$ rpki-client -vvf rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/AAB43BD6247F11EE9CEA495CC4F9AE02.roa File: AAB43BD6247F11EE9CEA495CC4F9AE02.roa (raw, json) Hash identifier: b3ZidVfWkTt6ioxr0D3dYupdLSIHA7zzegm4k2vHAhg= Subject key identifier: 3D:07:DF:1B:8D:74:0A:BB:62:94:31:76:B6:1F:6C:B0:AC:71:55:52 Certificate issuer: /CN=A9182502/serialNumber=8C3CCB4FFB89189C6EF5B34DFDAABE1806A5218A Certificate serial: 0ACE Authority key identifier: 8C:3C:CB:4F:FB:89:18:9C:6E:F5:B3:4D:FD:AA:BE:18:06:A5:21:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDzLT_uJGJxu9bNN_aq-GAalIYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/AAB43BD6247F11EE9CEA495CC4F9AE02.roa Signing time: Tue 12 Aug 2025 20:31:18 +0000 ROA not before: Tue 12 Aug 2025 20:31:18 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151466 IP address blocks: 39.109.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/jDzLT_uJGJxu9bNN_aq-GAalIYo.crl rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/jDzLT_uJGJxu9bNN_aq-GAalIYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDzLT_uJGJxu9bNN_aq-GAalIYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2766 (0xace) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182502, serialNumber=8C3CCB4FFB89189C6EF5B34DFDAABE1806A5218A Validity Not Before: Aug 12 20:31:18 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689ba496-5711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1e:d6:42:4a:ce:97:61:ee:8c:ff:bc:a4:65: 47:65:c2:55:70:b4:7f:35:13:0a:b8:8a:90:18:56: ef:f0:fd:cf:b8:55:d8:e4:ec:1c:f9:6e:1a:fd:36: 27:0a:59:24:a8:6f:a7:68:c9:fa:d7:5d:99:6f:9e: f5:8a:a8:7c:c8:56:1a:10:e3:82:e5:2d:a9:0a:52: 2c:1c:ae:39:62:d2:70:26:41:f3:c2:1a:7e:d0:97: be:cd:e4:04:ea:12:cd:5e:af:4b:b6:70:88:4b:ad: 80:3d:15:35:12:96:20:1f:07:4a:e4:ab:e5:41:d9: c4:8f:a5:90:de:b0:2b:29:8d:72:12:c3:cc:3e:dc: f0:ee:67:a5:53:12:6e:5d:6a:9c:8c:7e:d6:5f:a1: d9:6e:78:df:14:2d:dc:3c:7a:48:a9:33:19:61:b9: 78:70:1f:c2:f0:22:eb:a3:74:e6:fc:7b:b1:ed:ec: e8:95:48:3a:99:7f:c7:9d:b2:f8:af:06:57:ee:46: 54:05:5c:a7:7a:31:8d:e1:dd:fa:5b:43:56:62:82: 05:e4:e9:85:7d:53:55:b7:88:b7:3a:a3:2d:94:7e: 30:52:72:a7:13:5a:b6:a1:85:3a:12:25:f8:f8:40: 21:85:3a:e4:be:a3:ed:0e:48:18:9e:2e:ca:d1:81: 86:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:07:DF:1B:8D:74:0A:BB:62:94:31:76:B6:1F:6C:B0:AC:71:55:52 X509v3 Authority Key Identifier: keyid:8C:3C:CB:4F:FB:89:18:9C:6E:F5:B3:4D:FD:AA:BE:18:06:A5:21:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/jDzLT_uJGJxu9bNN_aq-GAalIYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDzLT_uJGJxu9bNN_aq-GAalIYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/AAB43BD6247F11EE9CEA495CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 