$ rpki-client -vvf rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/D8FEAF6C637611EFB2D9FD47C4F9AE02.roa File: D8FEAF6C637611EFB2D9FD47C4F9AE02.roa (raw, json) Hash identifier: Dufn2bl2x79yMqHJgaUJAzhvDE7hxEwAGg5UyaJazhM= Subject key identifier: 4F:01:28:FE:85:55:DD:28:FE:CE:52:63:CD:12:9E:78:2F:94:7D:14 Certificate issuer: /CN=A918497E/serialNumber=8D4BF79A419EEC0FA533E5FCA50FF372A33CB390 Certificate serial: CF Authority key identifier: 8D:4B:F7:9A:41:9E:EC:0F:A5:33:E5:FC:A5:0F:F3:72:A3:3C:B3:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/D8FEAF6C637611EFB2D9FD47C4F9AE02.roa Signing time: Tue 11 Feb 2025 04:58:07 +0000 ROA not before: Tue 11 Feb 2025 04:58:07 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 147006 IP address blocks: 2401:bee0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.crl rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918497E, serialNumber=8D4BF79A419EEC0FA533E5FCA50FF372A33CB390 Validity Not Before: Feb 11 04:58:07 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67aad8df-ad6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c9:bc:3b:79:8b:e4:e7:fd:a6:b5:12:ad:b6: 51:a1:51:9b:b4:b3:22:05:30:4f:7e:ee:19:a8:5b: 32:ea:75:ec:ef:0f:21:b8:59:88:57:ec:3b:00:77: 96:07:04:e2:de:f1:47:57:e8:42:16:bb:fa:68:8d: 2c:00:5e:26:d8:e0:d4:95:58:e8:4f:b0:cb:fc:b3: 4f:71:9e:7d:4a:fd:c4:04:27:17:f9:5e:3a:13:3f: 34:94:24:97:ab:5e:33:13:e6:67:56:05:68:12:69: dd:49:17:70:4d:25:8a:a8:8b:2b:65:10:4a:02:d1: c2:c4:86:13:29:f3:8b:00:d8:63:64:ef:23:74:fe: 07:a5:38:2a:e5:82:25:28:89:ec:49:40:9e:c9:f7: 2b:89:82:d1:36:d2:2d:b8:71:51:73:fd:5a:9a:5e: 03:d1:29:ef:b7:c5:e1:1d:8a:e3:59:b1:87:51:52: 20:2c:1b:fb:c2:8a:67:0f:ad:5e:75:e4:67:d2:b4: b4:cb:b1:ed:13:db:ee:39:27:c9:d3:dc:e0:82:21: 67:3a:e5:df:fe:2b:33:8d:42:a0:84:65:2f:8d:52: f2:12:f8:9e:16:de:53:77:d4:9e:37:99:9f:7f:12: 86:1d:3a:ba:4e:92:86:35:1e:a7:98:17:2f:e0:88: 5e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:01:28:FE:85:55:DD:28:FE:CE:52:63:CD:12:9E:78:2F:94:7D:14 X509v3 Authority Key Identifier: keyid:8D:4B:F7:9A:41:9E:EC:0F:A5:33:E5:FC:A5:0F:F3:72:A3:3C:B3:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/D8FEAF6C637611EFB2D9FD47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:bee0::/32 Signature Algorithm: sha256WithRSAEncryption 15:f5:c8:32:77:9a:68:73:1c:56:a8:0d:79:de:dc:8b:94:17: 