$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/5A472FBA026F11EDBE22EF64C4F9AE02.roa File: 5A472FBA026F11EDBE22EF64C4F9AE02.roa (raw, json) Hash identifier: vIMBF1bBAJdpKyG7NryScSCm1A4V3l1tKWGtKbJDwKU= Subject key identifier: 7E:A8:16:85:A0:79:CC:39:13:C5:9E:74:DB:48:C0:1A:FD:76:6E:B8 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 09F5 Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/5A472FBA026F11EDBE22EF64C4F9AE02.roa Signing time: Fri 30 May 2025 20:06:56 +0000 ROA not before: Fri 30 May 2025 20:06:56 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132586 IP address blocks: 2400:6100::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2549 (0x9f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: May 30 20:06:56 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a0fdf-73cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9f:d6:db:d6:6d:e4:0f:26:1b:0c:bb:8c:20: 22:1e:76:b2:c4:68:02:9d:94:27:00:cc:e3:d7:78: 33:9b:70:27:fa:23:79:d9:e3:13:2e:4c:09:93:e1: 9d:68:1c:0b:3f:78:3c:7b:e6:3a:7a:81:d6:78:ba: 3d:98:68:96:c6:f9:5e:ec:8c:91:45:1e:c7:af:74: f0:b4:51:5a:a9:5e:5c:32:05:cf:84:68:ae:2f:c9: 33:64:f9:f2:09:a0:45:d2:7e:55:3b:87:2f:1d:63: 4e:4b:72:c0:06:f3:53:15:06:8b:de:fd:fe:c8:aa: 65:33:68:bf:20:a6:cf:db:72:c0:35:cb:ff:e7:1f: 12:a1:2c:84:5f:a0:2c:66:0a:ac:67:e2:8d:79:bb: d6:d0:7f:4c:c9:43:e9:a6:92:84:b6:20:79:57:e3: d2:11:de:00:b5:0c:3f:5b:3b:e9:1d:82:44:bb:7e: 83:6c:ce:01:b0:51:47:7a:94:14:55:cd:a2:8b:e9: f5:14:a8:5e:e5:fa:09:06:53:a9:a9:c9:7b:91:9c: fe:cc:14:e0:19:f6:91:da:f5:9c:2d:14:08:7e:0c: 9a:0d:1a:08:41:49:80:c4:4f:72:d9:db:ca:be:f1: 3f:60:72:a7:99:0c:f8:52:7e:40:f9:25:fe:06:90: 30:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:A8:16:85:A0:79:CC:39:13:C5:9E:74:DB:48:C0:1A:FD:76:6E:B8 X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/5A472FBA026F11EDBE22EF64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:6100::/32 Signature Algorithm: sha256WithRSAEncryption 5e:d0:0e:b7:92:1e:23:0e:bf:fb:63:0a:01:e3:fc:53:12:c5: c1:ce:71:b1:af:65:d6:52:66:a1:98:e5:41:13:d4:27:15:37: 7a:7e:b2:3c:9c:53:d8:f8:72:0d:51:df:70:8b:f6:e9:39:a3: 50:17:74:b4:2f:89:a6:e8:de:0f:1d:9f:86:8f:12:ac:99:a8: 9c:89:e7:49:aa:b1:75:b2:74:9f:1c:31:ed:00:2d:c4:0d:a5: 70:93:9f:77:b9:33:f8:a7:a5:36:8e:20:1f:ce:65:73:ac:ec: 45:e9:84:d9:a4:d5:bd:7c:e9:df:fa:fa:15:64:45:c0:18:b8: 01:97:d0:1b:50:ec:55:2d:79:fb:fe:96:1b:8a:19:f3:1e:f2: 91:92:f6:ba:42:81:f4:f9:99:83:71:a3:b8:bd:24:8c:87:66: 4a:59:c8:27:12:39:16:3d:6e:d4:bc:dc:3f:a4:e7:d1:a1:76: e5:ae:ea:78:9c:b5:ea:2b:a3:97:11:e1:50:d8:c4:5c:f1:2e: ba:91:67:a3:bb:cf:da:91:a0:6f:1e:b0:07:b7:ea:b9:36:41: 3e:45:f6:10:7c:2c:61:82:d8:e4:54:b5:a2:9a:0e:50:26:b4: f3:94:a4:ba:1a:db:4e:c2:31:bd:ce:03:20:88:0a:bd:87:d4: 27:c1:98:ca -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUwNTMwMjAwNjU2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMGZkZi03M2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJ/W29Zt5A8mGwy7jCAiHnayxGgCnZQnAMzj13gzm3An+iN52eMTLkwJk+Gd aBwLP3g8e+Y6eoHWeLo9mGiWxvle7IyRRR7Hr3TwtFFaqV5cMgXPhGiuL8kzZPny CaBF0n5VO4cvHWNOS3LABvNTFQaL3v3+yKplM2i/IKbP23LANcv/5x8SoSyEX6As ZgqsZ+KNebvW0H9MyUPpppKEtiB5V+PSEd4AtQw/WzvpHYJEu36DbM4BsFFHepQU Vc2ii+n1FKhe5foJBlOpqcl7kZz+zBTgGfaR2vWcLRQIfgyaDRoIQUmAxE9y2dvK vvE/YHKnmQz4Un5A+SX+BpAwsQIDAQABo4ICljCCApIwHQYDVR0OBBYEFH6oFoWg ecw5E8WedNtIwBr9dm64MB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTAzNUEvM0M2MDlCNDQ3QzY2MTFFQTgwODlGMzUxQzRGOUFFMDIvNUE0NzJGQkEw MjZGMTFFREJFMjJFRjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAGEAMA0GCSqGSIb3DQEBCwUAA4IBAQBe0A63kh4jDr/7 YwoB4/xTEsXBznGxr2XWUmahmOVBE9QnFTd6frI8nFPY+HINUd9wi/bpOaNQF3S0 L4mm6N4PHZ+GjxKsmaiciedJqrF1snSfHDHtAC3EDaVwk593uTP4p6U2jiAfzmVz rOxF6YTZpNW9fOnf+voVZEXAGLgBl9AbUOxVLXn7/pYbihnzHvKRkva6QoH0+ZmD caO4vSSMh2ZKWcgnEjkWPW7UvNw/pOfRoXblrup4nLXqK6OXEeFQ2MRc8S66kWej u8/akaBvHrAHt+q5NkE+RfYQfCxhgtjkVLWimg5QJrTzlKS6GttOwjG9zgMgiAq9 h9QnwZjK -----END CERTIFICATE-----Generated at Tue Jun 3 23:56:57 2025 by rpki-client