$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DC28826E41C511E8BEC06D36C4F9AE02.roa File: DC28826E41C511E8BEC06D36C4F9AE02.roa (raw, json) Hash identifier: 8swv3q1tRdE2xBp1BoUrrmPLsnpo8tlJTWZhFkpp8i8= Subject key identifier: 9E:25:3D:40:3A:12:09:31:CB:6D:96:5C:19:F0:C0:E5:54:21:4E:A5 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2862 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DC28826E41C511E8BEC06D36C4F9AE02.roa Signing time: Sat 26 Jul 2025 15:53:31 +0000 ROA not before: Sat 26 Jul 2025 15:53:31 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132352 IP address blocks: 2402:9e80:22::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10338 (0x2862) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D, serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 26 15:53:31 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6884f9fb-0b9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:35:a6:5a:8f:30:11:14:0e:04:18:1b:f6:3f: ac:20:8e:41:28:08:e7:d0:5b:ee:c6:28:45:dd:6b: af:a2:66:52:b3:f9:54:08:7e:bf:a5:9b:5b:35:00: 2b:41:1c:d3:8c:e1:bc:1e:94:56:f9:fd:f6:5b:cd: 03:40:1c:99:5a:b7:c0:de:d4:49:f9:6a:da:e5:3e: 97:71:ef:34:13:6d:bb:08:a5:b7:af:7c:ca:9f:33: 14:72:fa:8e:9f:36:9c:45:b4:ff:cd:c2:18:a5:ff: 63:ac:26:e8:b6:50:53:60:18:9d:cc:07:b6:29:dc: fa:37:26:65:5d:26:68:3e:36:05:9c:b7:e2:0c:6c: 1d:5f:8b:91:9e:de:fc:1e:ff:b9:46:fb:17:98:ed: 23:47:48:58:e6:69:70:ff:b2:7c:4f:d3:92:eb:b5: b1:af:a7:3e:05:6c:55:e8:79:dc:f2:89:58:6e:b6: c0:47:7b:45:57:74:9a:21:1f:1a:79:20:5a:f2:da: 39:88:d4:41:ba:40:52:eb:12:86:d1:42:8c:11:88: cb:fa:99:93:62:6b:5d:15:46:48:35:31:3d:3b:a2: 96:4c:3f:40:a4:fc:78:f5:18:e9:26:b8:08:a8:ba: 91:59:fc:7e:38:f6:16:a8:f5:ce:bd:41:64:21:5f: 38:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:25:3D:40:3A:12:09:31:CB:6D:96:5C:19:F0:C0:E5:54:21:4E:A5 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DC28826E41C511E8BEC06D36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:22::/48 Signature Algorithm: sha256WithRSAEncryption c3:c3:a2:c2:61:13:96:88:15:cc:c4:01:3f:56:53:fe:30:3e: f9:05:e8:29:62:24:58:b0:26:f5:43:27:88:a2:8f:21:1d:31: 9c:1b:10:37:80:32:d0:2c:98:6f:0f:b1:6a:65:db:ac:6f:20: 7c:3a:fe:bb:ea:26:ce:ce:9b:9e:e7:45:93:2d:bc:09:67:b3: 43:bd:4e:b5:32:a6:7e:e7:16:b6:e2:ab:72:3a:a5:45:2e:41: d0:19:22:ad:eb:c9:17:06:e0:fe:57:f3:5f:81:17:07:6c:a9: 47:6c:b3:ef:14:51:f1:5f:9a:a2:7d:09:88:c6:9f:e8:82:56: bf:1b:a1:be:69:82:63:1b:9f:6b:78:94:32:34:a0:1a:91:37: cc:df:c1:7c:81:cd:d7:40:5e:f7:4a:db:c4:08:58:c1:68:01: 06:6c:b9:57:d3:f9:f7:35:14:11:80:a4:2a:65:2a:0b:75:26: 46:e4:87:f3:84:29:49:96:a8:cc:30:5b:f4:62:a2:af:65:66: ed:90:68:35:16:a3:8e:42:39:17:3e:76:4e:ec:d0:de:9e:50: 0e:1e:bb:be:bd:d0:60:cf:75:63:cf:1c:80:7f:72:90:92:3d: 86:9d:61:d7:34:56:98:5d:b3:bb:93:46:18:98:af:22:b0:43: f6:eb:13:96 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICKGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjUwNzI2MTU1MzMxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg0ZjlmYi0wYjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjWmWo8wERQOBBgb9j+sII5BKAjn0FvuxihF3WuvomZSs/lUCH6/pZtbNQAr QRzTjOG8HpRW+f32W80DQByZWrfA3tRJ+Wra5T6Xce80E227CKW3r3zKnzMUcvqO nzacRbT/zcIYpf9jrCbotlBTYBidzAe2Kdz6NyZlXSZoPjYFnLfiDGwdX4uRnt78 Hv+5RvsXmO0jR0hY5mlw/7J8T9OS67Wxr6c+BWxV6Hnc8olYbrbAR3tFV3SaIR8a eSBa8to5iNRBukBS6xKG0UKMEYjL+pmTYmtdFUZINTE9O6KWTD9ApPx49RjpJrgI qLqRWfx+OPYWqPXOvUFkIV84WwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJ4lPUA6 Egkxy22WXBnwwOVUIU6lMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvREMyODgyNkU0 MUM1MTFFOEJFQzA2RDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AACIwDQYJKoZIhvcNAQELBQADggEBAMPDosJhE5aI FczEAT9WU/4wPvkF6CliJFiwJvVDJ4iijyEdMZwbEDeAMtAsmG8PsWpl26xvIHw6 /rvqJs7Om57nRZMtvAlns0O9TrUypn7nFrbiq3I6pUUuQdAZIq3ryRcG4P5X81+B FwdsqUdss+8UUfFfmqJ9CYjGn+iCVr8bob5pgmMbn2t4lDI0oBqRN8zfwXyBzddA XvdK28QIWMFoAQZsuVfT+fc1FBGApCplKgt1Jkbkh/OEKUmWqMwwW/Rioq9lZu2Q aDUWo45CORc+dk7s0N6eUA4eu7690GDPdWPPHIB/cpCSPYadYdc0Vphds7uTRhiY ryKwQ/brE5Y= -----END CERTIFICATE-----Generated at Sat Aug 9 02:47:24 2025 by rpki-client