$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/E21558BE41C511E8BEC06D36C4F9AE02.roa File: E21558BE41C511E8BEC06D36C4F9AE02.roa (raw, json) Hash identifier: 1MhKVBhr1FCIE3XbyfyWxNr/PnCFcrhIAXC4C0I8mSE= Subject key identifier: A0:D7:C0:B5:0F:B6:C4:21:5B:90:9E:4F:53:C3:FD:35:C9:F0:40:86 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 286B Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/E21558BE41C511E8BEC06D36C4F9AE02.roa Signing time: Sat 26 Jul 2025 15:53:39 +0000 ROA not before: Sat 26 Jul 2025 15:53:39 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 136985 IP address blocks: 2402:e380:17::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10347 (0x286b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D, serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 26 15:53:39 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6884fa03-0961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:3f:41:85:59:99:51:c4:78:14:70:a7:50:36: 39:ae:c7:7c:b8:61:be:fc:be:5f:00:cd:a1:ac:af: d1:3e:3b:06:50:9a:a2:9e:40:ed:84:09:97:ac:75: 9b:a5:13:7a:64:47:05:b5:29:0b:44:ea:bd:12:95: af:1b:32:a8:1f:8b:64:a7:a3:17:a7:56:57:e5:96: 90:17:22:64:14:b4:da:44:80:b8:3d:de:30:2d:0d: eb:e9:2e:d1:35:5b:66:26:c1:f5:0a:d2:64:9d:40: 14:8a:e0:fc:30:dc:1b:06:07:db:ab:c7:73:5b:51: 6c:87:c3:08:db:93:22:aa:76:9e:e4:97:06:f5:02: 90:5d:15:f2:5e:22:49:d6:d4:85:12:47:9a:f5:5e: 7a:fd:8e:2f:16:c0:e9:ea:c3:6a:73:36:65:37:a6: f5:61:77:37:3e:4c:55:d1:5b:42:3b:bd:e9:74:3a: a7:29:de:7e:eb:d5:35:15:0e:9f:6a:55:3b:a7:03: ea:c0:55:0f:45:b7:5e:0b:3c:6f:6b:46:04:91:f1: 81:f3:f0:2b:5c:dd:d2:6e:dd:4a:39:02:98:f4:cb: 87:d5:d0:26:88:b8:b0:55:9f:48:6f:36:5c:61:d6: 69:60:6c:7f:a5:ba:51:83:75:92:34:36:4a:75:be: 5c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:D7:C0:B5:0F:B6:C4:21:5B:90:9E:4F:53:C3:FD:35:C9:F0:40:86 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/E21558BE41C511E8BEC06D36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:e380:17::/48 Signature Algorithm: sha256WithRSAEncryption 1c:39:9e:89:eb:0b:76:fd:5b:f5:40:4a:b8:f0:d1:71:b2:71: cb:c4:05:bc:d7:43:d8:76:e1:67:76:ee:20:36:05:ed:b0:f0: 27:5f:b9:ea:88:e8:74:94:c1:30:77:9a:f4:04:b2:e6:45:ac: fb:43:50:58:47:90:2a:95:b9:09:d1:50:f4:1c:22:31:12:1f: 5c:01:39:8e:5b:a6:b7:36:e0:57:58:72:c8:69:04:93:bd:9b: 94:f0:24:e3:13:88:25:48:7f:7a:a2:f7:a8:82:5f:54:72:d0: ec:b9:b8:1a:cb:15:f0:8b:67:30:1d:80:7d:00:df:89:4d:f5: 3b:cc:7c:e0:33:02:4e:1a:11:fb:bd:27:57:92:22:6d:a5:81: 68:5b:fa:05:02:38:7e:6a:1d:98:32:09:5a:da:f3:4d:96:98: b1:93:ff:2c:1f:07:14:de:2a:45:94:fc:08:9a:6f:5d:d8:fc: 52:ea:63:89:61:19:cc:75:38:ba:9a:63:cb:a4:fb:81:fb:87: ea:f7:8d:d3:88:37:12:e5:02:03:df:b6:74:c7:47:8b:29:fb: ae:fc:a6:b5:38:0e:66:81:7a:7f:33:86:46:09:9d:bc:4e:2a: c4:2d:d9:b6:72:a1:66:ed:16:10:01:cc:02:21:6c:63:f6:57: c1:22:20:1c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICKGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjUwNzI2MTU1MzM5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg0ZmEwMy0wOTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7j9BhVmZUcR4FHCnUDY5rsd8uGG+/L5fAM2hrK/RPjsGUJqinkDthAmXrHWb pRN6ZEcFtSkLROq9EpWvGzKoH4tkp6MXp1ZX5ZaQFyJkFLTaRIC4Pd4wLQ3r6S7R NVtmJsH1CtJknUAUiuD8MNwbBgfbq8dzW1Fsh8MI25Miqnae5JcG9QKQXRXyXiJJ 1tSFEkea9V56/Y4vFsDp6sNqczZlN6b1YXc3PkxV0VtCO73pdDqnKd5+69U1FQ6f alU7pwPqwFUPRbdeCzxva0YEkfGB8/ArXN3Sbt1KOQKY9MuH1dAmiLiwVZ9IbzZc YdZpYGx/pbpRg3WSNDZKdb5c5wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKDXwLUP tsQhW5CeT1PD/TXJ8ECGMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvRTIxNTU4QkU0 MUM1MTFFOEJFQzA2RDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAuOAABcwDQYJKoZIhvcNAQELBQADggEBABw5nonrC3b9 W/VASrjw0XGyccvEBbzXQ9h24Wd27iA2Be2w8CdfueqI6HSUwTB3mvQEsuZFrPtD UFhHkCqVuQnRUPQcIjESH1wBOY5bprc24FdYcshpBJO9m5TwJOMTiCVIf3qi96iC X1Ry0Oy5uBrLFfCLZzAdgH0A34lN9TvMfOAzAk4aEfu9J1eSIm2lgWhb+gUCOH5q HZgyCVra802WmLGT/ywfBxTeKkWU/Aiab13Y/FLqY4lhGcx1OLqaY8uk+4H7h+r3 jdOINxLlAgPftnTHR4sp+678prU4DmaBen8zhkYJnbxOKsQt2bZyoWbtFhABzAIh bGP2V8EiIBw= -----END CERTIFICATE-----Generated at Sat Aug 9 22:45:25 2025 by rpki-client