$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/35ADE898B90A11EF97D24653C4F9AE02.roa File: 35ADE898B90A11EF97D24653C4F9AE02.roa (raw, json) Hash identifier: HL9ak8W9+trC9MiHY74LwXsBVM1StTTPf6Gtlitiu6E= Subject key identifier: 1D:45:24:5F:8C:75:F2:B9:3B:F2:57:72:B2:5B:5A:6C:A3:72:29:F0 Certificate issuer: /CN=A9148D61/serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Certificate serial: 0241 Authority key identifier: 69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/35ADE898B90A11EF97D24653C4F9AE02.roa Signing time: Wed 05 Nov 2025 02:16:40 +0000 ROA not before: Wed 05 Nov 2025 02:16:40 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 150286 IP address blocks: 2001:df1:3440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 577 (0x241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D61, serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Validity Not Before: Nov 5 02:16:40 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=690ab388-70f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:93:ce:35:61:a1:9b:a9:e1:3e:19:1a:af:94: 87:c8:53:1b:9e:67:8d:f6:75:4a:73:45:2b:9e:94: 80:8b:a1:dd:40:0b:22:eb:4c:8f:e5:76:f2:12:d6: 4d:9a:20:c1:bd:e9:ad:81:e8:34:ab:ee:c9:d4:2d: e5:59:ce:a8:ad:55:e1:40:2b:90:9d:99:16:aa:df: 98:2a:97:54:b9:42:b2:f5:82:b8:76:df:17:24:08: 07:73:41:8b:d4:c8:8f:74:a1:60:39:4c:25:57:f7: 94:2a:ba:22:27:7d:a5:7f:30:72:fc:93:cf:47:bb: 48:30:94:4a:48:ae:85:b4:a5:1b:46:68:31:43:82: de:1a:72:2c:74:6c:70:c1:04:6b:80:82:ff:c0:ce: 57:ee:ef:fc:8f:b4:2c:85:d0:03:12:18:68:75:d2: a9:4c:68:30:15:33:53:bd:4c:6b:69:e5:cb:cd:a3: 60:5e:2f:00:7a:4e:7a:1c:a3:c4:8d:3b:ba:60:8c: 45:d2:00:d0:01:91:ee:31:76:62:8a:ac:97:95:2e: 38:07:08:36:78:f4:52:b6:97:e7:a0:ee:5f:99:20: 29:7b:fb:48:7f:09:90:bc:19:d6:84:a3:cf:fa:0c: ba:7b:9b:60:b0:e4:56:68:99:07:25:02:5c:81:a5: c5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:45:24:5F:8C:75:F2:B9:3B:F2:57:72:B2:5B:5A:6C:A3:72:29:F0 X509v3 Authority Key Identifier: keyid:69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/35ADE898B90A11EF97D24653C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:3440::/48 Signature Algorithm: sha256WithRSAEncryption 7a:57:0b:93:cd:c6:0d:f1:8f:16:d1:9d:09:bf:45:e7:54:10: 1a:c4:c3:f1:e7:bf:0a:6b:2c:de:8e:51:6f:0e:13:4b:17:61: 56:79:7c:67:d5:a0:1a:b5:a2:f5:c0:56:10:ab:79:ef:b6:9a: e1:ec:6d:af:46:97:b8:56:40:96:ce:f9:c2:d5:66:77:38:aa: a7:a8:5c:b9:b2:3a:f9:c4:dd:be:69:30:ec:e3:dc:76:03:e6: a8:82:17:ea:6b:21:06:07:4b:26:4b:ee:1d:58:de:5a:0b:ef: 9c:d0:28:f8:3e:bf:6f:25:a1:84:51:43:b9:a0:bf:a7:55:18: 00:55:72:cf:36:25:1b:08:72:64:f2:da:63:1b:a6:6c:26:9e: 58:e9:0f:bd:42:08:34:3e:4e:c2:a3:8d:d1:f3:fe:bc:57:e9: c3:15:f5:16:3e:dc:37:7d:99:07:71:15:61:3f:22:2b:c3:67: 85:f3:66:4a:38:cb:78:89:4c:5d:f9:f9:6a:ce:48:5f:e6:7e: 7d:8a:81:23:64:ed:55:10:fe:8d:4f:e1:ee:47:fb:6d:bf:f2: 8d:c5:e4:c4:f7:fe:05:46:a5:e5:87:37:c5:e5:ad:26:2a:15: 71:9f:66:1b:99:81:6d:06:b2:9e:29:95:e7:f8:bc:bb:1b:c2: e0:f8:73:bd -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENjExMTAvBgNVBAUTKDY5RkY2OEQzOUFDMTc3M0UyOEE4NTc4NUM3OTFCNEE4 RDlCMzg0ODYwHhcNMjUxMTA1MDIxNjQwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhYjM4OC03MGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JPONWGhm6nhPhkar5SHyFMbnmeN9nVKc0UrnpSAi6HdQAsi60yP5XbyEtZN miDBvemtgeg0q+7J1C3lWc6orVXhQCuQnZkWqt+YKpdUuUKy9YK4dt8XJAgHc0GL 1MiPdKFgOUwlV/eUKroiJ32lfzBy/JPPR7tIMJRKSK6FtKUbRmgxQ4LeGnIsdGxw wQRrgIL/wM5X7u/8j7QshdADEhhoddKpTGgwFTNTvUxraeXLzaNgXi8Aek56HKPE jTu6YIxF0gDQAZHuMXZiiqyXlS44Bwg2ePRStpfnoO5fmSApe/tIfwmQvBnWhKPP +gy6e5tgsORWaJkHJQJcgaXFvwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFB1FJF+M dfK5O/JXcrJbWmyjcinwMB8GA1UdIwQYMBaAFGn/aNOawXc+KKhXhceRtKjZs4SG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ2MS8yOTVFNEM3NjYw MUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6NG9xRmVGeDVHMHFObXpo SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FmOW8wNXJCZHo0b3FGZUZ4NUcwcU5temhJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhENjEvMjk1RTRDNzY2MDFCMTFFREE1QzcyNzZFQzRGOUFFMDIvMzVBREU4OThC OTBBMTFFRjk3RDI0NjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3xNEAwDQYJKoZIhvcNAQELBQADggEBAHpXC5PNxg3x jxbRnQm/RedUEBrEw/HnvwprLN6OUW8OE0sXYVZ5fGfVoBq1ovXAVhCree+2muHs ba9Gl7hWQJbO+cLVZnc4qqeoXLmyOvnE3b5pMOzj3HYD5qiCF+prIQYHSyZL7h1Y 3loL75zQKPg+v28loYRRQ7mgv6dVGABVcs82JRsIcmTy2mMbpmwmnljpD71CCDQ+ TsKjjdHz/rxX6cMV9RY+3Dd9mQdxFWE/IivDZ4XzZko4y3iJTF35+WrOSF/mfn2K gSNk7VUQ/o1P4e5H+22/8o3F5MT3/gVGpeWHN8XlrSYqFXGfZhuZgW0Gsp4plef4 vLsbwuD4c70= -----END CERTIFICATE-----Generated at Wed Nov 5 17:03:15 2025 by rpki-client