$ rpki-client -vvf rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/38C33A60AF8811E98C7EFC2AC4F9AE02.roa File: 38C33A60AF8811E98C7EFC2AC4F9AE02.roa (raw, json) Hash identifier: qioL4f3Nv8IN5xmx7gisd0+PyYeZ++sJbxfOgfDQBd4= Subject key identifier: E0:79:98:4A:ED:9B:2C:82:B1:38:51:84:A3:08:9E:C7:9E:12:8C:3E Certificate issuer: /CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Certificate serial: 1341 Authority key identifier: C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/38C33A60AF8811E98C7EFC2AC4F9AE02.roa Signing time: Thu 14 Aug 2025 17:26:41 +0000 ROA not before: Thu 14 Aug 2025 17:26:41 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132253 IP address blocks: 2406:3000:53::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:19:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4929 (0x1341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91402DC, serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Validity Not Before: Aug 14 17:26:41 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689e1c51-83b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ee:98:3b:4c:b2:10:3a:cf:aa:1c:91:61:30: 75:7b:80:c9:a0:df:d7:c6:f3:86:ff:b1:20:cf:1c: 5d:9c:a2:f2:80:cb:e8:e7:ee:b2:7e:9b:ff:54:55: cc:f8:76:38:ea:2c:06:ca:03:cd:60:18:43:ab:5e: 22:26:8f:5f:e5:48:f3:f9:71:3b:03:ba:b6:90:5f: f4:02:cf:e5:12:b0:f5:5d:1a:4d:f6:f7:a7:c1:9d: 4a:11:32:ba:37:43:53:ba:de:ad:f6:a5:e8:c1:02: a3:09:5e:12:ad:4b:bd:40:10:1f:e2:52:20:db:3b: 3f:00:86:88:13:6c:e8:2b:26:0b:d8:fd:7d:f9:30: 8f:19:e8:c8:dc:0f:55:9e:f5:c3:79:58:09:04:5d: d3:c0:88:69:7c:f7:b0:76:71:46:ff:aa:53:24:f5: f1:07:15:0b:99:54:df:b6:1e:53:e5:22:4a:70:f9: ac:ad:f9:e4:a1:d6:3e:eb:93:53:e5:53:e1:4c:b4: ae:34:31:fd:fc:ab:32:31:6c:e7:3f:9b:02:2a:6e: a2:15:e8:32:7f:8d:bb:bc:44:00:f0:56:2c:f7:15: c0:b2:ab:56:45:30:4a:e6:81:23:68:33:d1:d7:96: 30:52:f3:4d:12:75:fe:7c:e7:00:57:e8:8b:1d:b7: de:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:79:98:4A:ED:9B:2C:82:B1:38:51:84:A3:08:9E:C7:9E:12:8C:3E X509v3 Authority Key Identifier: keyid:C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/38C33A60AF8811E98C7EFC2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:3000:53::/48 Signature Algorithm: sha256WithRSAEncryption 3f:21:0c:76:7f:9e:a2:3c:4b:d7:8b:86:74:58:32:6c:60:0b: 4e:ab:a2:a2:20:59:e3:8e:59:a6:11:19:71:f8:bb:b0:eb:39: ce:fb:36:1e:92:ed:19:c6:d8:07:da:23:44:b7:b8:f3:df:78: 86:83:c7:5b:0c:9d:6d:50:98:ed:51:16:7a:77:c4:d7:fa:08: 89:f4:e7:e5:b2:1f:e6:46:89:f8:62:5d:58:e2:d2:47:2c:c6: 55:4c:21:a7:49:be:60:67:bc:9e:3d:79:1a:57:02:4f:f8:1e: eb:b0:9b:f0:4f:83:31:47:68:0f:4c:66:5d:57:b2:2a:f8:f3: 1f:11:01:68:55:23:79:96:d9:55:d5:73:93:c0:1d:1e:b1:09: c6:c6:c5:b9:a7:19:38:69:38:7d:2b:68:a4:92:c8:e5:d4:2f: be:a8:98:a5:cc:98:7a:e5:ac:f6:f9:be:6d:7a:d2:ec:d4:30: 58:56:75:cc:7f:fd:19:da:3c:6d:79:60:68:e8:c6:a6:20:c4: 84:aa:07:12:65:e2:9c:97:54:d7:7c:3c:39:58:d5:8b:c8:d3: 3b:4a:ec:d2:85:08:71:79:6f:de:4d:d2:b7:bd:19:74:0a:4a: 4b:78:b4:c3:d5:3e:b2:5c:c8:31:e0:be:fa:90:f1:96:13:53: c2:9b:3e:72 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICE0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAyREMxMTAvBgNVBAUTKEMyQjlGNUYzQzY4QzU3NjcyNzIzOUI5MkE5M0IzNjI5 N0QxQjE2NTMwHhcNMjUwODE0MTcyNjQxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllMWM1MS04M2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAve6YO0yyEDrPqhyRYTB1e4DJoN/XxvOG/7EgzxxdnKLygMvo5+6yfpv/VFXM +HY46iwGygPNYBhDq14iJo9f5Ujz+XE7A7q2kF/0As/lErD1XRpN9venwZ1KETK6 N0NTut6t9qXowQKjCV4SrUu9QBAf4lIg2zs/AIaIE2zoKyYL2P19+TCPGejI3A9V nvXDeVgJBF3TwIhpfPewdnFG/6pTJPXxBxULmVTfth5T5SJKcPmsrfnkodY+65NT 5VPhTLSuNDH9/KsyMWznP5sCKm6iFegyf427vEQA8FYs9xXAsqtWRTBK5oEjaDPR 15YwUvNNEnX+fOcAV+iLHbfeGQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOB5mErt myyCsThRhKMInseeEow+MB8GA1UdIwQYMBaAFMK59fPGjFdnJyObkqk7Nil9GxZT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDJEQy8yRDUxQUY0MkZE M0UxMUU4ODhDNTM5NDRDNEY5QUUwMi93cm4xODhhTVYyY25JNXVTcVRzMktYMGJG bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dybjE4OGFNVjJjbkk1dVNxVHMyS1gwYkZsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDAyREMvMkQ1MUFGNDJGRDNFMTFFODg4QzUzOTQ0QzRGOUFFMDIvMzhDMzNBNjBB Rjg4MTFFOThDN0VGQzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBjAAAFMwDQYJKoZIhvcNAQELBQADggEBAD8hDHZ/nqI8 S9eLhnRYMmxgC06roqIgWeOOWaYRGXH4u7DrOc77Nh6S7RnG2AfaI0S3uPPfeIaD x1sMnW1QmO1RFnp3xNf6CIn05+WyH+ZGifhiXVji0kcsxlVMIadJvmBnvJ49eRpX Ak/4Huuwm/BPgzFHaA9MZl1Xsir48x8RAWhVI3mW2VXVc5PAHR6xCcbGxbmnGThp OH0raKSSyOXUL76omKXMmHrlrPb5vm160uzUMFhWdcx//RnaPG15YGjoxqYgxISq BxJl4pyXVNd8PDlY1YvI0ztK7NKFCHF5b95N0re9GXQKSkt4tMPVPrJcyDHgvvqQ 8ZYTU8KbPnI= -----END CERTIFICATE-----Generated at Sat Aug 23 16:20:35 2025 by rpki-client