$ rpki-client -vvf rpki.apnic.net/member_repository/A9135A27/9DC220544A5811F0B9773180C4F9AE02/49B14A284A5B11F0BB8BCD26C4F9AE02.roa File: 49B14A284A5B11F0BB8BCD26C4F9AE02.roa (raw, json) Hash identifier: 4yAYX9W5VLKXpjedVy4WI6T1jB7PFE1AtNymWoFIgLM= Subject key identifier: FA:AA:A9:8F:83:43:85:8A:0E:DD:9F:4F:06:E2:A1:1D:D7:B6:F0:67 Certificate issuer: /CN=A9135A27/serialNumber=928E8AA80D99A723F6A9021AE5E7B032ACEDDB7A Certificate serial: 02 Authority key identifier: 92:8E:8A:A8:0D:99:A7:23:F6:A9:02:1A:E5:E7:B0:32:AC:ED:DB:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ko6KqA2ZpyP2qQIa5eewMqzt23o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135A27/9DC220544A5811F0B9773180C4F9AE02/49B14A284A5B11F0BB8BCD26C4F9AE02.roa Signing time: Mon 16 Jun 2025 02:40:39 +0000 ROA not before: Mon 16 Jun 2025 02:40:39 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 38722 IP address blocks: 2001:df3:1b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135A27/9DC220544A5811F0B9773180C4F9AE02/ko6KqA2ZpyP2qQIa5eewMqzt23o.crl rsync://rpki.apnic.net/member_repository/A9135A27/9DC220544A5811F0B9773180C4F9AE02/ko6KqA2ZpyP2qQIa5eewMqzt23o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ko6KqA2ZpyP2qQIa5eewMqzt23o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135A27, serialNumber=928E8AA80D99A723F6A9021AE5E7B032ACEDDB7A Validity Not Before: Jun 16 02:40:39 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=684f8426-d959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:39:00:57:6d:a3:22:30:8c:f5:d0:b3:b6:b8: dc:f4:82:fd:2e:71:c5:1a:1a:80:fb:5f:a4:41:02: e9:ea:96:bb:10:54:56:22:ef:98:8f:6f:e5:12:a6: bd:4c:29:ac:dd:28:e9:12:17:38:64:20:a2:28:33: de:8b:12:9e:9b:21:fc:34:89:5c:36:29:08:8c:fc: 2a:d3:5b:3b:ab:d6:7f:37:39:8b:58:91:07:c8:df: 40:77:8e:08:23:0a:1e:91:05:08:d8:ba:20:8c:99: a6:e4:be:9a:9a:68:3d:49:e1:20:76:2b:7f:46:db: a0:eb:94:f1:df:6f:3a:c4:c5:50:1d:25:b1:35:39: cc:30:6d:35:f8:7e:c8:ac:18:44:64:9a:7f:61:45: fb:ff:d8:d5:b6:66:d7:60:10:3f:4b:86:ea:fb:e1: 60:1f:9f:7f:1c:51:5d:d6:c2:43:6d:0f:8a:57:36: 8b:84:fb:ca:eb:e6:38:49:97:45:9a:cc:c8:f3:c1: 4f:02:fa:25:58:e1:f3:33:4a:8c:6b:d1:f8:ff:64: 9c:b0:ac:a4:88:ed:30:59:b7:22:1d:7c:55:c3:53: c0:dc:a6:ad:ac:af:5b:66:6d:75:29:47:bf:0a:be: ac:20:d0:69:2e:55:74:74:85:78:a2:87:0f:08:00: f6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:AA:A9:8F:83:43:85:8A:0E:DD:9F:4F:06:E2:A1:1D:D7:B6:F0:67 X509v3 Authority Key Identifier: keyid:92:8E:8A:A8:0D:99:A7:23:F6:A9:02:1A:E5:E7:B0:32:AC:ED:DB:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135A27/9DC220544A5811F0B9773180C4F9AE02/ko6KqA2ZpyP2qQIa5eewMqzt23o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ko6KqA2ZpyP2qQIa5eewMqzt23o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135A27/9DC220544A5811F0B9773180C4F9AE02/49B14A284A5B11F0BB8BCD26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:1b80::/48 