$ rpki-client -vvf rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/3BE03ECC7D4D11EE93D62E30C4F9AE02.roa File: 3BE03ECC7D4D11EE93D62E30C4F9AE02.roa (raw, json) Hash identifier: 4PWxSJvGPsYEjGtgHYM8obqb8f7X6eyOT+IKt9t0/2Q= Subject key identifier: 2E:B3:1A:7D:11:B2:A2:34:04:0A:BA:76:E1:48:37:34:2B:13:7A:BF Certificate issuer: /CN=A917B0F6/serialNumber=C0AEF7077F52622567179ACE56AD5EE8CD64604E Certificate serial: 0135 Authority key identifier: C0:AE:F7:07:7F:52:62:25:67:17:9A:CE:56:AD:5E:E8:CD:64:60:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK73B39SYiVnF5rOVq1e6M1kYE4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/3BE03ECC7D4D11EE93D62E30C4F9AE02.roa Signing time: Thu 19 Jun 2025 04:02:43 +0000 ROA not before: Thu 19 Jun 2025 04:02:43 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 2001:dec:4000::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/wK73B39SYiVnF5rOVq1e6M1kYE4.crl rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/wK73B39SYiVnF5rOVq1e6M1kYE4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK73B39SYiVnF5rOVq1e6M1kYE4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B0F6, serialNumber=C0AEF7077F52622567179ACE56AD5EE8CD64604E Validity Not Before: Jun 19 04:02:43 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68538be3-c348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:55:0e:82:fd:e6:ae:33:d9:a3:6e:33:94:f3: 92:7b:23:1b:7b:7b:27:51:76:9d:ac:6a:03:bd:e6: 16:51:69:0b:c0:f6:e2:2e:42:12:01:01:b2:e4:e7: 08:7e:2a:6f:0a:e3:f4:2c:12:0d:48:db:e7:6b:47: 38:f2:e3:bf:85:61:65:65:73:b3:5e:83:bb:f9:a7: 06:08:0c:ff:da:e8:0d:88:ef:3f:5b:30:eb:b4:cf: 8c:77:41:52:a0:fb:89:53:5b:3a:65:85:ae:d9:c1: 81:bf:a3:ea:99:41:2d:92:c2:8b:d3:79:a7:c6:0a: e2:17:f0:4a:22:52:ed:12:e3:4d:5e:54:97:fd:8d: 0c:19:62:18:07:53:af:85:f0:da:f0:e5:6c:07:3d: 9a:4c:2c:7a:b4:32:2e:9d:6e:72:49:5d:c2:70:25: fa:85:ef:19:4a:95:c7:73:c6:fe:45:0c:94:ed:3b: 19:56:32:bb:86:05:11:98:58:03:e3:75:f9:1a:c0: cc:39:d8:b4:05:f8:a3:82:0d:65:be:fb:f6:7c:91: 3e:7d:c9:6d:3d:e0:0d:47:ba:8e:55:04:e9:c5:36: eb:f0:e2:f3:0d:e0:93:c7:80:a9:4d:54:5b:3f:70: 07:8c:27:d9:ec:6b:05:7f:3f:42:53:88:3d:71:6d: ae:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B3:1A:7D:11:B2:A2:34:04:0A:BA:76:E1:48:37:34:2B:13:7A:BF X509v3 Authority Key Identifier: keyid:C0:AE:F7:07:7F:52:62:25:67:17:9A:CE:56:AD:5E:E8:CD:64:60:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/wK73B39SYiVnF5rOVq1e6M1kYE4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK73B39SYiVnF5rOVq1e6M1kYE4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/3BE03ECC7D4D11EE93D62E30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:dec:4000::/48 