$ rpki-client -vvf rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/DC3455AAEC3A11EE8CC3B820C4F9AE02.roa File: DC3455AAEC3A11EE8CC3B820C4F9AE02.roa (raw, json) Hash identifier: lkljamiAGuWTdMNk035Kt/plV9Fx0R6Faku03HPbg7U= Subject key identifier: A5:2B:FD:56:4B:C0:42:18:16:F3:EC:88:FE:FE:A0:CE:42:CB:2C:0A Certificate issuer: /CN=A912F535/serialNumber=EAD646355D75936CB93ED6BADB790A87FE15374A Certificate serial: 0119 Authority key identifier: EA:D6:46:35:5D:75:93:6C:B9:3E:D6:BA:DB:79:0A:87:FE:15:37:4A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6tZGNV11k2y5Pta623kKh_4VN0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/DC3455AAEC3A11EE8CC3B820C4F9AE02.roa Signing time: Sat 21 Jun 2025 04:33:22 +0000 ROA not before: Sat 21 Jun 2025 04:33:22 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140224 IP address blocks: 83.229.40.0/21 maxlen: 21 83.229.40.0/23 maxlen: 23 83.229.42.0/23 maxlen: 23 83.229.44.0/23 maxlen: 23 83.229.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/6tZGNV11k2y5Pta623kKh_4VN0o.crl rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/6tZGNV11k2y5Pta623kKh_4VN0o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6tZGNV11k2y5Pta623kKh_4VN0o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F535, serialNumber=EAD646355D75936CB93ED6BADB790A87FE15374A Validity Not Before: Jun 21 04:33:22 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68563612-a92c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4d:aa:db:2b:bb:ca:a6:9d:d1:7a:11:0e:71: a9:31:68:b7:17:21:e2:fe:fe:8e:3b:62:35:20:c5: 7d:01:d6:e7:6e:dd:4c:2b:77:96:71:ec:73:2b:0b: 21:99:75:f6:e1:cd:87:7b:13:b4:e7:b4:2c:f5:c7: 20:fe:f9:77:68:8c:75:12:17:3f:a7:90:89:5e:e3: b4:3e:98:70:40:9d:bd:57:5c:a4:d9:e2:4a:3b:30: ff:21:2f:8a:d6:69:6d:3e:2e:64:55:32:be:60:13: c5:71:d2:96:8c:9d:b7:a4:15:c4:b6:c8:60:6d:19: e1:38:60:a4:8b:de:f1:cd:22:a4:ac:df:76:0a:a9: e6:99:ae:06:e7:c5:94:59:c6:7b:f9:7d:cf:bb:e4: 52:a4:c4:7d:5c:48:5c:72:11:f1:0d:44:09:d9:bc: 17:76:d0:af:df:4e:d1:ce:d0:fa:4d:5c:75:a0:0c: 81:e4:56:c3:83:ad:96:4b:f8:7e:1d:9e:21:a6:71: fd:c3:ff:cb:a4:30:26:03:90:4c:2b:fb:3f:be:a6: 94:05:67:6d:31:b4:4f:c9:24:f4:40:a6:45:ff:a0: 18:06:22:fc:7f:26:ec:43:c9:01:33:22:f1:21:31: 77:dd:96:58:9f:2f:f4:0f:5f:38:ad:4c:2a:ad:48: ce:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:2B:FD:56:4B:C0:42:18:16:F3:EC:88:FE:FE:A0:CE:42:CB:2C:0A X509v3 Authority Key Identifier: keyid:EA:D6:46:35:5D:75:93:6C:B9:3E:D6:BA:DB:79:0A:87:FE:15:37:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/6tZGNV11k2y5Pta623kKh_4VN0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6tZGNV11k2y5Pta623kKh_4VN0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F535/61980A54BA6611EEBC39626EC4F9AE02/DC3455AAEC3A11EE8CC3B820C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 