$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/3524F8BCD75511EF80E68A39C4F9AE02.roa File: 3524F8BCD75511EF80E68A39C4F9AE02.roa (raw, json) Hash identifier: hXI7auCZSPvAdHOfiV427I6HYIQHsMDxA6gjGw/HO3w= Subject key identifier: C2:67:CA:2B:59:27:E4:2B:04:87:EF:75:B3:13:52:42:7A:78:7F:BC Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 06E9 Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/3524F8BCD75511EF80E68A39C4F9AE02.roa Signing time: Wed 02 Jul 2025 22:31:57 +0000 ROA not before: Wed 02 Jul 2025 22:31:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138195 IP address blocks: 2401:e9e0:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1769 (0x6e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Jul 2 22:31:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6865b35d-2221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ba:f3:e9:c8:e8:b2:7e:51:e6:c0:35:25:2f: 8e:f4:2e:c4:c6:81:6d:e9:33:ec:60:be:0c:ed:6d: 6c:b7:61:77:62:04:52:ac:53:e9:e9:2b:15:a2:3c: 18:64:91:ac:ee:f8:f4:87:d4:07:df:ba:87:81:ba: 4b:b3:99:eb:4b:0e:73:5e:96:21:c9:1c:94:fe:b8: be:4c:15:22:03:08:76:83:14:36:a9:f2:c8:8d:cc: 7e:c0:b1:a5:ee:2e:d8:2e:96:dc:1b:6d:4d:8d:1d: 46:42:3f:a2:39:29:57:7c:60:68:ea:3d:05:8f:d8: fa:96:b8:de:8b:99:24:b2:ab:0d:68:04:e5:be:9c: 67:c8:bf:10:6f:69:3c:6a:a1:89:89:1d:2f:9f:69: ca:1b:00:e0:75:eb:ab:fb:be:75:bd:93:7e:67:19: ac:5e:d4:a0:54:67:dc:6f:0a:72:28:82:8d:93:61: 96:e4:99:84:f0:7b:69:32:58:a7:7b:0e:18:45:e4: 47:35:2b:7d:19:77:91:92:4d:ec:1b:03:bd:af:21: f5:e9:16:e6:7a:b4:36:94:23:04:0e:13:7e:c1:31: a8:30:0a:22:3e:33:ae:b2:47:d0:c2:0d:3d:d4:9a: 42:e0:55:f4:a6:00:05:b2:9c:be:91:3f:f9:ce:7e: b5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:67:CA:2B:59:27:E4:2B:04:87:EF:75:B3:13:52:42:7A:78:7F:BC X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/3524F8BCD75511EF80E68A39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e9e0:2000::/36 Signature Algorithm: sha256WithRSAEncryption ae:09:77:ab:62:10:91:3b:1a:a9:e1:d6:dc:ca:d9:73:3c:bf: 82:e2:27:34:17:c4:12:bd:dd:9a:d1:e8:5a:c9:87:90:2f:f1: fa:95:5d:3d:c2:00:fc:78:46:b3:44:7d:2a:0d:62:30:25:57: 4f:1d:8e:cd:70:17:ca:8b:a7:10:0e:36:3e:34:16:58:94:a1: 84:7e:66:3f:dc:cf:cb:e7:1f:cb:56:4a:69:f0:92:df:16:2a: b3:ce:e5:38:0c:f0:98:9f:88:2f:5c:87:e8:e2:74:fc:9c:dc: f7:fe:ab:01:56:d5:75:9b:e9:87:f2:15:be:79:dc:af:7a:6f: 90:57:97:6b:6b:6a:e6:f6:5b:0b:a5:cb:48:95:67:cf:21:c1: 4e:c8:75:d3:ca:ef:3a:93:0c:84:20:7b:b4:78:7f:a3:c6:2c: 8d:54:8a:7c:b8:1c:5b:c6:9a:42:7d:36:a9:16:ec:fb:a0:bd: 35:b8:84:a9:43:e5:a9:be:b3:78:3f:a3:2d:c2:06:1c:b4:5d: 41:3f:04:3b:29:5d:9d:37:e2:65:08:80:28:a8:03:f8:be:30: 84:40:64:26:a6:7f:49:92:9c:cb:54:66:b3:57:d9:17:d4:02: 33:8f:b1:a7:ff:0d:60:8a:a8:ee:d9:91:65:41:35:8a:7c:6d: e4:a9:c0:6f -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICBukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwNzAyMjIzMTU3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YjM1ZC0yMjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Lrz6cjosn5R5sA1JS+O9C7ExoFt6TPsYL4M7W1st2F3YgRSrFPp6SsVojwY ZJGs7vj0h9QH37qHgbpLs5nrSw5zXpYhyRyU/ri+TBUiAwh2gxQ2qfLIjcx+wLGl 7i7YLpbcG21NjR1GQj+iOSlXfGBo6j0Fj9j6lrjei5kksqsNaATlvpxnyL8Qb2k8 aqGJiR0vn2nKGwDgdeur+751vZN+ZxmsXtSgVGfcbwpyKIKNk2GW5JmE8HtpMlin ew4YReRHNSt9GXeRkk3sGwO9ryH16RbmerQ2lCMEDhN+wTGoMAoiPjOuskfQwg09 1JpC4FX0pgAFspy+kT/5zn61XQIDAQABo4IClzCCApMwHQYDVR0OBBYEFMJnyitZ J+QrBIfvdbMTUkJ6eH+8MB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCNEQvQ0E1NjNCRTg2NTIyMTFFQjgwRjZFOTRCQzRGOUFFMDIvMzUyNEY4QkNE NzU1MTFFRjgwRTY4QTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkAengIDANBgkqhkiG9w0BAQsFAAOCAQEArgl3q2IQkTsa qeHW3MrZczy/guInNBfEEr3dmtHoWsmHkC/x+pVdPcIA/HhGs0R9Kg1iMCVXTx2O zXAXyounEA42PjQWWJShhH5mP9zPy+cfy1ZKafCS3xYqs87lOAzwmJ+IL1yH6OJ0 /Jzc9/6rAVbVdZvph/IVvnncr3pvkFeXa2tq5vZbC6XLSJVnzyHBTsh108rvOpMM hCB7tHh/o8YsjVSKfLgcW8aaQn02qRbs+6C9NbiEqUPlqb6zeD+jLcIGHLRdQT8E OyldnTfiZQiAKKgD+L4whEBkJqZ/SZKcy1Rms1fZF9QCM4+xp/8NYIqo7tmRZUE1 inxt5KnAbw== -----END CERTIFICATE-----Generated at Thu Jul 3 14:32:44 2025 by rpki-client