$ rpki-client -vvf rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/3A00D342928511EB8B3AAC22C4F9AE02.roa File: 3A00D342928511EB8B3AAC22C4F9AE02.roa (raw, json) Hash identifier: aj64AT3Eg74eRiHek2DyIpF1DXkedRqzt0byGVydNm8= Subject key identifier: 33:91:E4:4A:7D:23:B6:4F:21:21:10:9D:59:74:3E:F3:19:A9:73:5A Certificate issuer: /CN=A9134285/serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Certificate serial: 0626 Authority key identifier: 37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/3A00D342928511EB8B3AAC22C4F9AE02.roa Signing time: Tue 08 Apr 2025 22:33:36 +0000 ROA not before: Tue 08 Apr 2025 22:33:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17705 IP address blocks: 202.36.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1574 (0x626) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134285, serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Validity Not Before: Apr 8 22:33:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f5a440-f188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:db:b5:65:d4:90:21:2f:f4:6b:3a:38:f6:16: f5:22:22:5e:80:a7:13:75:3d:7b:ab:2d:ea:12:6e: fd:18:1c:0c:91:42:0f:5c:45:03:7d:4b:c5:e6:dc: e7:f1:7d:6a:a8:dc:e2:4e:58:ac:8a:65:ae:c2:1c: c8:89:ee:b3:a1:fe:ce:0c:d3:26:97:d0:b1:6d:01: 4a:47:b0:55:0d:de:68:f6:04:d5:d5:61:fd:ec:32: ed:a2:3f:92:fc:d2:24:29:87:77:4c:35:1f:8e:6b: cb:4d:75:50:26:ac:f7:be:46:9b:dd:bd:61:ee:41: 90:12:5b:14:cc:c6:0d:91:1d:20:9e:81:65:f0:23: 64:f0:52:1b:b3:5f:26:9c:30:1f:b7:41:83:d5:62: 36:80:f8:6d:c9:53:57:c4:1f:f5:07:27:e7:e8:d4: ec:62:c5:03:e1:83:e8:fb:60:eb:c5:61:6f:30:fe: 24:a6:2b:29:de:49:73:d7:15:b9:c2:f4:cb:eb:81: 55:77:b7:fe:01:65:34:f5:3e:b6:ae:b2:c4:68:a0: a7:51:a5:75:5d:b6:c5:be:b4:18:74:db:32:cc:0d: 45:4f:23:50:95:53:53:17:f4:1b:79:ad:e3:a3:b1: 78:a2:19:d7:81:2b:25:49:33:b6:b4:61:c3:7b:11: b4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:91:E4:4A:7D:23:B6:4F:21:21:10:9D:59:74:3E:F3:19:A9:73:5A X509v3 Authority Key Identifier: keyid:37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/3A00D342928511EB8B3AAC22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.214.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:e0:6e:8f:42:2f:dc:3a:c7:8d:84:30:32:3e:99:7c:9d:b0: e0:69:93:2f:c7:a9:43:c9:8e:bb:bc:e5:8b:6a:9b:28:0c:ad: b0:50:21:89:84:75:10:83:87:1a:bf:0e:95:ef:7e:d4:d5:39: dd:3e:71:72:30:25:b1:c9:c3:0e:8b:9a:f3:10:27:5b:d9:21: 1b:8e:fc:aa:6a:66:ff:7f:93:6e:f6:74:6a:d6:fa:87:8a:e6: 66:53:27:3c:ec:64:cf:11:90:84:71:96:ef:80:1f:0c:4a:4a: 05:15:4c:50:cd:4a:1f:d4:f1:52:ed:5f:2d:87:d0:04:a4:c0: fb:fe:3c:91:4b:9c:a0:5b:28:89:7f:2d:a2:76:fa:81:33:c3: 89:1e:00:b6:2f:fc:76:f0:e3:5a:a9:4b:76:c9:b4:02:d7:63: 39:7f:55:fb:72:0b:03:20:5c:f6:d1:08:9f:a9:b2:63:f5:69: 50:a4:be:9b:92:89:73:6f:1a:fd:83:e2:65:d2:6f:76:dd:d1: 3b:20:2c:a8:67:f8:94:b7:e6:5f:22:d5:94:83:65:d1:84:25: 59:d6:3b:80:1e:5f:3d:a3:6a:d6:29:c2:ef:5a:2b:80:b6:ff: e2:95:c5:b5:bd:ba:e8:c6:5a:ac:da:0d:38:ec:5b:8b:7f:e2: 8b:33:38:91 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyODUxMTAvBgNVBAUTKDM3MTkzMDk0QkNGM0UzNjUyMkZBREJGMTk1NEVFNUZG OUQ2MDFFMEUwHhcNMjUwNDA4MjIzMzM2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1YTQ0MC1mMTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tu1ZdSQIS/0azo49hb1IiJegKcTdT17qy3qEm79GBwMkUIPXEUDfUvF5tzn 8X1qqNziTlisimWuwhzIie6zof7ODNMml9CxbQFKR7BVDd5o9gTV1WH97DLtoj+S /NIkKYd3TDUfjmvLTXVQJqz3vkab3b1h7kGQElsUzMYNkR0gnoFl8CNk8FIbs18m nDAft0GD1WI2gPhtyVNXxB/1Byfn6NTsYsUD4YPo+2DrxWFvMP4kpisp3klz1xW5 wvTL64FVd7f+AWU09T62rrLEaKCnUaV1XbbFvrQYdNsyzA1FTyNQlVNTF/Qbea3j o7F4ohnXgSslSTO2tGHDexG0swIDAQABo4IClTCCApEwHQYDVR0OBBYEFDOR5Ep9 I7ZPISEQnVl0PvMZqXNaMB8GA1UdIwQYMBaAFDcZMJS88+NlIvrb8ZVO5f+dYB4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDI4NS82RjE1QjU3Mjky ODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQyVWktdHZ4bFU3bF81MWdI ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054a3dsTHp6NDJVaS10dnhsVTdsXzUxZ0hnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQyODUvNkYxNUI1NzI5MjgzMTFFQjgwOTcwNDIwQzRGOUFFMDIvM0EwMEQzNDI5 Mjg1MTFFQjhCM0FBQzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKJNYwDQYJKoZIhvcNAQELBQADggEBAArgbo9CL9w6x42E MDI+mXydsOBpky/HqUPJjru85YtqmygMrbBQIYmEdRCDhxq/DpXvftTVOd0+cXIw JbHJww6LmvMQJ1vZIRuO/KpqZv9/k272dGrW+oeK5mZTJzzsZM8RkIRxlu+AHwxK SgUVTFDNSh/U8VLtXy2H0ASkwPv+PJFLnKBbKIl/LaJ2+oEzw4keALYv/Hbw41qp S3bJtALXYzl/VftyCwMgXPbRCJ+psmP1aVCkvpuSiXNvGv2D4mXSb3bd0TsgLKhn +JS35l8i1ZSDZdGEJVnWO4AeXz2jatYpwu9aK4C2/+KVxbW9uujGWqzaDTjsW4t/ 4oszOJE= -----END CERTIFICATE-----Generated at Wed Nov 5 16:43:33 2025 by rpki-client