39.109.66.0/24 Signature Algorithm: sha256WithRSAEncryption 23:4e:8e:fe:f1:a2:8f:c2:1b:a2:e8:93:35:b4:f6:9e:c2:42: bf:f5:22:fe:bb:b0:21:1f:1e:18:f4:08:17:4b:ac:ed:ef:a9: c3:be:c7:70:78:b8:87:3c:0e:96:6e:62:67:c8:a8:ea:ab:2f: af:1e:05:9f:42:cb:1d:0a:a2:1d:c9:b6:5b:b7:59:8b:07:d0: 8e:da:6f:cc:f8:92:0d:a6:3a:71:f7:22:6b:52:57:19:d1:bc: f7:58:d2:88:55:3f:f3:a3:ec:81:2e:aa:54:b7:b4:30:27:f9: 38:6b:39:40:02:68:a5:86:98:42:43:63:bf:ce:90:9a:b6:5d: 9a:63:e3:70:c9:8d:a5:fa:42:82:26:3b:28:ba:94:13:03:1f: bd:90:0a:dc:48:64:91:b0:5a:ec:28:ec:c9:a4:06:18:39:39: 10:2c:2d:ca:fd:10:ef:d0:06:d8:0a:98:be:e5:9d:91:6f:d8: 18:5f:5d:52:06:cc:00:02:35:5a:eb:8b:6a:c9:e4:b5:f0:ab: 85:3f:c8:66:cb:e7:80:21:fb:7a:18:ba:96:c8:6e:35:b1:eb: 19:6c:4a:db:8d:62:13:98:43:f5:f4:8b:b1:da:36:2f:0f:60: dc:e9:70:73:79:6f:f7:18:98:fa:9a:bf:55:f4:7e:d3:f8:52: 6e:64:f6:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI1MDIxMTAvBgNVBAUTKDhDM0NDQjRGRkI4OTE4OUM2RUY1QjM0REZEQUFCRTE4 MDZBNTIxOEEwHhcNMjUwODEyMjAzMTE4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODliYTQ5Ni01NzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApB7WQkrOl2HujP+8pGVHZcJVcLR/NRMKuIqQGFbv8P3PuFXY5Owc+W4a/TYn ClkkqG+naMn6112Zb571iqh8yFYaEOOC5S2pClIsHK45YtJwJkHzwhp+0Je+zeQE 6hLNXq9LtnCIS62APRU1EpYgHwdK5KvlQdnEj6WQ3rArKY1yEsPMPtzw7melUxJu XWqcjH7WX6HZbnjfFC3cPHpIqTMZYbl4cB/C8CLro3Tm/Hux7ezolUg6mX/HnbL4 rwZX7kZUBVynejGN4d36W0NWYoIF5OmFfVNVt4i3OqMtlH4wUnKnE1q2oYU6EiX4 +EAhhTrkvqPtDkgYni7K0YGGaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD0H3xuN dAq7YpQxdrYfbLCscVVSMB8GA1UdIwQYMBaAFIw8y0/7iRicbvWzTf2qvhgGpSGK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjUwMi9EQTE2QzYzQTcz Q0MxMUVBQTM5OTUzMjZDNEY5QUUwMi9qRHpMVF91SkdKeHU5Yk5OX2FxLUdBYWxJ WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pEekxUX3VKR0p4dTliTk5fYXEtR0FhbElZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODI1MDIvREExNkM2M0E3M0NDMTFFQUEzOTk1MzI2QzRGOUFFMDIvQUFCNDNCRDYy NDdGMTFFRTlDRUE0OTVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAnbUIwDQYJKoZIhvcNAQELBQADggEBACNOjv7xoo/CG6Lo kzW09p7CQr/1Iv67sCEfHhj0CBdLrO3vqcO+x3B4uIc8DpZuYmfIqOqrL68eBZ9C yx0Koh3Jtlu3WYsH0I7ab8z4kg2mOnH3ImtSVxnRvPdY0ohVP/Oj7IEuqlS3tDAn +ThrOUACaKWGmEJDY7/OkJq2XZpj43DJjaX6QoImOyi6lBMDH72QCtxIZJGwWuwo 7MmkBhg5ORAsLcr9EO/QBtgKmL7lnZFv2BhfXVIGzAACNVrri2rJ5LXwq4U/yGbL 54Ah+3oYupbIbjWx6xlsStuNYhOYQ/X0i7HaNi8PYNzpcHN5b/cYmPqav1X0ftP4 Um5k9nU= -----END CERTIFICATE-----Generated at Tue Nov 4 19:10:58 2025 by rpki-client