$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F4717D0D89B11E9AB8A5F14C4F9AE02.roa File: 3F4717D0D89B11E9AB8A5F14C4F9AE02.roa (raw, json) Hash identifier: 536thhLoAMdq8b5VRonyAmxeWvYXUVQvt9LL63fxduQ= Subject key identifier: 16:75:E3:F3:33:A4:9E:34:1B:1E:D3:11:9A:7F:38:84:36:A4:49:D9 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 36AF Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F4717D0D89B11E9AB8A5F14C4F9AE02.roa Signing time: Sat 02 Aug 2025 15:53:20 +0000 ROA not before: Sat 02 Aug 2025 15:53:20 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 46047 IP address blocks: 2405:1dc0::/32 maxlen: 32 2405:1dc0::/36 maxlen: 36 2405:1dc0:1000::/36 maxlen: 36 2405:1dc0:2000::/36 maxlen: 36 2405:1dc0:3000::/36 maxlen: 36 2405:1dc0:4000::/36 maxlen: 36 2405:1dc0:5000::/36 maxlen: 36 2405:1dc0:6000::/36 maxlen: 36 2405:1dc0:7000::/36 maxlen: 36 2405:1dc0:8000::/36 maxlen: 36 2405:1dc0:9000::/36 maxlen: 36 2405:1dc0:a000::/36 maxlen: 36 2405:1dc0:b000::/36 maxlen: 36 2405:1dc0:c000::/36 maxlen: 36 2405:1dc0:d000::/36 maxlen: 36 2405:1dc0:e000::/36 maxlen: 36 2405:1dc0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13999 (0x36af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Aug 2 15:53:20 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=688e346f-d3c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d7:1b:35:43:7b:e9:31:fd:cd:31:48:e6:27: 51:7c:b1:46:a4:08:ca:d9:09:f1:d5:71:5a:cc:05: 11:e8:75:4d:46:aa:ec:e7:06:35:67:43:43:1f:52: fa:57:fd:a9:a9:8d:0a:26:f6:50:0f:e9:2d:2e:cf: 2d:01:f1:dd:0d:da:ec:85:22:ea:a4:25:b5:6e:53: 83:fb:79:f2:82:6f:66:a0:c2:88:f0:21:80:31:73: 2c:c9:12:16:6f:00:7d:46:94:fe:b5:81:98:04:ab: 0f:66:09:47:09:31:cb:e2:3d:3f:bb:2d:c3:2b:9a: 36:cb:e5:cc:d8:5b:5f:2e:76:69:75:7e:ac:ad:59: 2f:94:f9:2e:0a:42:49:96:7a:59:41:1c:de:18:ed: 1f:ac:a6:90:f4:91:dd:29:8c:22:6a:1b:c9:8f:39: a5:49:56:36:59:98:a8:fe:b3:86:ea:e9:d6:28:a2: 4f:34:a9:1b:e6:96:4e:ef:9a:52:f8:ab:04:8e:2d: c8:f3:c0:9e:f2:ff:7e:a9:0b:15:c9:8f:3c:4e:9a: b8:ea:c9:cd:5e:59:48:0d:38:96:52:f5:0a:7b:05: 11:75:88:69:73:35:6d:e2:8d:64:24:ec:79:4b:48: dc:8c:da:95:11:45:be:6d:41:38:1e:60:1d:b7:ab: 46:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:75:E3:F3:33:A4:9E:34:1B:1E:D3:11:9A:7F:38:84:36:A4:49:D9 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F4717D0D89B11E9AB8A5F14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:1dc0::/32 Signature Algorithm: sha256WithRSAEncryption 17:1b:74:23:b5:a6:c5:6a:b6:85:fd:f8:45:56:e8:e5:74:b3: 72:c3:a3:70:ca:98:4b:9c:13:c2:3c:c7:99:75:62:32:f8:84: 3b:0a:91:4a:4b:9e:57:23:69:25:2a:0a:b5:87:ca:fa:88:89: 1b:6a:5a:fc:4b:5a:b0:3b:6a:df:97:cf:39:f2:cf:96:3c:99: e6:0e:b3:97:13:38:49:79:d2:b7:bd:f0:1d:52:31:77:e6:81: 97:e8:3c:d7:56:a6:18:7f:a5:3b:a6:a4:64:df:36:5a:16:64: d6:07:27:30:a7:31:87:5a:cd:d1:2c:85:b4:77:55:d8:b4:a1: 56:ff:4b:0b:1e:fe:a2:81:db:9f:c7:2e:06:80:23:31:82:51: 07:18:71:10:ea:05:6c:e5:fe:98:e5:07:dc:18:be:56:a4:ea: 1f:5f:f5:cb:1d:31:6f:36:51:fd:b8:6f:4a:21:cf:a0:f0:8f: db:26:5b:95:20:8d:b0:a2:63:c3:9f:fb:da:c4:97:c6:9b:70: 14:a5:2d:bc:ef:c1:6b:60:46:14:c1:a2:5a:72:d8:c4:74:2b: 85:37:72:3f:bb:6c:c4:08:21:56:a8:7e:d7:03:3d:39:b9:c5: 4e:65:6f:95:9c:fd:ef:db:43:90:8a:a0:56:26:0e:47:43:a9: 3e:4b:e3:b3 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICNq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwODAyMTU1MzIwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlMzQ2Zi1kM2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztcbNUN76TH9zTFI5idRfLFGpAjK2Qnx1XFazAUR6HVNRqrs5wY1Z0NDH1L6 V/2pqY0KJvZQD+ktLs8tAfHdDdrshSLqpCW1blOD+3nygm9moMKI8CGAMXMsyRIW bwB9RpT+tYGYBKsPZglHCTHL4j0/uy3DK5o2y+XM2FtfLnZpdX6srVkvlPkuCkJJ lnpZQRzeGO0frKaQ9JHdKYwiahvJjzmlSVY2WZio/rOG6unWKKJPNKkb5pZO75pS +KsEji3I88Ce8v9+qQsVyY88Tpq46snNXllIDTiWUvUKewURdYhpczVt4o1kJOx5 S0jcjNqVEUW+bUE4HmAdt6tGcQIDAQABo4ICljCCApIwHQYDVR0OBBYEFBZ14/Mz pJ40Gx7TEZp/OIQ2pEnZMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvM0Y0NzE3RDBE ODlCMTFFOUFCOEE1RjE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBR3AMA0GCSqGSIb3DQEBCwUAA4IBAQAXG3QjtabFaraF /fhFVujldLNyw6NwyphLnBPCPMeZdWIy+IQ7CpFKS55XI2klKgq1h8r6iIkbalr8 S1qwO2rfl8858s+WPJnmDrOXEzhJedK3vfAdUjF35oGX6DzXVqYYf6U7pqRk3zZa FmTWBycwpzGHWs3RLIW0d1XYtKFW/0sLHv6igdufxy4GgCMxglEHGHEQ6gVs5f6Y 5QfcGL5WpOofX/XLHTFvNlH9uG9KIc+g8I/bJluVII2womPDn/vaxJfGm3AUpS28 78FrYEYUwaJactjEdCuFN3I/u2zECCFWqH7XAz05ucVOZW+VnP3v20OQiqBWJg5H Q6k+S+Oz -----END CERTIFICATE-----Generated at Sun Aug 10 10:34:02 2025 by rpki-client