42:41:42:8c:20:8c:eb:ce:49:e2:da:6b:a1:ee:0c:f1:19:07: c9:33:08:6b:1e:ec:7f:3c:cc:64:2d:ca:ed:d1:b9:d3:f3:17: b7:b1:41:a0:e9:73:b5:f1:1f:b4:7b:d7:6e:f2:8a:7e:82:bb: 49:c7:ea:57:3d:2a:18:9c:c4:2b:db:ba:a9:54:00:5b:06:33: cd:d9:e1:7c:0b:9c:5a:85:de:03:ba:98:08:9a:a4:2e:d5:88: 49:29:30:0a:57:fd:93:50:b4:14:cd:37:cf:47:90:a8:7b:71: b1:6d:89:9c:f1:6f:b5:58:48:d6:03:8c:c5:ae:aa:04:1e:ce: e7:e5:ee:15:9a:df:6d:07:75:9e:0b:75:e3:83:37:e2:7f:42: f9:66:73:fe:86:b0:6f:8c:34:06:13:71:db:0c:fb:f2:f1:0c: 3f:e9:36:3b:c2:55:6a:84:2d:ce:04:a9:92:1e:f9:bc:4f:5a: e0:a3:e3:e3:22:8e:7a:51:b6:2a:81:e1:1a:41:f2:e5:27:eb: 9d:ad:3a:df:79:d9:e6:0f:2d:5c:9c:cd:5b:36:0d:f5:17:2f: d9:62:1e:f1:60:77:79:61:72:6b:3d:bc:e7:bf:c5:50:88:66: 15:5e:b1:3c -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5N0UxMTAvBgNVBAUTKDhENEJGNzlBNDE5RUVDMEZBNTMzRTVGQ0E1MEZGMzcy QTMzQ0IzOTAwHhcNMjUwMjExMDQ1ODA3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FhZDhkZi1hZDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3sm8O3mL5Of9prUSrbZRoVGbtLMiBTBPfu4ZqFsy6nXs7w8huFmIV+w7AHeW BwTi3vFHV+hCFrv6aI0sAF4m2ODUlVjoT7DL/LNPcZ59Sv3EBCcX+V46Ez80lCSX q14zE+ZnVgVoEmndSRdwTSWKqIsrZRBKAtHCxIYTKfOLANhjZO8jdP4HpTgq5YIl KInsSUCeyfcriYLRNtItuHFRc/1aml4D0Snvt8XhHYrjWbGHUVIgLBv7wopnD61e deRn0rS0y7HtE9vuOSfJ09zggiFnOuXf/iszjUKghGUvjVLyEvieFt5Td9SeN5mf fxKGHTq6TpKGNR6nmBcv4Ihe1QIDAQABo4ICljCCApIwHQYDVR0OBBYEFE8BKP6F Vd0o/s5SY80SnngvlH0UMB8GA1UdIwQYMBaAFI1L95pBnuwPpTPl/KUP83KjPLOQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk3RS9DMzIwQzIyNkI1 RDgxMUVFOERBNjZEODVDNEY5QUUwMi9qVXYzbWtHZTdBLWxNLVg4cFFfemNxTThz NUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVdjNta0dlN0EtbE0tWDhwUV96Y3FNOHM1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5N0UvQzMyMEMyMjZCNUQ4MTFFRThEQTY2RDg1QzRGOUFFMDIvRDhGRUFGNkM2 Mzc2MTFFRkIyRDlGRDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAb7gMA0GCSqGSIb3DQEBCwUAA4IBAQAV9cgyd5pocxxW qA153tyLlBdCQUKMIIzrzkni2muh7gzxGQfJMwhrHux/PMxkLcrt0bnT8xe3sUGg 6XO18R+0e9du8op+grtJx+pXPSoYnMQr27qpVABbBjPN2eF8C5xahd4DupgImqQu 1YhJKTAKV/2TULQUzTfPR5Coe3GxbYmc8W+1WEjWA4zFrqoEHs7n5e4Vmt9tB3We C3Xjgzfif0L5ZnP+hrBvjDQGE3HbDPvy8Qw/6TY7wlVqhC3OBKmSHvm8T1rgo+Pj Io56UbYqgeEaQfLlJ+udrTrfednmDy1cnM1bNg31Fy/ZYh7xYHd5YXJrPbznv8VQ iGYVXrE8 -----END CERTIFICATE-----Generated at Tue Nov 4 23:26:28 2025 by rpki-client