$ rpki-client -vvf rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/FF0025F80B7811EEB2EFC643C4F9AE02.roa File: FF0025F80B7811EEB2EFC643C4F9AE02.roa (raw, json) Hash identifier: KZWhQJFaOr1QVhDjy5/s3avBTK0WORA9qEg2B6F1JIM= Subject key identifier: 7B:AD:22:51:F2:18:45:E6:8E:E4:0D:4C:EA:D5:5F:F1:AA:9F:C2:80 Certificate issuer: /CN=A915B536/serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Certificate serial: 08E6 Authority key identifier: 82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/FF0025F80B7811EEB2EFC643C4F9AE02.roa Signing time: Wed 08 Apr 2026 20:26:57 +0000 ROA not before: Wed 08 Apr 2026 20:26:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 45220 IP address blocks: 2001:dd8:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2278 (0x8e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B536, serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Validity Not Before: Apr 8 20:26:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d6ba11-4ae6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a4:ce:95:39:83:bb:2f:47:c6:71:be:d8:8e: c6:f7:0b:96:6e:9d:55:96:22:f8:df:61:2b:cc:9a: a1:45:63:ef:d1:d1:a8:8d:3d:bb:ca:66:ae:b9:31: fb:d4:53:4e:1a:31:bc:03:39:a8:8e:ea:6f:e5:a9: ce:b7:8f:b8:bb:24:ab:f6:01:65:dc:9a:c5:d7:a9: f9:f2:0c:9a:8b:cc:3f:16:46:27:ae:84:d3:be:4b: 1b:3b:40:38:0a:88:e4:44:0f:2a:77:46:81:f8:ae: 73:a1:3a:df:41:c4:ed:9a:8e:2a:ba:a0:cd:15:4e: 12:5e:a6:4e:dd:fa:92:22:ce:94:19:ec:e6:15:6e: 12:62:22:5b:b2:18:cc:d2:04:78:12:28:85:fd:b4: ad:18:a7:14:10:23:18:d2:24:9c:d1:1e:6b:34:c5: 35:61:e7:02:bd:25:eb:6e:66:bc:2b:fa:62:a3:68: f6:48:b0:85:27:d7:bf:79:e5:e7:77:b2:06:1a:32: 86:64:a4:04:04:88:1c:e2:f3:9a:81:e9:57:2d:68: c4:80:51:0b:17:4d:f1:26:05:00:38:9d:fc:30:46: 8b:62:62:d5:05:4a:d7:a7:7a:d7:c0:2c:87:96:7c: 92:0d:92:d6:5a:79:d9:4e:5a:5e:f2:7b:d1:6e:7c: da:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:AD:22:51:F2:18:45:E6:8E:E4:0D:4C:EA:D5:5F:F1:AA:9F:C2:80 X509v3 Authority Key Identifier: keyid:82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/FF0025F80B7811EEB2EFC643C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:dd8:2::/48 Signature Algorithm: sha256WithRSAEncryption 9f:ae:e5:b9:e3:b7:72:63:da:a8:38:fb:d2:95:56:68:d4:1e: 1e:b3:a4:b6:39:70:76:78:05:6d:09:30:b5:cd:fc:ba:81:22: 22:01:27:28:33:16:9f:6c:c5:3a:81:c0:4b:24:4b:66:4e:81: 1d:0a:41:95:a6:38:79:fd:f1:87:d0:87:18:48:2e:db:b9:69: be:3c:b9:f4:c8:2a:d9:03:8b:76:d8:f9:c6:db:b3:2b:bd:fa: 57:43:79:1f:bb:22:40:69:be:b4:18:69:fc:bd:17:9f:f8:79: 68:7c:35:05:5b:3d:d7:40:b8:a6:3e:2c:71:c3:d3:f9:b0:bf: d2:41:3d:37:5e:6e:4d:c9:a5:40:62:f7:fb:74:10:1c:6c:4e: 7b:05:38:b0:67:4c:72:98:da:60:f5:db:75:fd:f1:ec:07:4e: eb:59:ca:6f:e7:a2:eb:74:ec:a5:45:41:cd:32:a3:7d:3a:c4: 93:3e:f7:6d:a0:c7:dd:f3:47:ee:1b:16:cc:ec:f9:6c:5e:f5: a7:45:d3:6b:e8:2c:59:32:2d:99:2f:62:b3:df:bb:27:62:1c: 3f:97:fe:4d:a4:a5:72:13:a8:44:6c:e3:ce:98:6e:f1:05:af: 94:02:6f:78:7b:1d:c0:3a:18:54:d5:9b:a0:a2:c3:17:47:08: 53:f1:c1:ae -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICCOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1MzYxMTAvBgNVBAUTKDgyMTBENDM3NTY2NTRCMTA3MDVENUFCM0YzN0JGMDFB NzhCNzhDNDcwHhcNMjYwNDA4MjAyNjU3WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ2YmExMS00YWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6TOlTmDuy9HxnG+2I7G9wuWbp1VliL432ErzJqhRWPv0dGojT27ymauuTH7 1FNOGjG8Azmojupv5anOt4+4uySr9gFl3JrF16n58gyai8w/FkYnroTTvksbO0A4 CojkRA8qd0aB+K5zoTrfQcTtmo4quqDNFU4SXqZO3fqSIs6UGezmFW4SYiJbshjM 0gR4EiiF/bStGKcUECMY0iSc0R5rNMU1YecCvSXrbma8K/pio2j2SLCFJ9e/eeXn d7IGGjKGZKQEBIgc4vOagelXLWjEgFELF03xJgUAOJ38MEaLYmLVBUrXp3rXwCyH lnySDZLWWnnZTlpe8nvRbnzatwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFHutIlHy GEXmjuQNTOrVX/Gqn8KAMB8GA1UdIwQYMBaAFIIQ1DdWZUsQcF1as/N78Bp4t4xH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjUzNi9FNEM4ODk3MkVC NzQxMUVBQkEwQTlFNDhDNEY5QUUwMi9naERVTjFabFN4QndYVnF6ODN2d0duaTNq RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doRFVOMVpsU3hCd1hWcXo4M3Z3R25pM2pFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1MzYvRTRDODg5NzJFQjc0MTFFQUJBMEE5RTQ4QzRGOUFFMDIvRkYwMDI1Rjgw Qjc4MTFFRUIyRUZDNjQzQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN2AACMA0GCSqGSIb3DQEBCwUAA4IBAQCfruW547dyY9qoOPvS lVZo1B4es6S2OXB2eAVtCTC1zfy6gSIiAScoMxafbMU6gcBLJEtmToEdCkGVpjh5 /fGH0IcYSC7buWm+PLn0yCrZA4t22PnG27MrvfpXQ3kfuyJAab60GGn8vRef+Hlo fDUFWz3XQLimPixxw9P5sL/SQT03Xm5NyaVAYvf7dBAcbE57BTiwZ0xymNpg9dt1 /fHsB07rWcpv56LrdOylRUHNMqN9OsSTPvdtoMfd80fuGxbM7PlsXvWnRdNr6CxZ Mi2ZL2Kz37snYhw/l/5NpKVyE6hEbOPOmG7xBa+UAm94ex3AOhhU1ZugosMXRwhT 8cGu -----END CERTIFICATE-----Generated at Fri Apr 17 22:43:25 2026 by rpki-client