$ rpki-client -vvf rpki.apnic.net/member_repository/A915CB36/C6D4D0BC733511F09CC59451C4F9AE02/A34995A0733611F08B36357EC4F9AE02.roa File: A34995A0733611F08B36357EC4F9AE02.roa (raw, json) Hash identifier: DNeQ3aExMNnXkQv8BbuT6dDsTINDHvSinFiupC0OEnE= Subject key identifier: FD:C0:F6:B8:B4:66:68:78:0D:C0:1B:1D:20:94:AD:1E:EE:FA:B0:AC Certificate issuer: /CN=A915CB36/serialNumber=34354CFCDA22985161B5EB628B5493FDD2E96C3B Certificate serial: 02 Authority key identifier: 34:35:4C:FC:DA:22:98:51:61:B5:EB:62:8B:54:93:FD:D2:E9:6C:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDVM_NoimFFhtetii1ST_dLpbDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CB36/C6D4D0BC733511F09CC59451C4F9AE02/A34995A0733611F08B36357EC4F9AE02.roa Signing time: Thu 07 Aug 2025 02:31:35 +0000 ROA not before: Thu 07 Aug 2025 02:31:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 23693 IP address blocks: 39.192.0.0/10 maxlen: 10 39.194.1.0/24 maxlen: 24 39.194.2.0/24 maxlen: 24 39.194.3.0/24 maxlen: 24 39.194.4.0/24 maxlen: 24 43.255.196.0/22 maxlen: 22 103.239.188.0/22 maxlen: 22 2400:82e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CB36/C6D4D0BC733511F09CC59451C4F9AE02/NDVM_NoimFFhtetii1ST_dLpbDs.crl rsync://rpki.apnic.net/member_repository/A915CB36/C6D4D0BC733511F09CC59451C4F9AE02/NDVM_NoimFFhtetii1ST_dLpbDs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDVM_NoimFFhtetii1ST_dLpbDs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:21:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CB36, serialNumber=34354CFCDA22985161B5EB628B5493FDD2E96C3B Validity Not Before: Aug 7 02:31:35 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68941007-b420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f8:2d:df:57:ea:40:5f:de:0c:ff:8a:e7:e9: 20:cb:65:7e:4c:86:da:e6:8a:fc:a2:f8:89:04:58: 20:ed:d3:5f:68:dd:5d:d9:5e:d9:03:bc:2d:b8:bb: 29:82:d6:e5:f7:83:b5:e3:9b:29:81:7b:30:40:91: 1a:dc:3f:0f:cc:02:ae:e4:29:e7:23:4f:bc:68:3f: 35:d9:7d:a3:7a:ed:c3:ad:a8:af:45:6d:3e:c3:86: ee:e5:d3:bc:6c:04:06:19:0f:43:b3:8a:f9:d4:1b: 38:47:64:6f:c8:4b:28:32:dd:52:8f:cb:e6:04:31: b7:89:da:0f:13:b1:8d:29:76:1e:a4:b4:ce:1e:9d: b5:cf:74:c3:03:c0:06:aa:50:a7:33:da:67:e0:61: 51:56:ed:06:14:1d:c6:2c:75:01:28:23:24:16:85: 81:5f:ae:0c:e7:ac:c4:94:91:45:e2:01:70:e6:e8: 95:f9:5c:19:5b:a0:a3:ec:a1:cf:c6:1f:98:03:3d: c8:bd:a2:ff:67:17:52:c5:e0:0e:8a:e7:ae:86:34: d7:a3:4c:af:90:db:3c:08:6c:74:d7:9a:09:ab:a9: 9d:be:fb:77:9d:0d:ed:62:d6:03:cb:15:bc:a4:0e: 19:15:9c:b4:dd:4b:49:b4:fb:01:52:92:f1:2a:1c: d2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:C0:F6:B8:B4:66:68:78:0D:C0:1B:1D:20:94:AD:1E:EE:FA:B0:AC X509v3 Authority Key Identifier: