$ rpki-client -vvf rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/3E6E7A0C5FFB11EDBDF5A627C4F9AE02.roa File: 3E6E7A0C5FFB11EDBDF5A627C4F9AE02.roa (raw, json) Hash identifier: U81ppJdJPa/NwEizA2XDkKKg4D0+UWmO8vP3Sd1xBj4= Subject key identifier: B2:2E:47:08:BA:AF:86:06:39:54:BE:1E:5C:B4:2D:A7:C7:71:A7:78 Certificate issuer: /CN=A9198996/serialNumber=692135608683755E94D8ECA57D8B0B358ECE1718 Certificate serial: 035D Authority key identifier: 69:21:35:60:86:83:75:5E:94:D8:EC:A5:7D:8B:0B:35:8E:CE:17:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aSE1YIaDdV6U2OylfYsLNY7OFxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/3E6E7A0C5FFB11EDBDF5A627C4F9AE02.roa Signing time: Tue 17 Jun 2025 00:57:56 +0000 ROA not before: Tue 17 Jun 2025 00:57:56 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 138986 IP address blocks: 2402:e940::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/aSE1YIaDdV6U2OylfYsLNY7OFxg.crl rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/aSE1YIaDdV6U2OylfYsLNY7OFxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aSE1YIaDdV6U2OylfYsLNY7OFxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 00:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 861 (0x35d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198996, serialNumber=692135608683755E94D8ECA57D8B0B358ECE1718 Validity Not Before: Jun 17 00:57:56 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6850bd94-aad9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:53:5a:7b:09:0e:65:e8:6c:1a:45:56:05:75: a6:9e:86:f4:d7:ff:ec:c6:11:57:cd:bc:9d:8e:2f: 38:6e:26:aa:cc:a8:a4:c6:35:a2:76:89:59:67:42: 2f:4c:23:aa:bf:18:44:ed:c8:07:08:85:1c:b4:f8: 1c:8e:c6:a7:38:0c:b4:0b:9e:87:16:18:40:3e:8e: 86:33:67:19:a5:a1:ff:27:59:8a:a9:f9:7d:85:24: 14:ad:99:29:b1:80:02:43:5b:b0:62:50:60:d1:af: 41:9a:dd:9f:40:ec:a2:15:3c:9f:86:9e:d4:ad:04: 44:57:eb:95:8e:3f:94:e5:b2:c7:ee:16:b0:af:23: cd:db:4c:aa:88:42:f7:0c:6a:b9:93:bb:08:23:8c: e2:cc:a2:f3:97:ab:85:4c:f2:34:fd:eb:f3:b1:cc: cc:8b:a4:a7:1d:08:1c:91:58:05:aa:3f:15:0f:3c: 08:b3:ef:b7:9e:b2:a5:20:b2:86:71:c8:07:e8:af: d3:36:a3:d2:53:03:6e:8e:44:fb:ac:ec:f4:e5:ba: 58:c1:b7:f4:06:99:24:6e:24:93:72:19:0a:81:81: ca:a5:bd:24:7c:58:38:3e:f2:2a:69:70:1f:57:ca: 77:9b:75:56:d1:91:e7:78:4e:0e:8c:4c:cf:44:63: f4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:2E:47:08:BA:AF:86:06:39:54:BE:1E:5C:B4:2D:A7:C7:71:A7:78 X509v3 Authority Key Identifier: keyid:69:21:35:60:86:83:75:5E:94:D8:EC:A5:7D:8B:0B:35:8E:CE:17:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/aSE1YIaDdV6U2OylfYsLNY7OFxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aSE1YIaDdV6U2OylfYsLNY7OFxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/3E6E7A0C5FFB11EDBDF5A627C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:e940::/44 