$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/E3F7B966E5A811ECBE11DA6DC4F9AE02.roa File: E3F7B966E5A811ECBE11DA6DC4F9AE02.roa (raw, json) Hash identifier: XdNJgDmkOAWh0JRm8SzUVD6J0pIjuQDztKGWx3vGffA= Subject key identifier: 34:52:AB:5D:4D:ED:88:4B:01:C9:F3:BA:00:40:51:28:BD:96:3E:D1 Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Certificate serial: 1740 Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/E3F7B966E5A811ECBE11DA6DC4F9AE02.roa Signing time: Fri 20 Jun 2025 16:16:26 +0000 ROA not before: Fri 20 Jun 2025 16:16:26 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 202623 IP address blocks: 2400:cb00:420::/48 maxlen: 48 2400:cb00:1028::/48 maxlen: 48 2400:cb00:1029::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 17:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5952 (0x1740) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BDA4, serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Validity Not Before: Jun 20 16:16:26 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6855895a-e2d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:04:0c:9e:48:3f:ac:cf:a9:1c:8f:a7:37:d4: 5f:ac:e5:73:73:2d:3a:13:df:90:bf:a9:71:12:55: 73:65:61:8e:8a:d8:e9:5d:50:38:6b:cd:6b:d9:32: 16:d8:45:f8:8f:ad:10:8a:13:87:7a:f6:32:7f:e6: 90:71:6b:02:3f:e2:ef:88:a7:b6:a1:f7:09:00:49: 45:c9:9e:e5:c5:88:65:54:11:87:4c:69:0a:12:31: 78:1f:4e:48:82:5d:76:04:80:5f:14:02:f9:35:69: f6:47:12:21:7c:37:1a:b1:1b:10:9f:40:0d:77:b4: 3f:2b:76:ba:a2:36:41:57:0c:4c:b7:30:e5:5d:9d: 6b:e6:aa:7f:e7:50:4a:c3:34:5b:f6:ab:ad:ec:8c: bd:94:57:e5:bb:01:b3:fc:3e:48:2d:df:a3:5c:fc: 81:4e:96:88:a4:17:10:52:38:e7:e0:14:dc:e0:f2: 8a:c1:9c:90:80:30:87:4e:48:a0:6e:98:9e:43:07: eb:54:36:ec:2c:fb:95:27:05:3f:0b:c0:c8:02:ba: db:5f:b8:5a:3c:5c:5f:ef:07:ce:72:fc:a2:a2:a8: e1:13:c9:bb:6f:bd:fe:c2:29:df:9a:e5:74:d1:af: cb:d7:5b:0e:df:26:64:02:bf:f2:9c:5d:3c:e8:c4: a7:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:52:AB:5D:4D:ED:88:4B:01:C9:F3:BA:00:40:51:28:BD:96:3E:D1 X509v3 Authority Key Identifier: keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/E3F7B966E5A811ECBE11DA6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cb00:420::/48 2400:cb00:1028::/47 Signature Algorithm: sha256WithRSAEncryption df:32:53:f3:d9:0d:c7:89:9d:4e:04:a3:5c:b7:61:f4:a4:68: 6b:86:da:de:0c:90:f2:a3:bc:94:16:c0:f8:0b:82:ff:2e:66: 5c:c0:92:82:94:85:5c:75:35:35:ad:66:6e:67:d8:8a:a1:d0: cd:c2:c0:16:1c:ed:23:c6:72:93:11:77:d4:0d:8e:98:18:e6: b2:a7:50:79:b2:05:30:1a:58:f4:7a:51:f3:6a:48:f1:f1:45: b8:a9:ef:b4:8d:88:c8:50:84:63:9c:e7:60:40:bd:a3:50:07: 5f:bf:cf:5c:2a:05:1b:a3:ec:52:40:f0:8e:3e:e8:f4:0a:e7: 01:21:7a:78:e4:ba:52:45:cb:99:c3:f5:25:eb:0c:2f:39:10: 0d:9a:c0:56:3a:df:67:17:81:1c:c6:6a:79:25:2d:43:6f:40: 1e:83:6e:37:5e:c1:d8:1b:9e:59:03:e5:d1:9d:62:52:f5:86: 87:8b:82:c8:7b:40:a4:44:5f:37:79:dc:29:89:b7:eb:08:47: c5:c5:15:28:0b:f7:e9:73:cd:55:ca:0b:ea:c4:7a:08:46:6d: 1c:57:9e:8a:87:23:be:c6:7f:17:19:53:d2:13:8f:f6:9f:65: f0:b5:dd:66:2d:b5:ba:a6:33:52:8a:ea:4a:5d:80:1d:95:1f: 1b:dc:e5:dd -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICF0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJEQTQxMTAvBgNVBAUTKDA0RTZDOTI0OUVFMzQ4RENGNzY0REYwQjlBNDBEM0U4 NTQwNjY0NDQwHhcNMjUwNjIwMTYxNjI2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU1ODk1YS1lMmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQQMnkg/rM+pHI+nN9RfrOVzcy06E9+Qv6lxElVzZWGOitjpXVA4a81r2TIW 2EX4j60QihOHevYyf+aQcWsCP+LviKe2ofcJAElFyZ7lxYhlVBGHTGkKEjF4H05I gl12BIBfFAL5NWn2RxIhfDcasRsQn0ANd7Q/K3a6ojZBVwxMtzDlXZ1r5qp/51BK wzRb9qut7Iy9lFfluwGz/D5ILd+jXPyBTpaIpBcQUjjn4BTc4PKKwZyQgDCHTkig bpieQwfrVDbsLPuVJwU/C8DIArrbX7haPFxf7wfOcvyioqjhE8m7b73+winfmuV0 0a/L11sO3yZkAr/ynF086MSnZwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFDRSq11N 7YhLAcnzugBAUSi9lj7RMB8GA1UdIwQYMBaAFATmySSe40jc92TfC5pA0+hUBmRE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkRBNC8xRUM3MDJCQ0Yx QTcxMUU4OTBGMDY2NTBDNEY5QUUwMi9CT2JKSko3alNOejNaTjhMbWtEVDZGUUda RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JPYkpKSjdqU056M1pOOExta0RUNkZRR1pFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJEQTQvMUVDNzAyQkNGMUE3MTFFODkwRjA2NjUwQzRGOUFFMDIvRTNGN0I5NjZF NUE4MTFFQ0JFMTFEQTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkAMsABCADBwEkAMsAECgwDQYJKoZIhvcNAQELBQADggEB AN8yU/PZDceJnU4Eo1y3YfSkaGuG2t4MkPKjvJQWwPgLgv8uZlzAkoKUhVx1NTWt Zm5n2Iqh0M3CwBYc7SPGcpMRd9QNjpgY5rKnUHmyBTAaWPR6UfNqSPHxRbip77SN iMhQhGOc52BAvaNQB1+/z1wqBRuj7FJA8I4+6PQK5wEhenjkulJFy5nD9SXrDC85 EA2awFY632cXgRzGanklLUNvQB6DbjdewdgbnlkD5dGdYlL1hoeLgsh7QKREXzd5 3CmJt+sIR8XFFSgL9+lzzVXKC+rEeghGbRxXnoqHI77GfxcZU9ITj/afZfC13WYt tbqmM1KK6kpdgB2VHxvc5d0= -----END CERTIFICATE-----Generated at Mon Jun 30 05:35:03 2025 by rpki-client