$ rpki-client -vvf rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/2C7BB8BAB92411EC8E787A55C4F9AE02.roa File: 2C7BB8BAB92411EC8E787A55C4F9AE02.roa (raw, json) Hash identifier: w9iOq4zJmtBKn90lowacr4HbDdd13mfFojokL8YzEuE= Subject key identifier: 68:F1:8E:56:6B:1C:13:E7:E5:32:1E:65:70:52:24:F1:BF:9F:50:D8 Certificate issuer: /CN=A917ECB0/serialNumber=2FDDBB45F34F261933AC2B7D67AC73D393A9D164 Certificate serial: 03A4 Authority key identifier: 2F:DD:BB:45:F3:4F:26:19:33:AC:2B:7D:67:AC:73:D3:93:A9:D1:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L927RfNPJhkzrCt9Z6xz05Op0WQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/2C7BB8BAB92411EC8E787A55C4F9AE02.roa Signing time: Wed 05 Nov 2025 01:15:16 +0000 ROA not before: Wed 05 Nov 2025 01:15:16 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 133145 IP address blocks: 2001:df4:d080::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/L927RfNPJhkzrCt9Z6xz05Op0WQ.crl rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/L927RfNPJhkzrCt9Z6xz05Op0WQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L927RfNPJhkzrCt9Z6xz05Op0WQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:15:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 932 (0x3a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ECB0, serialNumber=2FDDBB45F34F261933AC2B7D67AC73D393A9D164 Validity Not Before: Nov 5 01:15:16 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690aa523-8b57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ab:b5:3e:ab:66:5f:8f:83:8d:e2:25:a0:38: 36:09:c6:51:c4:93:c4:fd:21:74:e7:3b:90:2c:5c: ac:b9:0f:dd:e7:ba:42:dd:4e:66:f3:23:3a:9b:0d: 13:24:0a:80:bb:25:af:2e:ba:a2:0c:6b:24:82:b7: 0b:51:e1:af:c8:de:de:2e:23:cc:86:eb:91:60:b9: 92:fa:fe:7a:82:56:8b:8e:52:46:f3:f8:29:db:7e: 95:90:48:cf:b9:4c:2e:31:5d:0f:c7:70:5c:55:29: 8d:20:55:79:59:be:3a:8b:ca:43:f7:5d:af:8b:15: 94:3e:ca:18:bc:0b:f0:26:f5:5b:96:21:8e:39:0c: fc:b0:fd:3c:1b:2c:62:1b:b5:45:62:3a:5f:7e:4d: 5a:98:5b:b4:a7:4b:63:a3:37:af:e2:a8:10:b2:e9: 9e:8e:a1:73:48:68:87:bb:bb:57:11:f3:0f:e6:1d: 19:de:d2:ba:1f:2c:53:32:56:5b:8b:ca:7a:82:4e: fc:f1:9a:79:07:5b:ac:96:93:ab:b7:87:fc:bf:5d: b8:4f:f6:67:ff:24:ed:d3:fd:71:af:0b:9a:9f:0d: b2:e7:d7:15:77:25:0c:a8:fd:52:38:fa:85:e7:cf: 54:bf:04:c7:9d:19:87:14:71:b7:f9:e3:fa:e0:fe: 38:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F1:8E:56:6B:1C:13:E7:E5:32:1E:65:70:52:24:F1:BF:9F:50:D8 X509v3 Authority Key Identifier: keyid:2F:DD:BB:45:F3:4F:26:19:33:AC:2B:7D:67:AC:73:D3:93:A9:D1:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/L927RfNPJhkzrCt9Z6xz05Op0WQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L927RfNPJhkzrCt9Z6xz05Op0WQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/2C7BB8BAB92411EC8E787A55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:d080::/47 