$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/3B69BCFAF53A11EF907A433EC4F9AE02.roa File: 3B69BCFAF53A11EF907A433EC4F9AE02.roa (raw, json) Hash identifier: g53LMcn3iRdJAKtGtiImyfZixGirZg93i3IYIo94JAU= Subject key identifier: F1:9F:AD:8D:A8:6B:F0:6C:11:1F:DE:71:63:27:0C:64:5D:8A:6E:A7 Certificate issuer: /CN=A9142A75/serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Certificate serial: 02 Authority key identifier: BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/3B69BCFAF53A11EF907A433EC4F9AE02.roa Signing time: Thu 27 Feb 2025 18:39:53 +0000 ROA not before: Thu 27 Feb 2025 18:39:53 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153622 IP address blocks: 2001:df5:1dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 09:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A75, serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Validity Not Before: Feb 27 18:39:53 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c0b178-91bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:47:45:0e:fb:56:9d:63:b6:6e:d3:4d:b5:45: a6:57:38:46:45:c4:7e:10:84:d4:a6:2a:44:cb:d0: 29:1d:52:eb:e9:4c:6a:3d:28:74:6d:7f:fb:30:7a: a3:90:79:37:e8:93:d2:97:02:2b:9d:42:76:4d:f5: e3:95:ec:e1:fc:0b:23:31:c3:ed:a2:d4:6c:c8:f3: 41:47:e3:fa:08:58:dc:dd:00:d1:5d:7f:c3:3b:35: fb:0e:66:38:2b:05:7f:06:08:91:9e:34:9c:24:bd: 41:31:4e:39:eb:db:83:56:7f:73:41:7f:be:2a:e1: bc:11:f7:b1:70:60:d4:1b:55:e8:d7:ea:a1:5b:bf: e5:92:4f:13:c8:ef:93:91:9a:7e:84:f4:10:01:14: ef:a5:43:35:18:4f:40:21:d9:b2:49:ed:ec:9f:51: be:3f:f4:1b:f4:7c:00:33:f7:eb:e0:d1:bc:9e:4f: c8:ce:ac:99:8b:34:2e:b8:59:89:ed:9b:b6:b4:45: b4:cf:ff:fc:6a:7b:bb:37:6b:ae:1d:14:23:76:10: 48:09:05:79:47:da:f0:70:ef:45:93:d3:2c:2d:18: 41:74:27:54:fb:5f:33:2e:1e:0d:e6:57:a5:b0:bc: 4f:e7:fe:43:5a:e6:10:e1:0d:5a:21:72:a8:55:28: 72:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:9F:AD:8D:A8:6B:F0:6C:11:1F:DE:71:63:27:0C:64:5D:8A:6E:A7 X509v3 Authority Key Identifier: keyid:BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/3B69BCFAF53A11EF907A433EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:1dc0::/48 Signature Algorithm: sha256WithRSAEncryption 98:00:f3:6b:cd:00:dd:76:ac:79:42:fa:5d:30:28:ba:14:1d: 0e:9b:0f:a8:fa:57:a3:a1:af:ad:f1:dc:77:eb:26:8e:73:1a: 7a:52:30:f0:f6:78:a3:81:70:bd:54:63:4b:25:cf:f6:a1:6e: 31:67:2a:81:cb:03:4c:88:71:90:28:f4:43:be:15:b8:83:01: 3c:e3:aa:17:86:13:9a:41:5c:ba:e1:37:9c:ba:cd:35:da:6f: b5:59:17:99:d8:93:a8:62:ea:d1:1b:49:e1:ea:c8:0a:f0:eb: 8b:4a:3f:36:25:25:fc:1a:10:75:73:1c:73:df:22:f7:20:a0: cc:c3:d8:26:0a:92:fb:8a:71:36:25:04:8d:96:74:6c:7a:13: 9a:04:d3:25:d6:56:4f:0e:a0:88:e2:9a:a1:6c:54:9c:00:26: 97:61:af:77:72:04:98:65:d0:4b:9c:4e:95:c8:d2:18:bc:57: 59:5d:1c:0c:30:b8:b5:96:b2:00:f1:e0:45:6b:23:49:18:f7: 47:34:cc:22:b7:f1:78:09:ff:76:ad:bc:aa:5a:7a:6f:4c:e6: 9b:c8:d3:07:cf:5e:07:e9:2b:42:5b:ea:ff:aa:c3:58:bb:c2: 0f:4a:2b:2c:b2:e2:18:bb:f2:45:d7:5f:f1:b6:9b:f3:31:28: e4:a3:b0:36 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkE3NTExMC8GA1UEBRMoQkM3MEYzNzRCNzI4QzdCNzExQzI0QTY4MjdGNzQ3N0E0 MkIyMkE0RDAeFw0yNTAyMjcxODM5NTNaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YzBiMTc4LTkxYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5R0UO+1adY7Zu0021RaZXOEZFxH4QhNSmKkTL0CkdUuvpTGo9KHRtf/sweqOQ eTfok9KXAiudQnZN9eOV7OH8CyMxw+2i1GzI80FH4/oIWNzdANFdf8M7NfsOZjgr BX8GCJGeNJwkvUExTjnr24NWf3NBf74q4bwR97FwYNQbVejX6qFbv+WSTxPI75OR mn6E9BABFO+lQzUYT0Ah2bJJ7eyfUb4/9Bv0fAAz9+vg0byeT8jOrJmLNC64WYnt m7a0RbTP//xqe7s3a64dFCN2EEgJBXlH2vBw70WT0ywtGEF0J1T7XzMuHg3mV6Ww vE/n/kNa5hDhDVohcqhVKHLBAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU8Z+tjahr 8GwRH95xYycMZF2KbqcwHwYDVR0jBBgwFoAUvHDzdLcox7cRwkpoJ/dHekKyKk0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyQTc1L0VGNUNENkRBRjUz OTExRUZCMDlGQzgzREM0RjlBRTAyL3ZIRHpkTGNveDdjUndrcG9KX2RIZWtLeUtr MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdkhEemRMY294N2NSd2twb0pfZEhla0t5S2swLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkE3NS9FRjVDRDZEQUY1MzkxMUVGQjA5RkM4M0RDNEY5QUUwMi8zQjY5QkNGQUY1 M0ExMUVGOTA3QTQzM0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfUdwDANBgkqhkiG9w0BAQsFAAOCAQEAmADza80A3Xas eUL6XTAouhQdDpsPqPpXo6GvrfHcd+smjnMaelIw8PZ4o4FwvVRjSyXP9qFuMWcq gcsDTIhxkCj0Q74VuIMBPOOqF4YTmkFcuuE3nLrNNdpvtVkXmdiTqGLq0RtJ4erI CvDri0o/NiUl/BoQdXMcc98i9yCgzMPYJgqS+4pxNiUEjZZ0bHoTmgTTJdZWTw6g iOKaoWxUnAAml2Gvd3IEmGXQS5xOlcjSGLxXWV0cDDC4tZayAPHgRWsjSRj3RzTM IrfxeAn/dq28qlp6b0zmm8jTB89eB+krQlvq/6rDWLvCD0orLLLiGLvyRddf8bab 8zEo5KOwNg== -----END CERTIFICATE-----Generated at Tue Oct 28 22:17:04 2025 by rpki-client