$ rpki-client -vvf rpki.apnic.net/member_repository/A918549C/E6AB2CDE4A3111EFB7BBD51CC4F9AE02/AC038F18740611F0B304387CC4F9AE02.roa File: AC038F18740611F0B304387CC4F9AE02.roa (raw, json) Hash identifier: Odj1pliiYQRq/sR/Y5HzPODQczZMdgtZfqLJSE59i+w= Subject key identifier: 61:68:6F:D4:A5:4E:BF:BE:C6:C4:3D:35:62:37:FE:09:30:60:AB:E4 Certificate issuer: /CN=A918549C/serialNumber=52EDFEDFEA1535C13EE8A00E55FC7D51446D67D4 Certificate serial: D3 Authority key identifier: 52:ED:FE:DF:EA:15:35:C1:3E:E8:A0:0E:55:FC:7D:51:44:6D:67:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uu3-3-oVNcE-6KAOVfx9UURtZ9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918549C/E6AB2CDE4A3111EFB7BBD51CC4F9AE02/AC038F18740611F0B304387CC4F9AE02.roa Signing time: Fri 08 Aug 2025 03:20:45 +0000 ROA not before: Fri 08 Aug 2025 03:20:45 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153952 IP address blocks: 2001:df3:7540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918549C/E6AB2CDE4A3111EFB7BBD51CC4F9AE02/Uu3-3-oVNcE-6KAOVfx9UURtZ9Q.crl rsync://rpki.apnic.net/member_repository/A918549C/E6AB2CDE4A3111EFB7BBD51CC4F9AE02/Uu3-3-oVNcE-6KAOVfx9UURtZ9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uu3-3-oVNcE-6KAOVfx9UURtZ9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918549C, serialNumber=52EDFEDFEA1535C13EE8A00E55FC7D51446D67D4 Validity Not Before: Aug 8 03:20:45 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68956d0d-46cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:23:1c:25:71:9e:c9:9e:98:52:ce:88:97:0a: b6:c3:00:d6:de:ce:79:e6:ee:3c:fb:de:d4:64:4f: 65:02:5b:59:de:b8:09:3e:4b:23:18:1b:e4:0c:f9: b9:a4:1e:0c:5b:2b:f7:6e:df:48:a2:3c:c8:5a:6e: 11:28:cb:22:a6:65:3d:f6:83:a0:03:0f:0c:26:e0: 40:c3:ce:7f:40:92:c0:1e:50:42:46:e1:c0:d9:fb: 66:0a:93:39:fc:5a:1d:8c:14:88:41:52:56:f5:aa: c6:c8:59:c0:a9:4c:02:f9:63:e5:4a:f0:43:54:0b: f0:a6:90:16:8a:c1:45:87:13:ea:a9:40:5f:75:48: 63:c5:1b:67:8a:df:c7:29:de:19:5c:8f:29:eb:f0: d6:89:81:f6:60:4a:ef:e7:ff:33:49:88:be:df:ec: 61:bc:ca:fa:e1:f1:48:a7:6b:b7:3d:86:3a:a4:e2: 5e:f5:75:38:c7:db:69:fe:64:d2:18:8e:4b:44:30: 9d:7d:84:54:62:89:5f:33:5d:46:e4:5b:9c:c2:e0: 8a:4d:e1:3e:13:06:c0:df:66:d8:5d:dd:f4:b8:78: cf:06:5a:c0:6a:53:13:4f:31:b0:9e:8a:24:8b:d1: cd:62:14:2e:81:32:ed:4b:a5:ab:13:22:ac:08:5e: 53:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:68:6F:D4:A5:4E:BF:BE:C6:C4:3D:35:62:37:FE:09:30:60:AB:E4 X509v3 Authority Key Identifier: keyid:52:ED:FE:DF:EA:15:35:C1:3E:E8:A0:0E:55:FC:7D:51:44:6D:67:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918549C/E6AB2CDE4A3111EFB7BBD51CC4F9AE02/Uu3-3-oVNcE-6KAOVfx9UURtZ9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uu3-3-oVNcE-6KAOVfx9UURtZ9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918549C/E6AB2CDE4A3111EFB7BBD51CC4F9AE02/AC038F18740611F0B304387CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:7540::/48 