$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/3D6D075A0ED011F0850DFC18C4F9AE02.roa File: 3D6D075A0ED011F0850DFC18C4F9AE02.roa (raw, json) Hash identifier: lL5sRXUJOtODihgeQbFyeji5XkkIg3eyOcjmlZC9+JA= Subject key identifier: 15:42:73:9E:56:B4:DF:CA:AE:6B:05:0E:F6:30:7B:5F:DE:D0:54:79 Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0F41 Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/3D6D075A0ED011F0850DFC18C4F9AE02.roa Signing time: Wed 04 Jun 2025 18:00:13 +0000 ROA not before: Wed 04 Jun 2025 18:00:13 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 141706 IP address blocks: 2402:3180::/45 maxlen: 48 2402:3180:10::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:37:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3905 (0xf41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF, serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Validity Not Before: Jun 4 18:00:13 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684089ac-ddbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:11:92:9f:5a:18:4a:c7:41:d2:2a:cc:c8:54: 8a:1a:bd:9b:2e:97:de:ba:bc:79:f9:23:0e:d1:32: e2:b5:86:e7:63:21:f6:bb:65:13:c5:a2:4f:c0:4b: 70:0d:b2:8f:e9:91:3e:88:97:fa:f6:8c:1b:15:bb: 9d:61:1d:4f:1e:f6:1a:5b:43:fa:54:01:a0:39:0c: 45:f4:3e:c6:a6:03:55:3a:4a:91:82:11:37:af:63: 79:19:62:b2:50:6d:74:3a:86:86:14:59:72:c8:ff: af:e1:19:a5:96:e2:7d:89:10:4d:75:ed:08:3b:ec: 29:0a:b1:85:ca:84:5c:90:5d:f6:a6:e0:19:d7:39: 33:4f:27:3d:a1:e8:11:a2:8a:85:93:d9:fb:cc:6c: ae:b6:84:4f:41:62:20:d2:81:8f:43:c8:c6:f4:39: 03:44:2b:96:fb:a7:3d:af:28:b2:e4:29:9b:9a:5c: 2b:12:7c:ec:d7:a7:b7:aa:4d:95:0d:cd:96:2c:6f: e6:61:bd:8a:09:17:3f:60:8c:5b:01:5b:e0:09:f2: 36:38:5d:21:3e:7f:20:d8:b5:b1:2f:c4:ca:8e:f2: 9f:7d:87:00:31:ee:61:66:28:d0:a8:2c:6a:21:dc: 3b:90:1f:fa:0c:68:4f:17:83:ca:31:93:17:83:63: d9:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:42:73:9E:56:B4:DF:CA:AE:6B:05:0E:F6:30:7B:5F:DE:D0:54:79 X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/3D6D075A0ED011F0850DFC18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:3180::/45 2402:3180:10::/44 Signature Algorithm: sha256WithRSAEncryption b5:c2:97:42:2b:ea:93:26:55:8d:8f:03:cf:01:c4:ae:df:cd: 38:16:b5:6b:94:db:13:42:b6:36:f8:dd:79:11:0e:f3:51:37: fa:9b:cb:34:f0:57:b7:6a:34:15:8f:69:30:ef:91:96:8f:86: fd:38:0d:a4:a3:6a:4a:f9:0b:d7:e5:4a:98:c4:38:08:cc:c8: 73:09:13:80:a1:1b:31:6c:46:38:1c:6b:5d:0d:10:b0:1d:66: 68:6a:d3:6d:40:3b:12:0c:2c:31:8b:39:11:3f:bd:92:cd:39: a0:a8:21:24:2d:a4:63:c1:13:c1:2c:55:cb:a9:83:88:e7:e8: 7a:b6:a2:96:4e:c9:f8:48:e1:71:f0:b1:5e:c2:a4:2d:ef:2a: ee:fd:9d:52:ff:e3:d0:76:f0:51:d5:3b:94:03:78:56:80:ef: 00:45:af:3e:7b:90:5a:ab:e3:62:72:ab:39:db:1a:93:6f:e9: 5b:31:84:29:8e:ca:38:3b:17:f3:1a:98:e5:08:a8:7b:8b:dc: df:95:9a:3d:67:a9:6e:d4:53:40:dc:23:37:eb:0b:15:9b:08: 99:97:f1:21:86:c7:12:2e:75:8a:6b:3e:c8:a6:62:1c:e7:94: a2:ba:47:06:9a:cb:aa:7e:b2:a3:e7:12:ab:d6:3d:ca:e2:5d: d4:85:52:b2 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICD0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjUwNjA0MTgwMDEzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwODlhYy1kZGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BGSn1oYSsdB0irMyFSKGr2bLpfeurx5+SMO0TLitYbnYyH2u2UTxaJPwEtw DbKP6ZE+iJf69owbFbudYR1PHvYaW0P6VAGgOQxF9D7GpgNVOkqRghE3r2N5GWKy UG10OoaGFFlyyP+v4RmlluJ9iRBNde0IO+wpCrGFyoRckF32puAZ1zkzTyc9oegR ooqFk9n7zGyutoRPQWIg0oGPQ8jG9DkDRCuW+6c9ryiy5CmbmlwrEnzs16e3qk2V Dc2WLG/mYb2KCRc/YIxbAVvgCfI2OF0hPn8g2LWxL8TKjvKffYcAMe5hZijQqCxq Idw7kB/6DGhPF4PKMZMXg2PZZwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBVCc55W tN/KrmsFDvYwe1/e0FR5MB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRkYvRTQyQkVBQzI5M0YwMTFFOUJDMENGRjcxQzRGOUFFMDIvM0Q2RDA3NUEw RUQwMTFGMDg1MERGQzE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwMkAjGAAAADBwQkAjGAABAwDQYJKoZIhvcNAQELBQADggEB ALXCl0Ir6pMmVY2PA88BxK7fzTgWtWuU2xNCtjb43XkRDvNRN/qbyzTwV7dqNBWP aTDvkZaPhv04DaSjakr5C9flSpjEOAjMyHMJE4ChGzFsRjgca10NELAdZmhq021A OxIMLDGLORE/vZLNOaCoISQtpGPBE8EsVcupg4jn6Hq2opZOyfhI4XHwsV7CpC3v Ku79nVL/49B28FHVO5QDeFaA7wBFrz57kFqr42JyqznbGpNv6VsxhCmOyjg7F/Ma mOUIqHuL3N+Vmj1nqW7UU0DcIzfrCxWbCJmX8SGGxxIudYprPsimYhznlKK6Rwaa y6p+sqPnEqvWPcriXdSFUrI= -----END CERTIFICATE-----Generated at Sun Jun 15 08:50:50 2025 by rpki-client