83.229.40.0/21 Signature Algorithm: sha256WithRSAEncryption 06:94:87:00:88:80:fa:e0:2a:c0:55:ba:d7:7b:86:f9:32:41: 67:51:56:b5:e5:af:4e:46:cf:36:75:7d:d1:06:ba:17:fc:f7: 3f:ad:5c:7f:eb:e2:ef:b8:02:41:31:d4:82:0b:bf:84:2d:f5: 69:16:fb:ad:bc:b5:e2:b8:84:8d:73:44:d4:b0:a3:51:ef:b5: e8:98:47:38:03:8f:37:84:5d:82:44:2d:a3:52:94:01:79:3c: 17:0f:75:f6:0c:10:d8:ba:b9:55:58:dc:e2:93:3e:f6:20:5a: 7b:7b:5f:c3:91:bf:74:72:79:12:d1:af:4b:e3:d1:19:b4:05: cc:05:b9:14:99:43:a8:ed:70:7e:8f:5f:b8:f4:7b:8d:0c:85: 6f:35:2f:f4:68:eb:39:94:75:72:5f:56:21:7c:3a:4f:ee:a3: 12:f2:1d:b1:20:dd:f5:e7:40:df:43:d9:e5:e1:0a:94:63:fa: 5e:c8:81:6c:c2:9a:c6:5a:ec:27:e3:2b:40:b4:08:0b:59:a6: 07:da:90:8c:27:1d:7b:9c:63:77:f7:e9:37:0c:8b:99:a6:d0: d4:fc:4d:43:59:fa:37:b3:47:2d:7d:48:69:d8:27:8f:33:55: b9:bd:19:3a:30:1c:36:d6:34:6d:0a:5f:21:b4:66:2f:6f:26: 74:bd:3b:78 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkY1MzUxMTAvBgNVBAUTKEVBRDY0NjM1NUQ3NTkzNkNCOTNFRDZCQURCNzkwQTg3 RkUxNTM3NEEwHhcNMjUwNjIxMDQzMzIyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU2MzYxMi1hOTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0E2q2yu7yqad0XoRDnGpMWi3FyHi/v6OO2I1IMV9Adbnbt1MK3eWcexzKwsh mXX24c2HexO057Qs9ccg/vl3aIx1Ehc/p5CJXuO0PphwQJ29V1yk2eJKOzD/IS+K 1mltPi5kVTK+YBPFcdKWjJ23pBXEtshgbRnhOGCki97xzSKkrN92Cqnmma4G58WU WcZ7+X3Pu+RSpMR9XEhcchHxDUQJ2bwXdtCv307RztD6TVx1oAyB5FbDg62WS/h+ HZ4hpnH9w//LpDAmA5BMK/s/vqaUBWdtMbRPyST0QKZF/6AYBiL8fybsQ8kBMyLx ITF33ZZYny/0D184rUwqrUjOSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKUr/VZL wEIYFvPsiP7+oM5CyywKMB8GA1UdIwQYMBaAFOrWRjVddZNsuT7Wutt5Cof+FTdK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjUzNS82MTk4MEE1NEJB NjYxMUVFQkMzOTYyNkVDNEY5QUUwMi82dFpHTlYxMWsyeTVQdGE2MjNrS2hfNFZO MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzZ0WkdOVjExazJ5NVB0YTYyM2tLaF80Vk4wby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkY1MzUvNjE5ODBBNTRCQTY2MTFFRUJDMzk2MjZFQzRGOUFFMDIvREMzNDU1QUFF QzNBMTFFRThDQzNCODIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBANT5SgwDQYJKoZIhvcNAQELBQADggEBAAaUhwCIgPrgKsBV utd7hvkyQWdRVrXlr05GzzZ1fdEGuhf89z+tXH/r4u+4AkEx1IILv4Qt9WkW+628 teK4hI1zRNSwo1HvteiYRzgDjzeEXYJELaNSlAF5PBcPdfYMENi6uVVY3OKTPvYg Wnt7X8ORv3RyeRLRr0vj0Rm0BcwFuRSZQ6jtcH6PX7j0e40MhW81L/Ro6zmUdXJf ViF8Ok/uoxLyHbEg3fXnQN9D2eXhCpRj+l7IgWzCmsZa7CfjK0C0CAtZpgfakIwn HXucY3f36TcMi5mm0NT8TUNZ+jezRy19SGnYJ48zVbm9GTowHDbWNG0KXyG0Zi9v JnS9O3g= -----END CERTIFICATE-----Generated at Wed Jul 2 20:16:10 2025 by rpki-client