$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/D035B7BE5BC711F097260D5EC4F9AE02.roa File: D035B7BE5BC711F097260D5EC4F9AE02.roa (raw, json) Hash identifier: AlpyGioYVyajcJ7eEz9QWJBXQdVphfXg8wGbaRLMJmY= Subject key identifier: 94:39:DE:12:EA:DB:C9:B8:3F:6D:A3:D1:FA:AC:E2:2E:E1:D7:AC:29 Certificate issuer: /CN=A91DE500/serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D Certificate serial: 0112 Authority key identifier: 73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/D035B7BE5BC711F097260D5EC4F9AE02.roa Signing time: Tue 08 Jul 2025 06:50:20 +0000 ROA not before: Tue 08 Jul 2025 06:50:20 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152469 IP address blocks: 2001:df3:73c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.crl rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:10:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D Validity Not Before: Jul 8 06:50:20 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=686cbfac-28bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2e:eb:c4:7c:19:59:cd:38:a6:95:ce:c2:1d: d5:47:3d:31:7d:ac:45:d9:c7:ef:e7:ae:91:8f:37: 41:e9:51:b6:dc:a0:21:e8:00:31:c9:aa:11:a2:19: c7:34:f7:63:25:1b:c2:ad:fe:45:32:0d:2e:0b:54: 78:0b:f9:a1:4e:2d:ec:86:0c:af:1c:a8:34:2f:a9: c6:44:01:c1:fe:66:fe:30:7b:91:d9:47:76:e3:b2: b2:ca:06:ba:8c:1f:56:9f:58:46:93:55:e8:c9:bf: 69:a8:56:64:c0:a3:93:db:24:db:8f:6a:55:c0:0b: 67:8b:93:ec:01:37:e5:b7:12:de:f8:10:11:6e:f4: b0:32:47:5b:24:40:0e:4e:a3:d7:dd:74:b3:af:7d: fe:c3:a3:89:ba:63:84:b2:59:bd:53:6e:b6:2d:2e: 7c:bb:7b:8a:95:b9:36:f1:1e:94:c0:28:53:03:bf: bb:77:41:6f:00:88:d0:7f:48:3c:32:0c:13:04:c7: ed:80:81:b8:9c:b4:cb:4d:fe:cf:63:c8:e9:3b:28: f5:41:c0:42:1b:d5:95:f9:c9:bc:34:01:bb:f1:b1: 40:e2:c1:a2:b0:39:cb:31:e0:cb:e4:28:05:76:8a: bf:fd:63:14:68:a3:9a:92:20:95:96:ce:83:01:ad: 42:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:39:DE:12:EA:DB:C9:B8:3F:6D:A3:D1:FA:AC:E2:2E:E1:D7:AC:29 X509v3 Authority Key Identifier: keyid:73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/D035B7BE5BC711F097260D5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:73c0::/48 Signature Algorithm: sha256WithRSAEncryption a5:86:fa:bd:b1:95:0b:0a:ed:8a:3d:fc:eb:86:b7:91:ee:29: 31:43:5b:cd:9e:20:54:89:cc:78:0e:d7:a8:96:69:9e:bb:15: a5:ef:fa:2c:c3:2a:cb:85:35:bd:c9:22:b2:2b:64:9a:ee:72: 3c:cc:6e:34:d7:66:5c:1f:11:b2:a4:fe:48:6a:e9:a9:88:e7: a3:63:5a:be:07:7f:23:73:34:7c:ee:35:ec:de:94:37:1f:35: 18:2c:f1:df:e9:43:54:a7:8c:cc:f9:fc:52:39:95:c3:26:4c: 5e:49:2a:fa:b7:12:5c:f1:04:78:5b:2e:82:9e:f3:51:9c:06: d4:06:51:71:ef:67:0b:5b:28:73:7c:7a:7e:6f:da:e9:f0:4f: 0a:1f:c3:df:0c:75:70:2c:cf:5a:f5:e0:52:10:0b:d7:7a:6d: f4:09:6e:c9:e2:15:80:b6:34:a9:28:4e:aa:da:aa:bf:7a:1d: b3:fa:de:0f:9c:e4:3f:08:b8:66:59:37:84:60:d4:52:ff:47: ce:fc:30:ba:97:e0:cf:aa:9f:43:a9:98:b8:90:6b:33:26:7b: ed:07:a0:59:7c:78:fe:4f:95:f8:65:1b:03:09:1f:5f:29:a1: 99:0b:b3:7e:97:4d:e7:84:ed:8f:2d:70:2c:7b:da:9d:ec:da: cf:65:27:1f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICARIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDczM0Q0QTFFOUYyOTlDQ0QzRjhFNzI0QUI1RTdBQkY0 MjhCQjE5NUQwHhcNMjUwNzA4MDY1MDIwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZjYmZhYy0yOGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAui7rxHwZWc04ppXOwh3VRz0xfaxF2cfv566RjzdB6VG23KAh6AAxyaoRohnH NPdjJRvCrf5FMg0uC1R4C/mhTi3shgyvHKg0L6nGRAHB/mb+MHuR2Ud247Kyyga6 jB9Wn1hGk1Xoyb9pqFZkwKOT2yTbj2pVwAtni5PsATfltxLe+BARbvSwMkdbJEAO TqPX3XSzr33+w6OJumOEslm9U262LS58u3uKlbk28R6UwChTA7+7d0FvAIjQf0g8 MgwTBMftgIG4nLTLTf7PY8jpOyj1QcBCG9WV+cm8NAG78bFA4sGisDnLMeDL5CgF doq//WMUaKOakiCVls6DAa1CYwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJQ53hLq 28m4P22j0fqs4i7h16wpMB8GA1UdIwQYMBaAFHM9Sh6fKZzNP45ySrXnq/Qouxld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC80OUU2RkU0NkM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9jejFLSHA4cG5NMF9qbkpLdGVlcjlDaTdH VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N6MUtIcDhwbk0wX2puSkt0ZWVyOUNpN0dWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU1MDAvNDlFNkZFNDZDNzJEMTFFRTlDN0MzNTFEQzRGOUFFMDIvRDAzNUI3QkU1 QkM3MTFGMDk3MjYwRDVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zc8AwDQYJKoZIhvcNAQELBQADggEBAKWG+r2xlQsK 7Yo9/OuGt5HuKTFDW82eIFSJzHgO16iWaZ67FaXv+izDKsuFNb3JIrIrZJrucjzM bjTXZlwfEbKk/khq6amI56NjWr4HfyNzNHzuNezelDcfNRgs8d/pQ1SnjMz5/FI5 lcMmTF5JKvq3ElzxBHhbLoKe81GcBtQGUXHvZwtbKHN8en5v2unwTwofw98MdXAs z1r14FIQC9d6bfQJbsniFYC2NKkoTqraqr96HbP63g+c5D8IuGZZN4Rg1FL/R878 MLqX4M+qn0OpmLiQazMme+0HoFl8eP5PlfhlGwMJH18poZkLs36XTeeE7Y8tcCx7 2p3s2s9lJx8= -----END CERTIFICATE-----Generated at Sun Jul 20 07:35:21 2025 by rpki-client