Signature Algorithm: sha256WithRSAEncryption c4:8b:ef:bf:b8:a7:31:bd:e4:8b:e9:df:21:ef:b4:d8:06:32: bf:f1:a0:4a:69:23:03:ea:ad:4e:d8:49:4d:61:d4:67:fc:26: ea:bf:ae:f2:fb:dc:52:e7:0c:6e:cf:31:c4:9d:d2:ad:03:c3: e3:c2:a8:c4:ba:09:e2:05:a1:57:b3:1a:5d:52:f8:ce:7d:71: f0:15:a8:f5:dc:12:ec:d3:49:f2:84:6f:21:e3:15:fc:91:bb: c5:0c:d1:6f:66:6f:34:0f:28:ad:eb:94:3f:43:bb:55:bf:48: dc:b9:05:78:b8:48:d0:9a:84:e9:da:76:c5:cd:89:24:1e:24: 6e:65:be:6d:19:dc:ff:4c:bf:d6:fe:e7:a5:0f:f8:ff:a0:cc: 12:72:36:56:62:cf:45:78:af:94:8c:97:b0:9f:c1:96:55:3f: 08:31:92:f2:26:bb:1b:43:4b:35:be:99:2d:fb:bc:df:54:b2: a6:23:fe:28:1b:30:a3:6a:05:64:81:24:a9:a5:6a:3f:9c:52: 2d:11:6a:79:d9:a3:e7:55:2b:d2:d8:73:1d:47:b5:68:4e:34: 94:40:5f:fa:0b:ef:7f:ee:15:86:ae:44:ae:9f:19:f5:73:cb: 68:0f:4f:8c:87:8c:34:db:c5:ec:d4:50:d3:72:aa:97:ee:0c: f7:66:39:22 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0OUMxMTAvBgNVBAUTKDUyRURGRURGRUExNTM1QzEzRUU4QTAwRTU1RkM3RDUx NDQ2RDY3RDQwHhcNMjUwODA4MDMyMDQ1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODk1NmQwZC00NmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyMcJXGeyZ6YUs6Ilwq2wwDW3s555u48+97UZE9lAltZ3rgJPksjGBvkDPm5 pB4MWyv3bt9IojzIWm4RKMsipmU99oOgAw8MJuBAw85/QJLAHlBCRuHA2ftmCpM5 /FodjBSIQVJW9arGyFnAqUwC+WPlSvBDVAvwppAWisFFhxPqqUBfdUhjxRtnit/H Kd4ZXI8p6/DWiYH2YErv5/8zSYi+3+xhvMr64fFIp2u3PYY6pOJe9XU4x9tp/mTS GI5LRDCdfYRUYolfM11G5FucwuCKTeE+EwbA32bYXd30uHjPBlrAalMTTzGwnook i9HNYhQugTLtS6WrEyKsCF5ToQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGFob9Sl Tr++xsQ9NWI3/gkwYKvkMB8GA1UdIwQYMBaAFFLt/t/qFTXBPuigDlX8fVFEbWfU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQ5Qy9FNkFCMkNERTRB MzExMUVGQjdCQkQ1MUNDNEY5QUUwMi9VdTMtMy1vVk5jRS02S0FPVmZ4OVVVUnRa OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V1My0zLW9WTmNFLTZLQU9WZng5VVVSdFo5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU0OUMvRTZBQjJDREU0QTMxMTFFRkI3QkJENTFDQzRGOUFFMDIvQUMwMzhGMTg3 NDA2MTFGMEIzMDQzODdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zdUAwDQYJKoZIhvcNAQELBQADggEBAMSL77+4pzG9 5Ivp3yHvtNgGMr/xoEppIwPqrU7YSU1h1Gf8Juq/rvL73FLnDG7PMcSd0q0Dw+PC qMS6CeIFoVezGl1S+M59cfAVqPXcEuzTSfKEbyHjFfyRu8UM0W9mbzQPKK3rlD9D u1W/SNy5BXi4SNCahOnadsXNiSQeJG5lvm0Z3P9Mv9b+56UP+P+gzBJyNlZiz0V4 r5SMl7CfwZZVPwgxkvImuxtDSzW+mS37vN9UsqYj/igbMKNqBWSBJKmlaj+cUi0R annZo+dVK9LYcx1HtWhONJRAX/oL73/uFYauRK6fGfVzy2gPT4yHjDTbxezUUNNy qpfuDPdmOSI= -----END CERTIFICATE-----Generated at Wed Nov 5 16:44:22 2025 by rpki-client