$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/35A4EFE0D75511EF80E68A39C4F9AE02.roa File: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (raw, json) Hash identifier: hn072ZUt0QkiLvSmGaoI0bZ5eHexJ3APJASDMCiyA2M= Subject key identifier: 8B:71:EE:1C:B2:B4:0A:21:2F:E8:30:B7:D2:16:12:A4:FE:9F:03:E0 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 077A Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/35A4EFE0D75511EF80E68A39C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:57:44 +0000 ROA not before: Wed 02 Jul 2025 22:31:58 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4785 IP address blocks: 2401:e9e0:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:27:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1914 (0x77a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Jul 2 22:31:58 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a47e18-3064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:95:1f:a0:15:af:b3:2b:e5:2c:d4:49:c8:82: ef:66:f9:15:d0:6b:0b:38:d3:4f:6b:35:24:b8:3b: 87:17:fe:3a:88:6e:f5:75:ce:cd:bd:7e:bc:ea:9d: 8d:c5:55:3c:dd:70:39:53:b8:a2:14:71:26:07:a5: 15:f0:e8:d6:4d:9c:1c:e5:e6:52:7f:14:b5:f8:dd: 3b:60:37:a4:42:d0:90:29:9b:d2:66:a6:67:c5:87: 05:d5:82:4c:1c:c4:4f:9d:bd:0d:b2:d6:b2:5c:c9: cf:96:cc:7d:54:8d:6d:7a:24:bc:1c:4a:da:55:d3: f8:be:48:a6:fc:94:44:4c:29:f2:d2:81:d3:5a:99: db:b9:98:80:ba:6f:fa:73:b2:b4:d9:3a:45:ae:74: ca:8f:49:90:b8:b8:d4:c7:85:42:33:89:8e:3c:0a: 7f:b2:1a:c3:5a:d6:b7:e2:45:f7:bd:12:81:bd:78: ef:8c:e4:5d:7b:92:ad:f1:ef:b1:9c:0e:65:5e:2e: 91:f8:4d:26:79:71:8a:a0:df:e4:71:03:79:98:a8: c9:e7:a9:f0:91:2e:07:81:d6:f9:8e:f5:04:16:e3: b6:f8:1d:cf:90:3f:a5:88:a9:5d:92:8c:9a:8f:2c: 3b:04:c6:03:b4:cd:06:61:eb:87:7b:e8:92:59:e4: cb:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:71:EE:1C:B2:B4:0A:21:2F:E8:30:B7:D2:16:12:A4:FE:9F:03:E0 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/35A4EFE0D75511EF80E68A39C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:e9e0:3000::/36 Signature Algorithm: sha256WithRSAEncryption c9:b9:37:9b:c0:01:41:12:8e:1c:ff:ef:48:9b:0f:23:b7:3f: d3:30:eb:d9:77:91:99:ea:3f:fb:06:e2:83:b2:80:7c:a1:60: 59:79:f0:41:aa:a7:d7:3d:81:ce:34:3d:5d:41:bb:8b:45:ba: 8c:84:71:b2:95:76:27:a1:a1:d9:c5:4a:14:33:78:52:98:cd: 25:e6:31:9d:d9:93:9a:8f:ad:f6:ef:3e:24:5f:10:7b:71:78: 22:5a:4f:d4:c6:58:2d:a0:0a:8d:7e:86:3f:46:40:a6:5f:89: 43:77:c6:d3:1f:18:1b:91:91:58:45:36:bd:56:5b:be:76:e9: 62:af:45:ad:59:d5:20:fc:8e:b0:0d:e3:c2:53:a7:22:ad:7d: c8:4a:22:50:3d:2e:b4:f6:2b:9d:62:d3:13:60:bf:09:c8:7c: 9d:b0:9b:6c:7a:da:5f:a3:59:9f:9d:89:96:56:20:59:87:25: 2e:35:27:a0:33:05:7d:78:88:cd:91:d9:33:ae:7e:c8:42:be: f6:6b:0d:15:52:3e:2e:de:fe:59:ed:3c:d5:64:82:2e:24:8c: 7f:f3:b4:92:a3:45:d5:51:3a:a9:f3:03:fe:62:38:2a:7f:ca: 46:0f:a3:0b:1b:80:13:0b:95:9d:c1:63:56:8b:fe:c4:22:fa: db:47:c0:2e -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgICB3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwNzAyMjIzMTU4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2UxOC0zMDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45UfoBWvsyvlLNRJyILvZvkV0GsLONNPazUkuDuHF/46iG71dc7NvX686p2N xVU83XA5U7iiFHEmB6UV8OjWTZwc5eZSfxS1+N07YDekQtCQKZvSZqZnxYcF1YJM HMRPnb0NstayXMnPlsx9VI1teiS8HEraVdP4vkim/JRETCny0oHTWpnbuZiAum/6 c7K02TpFrnTKj0mQuLjUx4VCM4mOPAp/shrDWta34kX3vRKBvXjvjORde5Kt8e+x nA5lXi6R+E0meXGKoN/kcQN5mKjJ56nwkS4Hgdb5jvUEFuO2+B3PkD+liKldkoya jyw7BMYDtM0GYeuHe+iSWeTLXQIDAQABo4ICYjCCAl4wHQYDVR0OBBYEFItx7hyy tAohL+gwt9IWEqT+nwPgMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCNEQvQ0E1NjNCRTg2NTIyMTFFQjgwRjZFOTRCQzRGOUFFMDIvMzVBNEVGRTBE NzU1MTFFRjgwRTY4QTM5QzRGOUFFMDIucm9hMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAHp4DAwDQYJKoZIhvcNAQELBQADggEBAMm5N5vAAUESjhz/70ib DyO3P9Mw69l3kZnqP/sG4oOygHyhYFl58EGqp9c9gc40PV1Bu4tFuoyEcbKVdieh odnFShQzeFKYzSXmMZ3Zk5qPrfbvPiRfEHtxeCJaT9TGWC2gCo1+hj9GQKZfiUN3 xtMfGBuRkVhFNr1WW7526WKvRa1Z1SD8jrAN48JTpyKtfchKIlA9LrT2K51i0xNg vwnIfJ2wm2x62l+jWZ+diZZWIFmHJS41J6AzBX14iM2R2TOufshCvvZrDRVSPi7e /lntPNVkgi4kjH/ztJKjRdVROqnzA/5iOCp/ykYPowsbgBMLlZ3BY1aL/sQi+ttH wC4= -----END CERTIFICATE-----Generated at Mon Mar 2 10:03:04 2026 by rpki-client