$ rpki-client -vvf rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/FF0025F80B7811EEB2EFC643C4F9AE02.roa File: FF0025F80B7811EEB2EFC643C4F9AE02.roa (raw, json) Hash identifier: AJCPY6gXO2zyo2U10GhSfGU9o4iE1Zv4wHbAEbhh+Pw= Subject key identifier: A7:21:2F:A3:19:99:2F:28:6A:F9:3D:99:3D:1D:09:4B:DE:82:9D:05 Certificate issuer: /CN=A915B536/serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Certificate serial: 08C8 Authority key identifier: 82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/FF0025F80B7811EEB2EFC643C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:43:08 +0000 ROA not before: Fri 04 Apr 2025 21:34:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45220 IP address blocks: 2001:dd8:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:22:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2248 (0x8c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B536, serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Validity Not Before: Apr 4 21:34:35 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a45e8c-ac84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:99:61:de:e0:40:6a:ab:c8:80:4d:39:e7:aa: c2:89:eb:c0:71:15:ec:01:da:b9:d4:34:22:72:f1: a1:56:eb:eb:27:e1:6b:b6:64:13:59:61:2c:78:7d: da:ed:21:d2:94:4b:00:01:07:96:e3:f9:92:18:3c: fd:61:c6:3f:99:fc:43:1d:73:45:56:49:4f:dc:62: 37:ff:a0:57:3d:8f:45:f1:77:1a:91:2f:d6:30:04: 39:07:c9:0c:f1:ac:83:6d:02:39:72:b9:74:7b:45: 10:89:eb:52:d8:33:bb:28:b5:4a:ea:28:c6:6c:1c: de:8d:87:0b:da:90:bb:0a:8f:98:23:3b:8f:66:b7: 48:2a:cf:92:4e:dc:bf:71:0e:d9:a1:96:a8:68:ed: 63:85:70:4e:4b:c4:94:01:cb:5c:1f:c0:0a:37:a3: ad:90:82:d5:90:da:20:96:90:c6:af:78:a1:1c:cb: 57:bf:7a:6d:52:ba:b4:58:30:8b:ab:ef:ec:33:4c: 26:e2:cf:e1:ee:6d:a8:20:d4:33:a6:64:72:cf:a7: c8:bd:a6:90:35:f1:ea:40:87:65:e8:7c:44:a4:90: d3:3e:ec:66:43:5a:95:a6:a9:a0:44:1e:bc:42:45: 66:1d:09:a5:db:cb:36:e9:26:76:6b:bd:86:74:f1: 66:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:21:2F:A3:19:99:2F:28:6A:F9:3D:99:3D:1D:09:4B:DE:82:9D:05 X509v3 Authority Key Identifier: keyid:82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/FF0025F80B7811EEB2EFC643C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:dd8:2::/48 Signature Algorithm: sha256WithRSAEncryption d7:4d:d5:6c:f1:20:98:e0:35:16:e7:8e:63:d2:42:34:ab:3f: 86:3b:65:63:d2:bc:ac:b5:1e:01:ce:54:2e:6b:be:47:f3:b3: db:32:7c:c0:b0:09:d9:17:9c:a3:ac:be:36:0f:59:31:68:e0: 19:45:1c:9a:f9:9e:87:90:70:79:20:ff:fb:49:17:41:7d:fe: 17:00:c1:ba:87:dd:b8:c8:11:2b:60:e0:7e:e2:b7:dc:c4:c2: 29:0b:cd:07:e9:7a:d6:5c:de:34:fb:55:5c:0f:c5:38:f2:c7: 00:dc:ae:ab:48:c6:7e:0b:71:45:67:01:93:a7:dd:5f:29:e4: 01:6f:23:11:88:56:3c:9e:27:dd:de:de:72:63:bc:16:ba:eb: 1b:57:8c:6b:25:06:f9:fb:46:3b:fe:87:d0:92:38:1c:20:00: b5:1f:17:8a:57:48:31:bf:fb:f1:db:b9:22:63:07:ce:c7:50: c3:10:a0:9f:0f:4d:71:32:1d:ca:44:6e:bc:97:36:99:48:7e: f3:ea:f2:5e:24:67:2d:76:26:aa:81:2a:e0:2e:37:78:4e:3f: 58:71:e6:c5:4d:55:d1:28:02:d1:8c:0b:49:9d:ad:c7:4f:e3: 05:2a:9a:97:64:43:7b:5c:33:32:4f:a0:0a:ee:d7:c9:a0:fd: 44:04:87:9f -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICCMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1MzYxMTAvBgNVBAUTKDgyMTBENDM3NTY2NTRCMTA3MDVENUFCM0YzN0JGMDFB NzhCNzhDNDcwHhcNMjUwNDA0MjEzNDM1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWU4Yy1hYzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJlh3uBAaqvIgE0556rCievAcRXsAdq51DQicvGhVuvrJ+FrtmQTWWEseH3a 7SHSlEsAAQeW4/mSGDz9YcY/mfxDHXNFVklP3GI3/6BXPY9F8XcakS/WMAQ5B8kM 8ayDbQI5crl0e0UQietS2DO7KLVK6ijGbBzejYcL2pC7Co+YIzuPZrdIKs+STty/ cQ7ZoZaoaO1jhXBOS8SUActcH8AKN6OtkILVkNoglpDGr3ihHMtXv3ptUrq0WDCL q+/sM0wm4s/h7m2oINQzpmRyz6fIvaaQNfHqQIdl6HxEpJDTPuxmQ1qVpqmgRB68 QkVmHQml28s26SZ2a72GdPFm0QIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFKchL6MZ mS8oavk9mT0dCUvegp0FMB8GA1UdIwQYMBaAFIIQ1DdWZUsQcF1as/N78Bp4t4xH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjUzNi9FNEM4ODk3MkVC NzQxMUVBQkEwQTlFNDhDNEY5QUUwMi9naERVTjFabFN4QndYVnF6ODN2d0duaTNq RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doRFVOMVpsU3hCd1hWcXo4M3Z3R25pM2pFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1MzYvRTRDODg5NzJFQjc0MTFFQUJBMEE5RTQ4QzRGOUFFMDIvRkYwMDI1Rjgw Qjc4MTFFRUIyRUZDNjQzQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN2AACMA0GCSqGSIb3DQEBCwUAA4IBAQDXTdVs8SCY4DUW545j 0kI0qz+GO2Vj0rystR4BzlQua75H87PbMnzAsAnZF5yjrL42D1kxaOAZRRya+Z6H kHB5IP/7SRdBff4XAMG6h924yBErYOB+4rfcxMIpC80H6XrWXN40+1VcD8U48scA 3K6rSMZ+C3FFZwGTp91fKeQBbyMRiFY8nifd3t5yY7wWuusbV4xrJQb5+0Y7/ofQ kjgcIAC1HxeKV0gxv/vx27kiYwfOx1DDEKCfD01xMh3KRG68lzaZSH7z6vJeJGct diaqgSrgLjd4Tj9YcebFTVXRKALRjAtJna3HT+MFKpqXZEN7XDMyT6AK7tfJoP1E BIef -----END CERTIFICATE-----Generated at Mon Mar 2 18:33:31 2026 by rpki-client