Signature Algorithm: sha256WithRSAEncryption 31:06:02:6b:fb:98:5b:50:20:02:dc:60:99:bc:0f:84:b5:be: 88:41:39:43:de:7b:cc:0b:e4:2b:5f:d3:56:1d:c4:cc:60:3f: f4:e4:0e:c7:e9:b0:6c:21:8c:0c:14:4b:09:23:34:5c:ba:ff: 87:91:12:9a:7d:50:c6:8f:5b:50:1e:45:75:78:49:3f:77:b3: 7d:bb:44:00:6f:00:35:8e:24:8e:95:3b:7c:da:b0:7c:6c:77: 8b:73:24:5f:96:e9:fc:dc:10:76:b0:58:dd:dd:e4:05:1f:89: 2e:87:34:30:73:22:4c:f1:19:15:86:b7:7c:1b:f6:5e:a8:53: 2f:47:e8:03:eb:f7:2e:bd:3a:6e:0a:b1:21:75:72:9d:82:c3: 77:6a:0a:b9:23:df:3b:7a:97:66:bc:72:42:7f:da:97:30:f0: 44:06:ee:25:bb:d3:0c:41:2f:25:1a:68:50:89:a6:8d:83:c6: df:99:ae:8d:fd:dd:95:c8:24:39:ca:57:02:87:11:0a:62:f3: 63:84:d1:b2:1d:73:a6:68:46:49:30:c7:ba:bd:ef:90:a0:56: 99:9b:92:bb:68:39:c3:a6:9b:16:56:62:06:e3:ab:97:f2:4e: 48:8b:27:8c:2d:d7:e6:da:89:7a:ec:c8:11:c4:b3:a9:f7:b4: cb:1d:9d:42 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg5OTYxMTAvBgNVBAUTKDY5MjEzNTYwODY4Mzc1NUU5NEQ4RUNBNTdEOEIwQjM1 OEVDRTE3MTgwHhcNMjUwNjE3MDA1NzU2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUwYmQ5NC1hYWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlNaewkOZehsGkVWBXWmnob01//sxhFXzbydji84biaqzKikxjWidolZZ0Iv TCOqvxhE7cgHCIUctPgcjsanOAy0C56HFhhAPo6GM2cZpaH/J1mKqfl9hSQUrZkp sYACQ1uwYlBg0a9Bmt2fQOyiFTyfhp7UrQREV+uVjj+U5bLH7hawryPN20yqiEL3 DGq5k7sII4zizKLzl6uFTPI0/evzsczMi6SnHQgckVgFqj8VDzwIs++3nrKlILKG ccgH6K/TNqPSUwNujkT7rOz05bpYwbf0BpkkbiSTchkKgYHKpb0kfFg4PvIqaXAf V8p3m3VW0ZHneE4OjEzPRGP0twIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLIuRwi6 r4YGOVS+Hly0LafHcad4MB8GA1UdIwQYMBaAFGkhNWCGg3VelNjspX2LCzWOzhcY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODk5Ni82NjAzMEY1RUQw NjAxMUVDQkE0MEZDODNDNEY5QUUwMi9hU0UxWUlhRGRWNlUyT3lsZllzTE5ZN09G eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FTRTFZSWFEZFY2VTJPeWxmWXNMTlk3T0Z4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTg5OTYvNjYwMzBGNUVEMDYwMTFFQ0JBNDBGQzgzQzRGOUFFMDIvM0U2RTdBMEM1 RkZCMTFFREJERjVBNjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkAulAAAAwDQYJKoZIhvcNAQELBQADggEBADEGAmv7mFtQ IALcYJm8D4S1vohBOUPee8wL5Ctf01YdxMxgP/TkDsfpsGwhjAwUSwkjNFy6/4eR Epp9UMaPW1AeRXV4ST93s327RABvADWOJI6VO3zasHxsd4tzJF+W6fzcEHawWN3d 5AUfiS6HNDBzIkzxGRWGt3wb9l6oUy9H6APr9y69Om4KsSF1cp2Cw3dqCrkj3zt6 l2a8ckJ/2pcw8EQG7iW70wxBLyUaaFCJpo2Dxt+Zro393ZXIJDnKVwKHEQpi82OE 0bIdc6ZoRkkwx7q975CgVpmbkrtoOcOmmxZWYgbjq5fyTkiLJ4wt1+baiXrsyBHE s6n3tMsdnUI= -----END CERTIFICATE-----Generated at Thu Jun 19 00:28:09 2025 by rpki-client