$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/4239C32A61C211E9B8967426C4F9AE02.roa File: 4239C32A61C211E9B8967426C4F9AE02.roa (raw, json) Hash identifier: KH4rcNSGK8tfemYYCLk11pmTNCXkiMJ76KYgISb1Hbw= Subject key identifier: 86:28:24:DA:82:30:E4:A2:FD:55:4B:9A:FB:80:4A:B9:3C:2D:BD:44 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2876 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/4239C32A61C211E9B8967426C4F9AE02.roa Signing time: Sat 26 Jul 2025 15:53:48 +0000 ROA not before: Sat 26 Jul 2025 15:53:48 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138686 IP address blocks: 2402:e380:8c::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10358 (0x2876) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D, serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 26 15:53:48 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6884fa0c-7805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:31:04:cb:90:9b:9d:d8:31:ad:c3:4d:4f:c6: 2d:e3:73:e3:4c:b4:6e:10:97:61:86:16:30:10:ce: 2b:96:ea:15:6f:5f:d5:b2:6f:3a:1d:43:64:21:1d: 24:c5:1e:70:8d:3a:5d:1b:17:2d:a3:7a:d1:b4:2c: 12:19:f7:3c:55:e6:83:e9:4c:05:83:e6:e5:cd:71: 66:1c:be:8e:e9:98:87:4c:94:29:49:9c:a5:83:71: eb:a9:25:9e:ed:4c:6c:d7:1f:11:8f:8c:02:78:12: 5b:32:c3:e8:0f:1d:4d:c4:3f:59:cb:47:44:d4:1c: 0c:cd:8a:83:97:e7:ad:ce:a4:3d:c4:9c:2e:93:05: a9:5c:ae:15:c4:11:e0:72:b9:bb:82:6d:6e:2d:7e: 70:ca:02:89:c9:f2:82:de:6d:b6:be:37:19:79:9b: e7:12:9d:aa:69:a7:45:eb:b5:91:92:3c:09:cf:81: 30:e5:b3:4a:33:0e:d4:bd:3d:50:a4:54:2d:88:fe: 3a:89:d9:ae:60:89:7e:47:45:26:e5:fa:38:51:e1: 4f:2b:a3:76:2e:7f:35:67:3c:01:a2:f9:24:8a:68: 2c:a0:3d:e3:24:a4:6d:4f:d2:a3:d5:30:28:81:d0: 26:91:35:c5:b8:cf:b3:45:d7:b2:22:50:1f:b7:17: 89:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:28:24:DA:82:30:E4:A2:FD:55:4B:9A:FB:80:4A:B9:3C:2D:BD:44 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/4239C32A61C211E9B8967426C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:e380:8c::/46 Signature Algorithm: sha256WithRSAEncryption 4a:20:e9:72:2a:9d:e4:12:78:e9:85:34:8c:d3:46:9d:d3:45: 08:0f:9c:b1:6d:81:db:ff:47:17:0c:a4:01:e8:44:01:8d:19: 74:e1:48:97:48:22:23:0c:cc:05:d5:7d:b8:22:b5:7d:d6:83: 11:71:a8:97:33:79:ae:1d:36:da:3a:c5:bf:b1:03:54:4c:85: 11:70:88:10:85:b3:35:56:d6:ef:21:6f:57:cd:29:c6:be:99: 74:b9:11:19:77:d2:47:64:1f:2f:14:08:94:d8:a8:d6:be:05: 4e:25:c0:46:52:43:c0:ef:81:93:04:c3:a4:2d:32:65:5a:4b: 12:70:bb:b3:cc:ee:e4:23:23:c8:48:e6:af:a6:b1:88:38:29: 30:c7:7c:9f:db:33:50:a5:02:31:1e:91:c7:1f:cf:c9:57:27: ad:f5:99:72:cb:77:6a:fe:58:1e:ca:90:91:48:fd:c1:d0:7a: f4:76:cd:d9:6d:46:03:fd:73:6e:69:d3:ee:52:a1:e5:39:f7: cb:67:80:a0:87:88:1e:6c:a3:e8:3e:62:ff:0f:78:dd:05:44: 67:11:66:00:1e:7b:46:46:2c:9f:16:7c:6b:03:28:b6:c9:55: 1b:2c:32:df:d7:79:f9:35:42:49:c2:06:47:78:36:e3:b0:8a: d4:9f:c2:74 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICKHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjUwNzI2MTU1MzQ4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg0ZmEwYy03ODA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zEEy5CbndgxrcNNT8Yt43PjTLRuEJdhhhYwEM4rluoVb1/Vsm86HUNkIR0k xR5wjTpdGxcto3rRtCwSGfc8VeaD6UwFg+blzXFmHL6O6ZiHTJQpSZylg3HrqSWe 7Uxs1x8Rj4wCeBJbMsPoDx1NxD9Zy0dE1BwMzYqDl+etzqQ9xJwukwWpXK4VxBHg crm7gm1uLX5wygKJyfKC3m22vjcZeZvnEp2qaadF67WRkjwJz4Ew5bNKMw7UvT1Q pFQtiP46idmuYIl+R0Um5fo4UeFPK6N2Ln81ZzwBovkkimgsoD3jJKRtT9Kj1TAo gdAmkTXFuM+zRdeyIlAftxeJuQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIYoJNqC MOSi/VVLmvuASrk8Lb1EMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvNDIzOUMzMkE2 MUMyMTFFOUI4OTY3NDI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwIkAuOAAIwwDQYJKoZIhvcNAQELBQADggEBAEog6XIqneQS eOmFNIzTRp3TRQgPnLFtgdv/RxcMpAHoRAGNGXThSJdIIiMMzAXVfbgitX3WgxFx qJczea4dNto6xb+xA1RMhRFwiBCFszVW1u8hb1fNKca+mXS5ERl30kdkHy8UCJTY qNa+BU4lwEZSQ8DvgZMEw6QtMmVaSxJwu7PM7uQjI8hI5q+msYg4KTDHfJ/bM1Cl AjEekccfz8lXJ631mXLLd2r+WB7KkJFI/cHQevR2zdltRgP9c25p0+5SoeU598tn gKCHiB5so+g+Yv8PeN0FRGcRZgAee0ZGLJ8WfGsDKLbJVRssMt/Xefk1QknCBkd4 NuOwitSfwnQ= -----END CERTIFICATE-----Generated at Sun Aug 10 04:55:47 2025 by rpki-client