Signature Algorithm: sha256WithRSAEncryption 16:13:cb:67:c8:9b:f2:38:e7:81:fb:a9:d9:89:92:c8:90:d1: 6f:1e:0c:39:61:d2:4b:96:17:d0:83:db:27:f6:31:45:89:ff: a0:4f:40:f0:ea:96:7d:90:ad:41:57:52:8d:c2:ba:95:4f:9e: 9a:21:e4:ad:a1:e4:1b:6e:95:f3:1b:ad:9a:70:0c:1d:16:1f: d4:8f:1b:5b:21:26:f0:34:78:8c:6e:fd:6f:49:4f:cc:cd:1a: eb:27:fb:e3:b0:c8:c5:10:2f:7e:53:7d:57:25:8c:ea:b7:cb: fd:f0:b5:eb:b4:24:fc:ba:3f:14:79:ee:f6:20:fb:4b:62:23: 40:6e:e1:25:61:72:af:1f:4f:ed:e2:a2:78:98:ef:de:aa:8c: e2:4d:e8:05:29:1f:4b:ca:7a:1c:dd:c8:d8:f1:30:5c:ac:5d: 0b:50:25:cb:ff:91:c6:a3:74:0c:88:20:a0:b6:bb:9c:80:b6: 18:d5:5a:66:3a:d9:d2:22:f8:b4:aa:4a:d2:e6:35:0c:24:c0: fd:d6:88:b9:af:a2:59:40:a8:12:0f:55:4d:62:04:34:67:57: 9a:0e:7e:a5:f1:ca:9b:30:0d:d8:fc:57:9b:b9:77:8a:38:ab: 4d:3a:40:ae:76:16:55:e1:52:cd:b3:47:7f:69:f8:64:bf:5b: 3d:98:48:87 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IwRjYxMTAvBgNVBAUTKEMwQUVGNzA3N0Y1MjYyMjU2NzE3OUFDRTU2QUQ1RUU4 Q0Q2NDYwNEUwHhcNMjUwNjE5MDQwMjQzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzOGJlMy1jMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFUOgv3mrjPZo24zlPOSeyMbe3snUXadrGoDveYWUWkLwPbiLkISAQGy5OcI fipvCuP0LBINSNvna0c48uO/hWFlZXOzXoO7+acGCAz/2ugNiO8/WzDrtM+Md0FS oPuJU1s6ZYWu2cGBv6PqmUEtksKL03mnxgriF/BKIlLtEuNNXlSX/Y0MGWIYB1Ov hfDa8OVsBz2aTCx6tDIunW5ySV3CcCX6he8ZSpXHc8b+RQyU7TsZVjK7hgURmFgD 43X5GsDMOdi0Bfijgg1lvvv2fJE+fcltPeANR7qOVQTpxTbr8OLzDeCTx4CpTVRb P3AHjCfZ7GsFfz9CU4g9cW2urwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFC6zGn0R sqI0BAq6duFINzQrE3q/MB8GA1UdIwQYMBaAFMCu9wd/UmIlZxeazlatXujNZGBO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjBGNi9GRUUwNUJFQzdD QUMxMUVFOEEyODg0NkZDNEY5QUUwMi93SzczQjM5U1lpVm5GNXJPVnExZTZNMWtZ RTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dLNzNCMzlTWWlWbkY1ck9WcTFlNk0xa1lFNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0IwRjYvRkVFMDVCRUM3Q0FDMTFFRThBMjg4NDZGQzRGOUFFMDIvM0JFMDNFQ0M3 RDREMTFFRTkzRDYyRTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3sQAAwDQYJKoZIhvcNAQELBQADggEBABYTy2fIm/I4 54H7qdmJksiQ0W8eDDlh0kuWF9CD2yf2MUWJ/6BPQPDqln2QrUFXUo3CupVPnpoh 5K2h5BtulfMbrZpwDB0WH9SPG1shJvA0eIxu/W9JT8zNGusn++OwyMUQL35TfVcl jOq3y/3wteu0JPy6PxR57vYg+0tiI0Bu4SVhcq8fT+3ioniY796qjOJN6AUpH0vK ehzdyNjxMFysXQtQJcv/kcajdAyIIKC2u5yAthjVWmY62dIi+LSqStLmNQwkwP3W iLmvollAqBIPVU1iBDRnV5oOfqXxypswDdj8V5u5d4o4q006QK52FlXhUs2zR39p +GS/Wz2YSIc= -----END CERTIFICATE-----Generated at Thu Jun 19 11:21:04 2025 by rpki-client