Signature Algorithm: sha256WithRSAEncryption 6d:1c:fa:37:11:18:7b:a1:f7:6d:8f:2c:82:71:01:e9:57:53: 6e:43:4a:5e:53:fb:33:4d:65:e9:d8:e1:03:27:9d:06:1b:d4: 54:4f:42:02:4b:80:57:a4:55:f7:95:4b:3c:47:a6:dd:7d:f2: 18:f7:da:87:29:be:af:da:a9:9b:ad:55:e8:d9:66:e8:37:97: 23:ea:29:a0:d3:d0:d1:88:0d:a0:c4:98:66:41:fa:df:af:d8: 80:8e:5f:60:45:7f:df:02:70:20:28:1e:c5:a7:6f:ad:5e:58: 9a:ed:51:d0:22:1f:b0:cc:ef:dc:fe:da:7a:8c:5d:6a:00:bb: 71:ea:f6:2e:58:8b:7a:23:52:2a:ae:87:ce:e7:e2:20:76:c4: 67:ce:0c:27:b0:d9:ba:62:02:ef:b0:36:b5:ee:c4:d2:e2:1c: 92:fc:29:58:b0:a2:fc:33:49:6a:c6:f1:d2:97:8e:0a:dc:9e: e0:d9:a0:7f:e3:16:fd:6f:9d:7b:1c:a4:36:09:e6:79:9f:8d: 7d:97:41:45:79:7c:03:e7:fc:7b:85:56:5b:d8:98:ca:7d:a4: 15:d6:06:8d:6f:ba:3e:81:44:4d:60:e9:ed:79:3f:fb:7c:e7: e8:71:d8:74:54:dd:be:5b:03:84:e2:bd:07:f2:fe:71:5d:2a: 36:af:2e:7b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VDQjAxMTAvBgNVBAUTKDJGRERCQjQ1RjM0RjI2MTkzM0FDMkI3RDY3QUM3M0Qz OTNBOUQxNjQwHhcNMjUxMTA1MDExNTE2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhYTUyMy04YjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwau1PqtmX4+DjeIloDg2CcZRxJPE/SF05zuQLFysuQ/d57pC3U5m8yM6mw0T JAqAuyWvLrqiDGskgrcLUeGvyN7eLiPMhuuRYLmS+v56glaLjlJG8/gp236VkEjP uUwuMV0Px3BcVSmNIFV5Wb46i8pD912vixWUPsoYvAvwJvVbliGOOQz8sP08Gyxi G7VFYjpffk1amFu0p0tjozev4qgQsumejqFzSGiHu7tXEfMP5h0Z3tK6HyxTMlZb i8p6gk788Zp5B1uslpOrt4f8v124T/Zn/yTt0/1xrwuanw2y59cVdyUMqP1SOPqF 589UvwTHnRmHFHG3+eP64P44dQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGjxjlZr HBPn5TIeZXBSJPG/n1DYMB8GA1UdIwQYMBaAFC/du0XzTyYZM6wrfWesc9OTqdFk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUNCMC82MTg2NzMyQ0I5 MjExMUVDQkRGRkY2NTNDNEY5QUUwMi9MOTI3UmZOUEpoa3pyQ3Q5WjZ4ejA1T3Aw V1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w5MjdSZk5QSmhrenJDdDlaNnh6MDVPcDBXUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VDQjAvNjE4NjczMkNCOTIxMTFFQ0JERkZGNjUzQzRGOUFFMDIvMkM3QkI4QkFC OTI0MTFFQzhFNzg3QTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEgAQ300IAwDQYJKoZIhvcNAQELBQADggEBAG0c+jcRGHuh 922PLIJxAelXU25DSl5T+zNNZenY4QMnnQYb1FRPQgJLgFekVfeVSzxHpt198hj3 2ocpvq/aqZutVejZZug3lyPqKaDT0NGIDaDEmGZB+t+v2ICOX2BFf98CcCAoHsWn b61eWJrtUdAiH7DM79z+2nqMXWoAu3Hq9i5Yi3ojUiquh87n4iB2xGfODCew2bpi Au+wNrXuxNLiHJL8KViwovwzSWrG8dKXjgrcnuDZoH/jFv1vnXscpDYJ5nmfjX2X QUV5fAPn/HuFVlvYmMp9pBXWBo1vuj6BRE1g6e15P/t85+hx2HRU3b5bA4TivQfy /nFdKjavLns= -----END CERTIFICATE-----Generated at Wed Nov 5 17:07:18 2025 by rpki-client