$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/34D73F3E230C11EB825ED82EC4F9AE02.roa File: 34D73F3E230C11EB825ED82EC4F9AE02.roa (raw, json) Hash identifier: 2mOBehSzLOlEg6pGYtKJCOTxBEzrN5z5JgbqhAtegiQ= Subject key identifier: 8A:84:F4:E3:AD:6A:C8:BD:C4:FC:03:66:F2:ED:2F:CB:44:20:A2:51 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 287F Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/34D73F3E230C11EB825ED82EC4F9AE02.roa Signing time: Sat 26 Jul 2025 15:53:58 +0000 ROA not before: Sat 26 Jul 2025 15:53:58 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 141380 IP address blocks: 2402:9e80:57::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10367 (0x287f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D, serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 26 15:53:58 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6884fa16-e5ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2b:54:ce:1f:a1:2a:6b:59:07:eb:19:22:99: 7c:ff:6e:ef:ea:0a:5a:26:6e:fb:6a:7b:b4:29:10: fe:4d:b5:32:7d:53:bf:5c:ee:a0:26:e3:35:9b:2e: 1f:40:dc:e3:70:9a:83:9f:76:60:d8:76:fc:59:9b: af:25:73:30:9d:9d:92:48:8e:03:71:0b:4c:36:e9: f1:2b:cf:a0:5c:a1:c6:59:43:3d:54:d2:b9:43:8b: 39:dd:c9:4f:a8:9b:e9:91:c9:f4:dd:b3:28:dd:e1: 1f:10:bc:2f:85:d4:50:e1:78:8b:7b:96:05:09:f9: 7c:93:99:04:56:37:e3:7b:aa:45:13:1c:ca:22:45: fd:56:45:90:ab:94:7e:22:92:6f:c1:e8:bb:32:4c: 53:43:62:a2:89:69:73:29:d0:c1:84:d6:99:33:c3: b0:7a:99:8d:aa:8b:8c:b3:5d:9a:88:9d:f3:2b:e6: 1b:50:5c:40:20:58:87:a6:03:75:8f:45:f5:c1:46: a5:99:c9:55:68:e9:26:e7:0a:7b:24:da:24:3c:19: 7c:6c:15:3b:e2:4d:91:d2:45:0a:0b:4e:8c:ba:cf: 35:5a:08:d6:e5:0a:20:1e:d3:ae:4a:03:10:2b:10: 91:44:9f:e4:77:a1:b2:25:2c:d2:ee:64:fd:d8:7a: 97:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:84:F4:E3:AD:6A:C8:BD:C4:FC:03:66:F2:ED:2F:CB:44:20:A2:51 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/34D73F3E230C11EB825ED82EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:57::/48 Signature Algorithm: sha256WithRSAEncryption 47:b7:1f:3d:a3:28:27:36:94:03:b3:d7:69:9c:0d:cb:7c:c3: 2c:79:71:c2:df:ec:65:b9:2e:d2:84:11:2e:4f:4e:9d:34:04: 5f:3b:a5:b1:31:3f:7a:83:b8:42:fc:a8:2e:28:90:d5:f6:d9: 51:1a:a0:ed:b1:27:59:58:83:ed:f0:17:38:24:12:bb:22:69: 75:d9:2a:9b:86:7f:66:3c:26:3c:37:ec:01:f1:59:88:58:9f: 17:f5:e8:90:9d:a8:e7:98:f8:29:21:29:6e:81:06:57:50:8a: aa:7d:20:79:bf:a2:12:41:4a:42:cb:3a:4f:a0:9c:fe:70:06: 41:d4:c2:e5:7e:8b:f1:86:79:d3:ea:c1:35:5c:da:e1:c1:a9: 36:10:3e:79:5c:4e:56:00:be:03:4a:dd:58:7b:21:ea:59:17: 40:42:43:6c:44:ec:e0:c7:3f:11:2d:78:b9:36:29:7e:b9:2f: b5:85:ae:cb:44:88:84:82:d5:45:9c:c4:e3:61:3b:50:86:72: af:99:87:21:e5:88:25:f3:56:0d:d3:a6:68:40:ae:b1:f3:12: 23:fe:58:61:e7:0f:6b:54:17:46:e9:92:5d:11:ef:b4:df:da: 77:23:e4:b5:b8:b8:bc:c8:33:a9:5a:d2:33:55:9b:69:0b:fc: 1c:eb:96:d3 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICKH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjUwNzI2MTU1MzU4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg0ZmExNi1lNWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzytUzh+hKmtZB+sZIpl8/27v6gpaJm77anu0KRD+TbUyfVO/XO6gJuM1my4f QNzjcJqDn3Zg2Hb8WZuvJXMwnZ2SSI4DcQtMNunxK8+gXKHGWUM9VNK5Q4s53clP qJvpkcn03bMo3eEfELwvhdRQ4XiLe5YFCfl8k5kEVjfje6pFExzKIkX9VkWQq5R+ IpJvwei7MkxTQ2KiiWlzKdDBhNaZM8OwepmNqouMs12aiJ3zK+YbUFxAIFiHpgN1 j0X1wUalmclVaOkm5wp7JNokPBl8bBU74k2R0kUKC06Mus81WgjW5QogHtOuSgMQ KxCRRJ/kd6GyJSzS7mT92HqXywIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIqE9OOt asi9xPwDZvLtL8tEIKJRMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvMzRENzNGM0Uy MzBDMTFFQjgyNUVEODJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AAFcwDQYJKoZIhvcNAQELBQADggEBAEe3Hz2jKCc2 lAOz12mcDct8wyx5ccLf7GW5LtKEES5PTp00BF87pbExP3qDuEL8qC4okNX22VEa oO2xJ1lYg+3wFzgkErsiaXXZKpuGf2Y8Jjw37AHxWYhYnxf16JCdqOeY+CkhKW6B BldQiqp9IHm/ohJBSkLLOk+gnP5wBkHUwuV+i/GGedPqwTVc2uHBqTYQPnlcTlYA vgNK3Vh7IepZF0BCQ2xE7ODHPxEteLk2KX65L7WFrstEiISC1UWcxONhO1CGcq+Z hyHliCXzVg3TpmhArrHzEiP+WGHnD2tUF0bpkl0R77Tf2ncj5LW4uLzIM6la0jNV m2kL/BzrltM= -----END CERTIFICATE-----Generated at Sat Aug 9 01:02:51 2025 by rpki-client