Signature Algorithm: sha256WithRSAEncryption 87:2e:da:4c:3f:cd:99:b7:f1:b8:bb:1e:b5:67:0d:5c:54:40: 24:0d:60:5d:88:be:d6:b8:54:3a:1c:5b:bf:ed:9d:29:6b:94: 7c:1a:ea:04:9e:fa:d3:9b:01:b9:9e:bb:f3:74:33:65:a4:c4: f0:c9:34:11:1c:99:e6:94:82:7a:d2:fd:db:5a:f4:d5:5a:57: d1:ea:c1:fd:30:32:33:3b:7a:2a:30:65:ea:bc:1e:54:90:c3: a7:33:62:f5:8b:81:8c:e8:e8:d6:1c:a2:c6:b8:aa:15:dd:4a: a5:6b:de:49:3c:79:79:82:0e:4e:98:29:ac:7d:77:1b:6c:03: 84:a5:47:6a:56:c3:1c:a4:4e:df:4b:91:3b:52:14:e9:c8:82: 84:f8:77:3d:cc:af:98:3e:e3:f5:34:5c:0b:51:4b:dc:ae:e2: 7a:a0:2b:33:7a:d7:94:4d:6c:1e:02:3f:b8:06:76:07:93:4f: cc:fb:d7:81:8a:af:5a:c0:2a:68:5a:f9:8b:27:b8:dc:33:b1: f5:73:10:87:0c:15:c4:93:2e:8f:b1:51:b9:b4:85:a6:2d:56: 60:29:aa:ce:de:5c:51:6f:3c:f9:d4:0b:c0:a3:90:c3:df:52: a2:3f:84:8a:12:cf:d6:e3:30:29:74:29:a1:ac:50:9b:2a:55: 82:e7:62:60 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NUEyNzExMC8GA1UEBRMoOTI4RThBQTgwRDk5QTcyM0Y2QTkwMjFBRTVFN0IwMzJB Q0VEREI3QTAeFw0yNTA2MTYwMjQwMzlaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NGY4NDI2LWQ5NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcOQBXbaMiMIz10LO2uNz0gv0uccUaGoD7X6RBAunqlrsQVFYi75iPb+USpr1M KazdKOkSFzhkIKIoM96LEp6bIfw0iVw2KQiM/CrTWzur1n83OYtYkQfI30B3jggj Ch6RBQjYuiCMmabkvpqaaD1J4SB2K39G26DrlPHfbzrExVAdJbE1OcwwbTX4fsis GERkmn9hRfv/2NW2ZtdgED9Lhur74WAfn38cUV3WwkNtD4pXNouE+8rr5jhJl0Wa zMjzwU8C+iVY4fMzSoxr0fj/ZJywrKSI7TBZtyIdfFXDU8Dcpq2sr1tmbXUpR78K vqwg0GkuVXR0hXiihw8IAPbjAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU+qqpj4ND hYoO3Z9PBuKhHde28GcwHwYDVR0jBBgwFoAUko6KqA2ZpyP2qQIa5eewMqzt23ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1QTI3LzlEQzIyMDU0NEE1 ODExRjBCOTc3MzE4MEM0RjlBRTAyL2tvNktxQTJacHlQMnFRSWE1ZWV3TXF6dDIz by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva282S3FBMlpweVAycVFJYTVlZXdNcXp0MjNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUEyNy85REMyMjA1NDRBNTgxMUYwQjk3NzMxODBDNEY5QUUwMi80OUIxNEEyODRB NUIxMUYwQkI4QkNEMjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfMbgDANBgkqhkiG9w0BAQsFAAOCAQEAhy7aTD/Nmbfx uLsetWcNXFRAJA1gXYi+1rhUOhxbv+2dKWuUfBrqBJ7605sBuZ6783QzZaTE8Mk0 ERyZ5pSCetL921r01VpX0erB/TAyMzt6KjBl6rweVJDDpzNi9YuBjOjo1hyixriq Fd1KpWveSTx5eYIOTpgprH13G2wDhKVHalbDHKRO30uRO1IU6ciChPh3PcyvmD7j 9TRcC1FL3K7ieqArM3rXlE1sHgI/uAZ2B5NPzPvXgYqvWsAqaFr5iye43DOx9XMQ hwwVxJMuj7FRubSFpi1WYCmqzt5cUW88+dQLwKOQw99Soj+EihLP1uMwKXQpoaxQ mypVgudiYA== -----END CERTIFICATE-----Generated at Wed Nov 5 20:07:49 2025 by rpki-client