$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/1968CADACCCA11EA86EC0A0DC4F9AE02.roa File: 1968CADACCCA11EA86EC0A0DC4F9AE02.roa (raw, json) Hash identifier: WoUqfiV+tV6yzbH+6jqVyv24NMrJDdeNkBAHt7u3Kjc= Subject key identifier: 96:80:32:FB:00:46:34:3E:28:89:4A:22:C6:B5:C8:BD:02:B8:73:61 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 287C Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/1968CADACCCA11EA86EC0A0DC4F9AE02.roa Signing time: Sat 26 Jul 2025 15:53:54 +0000 ROA not before: Sat 26 Jul 2025 15:53:54 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140934 IP address blocks: 2402:9e80:23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10364 (0x287c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D, serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 26 15:53:54 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6884fa12-81a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e5:e6:a6:25:b5:9d:f4:49:73:41:a0:e4:d1: bf:fc:f2:42:b9:73:ee:db:13:f3:d0:a1:81:48:ca: b0:78:84:13:9b:79:3f:0e:e1:88:92:10:26:e5:83: 05:65:2f:a9:ee:dc:40:70:a1:f4:77:52:e1:36:6b: ba:41:19:5a:cd:54:09:06:ca:3b:a1:f0:ca:cb:62: 68:14:c9:ce:43:6b:01:fc:3e:8f:de:24:01:da:33: 65:be:8a:b0:52:71:b3:82:d9:05:f1:1a:d1:51:7a: f0:19:50:b4:c5:54:cf:b2:c9:ee:07:5f:37:c8:d1: 72:6b:6c:90:b7:d0:27:5b:9a:52:2f:aa:7b:57:49: 3e:95:21:2d:cb:e8:d7:6c:f6:00:40:10:e4:2b:c1: ae:92:73:ba:4a:99:c9:b1:b1:eb:ae:97:a9:0c:9a: 9f:b9:5e:16:45:2e:2f:50:92:82:98:89:fd:b1:1e: a2:a7:03:ea:ee:b8:d9:09:33:25:9c:75:05:e4:53: d2:3f:cd:09:c5:4f:1d:94:c8:e9:36:db:e8:85:3f: b9:2d:fa:51:a1:0f:12:d0:94:01:d6:a0:1f:42:6c: 0d:d5:aa:f8:28:e4:5e:da:c6:15:ce:5f:63:e8:b3: 7c:f8:96:1f:10:30:ff:d6:cc:c7:3a:14:73:2e:e4: 14:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:80:32:FB:00:46:34:3E:28:89:4A:22:C6:B5:C8:BD:02:B8:73:61 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/1968CADACCCA11EA86EC0A0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:23::/48 Signature Algorithm: sha256WithRSAEncryption 15:31:a4:71:ee:9f:37:f6:ff:6c:4b:a9:ba:eb:74:d5:3b:31: 05:e9:1c:8d:48:be:d0:83:70:4b:63:03:6f:05:6d:d0:28:98: 45:b5:25:d8:bb:e7:25:61:20:41:40:de:f0:7f:85:b3:45:f6: c8:a1:89:46:a0:97:25:bc:ad:34:85:af:3d:f1:34:22:2e:d2: f1:be:21:33:af:c9:07:2e:45:74:0d:8f:1e:dc:21:6f:e6:a9: c7:1c:06:6a:70:36:39:40:ed:3b:a7:78:da:a5:8d:e8:4e:ef: ad:51:19:22:61:9e:5e:72:75:14:f5:e8:06:b4:fd:84:30:da: 38:8c:21:0f:02:a1:96:5d:12:90:53:0f:7e:93:98:32:d8:c9: a1:e0:d3:5d:fc:fb:bc:85:c9:30:ae:93:e1:aa:f0:73:b7:79: a0:eb:9b:3c:be:4e:2c:a6:51:90:f4:fb:01:b8:3d:f2:3d:04: 5d:f6:e2:dc:01:6b:7e:58:ba:80:3d:e6:94:04:c4:87:e8:b6: bc:7f:28:cb:f5:00:a9:0a:91:b1:ae:1b:70:ec:b9:53:16:36: 2f:03:09:8a:d0:6b:e2:bd:0d:72:47:21:02:63:80:08:60:d9: a1:8b:00:3f:80:0f:88:f1:25:a2:3e:bf:2f:71:2d:bb:12:dc: 61:de:5d:c9 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICKHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjUwNzI2MTU1MzU0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg0ZmExMi04MWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6OXmpiW1nfRJc0Gg5NG//PJCuXPu2xPz0KGBSMqweIQTm3k/DuGIkhAm5YMF ZS+p7txAcKH0d1LhNmu6QRlazVQJBso7ofDKy2JoFMnOQ2sB/D6P3iQB2jNlvoqw UnGzgtkF8RrRUXrwGVC0xVTPssnuB183yNFya2yQt9AnW5pSL6p7V0k+lSEty+jX bPYAQBDkK8GuknO6SpnJsbHrrpepDJqfuV4WRS4vUJKCmIn9sR6ipwPq7rjZCTMl nHUF5FPSP80JxU8dlMjpNtvohT+5LfpRoQ8S0JQB1qAfQmwN1ar4KORe2sYVzl9j 6LN8+JYfEDD/1szHOhRzLuQUqQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJaAMvsA RjQ+KIlKIsa1yL0CuHNhMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvMTk2OENBREFD Q0NBMTFFQTg2RUMwQTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AACMwDQYJKoZIhvcNAQELBQADggEBABUxpHHunzf2 /2xLqbrrdNU7MQXpHI1IvtCDcEtjA28FbdAomEW1Jdi75yVhIEFA3vB/hbNF9sih iUaglyW8rTSFrz3xNCIu0vG+ITOvyQcuRXQNjx7cIW/mqcccBmpwNjlA7TuneNql jehO761RGSJhnl5ydRT16Aa0/YQw2jiMIQ8CoZZdEpBTD36TmDLYyaHg0138+7yF yTCuk+Gq8HO3eaDrmzy+TiymUZD0+wG4PfI9BF324twBa35YuoA95pQExIfotrx/ KMv1AKkKkbGuG3DsuVMWNi8DCYrQa+K9DXJHIQJjgAhg2aGLAD+AD4jxJaI+vy9x LbsS3GHeXck= -----END CERTIFICATE-----Generated at Sat Aug 9 01:16:17 2025 by rpki-client