:de:18:39:55:47:c1:cb:74:a4:6f:9a:ad:76: a9:ca:c6:8f:20:2f:41:21:50:16:21:ac:5f:25:08: bb:ba:9d:51:20:ad:4e:c2:9e:44:84:a9:25:c5:99: 08:f6:df:72:90:28:da:d4:52:cf:20:bd:6a:72:0f: 8e:04:09:8e:b2:2d:80:fe:51:70:2e:8a:cb:09:42: 46:f9:6f:ac:15:ba:2b:dc:0d:3f:5d:f9:ff:69:92: b6:9c:da:49:49:c6:50:4c:7e:61:17:21:2f:50:36: 2d:f8:af:f9:47:4e:dd:e1:b2:ed:bb:a9:2b:14:c2: 7f:e8:40:25:fd:c0:65:f1:3d:f0:df:d3:f2:36:6d: 27:a1:5c:7b:18:df:fd:6d:e1:63:d5:75:6e:0a:bb: 34:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:56:5D:B1:79:FF:69:81:6C:C2:4D:EB:99:77:E3:D6:A0:48:91:FC X509v3 Authority Key Identifier: keyid:BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/3F2E65045F0811EDB42DC97FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:48c0::/48 Signature Algorithm: sha256WithRSAEncryption 1d:0a:a4:a6:a2:a5:7c:9e:43:fb:ce:48:c3:c7:db:2f:11:e0: 75:1f:3c:ca:6b:9e:49:ee:d9:6f:f8:6c:c4:9f:2b:48:46:8c: ad:f3:5a:91:d8:6d:a9:6f:13:e9:08:fd:2a:14:ce:85:a6:f8: b2:a2:5c:ef:82:6d:4b:f9:d6:21:98:49:a8:b4:dd:8f:49:a3: 33:3d:a9:ed:58:c3:26:87:07:a8:fb:1a:1d:60:0d:1b:61:23: e4:d3:5a:ab:91:15:3d:1a:5c:e4:1e:5e:48:ed:1f:20:ea:df: 72:ef:79:aa:71:55:c8:e8:36:42:77:e6:84:03:84:6a:65:cd: 2f:0d:a9:5d:d5:97:f2:7e:56:18:63:f7:ba:b6:40:1a:5b:4e: db:29:76:0b:97:59:27:bb:dd:2c:ab:9a:bc:09:e4:be:ca:ca: 57:4b:80:dd:57:0a:1f:7a:69:7a:7e:87:c5:d6:dd:b6:25:9a: e8:f2:c0:1a:d8:14:7b:28:6e:be:9a:97:1e:ed:ae:85:28:1f: a9:db:d4:26:5a:3a:3a:e5:4e:80:92:7c:80:05:e1:23:28:50: ff:d1:75:9d:b3:cd:b9:65:50:88:c8:f5:62:32:50:7d:95:a6: ce:2f:d6:2b:e9:72:f0:bc:b9:a4:48:64:9d:bb:3e:7e:3e:f5: 06:c8:85:e2 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBMjcxMTAvBgNVBAUTKEJDODYyMTQxMzA5NzE2QzBFNERDMzdERkZGMzNFNUFC MEM1NTRBRDAwHhcNMjUxMDAzMDIyNzQ4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRmMzRhMy0yMWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzniue6ZQXhrF7frPJEx5+Mz9TsxhXyQ2MzNvJ7eD07tf0WbGJkQifUcTiN/L 0gVs4TYlMAQjvE51U8kdvWATxS42xSOv7EZDGAi9RXpZCFjjrFmSVZq9hyegpPAY KLPaCa9ZBvQ4hSZPXt4YOVVHwct0pG+arXapysaPIC9BIVAWIaxfJQi7up1RIK1O wp5EhKklxZkI9t9ykCja1FLPIL1qcg+OBAmOsi2A/lFwLorLCUJG+W+sFbor3A0/ Xfn/aZK2nNpJScZQTH5hFyEvUDYt+K/5R07d4bLtu6krFMJ/6EAl/cBl8T3w39Py Nm0noVx7GN/9beFj1XVuCrs0MQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKFWXbF5 /2mBbMJN65l349agSJH8MB8GA1UdIwQYMBaAFLyGIUEwlxbA5Nw33/8z5asMVUrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUEyNy82QThCRDA4QzQ0 NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZzRGszRGZmX3pQbHF3eFZT dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWWhRVENYRnNEazNEZmZfelBscXd4VlN0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUVBMjcvNkE4QkQwOEM0NDZGMTFFRDkwOTVENTY1QzRGOUFFMDIvM0YyRTY1MDQ1 RjA4MTFFREI0MkRDOTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3xSMAwDQYJKoZIhvcNAQELBQADggEBAB0KpKaipXye Q/vOSMPH2y8R4HUfPMprnknu2W/4bMSfK0hGjK3zWpHYbalvE+kI/SoUzoWm+LKi XO+CbUv51iGYSai03Y9JozM9qe1YwyaHB6j7Gh1gDRthI+TTWquRFT0aXOQeXkjt HyDq33LveapxVcjoNkJ35oQDhGplzS8NqV3Vl/J+Vhhj97q2QBpbTtspdguXWSe7 3SyrmrwJ5L7KyldLgN1XCh96aXp+h8XW3bYlmujywBrYFHsobr6alx7troUoH6nb 1CZaOjrlToCSfIAF4SMoUP/RdZ2zzbllUIjI9WIyUH2Vps4v1ivpcvC8uaRIZJ27 Pn4+9QbIheI= -----END CERTIFICATE-----Generated at Mon Oct 20 21:41:31 2025 by rpki-client