$ rpki-client -vvf rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/3D34A750A88111ED80831318C4F9AE02.roa File: 3D34A750A88111ED80831318C4F9AE02.roa (raw, json) Hash identifier: x8f88T4/0fygwChpTG7CDDG+BVQvHAjTQvhSaAfGmUc= Subject key identifier: D2:CA:B6:A6:77:70:0D:38:33:EA:76:13:2B:20:6A:E5:3B:55:8B:60 Certificate issuer: /CN=A917BAC5/serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063 Certificate serial: 02DD Authority key identifier: E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/3D34A750A88111ED80831318C4F9AE02.roa Signing time: Sat 09 Aug 2025 02:39:24 +0000 ROA not before: Sat 09 Aug 2025 02:39:24 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 60445 IP address blocks: 2400:9ce0:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 733 (0x2dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BAC5, serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063 Validity Not Before: Aug 9 02:39:24 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6896b4db-e5e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c8:d5:28:f4:da:df:7e:6e:82:a4:be:2d:59: 07:81:60:05:85:8e:fc:fb:64:2f:9e:da:f4:0d:99: 46:54:a9:85:ee:56:87:7c:a4:f4:be:c8:dc:7f:c6: c2:58:01:27:7f:59:04:e0:13:43:cf:d5:9f:af:f7: 82:bb:9f:2e:d5:d8:73:c2:3e:81:16:af:af:67:0a: 3e:33:9a:53:65:ec:c8:40:6d:a1:c4:5b:1e:7c:ca: 18:df:20:1d:da:c2:a8:d6:32:c8:75:29:19:a2:8e: 17:b5:bf:ea:5c:b3:a1:25:49:23:c4:45:82:f2:ff: a1:a6:86:92:0b:42:51:f3:93:ed:4e:32:70:4e:37: 89:d2:39:29:80:78:6d:6e:43:1c:92:d8:71:36:44: 90:11:46:c3:22:d7:ac:c4:86:e3:c0:e6:63:2a:6c: 8b:2c:e9:2c:e8:46:1a:b1:9f:07:0b:b5:8f:b5:8a: 67:de:9c:9e:dd:0a:36:6d:ca:39:2b:60:a6:50:e7: 29:0c:ff:1d:b6:7e:f3:4b:9c:b2:2a:49:60:dc:3c: 2a:35:92:19:96:ff:12:8e:1f:0f:bf:21:fe:ef:5a: bd:90:93:d3:ba:10:b7:6e:7f:2e:da:d6:65:32:74: f0:f2:66:a4:cc:a6:6b:9a:15:8f:41:30:fc:db:4e: 8c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:CA:B6:A6:77:70:0D:38:33:EA:76:13:2B:20:6A:E5:3B:55:8B:60 X509v3 Authority Key Identifier: keyid:E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/3D34A750A88111ED80831318C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:9ce0:4000::/36 Signature Algorithm: sha256WithRSAEncryption 4c:fa:21:1d:a0:b8:88:b4:2b:48:e3:9b:6b:c2:7c:03:cb:f7: 29:b5:e0:c7:bd:8a:83:4c:67:f5:c3:77:a7:7a:ba:4f:93:ff: fc:51:0b:fc:0e:8b:ca:6f:e8:7c:b3:de:42:32:4d:e4:cc:ab: 0f:a8:67:11:4c:3b:b2:c0:4a:e2:a0:14:98:6b:c3:b0:a4:f3: 26:af:9a:bf:48:69:54:29:06:9b:0a:6b:99:57:87:f5:b0:84: 06:44:b5:c4:42:b4:71:56:51:a0:2d:ed:fc:11:bc:8f:65:d9: 38:3d:fc:89:1f:06:a0:f8:f2:69:19:96:d7:35:91:d7:f0:c4: f9:9e:01:7c:99:5e:ae:b5:d2:c0:b3:5c:6b:c1:f1:69:7d:7c: a9:59:f3:4d:ad:8c:8a:0c:a8:f9:7f:2d:d4:c2:2d:f5:0b:e5: 3b:77:ed:1d:3c:6f:8a:8d:79:50:2f:cb:05:69:c1:e2:54:e0: b7:2b:1f:01:ce:fa:b2:5b:78:63:42:29:e8:be:ef:96:c8:2e: 03:98:ca:db:d1:4f:0f:2c:ae:13:c9:67:d8:c5:f2:a8:ab:79: 7a:0c:43:f3:bb:20:3e:7e:50:5a:87:b6:2f:50:71:6c:9f:91: 16:42:e4:22:9d:a8:8e:c6:d6:3f:12:7b:2f:44:d8:bc:1b:0f: bc:2a:49:f3 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JBQzUxMTAvBgNVBAUTKEUxMDg4MTg3RjY0MDk0MjYzRERBNjc0OUE5NUY3M0FB NkMxQUIwNjMwHhcNMjUwODA5MDIzOTI0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2YjRkYi1lNWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2cjVKPTa335ugqS+LVkHgWAFhY78+2Qvntr0DZlGVKmF7laHfKT0vsjcf8bC WAEnf1kE4BNDz9Wfr/eCu58u1dhzwj6BFq+vZwo+M5pTZezIQG2hxFsefMoY3yAd 2sKo1jLIdSkZoo4Xtb/qXLOhJUkjxEWC8v+hpoaSC0JR85PtTjJwTjeJ0jkpgHht bkMckthxNkSQEUbDItesxIbjwOZjKmyLLOks6EYasZ8HC7WPtYpn3pye3Qo2bco5 K2CmUOcpDP8dtn7zS5yyKklg3DwqNZIZlv8Sjh8PvyH+71q9kJPTuhC3bn8u2tZl MnTw8makzKZrmhWPQTD8206MAQIDAQABo4IClzCCApMwHQYDVR0OBBYEFNLKtqZ3 cA04M+p2EysgauU7VYtgMB8GA1UdIwQYMBaAFOEIgYf2QJQmPdpnSalfc6psGrBj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkFDNS80NzBBNjIwNDE1 MzAxMUVEQkFBM0QwMjdDNEY5QUUwMi80UWlCaF9aQWxDWTkybWRKcVY5enFtd2Fz R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRaUJoX1pBbENZOTJtZEpxVjl6cW13YXNHTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JBQzUvNDcwQTYyMDQxNTMwMTFFREJBQTNEMDI3QzRGOUFFMDIvM0QzNEE3NTBB ODgxMTFFRDgwODMxMzE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkAJzgQDANBgkqhkiG9w0BAQsFAAOCAQEATPohHaC4iLQr SOOba8J8A8v3KbXgx72Kg0xn9cN3p3q6T5P//FEL/A6Lym/ofLPeQjJN5MyrD6hn EUw7ssBK4qAUmGvDsKTzJq+av0hpVCkGmwprmVeH9bCEBkS1xEK0cVZRoC3t/BG8 j2XZOD38iR8GoPjyaRmW1zWR1/DE+Z4BfJlerrXSwLNca8HxaX18qVnzTa2Migyo +X8t1MIt9QvlO3ftHTxvio15UC/LBWnB4lTgtysfAc76slt4Y0Ip6L7vlsguA5jK 29FPDyyuE8ln2MXyqKt5egxD87sgPn5QWoe2L1BxbJ+RFkLkIp2ojsbWPxJ7L0TY vBsPvCpJ8w== -----END CERTIFICATE-----Generated at Mon Aug 11 01:47:45 2025 by rpki-client