$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/E1935B7A36DD11EFB1E53717C4F9AE02.roa File: E1935B7A36DD11EFB1E53717C4F9AE02.roa (raw, json) Hash identifier: H0HQ+QBIGliAyxj5H0/8pAJ49x4cCntNY4DcwIy3B3Q= Subject key identifier: 40:EC:2C:56:5F:72:6F:04:9B:96:33:C5:80:25:3E:50:BA:00:D4:9E Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 09F6 Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/E1935B7A36DD11EFB1E53717C4F9AE02.roa Signing time: Fri 30 May 2025 20:06:56 +0000 ROA not before: Fri 30 May 2025 20:06:56 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132849 IP address blocks: 2400:6100::/33 maxlen: 33 2400:6100:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2550 (0x9f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: May 30 20:06:56 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a0fe0-7720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:aa:86:58:1e:eb:2c:75:67:57:14:c6:ce:5b: d3:5e:0e:cf:69:63:09:18:ac:09:8e:fa:85:01:63: b7:99:b1:e0:85:a2:71:be:b1:c7:ef:6f:17:f2:e5: 18:9c:85:e6:25:9a:01:1a:08:81:a9:c3:f8:42:e1: 1e:e4:e5:28:4f:be:3a:c0:9d:49:01:2a:a3:e1:2d: 93:23:fd:37:ac:1c:1b:ae:60:64:ae:62:be:b2:bf: 4a:78:43:54:93:d1:34:69:2f:24:d8:c2:0c:b1:c3: 78:b5:a3:6e:82:01:61:e0:ad:b5:4c:55:06:84:45: 0d:b1:7a:17:b8:90:c0:2d:da:5a:b4:d3:75:97:ea: 1c:85:65:28:e6:3a:6d:df:80:2a:63:8d:10:8d:1c: 3d:35:03:2e:e7:c6:8e:c7:ef:e9:cb:9b:ba:9c:3c: 5d:95:f3:54:61:e0:50:76:98:e8:42:ac:04:bf:8e: 53:99:64:f2:c1:a5:2f:99:7b:ff:eb:a4:4c:03:1b: 68:46:bd:c5:64:88:3c:b2:9f:0c:3a:38:18:d2:8e: 86:88:e7:31:d1:fb:6d:fa:ec:78:90:af:b3:43:2e: 35:4d:2d:0e:81:fa:51:fd:b5:b8:76:6e:99:9e:23: a4:25:aa:ef:51:c5:e2:77:e5:fd:2d:f9:fb:5a:3a: 56:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:EC:2C:56:5F:72:6F:04:9B:96:33:C5:80:25:3E:50:BA:00:D4:9E X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/E1935B7A36DD11EFB1E53717C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:6100::/32 Signature Algorithm: sha256WithRSAEncryption 7f:e7:cc:0f:1c:bb:28:45:cd:68:98:f9:4b:a8:e5:99:0d:03: c5:8d:6b:67:16:55:e7:8a:0c:b1:54:4c:63:bf:97:61:da:66: ce:68:d2:0e:75:14:6a:ae:87:ca:71:ce:e7:f3:4b:d3:b8:5f: 7f:bc:e5:6c:55:7f:85:aa:4b:e0:a7:cb:9b:8f:4d:5a:a6:ff: 2a:4d:e8:b4:94:ad:fe:a4:11:3a:03:53:c7:13:96:a3:46:04: 03:12:72:3d:a0:08:0b:a6:dc:fe:04:39:f1:d2:34:80:49:45: 84:0b:21:45:25:d3:f5:ce:9f:fb:6f:89:b4:57:17:ce:89:da: b7:4f:6c:6d:35:3c:ff:24:72:21:63:7d:19:33:1d:b8:90:26: f0:aa:9e:69:d0:3d:e2:d3:ab:83:e5:23:05:1c:a7:70:94:7a: d8:09:99:9e:34:e4:d2:ce:1f:df:f2:a0:f9:0c:38:f5:54:99: bd:35:7a:c4:9c:47:85:b7:52:c5:6a:da:93:72:7e:d1:d3:3b: b2:ec:7c:20:16:91:05:e1:58:3c:45:e3:d9:c5:05:98:af:5e: 92:35:cb:0c:e2:3a:11:17:01:e0:0e:00:f4:5c:11:a7:75:66: be:c3:c2:42:23:9b:d8:c9:37:4c:67:02:23:2a:61:0e:0a:0e: bb:b6:dc:f3 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUwNTMwMjAwNjU2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMGZlMC03NzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06qGWB7rLHVnVxTGzlvTXg7PaWMJGKwJjvqFAWO3mbHghaJxvrHH728X8uUY nIXmJZoBGgiBqcP4QuEe5OUoT746wJ1JASqj4S2TI/03rBwbrmBkrmK+sr9KeENU k9E0aS8k2MIMscN4taNuggFh4K21TFUGhEUNsXoXuJDALdpatNN1l+ochWUo5jpt 34AqY40QjRw9NQMu58aOx+/py5u6nDxdlfNUYeBQdpjoQqwEv45TmWTywaUvmXv/ 66RMAxtoRr3FZIg8sp8MOjgY0o6GiOcx0ftt+ux4kK+zQy41TS0OgfpR/bW4dm6Z niOkJarvUcXid+X9Lfn7WjpWbQIDAQABo4ICljCCApIwHQYDVR0OBBYEFEDsLFZf cm8Em5YzxYAlPlC6ANSeMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTAzNUEvM0M2MDlCNDQ3QzY2MTFFQTgwODlGMzUxQzRGOUFFMDIvRTE5MzVCN0Ez NkREMTFFRkIxRTUzNzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAGEAMA0GCSqGSIb3DQEBCwUAA4IBAQB/58wPHLsoRc1o mPlLqOWZDQPFjWtnFlXnigyxVExjv5dh2mbOaNIOdRRqrofKcc7n80vTuF9/vOVs VX+Fqkvgp8ubj01apv8qTei0lK3+pBE6A1PHE5ajRgQDEnI9oAgLptz+BDnx0jSA SUWECyFFJdP1zp/7b4m0VxfOidq3T2xtNTz/JHIhY30ZMx24kCbwqp5p0D3i06uD 5SMFHKdwlHrYCZmeNOTSzh/f8qD5DDj1VJm9NXrEnEeFt1LFatqTcn7R0zuy7Hwg FpEF4Vg8RePZxQWYr16SNcsM4joRFwHgDgD0XBGndWa+w8JCI5vYyTdMZwIjKmEO Cg67ttzz -----END CERTIFICATE-----Generated at Wed Jun 4 00:06:48 2025 by rpki-client