$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DD8ACB8041C511E8BEC06D36C4F9AE02.roa File: DD8ACB8041C511E8BEC06D36C4F9AE02.roa (raw, json) Hash identifier: EyiUl8rn1/axxkgMbnkOT+Wbf/v6WSHnBy7rIZY/OMg= Subject key identifier: B0:6B:64:B2:AF:7C:EC:96:45:BD:4C:55:21:B4:13:3E:EB:62:F2:16 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2864 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DD8ACB8041C511E8BEC06D36C4F9AE02.roa Signing time: Sat 26 Jul 2025 15:53:33 +0000 ROA not before: Sat 26 Jul 2025 15:53:33 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133846 IP address blocks: 2402:9e80:18::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 15:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10340 (0x2864) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D, serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 26 15:53:33 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6884f9fd-8921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:02:e1:f8:22:45:b3:22:ad:10:90:cb:89:ee: f5:67:7c:79:82:26:c2:75:1a:58:20:41:49:0a:84: 07:08:cf:d4:ca:dd:f2:40:23:06:4c:c4:a1:e7:c4: fb:11:59:24:20:c6:55:df:23:f0:2e:4e:65:c0:fb: 86:b9:6f:f5:35:70:0c:43:3a:99:28:80:68:52:5d: ad:db:39:23:23:b8:60:ad:6f:fc:5d:76:60:f5:73: 59:d3:22:7d:82:29:8a:8a:04:de:b9:64:b4:90:32: ad:5f:75:4e:af:5e:1e:70:16:37:a5:20:60:ac:d0: b7:37:ad:4b:f5:54:10:8d:21:a8:62:4e:b8:79:22: 2a:dd:7f:9d:c9:cc:1f:3c:6e:cd:84:8f:25:81:56: dc:19:bb:64:14:cf:2e:6e:98:e2:5c:a7:e5:10:48: 1a:57:0c:c1:31:c7:bc:ef:ab:76:3c:f2:b5:d1:53: a3:4e:4d:63:76:1b:c0:5d:70:ae:56:97:30:e0:ea: a5:ee:76:d1:9b:ae:4b:6c:9f:16:e9:32:c7:df:35: 43:52:de:a4:75:62:6c:92:a4:9e:d3:f9:dc:f8:1f: bc:fa:c0:68:4c:fb:8b:b5:69:d7:2e:35:02:7d:d2: ef:5c:a5:02:26:46:70:5a:5c:34:ea:d5:6f:10:80: 50:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:6B:64:B2:AF:7C:EC:96:45:BD:4C:55:21:B4:13:3E:EB:62:F2:16 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/DD8ACB8041C511E8BEC06D36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9e80:18::/48 Signature Algorithm: sha256WithRSAEncryption a5:e8:d2:9a:e0:29:71:ba:e4:03:29:8b:4f:32:75:17:0a:68: 6b:75:e8:68:90:73:d6:18:e2:bd:a2:cd:09:28:e9:85:44:71: 02:30:2f:8b:30:51:eb:94:06:c7:4c:22:91:15:4d:3f:d6:8a: b7:89:59:a5:46:17:7d:af:74:0c:37:7c:15:15:04:ad:67:55: 92:5e:74:29:64:10:a0:9a:84:38:0f:09:3e:06:77:e2:2c:ce: 55:41:73:cc:ef:44:d7:dd:62:e4:75:2a:10:2d:80:d9:1c:72: c7:2b:a2:f0:c7:07:2e:fb:44:17:b5:cd:38:2a:d6:da:0d:62: da:3a:76:39:4a:52:f6:5c:48:26:e3:98:e1:4c:22:64:61:40: 9a:58:ad:b7:d9:c8:e0:d1:bb:7f:52:44:ec:ef:c2:f7:23:6a: ee:42:2a:6a:c0:8d:46:31:bb:8e:0a:12:6c:c0:de:57:49:fc: c7:7b:8c:6d:a9:22:15:de:f4:df:0d:a6:82:e6:fd:37:e9:d1: 3d:db:ad:08:94:c5:1d:bd:92:2f:e1:46:fe:68:bc:3b:f6:ea: d6:a0:6f:6c:8c:4b:e5:75:59:8b:68:5c:17:34:6e:61:ee:6e: 6a:e2:ec:08:05:b3:77:69:9a:07:bf:5c:6a:18:a4:15:8b:84: 7b:1d:e7:03 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICKGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjUwNzI2MTU1MzMzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg0ZjlmZC04OTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnwLh+CJFsyKtEJDLie71Z3x5gibCdRpYIEFJCoQHCM/Uyt3yQCMGTMSh58T7 EVkkIMZV3yPwLk5lwPuGuW/1NXAMQzqZKIBoUl2t2zkjI7hgrW/8XXZg9XNZ0yJ9 gimKigTeuWS0kDKtX3VOr14ecBY3pSBgrNC3N61L9VQQjSGoYk64eSIq3X+dycwf PG7NhI8lgVbcGbtkFM8ubpjiXKflEEgaVwzBMce876t2PPK10VOjTk1jdhvAXXCu Vpcw4Oql7nbRm65LbJ8W6TLH3zVDUt6kdWJskqSe0/nc+B+8+sBoTPuLtWnXLjUC fdLvXKUCJkZwWlw06tVvEIBQvwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLBrZLKv fOyWRb1MVSG0Ez7rYvIWMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvREQ4QUNCODA0 MUM1MTFFOEJFQzA2RDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAp6AABgwDQYJKoZIhvcNAQELBQADggEBAKXo0prgKXG6 5AMpi08ydRcKaGt16GiQc9YY4r2izQko6YVEcQIwL4swUeuUBsdMIpEVTT/WireJ WaVGF32vdAw3fBUVBK1nVZJedClkEKCahDgPCT4Gd+IszlVBc8zvRNfdYuR1KhAt gNkccscrovDHBy77RBe1zTgq1toNYto6djlKUvZcSCbjmOFMImRhQJpYrbfZyODR u39SROzvwvcjau5CKmrAjUYxu44KEmzA3ldJ/Md7jG2pIhXe9N8NpoLm/Tfp0T3b rQiUxR29ki/hRv5ovDv26tagb2yMS+V1WYtoXBc0bmHubmri7AgFs3dpmge/XGoY pBWLhHsd5wM= -----END CERTIFICATE-----Generated at Fri Aug 8 00:38:52 2025 by rpki-client