keyid:34:35:4C:FC:DA:22:98:51:61:B5:EB:62:8B:54:93:FD:D2:E9:6C:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CB36/C6D4D0BC733511F09CC59451C4F9AE02/NDVM_NoimFFhtetii1ST_dLpbDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDVM_NoimFFhtetii1ST_dLpbDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CB36/C6D4D0BC733511F09CC59451C4F9AE02/A34995A0733611F08B36357EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 39.192.0.0/10 43.255.196.0/22 103.239.188.0/22 IPv6: 2400:82e0::/32 Signature Algorithm: sha256WithRSAEncryption 97:6a:6a:f6:88:66:2f:20:e7:6d:0f:b5:7e:2b:be:fb:a4:fc: 58:35:25:07:17:11:bb:3b:f2:7b:89:91:9d:74:94:49:49:9d: af:ca:7c:6a:73:6d:0d:98:d1:85:4b:da:ce:05:b1:6f:cb:80: 26:a2:91:0a:43:7b:84:4b:2d:fd:21:37:25:45:27:c8:48:5d: 1a:39:c5:9a:a9:71:cf:6f:64:bf:bf:a5:5d:85:69:36:cb:e9: 44:1f:24:4c:3e:79:eb:7e:c8:4a:fa:c0:c8:4f:af:38:23:a3: b6:f2:a9:a7:d1:95:cc:6d:57:27:ae:5e:e3:da:33:d0:ca:1c: 1f:0c:36:cd:f8:1b:99:e7:d8:69:23:57:44:0a:34:74:9e:4a: a3:f7:77:21:c9:f5:7e:d0:65:c1:4e:7a:6b:44:a8:31:18:46: 93:4f:b4:b9:2a:cb:a6:a6:17:c4:83:fb:ce:10:26:f7:05:a8: 68:28:8c:53:10:a7:a7:11:c4:d6:db:53:21:15:07:9b:31:d2: 71:84:34:78:91:82:16:5a:75:aa:30:10:c3:bb:34:a2:a7:b3: d5:3f:c4:e9:4d:58:0a:e9:09:01:67:57:c4:e3:c4:9d:91:13: 86:13:9f:32:22:4f:ac:ae:d8:22:a7:7b:d3:b6:c2:8a:17:8a: 80:d2:ed:2c -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Q0IzNjExMC8GA1UEBRMoMzQzNTRDRkNEQTIyOTg1MTYxQjVFQjYyOEI1NDkzRkRE MkU5NkMzQjAeFw0yNTA4MDcwMjMxMzVaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OTQxMDA3LWI0MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4+C3fV+pAX94M/4rn6SDLZX5Mhtrmivyi+IkEWCDt019o3V3ZXtkDvC24uymC 1uX3g7XjmymBezBAkRrcPw/MAq7kKecjT7xoPzXZfaN67cOtqK9FbT7Dhu7l07xs BAYZD0OzivnUGzhHZG/ISygy3VKPy+YEMbeJ2g8TsY0pdh6ktM4enbXPdMMDwAaq UKcz2mfgYVFW7QYUHcYsdQEoIyQWhYFfrgznrMSUkUXiAXDm6JX5XBlboKPsoc/G H5gDPci9ov9nF1LF4A6K566GNNejTK+Q2zwIbHTXmgmrqZ2++3edDe1i1gPLFbyk DhkVnLTdS0m0+wFSkvEqHNJ7AgMBAAGjggKvMIICqzAdBgNVHQ4EFgQU/cD2uLRm aHgNwBsdIJStHu76sKwwHwYDVR0jBBgwFoAUNDVM/NoimFFhtetii1ST/dLpbDsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVDQjM2L0M2RDREMEJDNzMz NTExRjA5Q0M1OTQ1MUM0RjlBRTAyL05EVk1fTm9pbUZGaHRldGlpMVNUX2RMcGJE cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTkRWTV9Ob2ltRkZodGV0aWkxU1RfZExwYkRzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0IzNi9DNkQ0RDBCQzczMzUxMUYwOUNDNTk0NTFDNEY5QUUwMi9BMzQ5OTVBMDcz MzYxMUYwOEIzNjM1N0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA5BggrBgEFBQcBBwEB/wQq MCgwFwQCAAEwEQMDBifAAwQCK//EAwQCZ++8MA0EAgACMAcDBQAkAILgMA0GCSqG SIb3DQEBCwUAA4IBAQCXamr2iGYvIOdtD7V+K777pPxYNSUHFxG7O/J7iZGddJRJ SZ2vynxqc20NmNGFS9rOBbFvy4AmopEKQ3uESy39ITclRSfISF0aOcWaqXHPb2S/ v6VdhWk2y+lEHyRMPnnrfshK+sDIT684I6O28qmn0ZXMbVcnrl7j2jPQyhwfDDbN +BuZ59hpI1dECjR0nkqj93chyfV+0GXBTnprRKgxGEaTT7S5KsumphfEg/vOECb3 BahoKIxTEKenEcTW21MhFQebMdJxhDR4kYIWWnWqMBDDuzSip7PVP8TpTVgK6QkB Z1fE48SdkROGE58yIk+srtgip3vTtsKKF4qA0u0s -----END CERTIFICATE-----Generated at Sat Aug 23 21:04:18 2025 by rpki-client