$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/CDEDB7B4718811F08D1AD867C4F9AE02.roa File: CDEDB7B4718811F08D1AD867C4F9AE02.roa (raw, json) Hash identifier: N05/we/OueBDJktlJ7bmxXq2Y+ruYvygZW1MWdg4vNE= Subject key identifier: A6:84:67:3C:F2:FD:5E:EC:7A:B6:89:75:89:E9:B8:A2:FD:4F:67:D1 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 36BF Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/CDEDB7B4718811F08D1AD867C4F9AE02.roa Signing time: Mon 04 Aug 2025 23:14:43 +0000 ROA not before: Mon 04 Aug 2025 23:14:43 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 131711 IP address blocks: 2402:1d20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 15:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14015 (0x36bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Aug 4 23:14:43 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68913ee3-3787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:03:36:bf:f5:1e:a0:81:75:b1:8c:0e:92:15: 1e:be:4d:05:70:0b:b5:4e:e0:2e:64:6e:a5:17:fe: 67:6c:a6:56:e1:8c:8d:6f:1b:b8:c0:af:66:5c:14: 35:1d:72:27:07:1c:65:39:a1:96:42:20:95:17:29: 83:18:3d:7b:67:7b:69:13:21:af:f3:b9:0e:ed:84: 96:cb:e6:74:04:16:56:0f:68:9d:a8:9e:9f:29:1b: 17:b6:bb:69:48:ec:ec:d1:95:5d:9e:03:fa:a7:5d: 60:9a:ca:66:5f:a7:e8:6d:f1:9d:e9:9b:c1:c7:9f: 3b:23:5e:e2:09:27:2b:28:ee:8f:78:73:e5:3a:f9: cc:ee:ac:06:60:6e:1b:bc:e4:57:c7:3e:a6:6e:60: f6:8e:de:ab:09:2e:b7:2a:e2:fc:ae:b4:33:49:e3: 5b:3f:9b:7d:34:0b:5f:0c:9f:32:ec:c1:d6:f2:6a: f1:7e:a7:34:29:47:ad:48:16:55:3a:11:87:73:ff: d4:b8:f9:7a:94:a4:ff:f5:bd:06:97:d7:55:79:02: bc:f6:fa:fb:c9:31:5d:61:04:0b:ab:f1:79:8c:0d: eb:7a:59:f5:06:ed:68:85:76:a5:56:99:85:80:b9: a2:4b:bd:b8:c3:46:c3:e9:3e:72:88:43:5a:13:7f: 5a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:84:67:3C:F2:FD:5E:EC:7A:B6:89:75:89:E9:B8:A2:FD:4F:67:D1 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/CDEDB7B4718811F08D1AD867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:1d20::/32 Signature Algorithm: sha256WithRSAEncryption 7c:d3:4e:f2:1b:eb:7e:24:c5:da:72:7a:d7:24:de:9b:da:3d: 0f:29:8e:28:01:73:e7:6d:91:85:1c:83:ed:33:4d:c8:52:e0: d2:01:82:2b:89:19:f8:53:2b:5e:ff:b9:59:03:af:95:a6:3d: 17:63:44:f4:fc:4c:c7:e6:85:f1:96:2a:8b:6a:25:07:2c:ac: 7e:e5:7e:50:95:20:66:22:7d:ac:1d:41:40:81:24:54:47:53: 22:e1:e2:c7:40:55:de:b2:a2:bd:aa:e8:0d:66:7b:6b:54:19: 39:01:18:3d:85:6c:1a:f7:f0:e5:59:4f:88:52:a4:ed:7d:f2: 8d:2e:b9:38:8b:97:00:65:7b:a6:c9:9c:61:07:f7:80:e8:93: 44:1e:e0:7d:b1:22:b5:29:5b:42:f5:6b:f7:b6:a9:b5:a5:be: 85:da:9d:76:b0:33:f3:21:fb:bd:6b:4e:44:39:df:65:28:c1: bf:f9:22:9c:ed:9a:1c:62:5a:1a:e1:5e:58:44:a4:64:39:4b: 88:30:07:3d:09:18:fd:16:4b:a5:43:c0:86:57:91:74:cd:7b: 31:50:c6:a6:18:95:13:77:6f:0b:fc:52:7e:9a:c3:c6:9e:fa: 8a:80:fd:0a:92:4d:fa:56:8f:91:68:1e:ef:0d:ab:fc:d9:7f: 93:74:da:a7 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICNr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwODA0MjMxNDQzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxM2VlMy0zNzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAM2v/UeoIF1sYwOkhUevk0FcAu1TuAuZG6lF/5nbKZW4YyNbxu4wK9mXBQ1 HXInBxxlOaGWQiCVFymDGD17Z3tpEyGv87kO7YSWy+Z0BBZWD2idqJ6fKRsXtrtp SOzs0ZVdngP6p11gmspmX6fobfGd6ZvBx587I17iCScrKO6PeHPlOvnM7qwGYG4b vORXxz6mbmD2jt6rCS63KuL8rrQzSeNbP5t9NAtfDJ8y7MHW8mrxfqc0KUetSBZV OhGHc//UuPl6lKT/9b0Gl9dVeQK89vr7yTFdYQQLq/F5jA3reln1Bu1ohXalVpmF gLmiS724w0bD6T5yiENaE39aBQIDAQABo4ICljCCApIwHQYDVR0OBBYEFKaEZzzy /V7seraJdYnpuKL9T2fRMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvQ0RFREI3QjQ3 MTg4MTFGMDhEMUFEODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAh0gMA0GCSqGSIb3DQEBCwUAA4IBAQB8007yG+t+JMXa cnrXJN6b2j0PKY4oAXPnbZGFHIPtM03IUuDSAYIriRn4Uyte/7lZA6+Vpj0XY0T0 /EzH5oXxliqLaiUHLKx+5X5QlSBmIn2sHUFAgSRUR1Mi4eLHQFXesqK9qugNZntr VBk5ARg9hWwa9/DlWU+IUqTtffKNLrk4i5cAZXumyZxhB/eA6JNEHuB9sSK1KVtC 9Wv3tqm1pb6F2p12sDPzIfu9a05EOd9lKMG/+SKc7ZocYloa4V5YRKRkOUuIMAc9 CRj9FkulQ8CGV5F0zXsxUMamGJUTd28L/FJ+msPGnvqKgP0Kkk36Vo+RaB7vDav8 2X+TdNqn -----END CERTIFICATE-----Generated at Thu Aug 7 01:11:53 2025 by rpki-client