$ rpki-client -vvf rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/33CDE41E5A4711EFA5ED8487C4F9AE02.roa File: 33CDE41E5A4711EFA5ED8487C4F9AE02.roa (raw, json) Hash identifier: 1jaabUICJy48DuW6hLSy4F/Zdui5Uq8G26iJUdGW7X0= Subject key identifier: DD:57:0E:62:25:AD:9B:89:92:F9:FA:24:9D:5A:70:DB:43:4F:EF:C6 Certificate issuer: /CN=A916D687/serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Certificate serial: 0A03 Authority key identifier: DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/33CDE41E5A4711EFA5ED8487C4F9AE02.roa Signing time: Fri 12 Jun 2026 20:23:29 +0000 ROA not before: Fri 12 Jun 2026 20:23:29 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 38084 IP address blocks: 45.113.36.0/22 maxlen: 24 103.9.60.0/22 maxlen: 24 2402:6c40::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2563 (0xa03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D687, serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Validity Not Before: Jun 12 20:23:29 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a2c6ac1-97e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0a:27:d5:2c:21:d1:f0:9d:7f:fa:d0:ea:a6: 1b:50:e9:12:cb:bb:34:df:2f:ff:d1:87:2d:d7:56: df:22:30:b5:ce:9b:f6:96:dd:1e:d3:e9:8e:d4:9e: 7d:30:f1:b9:7b:f0:9d:97:ef:c5:88:31:44:0a:9f: eb:cc:40:1d:ac:17:26:25:e4:d1:a3:5f:d2:64:7d: ad:e2:a0:3b:61:12:4f:55:6d:96:a7:ca:57:56:d1: 88:5d:41:b6:b6:e6:37:83:cf:d5:29:f6:a2:9a:d4: 3b:82:43:0b:75:09:ab:ab:eb:24:3c:a2:da:f6:9b: 46:aa:01:3a:67:9f:fc:f4:0d:e7:40:3a:67:74:76: 29:48:2d:ab:39:ec:3a:70:6b:f9:06:5d:2c:c8:3c: bc:65:9d:a7:3a:46:a5:ce:b5:2d:d2:e8:af:42:5d: e4:ef:ea:56:49:0b:d7:fc:b6:80:1f:8c:a7:ef:33: 2b:95:d3:41:f2:11:24:f6:96:56:c9:19:10:46:1b: 05:23:ab:32:68:40:90:4a:cd:57:4c:c5:f5:04:71: c0:8a:0b:bb:56:a1:da:ac:21:57:f2:9c:79:bf:66: 21:15:b1:ae:ee:c6:ac:49:a9:45:b4:5e:92:a3:67: 3f:4c:81:9a:f5:0a:d6:ec:18:db:8e:53:5e:8a:92: 6e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:57:0E:62:25:AD:9B:89:92:F9:FA:24:9D:5A:70:DB:43:4F:EF:C6 X509v3 Authority Key Identifier: keyid:DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/33CDE41E5A4711EFA5ED8487C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.113.36.0/22 103.9.60.0/22 IPv6: 2402:6c40::/32 Signature Algorithm: sha256WithRSAEncryption 8c:c7:15:81:e0:6d:85:c5:8d:93:ca:1e:7f:54:05:21:a1:ac: 16:b7:cb:3a:f9:69:0e:34:3d:18:da:c1:be:c3:15:6c:cd:dd: bb:f4:8d:77:15:0b:2c:81:42:4a:81:2e:6d:a5:0a:f1:94:bf: 59:5d:f6:3f:1b:5b:13:4f:94:c5:37:cc:a2:21:24:0c:26:58: 66:48:fb:03:cb:5d:79:5c:05:5d:4c:8f:5f:f7:aa:38:20:24: 38:c4:24:16:36:96:8c:c7:27:17:04:50:4e:87:49:e5:5c:09: aa:49:99:80:da:60:86:86:ee:b6:4d:40:02:b5:0d:99:b1:cb: 6a:7f:4e:0e:c8:40:32:ab:6a:5b:fb:47:e3:84:10:e9:d9:18: 47:6d:31:c2:45:c3:b4:0a:8f:47:58:c6:7a:76:e8:aa:32:df: 50:86:92:40:a7:33:de:1d:26:82:96:8a:a9:b6:46:e7:a5:ce: 31:ff:2f:70:e2:d8:a6:4e:6c:95:4d:85:ea:58:5d:1b:b9:38: 77:f2:44:7d:f7:cf:be:cd:de:f6:73:d5:bd:5b:a1:79:62:1f: 50:fa:6b:cb:7e:31:3a:72:1c:eb:6b:68:af:3f:0b:62:ea:6e: 3a:9d:95:95:b6:aa:ef:00:17:01:ff:1a:99:37:50:93:c2:16: 6d:c2:64:5a -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ2ODcxMTAvBgNVBAUTKERBQkIxNjlEOUU5RDc3RTY1NzZDMDE4MTAxMjUyQ0Iw QjQ4NTdGNjIwHhcNMjYwNjEyMjAyMzI5WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTJjNmFjMS05N2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0won1Swh0fCdf/rQ6qYbUOkSy7s03y//0Yct11bfIjC1zpv2lt0e0+mO1J59 MPG5e/Cdl+/FiDFECp/rzEAdrBcmJeTRo1/SZH2t4qA7YRJPVW2Wp8pXVtGIXUG2 tuY3g8/VKfaimtQ7gkMLdQmrq+skPKLa9ptGqgE6Z5/89A3nQDpndHYpSC2rOew6 cGv5Bl0syDy8ZZ2nOkalzrUt0uivQl3k7+pWSQvX/LaAH4yn7zMrldNB8hEk9pZW yRkQRhsFI6syaECQSs1XTMX1BHHAigu7VqHarCFX8px5v2YhFbGu7sasSalFtF6S o2c/TIGa9QrW7BjbjlNeipJuEwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFN1XDmIl rZuJkvn6JJ1acNtDT+/GMB8GA1UdIwQYMBaAFNq7Fp2enXfmV2wBgQElLLC0hX9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDY4Ny83NkI0M0I2NDlG NDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQtWlhiQUdCQVNVc3NMU0Zm MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyc1duWjZkZC1aWGJBR0JBU1Vzc0xTRmYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQ2ODcvNzZCNDNCNjQ5RjQ1MTFFQTlFNTIzNTYzQzRGOUFFMDIvMzNDREU0MUU1 QTQ3MTFFRkE1RUQ4NDg3QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCLXEkAwQCZwk8MA0EAgACMAcDBQAkAmxAMA0GCSqGSIb3DQEBCwUA A4IBAQCMxxWB4G2FxY2Tyh5/VAUhoawWt8s6+WkOND0Y2sG+wxVszd279I13FQss gUJKgS5tpQrxlL9ZXfY/G1sTT5TFN8yiISQMJlhmSPsDy115XAVdTI9f96o4ICQ4 xCQWNpaMxycXBFBOh0nlXAmqSZmA2mCGhu62TUACtQ2Zsctqf04OyEAyq2pb+0fj hBDp2RhHbTHCRcO0Co9HWMZ6duiqMt9QhpJApzPeHSaCloqptkbnpc4x/y9w4tim TmyVTYXqWF0buTh38kR998++zd72c9W9W6F5Yh9Q+mvLfjE6chzra2ivPwti6m46 nZWVtqrvABcB/xqZN1CTwhZtwmRa -----END CERTIFICATE-----Generated at Sun Jun 14 01:41:46 2026 by rpki-client