$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/FD3934BC86E211EF8CF27626C4F9AE02.roa File: FD3934BC86E211EF8CF27626C4F9AE02.roa (raw, json) Hash identifier: 6re4BPBhdZPlBhJ6P0bUdH0mQEDnXmK+Ed0vP4MQWeU= Subject key identifier: 3C:7D:05:9F:2A:E4:BE:62:3D:D0:E8:B1:49:3C:80:38:4A:62:B7:48 Certificate issuer: /CN=A913647F/serialNumber=367879A0B85DD8373637883793F55EEB3B221DCF Certificate serial: 7C Authority key identifier: 36:78:79:A0:B8:5D:D8:37:36:37:88:37:93:F5:5E:EB:3B:22:1D:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/FD3934BC86E211EF8CF27626C4F9AE02.roa Signing time: Sat 31 May 2025 06:58:24 +0000 ROA not before: Sat 31 May 2025 06:58:24 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133453 IP address blocks: 2401:a960::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.crl rsync://rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 07:53:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F, serialNumber=367879A0B85DD8373637883793F55EEB3B221DCF Validity Not Before: May 31 06:58:24 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683aa890-bd66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ff:6c:d1:58:83:4d:72:fd:e8:3c:47:8b:c9: a9:19:e1:91:7e:a7:bb:20:c6:7c:50:a6:2f:e9:09: 78:1f:74:a6:63:ff:46:93:43:17:17:eb:e1:01:d1: 49:c9:cf:9b:90:0b:a4:97:3d:e4:cb:3c:bb:5a:c4: bb:70:2b:23:8a:3e:38:78:ee:65:0a:e2:d1:9e:42: 37:2e:a5:af:e8:b2:2e:3a:89:8f:4c:82:5a:21:10: c6:0f:f3:3a:b4:0f:82:09:32:43:ee:71:b8:0b:6c: fd:8e:7a:1c:ab:4f:dd:1b:98:b9:14:62:2e:04:ff: fc:13:33:86:8d:c5:1c:73:9e:8e:37:de:01:e7:0d: cb:55:93:0c:db:a7:de:a5:2f:9f:ab:99:b9:4f:77: 31:3a:3c:d3:fd:7c:cc:f4:c7:81:23:27:86:66:66: 81:6a:20:5c:1c:4c:a9:19:26:1a:73:fa:38:74:96: 9f:d3:00:8c:0a:13:fc:22:da:01:c7:c7:a4:b0:73: 66:1a:76:c9:1b:58:ca:d5:d0:db:34:6f:1d:cf:01: 1c:15:bc:2c:93:00:07:31:a2:0f:1a:6d:0d:4c:49: 7f:9c:79:80:f1:84:e9:49:3d:d4:68:d3:54:51:2b: ed:73:d8:b3:09:07:e3:f2:fe:9c:56:c2:bf:0f:d0: 01:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:7D:05:9F:2A:E4:BE:62:3D:D0:E8:B1:49:3C:80:38:4A:62:B7:48 X509v3 Authority Key Identifier: keyid:36:78:79:A0:B8:5D:D8:37:36:37:88:37:93:F5:5E:EB:3B:22:1D:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/FD3934BC86E211EF8CF27626C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:a960::/32 Signature Algorithm: sha256WithRSAEncryption 7e:1f:b8:31:6b:87:37:71:13:78:07:d4:c8:6f:e7:28:c5:d9: 28:ee:78:b0:b0:fd:a6:c5:f4:eb:22:e8:b6:ed:0d:22:0d:07: 3a:2c:72:6b:38:a2:ac:64:6c:37:42:0b:78:14:3b:af:ce:ee: 9a:92:84:bd:af:21:92:ca:30:a2:ee:e9:bb:aa:e6:fc:75:82: cf:64:ac:a5:58:d5:58:de:5c:1e:59:fa:d6:99:4f:d4:61:37: 82:aa:56:38:0a:1c:b0:d0:43:57:a2:8e:f2:f5:f5:58:e9:e3: 82:e5:86:f9:88:59:30:bf:1d:f5:34:04:7e:a3:5b:c1:00:e8: 06:aa:fd:a5:c0:ef:95:76:9f:d4:69:17:b9:9a:d3:c2:56:8e: 8b:2a:31:3f:05:d6:27:95:30:2b:89:69:5e:2b:96:12:ba:59: 94:75:18:89:5f:7a:cf:62:e3:d9:6f:87:c3:99:69:6c:78:e7: b0:6b:56:be:76:99:2b:3a:5d:be:d0:11:e5:4f:cc:2a:d9:e0: f1:07:aa:32:a3:73:a9:c4:b8:89:c4:1a:2f:55:37:37:a1:df: 8d:d8:82:75:bd:26:3e:3f:48:c5:6a:40:29:75:e1:71:b4:aa: b5:34:0f:3c:60:2b:c7:8c:36:01:1b:42:e5:a4:48:54:d7:93: d7:be:a4:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjQ3RjExMC8GA1UEBRMoMzY3ODc5QTBCODVERDgzNzM2Mzc4ODM3OTNGNTVFRUIz QjIyMURDRjAeFw0yNTA1MzEwNjU4MjRaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2FhODkwLWJkNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDT/2zRWINNcv3oPEeLyakZ4ZF+p7sgxnxQpi/pCXgfdKZj/0aTQxcX6+EB0UnJ z5uQC6SXPeTLPLtaxLtwKyOKPjh47mUK4tGeQjcupa/osi46iY9MglohEMYP8zq0 D4IJMkPucbgLbP2OehyrT90bmLkUYi4E//wTM4aNxRxzno433gHnDctVkwzbp96l L5+rmblPdzE6PNP9fMz0x4EjJ4ZmZoFqIFwcTKkZJhpz+jh0lp/TAIwKE/wi2gHH x6Swc2YadskbWMrV0Ns0bx3PARwVvCyTAAcxog8abQ1MSX+ceYDxhOlJPdRo01RR K+1z2LMJB+Py/pxWwr8P0AEJAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUPH0Fnyrk vmI90OixSTyAOEpit0gwHwYDVR0jBBgwFoAUNnh5oLhd2Dc2N4g3k/Ve6zsiHc8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2NDdGL0MyMUM3Q0Y2ODZE QjExRUZCQTRENUYyNkM0RjlBRTAyL05uaDVvTGhkMkRjMk40ZzNrX1ZlNnpzaUhj OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTm5oNW9MaGQyRGMyTjRnM2tfVmU2enNpSGM4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjQ3Ri9DMjFDN0NGNjg2REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9GRDM5MzRCQzg2 RTIxMUVGOENGMjc2MjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBqWAwDQYJKoZIhvcNAQELBQADggEBAH4fuDFrhzdxE3gH 1Mhv5yjF2SjueLCw/abF9Osi6LbtDSINBzoscms4oqxkbDdCC3gUO6/O7pqShL2v IZLKMKLu6buq5vx1gs9krKVY1VjeXB5Z+taZT9RhN4KqVjgKHLDQQ1eijvL19Vjp 44LlhvmIWTC/HfU0BH6jW8EA6Aaq/aXA75V2n9RpF7ma08JWjosqMT8F1ieVMCuJ aV4rlhK6WZR1GIlfes9i49lvh8OZaWx457BrVr52mSs6Xb7QEeVPzCrZ4PEHqjKj c6nEuInEGi9VNzeh343YgnW9Jj4/SMVqQCl14XG0qrU0DzxgK8eMNgEbQuWkSFTX k9e+pEg= -----END CERTIFICATE-----Generated at Sat Oct 25 09:00:11 2025 by rpki-client