$ rpki-client -vvf rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa File: 8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa (raw, json) Hash identifier: aNcYj3A/gGnj4dxbU3z5mV3zt63Nh4QrgMIUUabFzuw= Subject key identifier: A9:30:55:BE:56:E0:4D:EE:A2:B0:CD:98:35:86:D5:7A:A5:B4:85:32 Certificate issuer: /CN=A917092C/serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Certificate serial: AC Authority key identifier: 81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa Signing time: Wed 09 Jul 2025 07:43:16 +0000 ROA not before: Wed 09 Jul 2025 07:43:16 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 3949 IP address blocks: 2405:a280:ff00::/44 maxlen: 44 2405:a280:ff80::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917092C, serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Validity Not Before: Jul 9 07:43:16 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686e1d94-6d95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ab:e0:fa:0d:c4:09:46:92:a2:65:02:56:1e: fc:76:a8:b4:61:6a:51:22:e0:ac:85:16:e3:38:d0: 12:99:83:0e:8e:1e:0e:ba:e8:09:ab:bd:b0:6c:65: 3b:3d:55:f1:89:79:79:19:01:c9:0b:ae:83:f8:62: 1c:e7:b5:00:97:02:56:2e:97:13:50:d3:65:79:a2: 29:47:27:6e:ff:fc:f7:18:b1:d4:57:42:6e:9e:06: 4f:98:89:0e:d3:d5:f2:3e:7d:32:92:d7:e8:e4:93: 5b:5e:a4:11:26:07:3f:85:67:97:52:6f:ea:ca:f9: 7f:af:79:10:e6:ce:86:a1:fd:e9:9e:07:bc:b2:1c: 03:f9:95:cf:25:b8:b4:50:ec:04:35:8d:e7:5d:13: 37:66:6e:73:d7:f4:df:c8:e6:dd:31:66:c1:28:4a: 43:4e:a2:d6:d6:32:86:f1:00:1e:cb:b1:d4:c5:a6: ea:45:ee:2c:d0:63:51:bf:21:fc:16:c8:6c:54:52: 84:5b:f7:93:d6:69:e3:03:7a:cf:63:7b:a8:cc:fc: f5:e2:3c:9e:d3:5d:6f:84:68:42:0b:21:27:77:76: e1:77:e0:b6:40:8b:85:2b:86:ed:fc:7d:10:4e:b9: 8b:32:a5:5b:44:68:68:03:c5:b7:6f:bc:31:21:da: e2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:30:55:BE:56:E0:4D:EE:A2:B0:CD:98:35:86:D5:7A:A5:B4:85:32 X509v3 Authority Key Identifier: keyid:81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:a280:ff00::/44 2405:a280:ff80::/44 Signature Algorithm: sha256WithRSAEncryption 7a:a4:89:6b:74:c4:d9:1c:3c:09:42:54:48:67:c0:6e:00:2a: 6b:9f:5f:c2:20:11:ab:8b:5c:18:4c:6e:6f:78:f2:fa:cd:2b: 03:d0:80:00:2c:db:2d:74:03:79:c3:86:3d:c5:4d:5d:c1:e5: 38:60:b8:cb:cc:fd:70:ec:ca:ca:65:db:51:60:42:7e:52:23: a4:79:be:ed:aa:83:13:29:ac:ce:3d:1d:20:50:79:50:49:b6: 47:06:a1:9d:a2:29:ad:fb:ae:a7:da:e3:44:2c:2b:3a:53:5f: 6f:e1:03:29:fb:3f:14:04:ef:6e:67:c8:29:4f:41:f6:99:23: 6c:2a:c4:4a:c2:11:c1:a3:45:a1:0d:f5:35:9a:9b:83:32:66: 2f:48:1d:27:0c:c3:eb:67:24:1d:8e:37:58:06:2f:ad:27:3c: 87:6b:98:73:78:a2:5a:9b:db:40:9e:7b:14:3b:04:4a:df:8e: 7a:46:e7:0f:bb:29:a5:99:3f:7b:ba:07:d4:d8:ed:b0:d4:d2: 13:c5:f4:6c:9f:8e:ef:2b:83:8f:c4:f9:a8:73:8d:6c:c3:02: 80:1e:95:78:73:be:22:e2:90:3d:db:6e:4d:b9:af:be:a7:9a: 17:86:27:e7:72:f3:7d:20:f7:3c:0e:3e:3f:69:a3:fe:04:19: e5:ce:83:13 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5MkMxMTAvBgNVBAUTKDgxN0REMzgwMkYyNkU1N0VDRTgyNjVDRTg2MjZGQ0JC OUM2NEU5RDQwHhcNMjUwNzA5MDc0MzE2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZlMWQ5NC02ZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKvg+g3ECUaSomUCVh78dqi0YWpRIuCshRbjONASmYMOjh4OuugJq72wbGU7 PVXxiXl5GQHJC66D+GIc57UAlwJWLpcTUNNleaIpRydu//z3GLHUV0JungZPmIkO 09XyPn0yktfo5JNbXqQRJgc/hWeXUm/qyvl/r3kQ5s6Gof3pnge8shwD+ZXPJbi0 UOwENY3nXRM3Zm5z1/TfyObdMWbBKEpDTqLW1jKG8QAey7HUxabqRe4s0GNRvyH8 FshsVFKEW/eT1mnjA3rPY3uozPz14jye011vhGhCCyEnd3bhd+C2QIuFK4bt/H0Q TrmLMqVbRGhoA8W3b7wxIdripQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKkwVb5W 4E3uorDNmDWG1XqltIUyMB8GA1UdIwQYMBaAFIF904AvJuV+zoJlzoYm/LucZOnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDkyQy9FMkMwNzdERTc3 NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi9nWDNUZ0M4bTVYN09nbVhPaGliOHU1eGs2 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dYM1RnQzhtNVg3T2dtWE9oaWI4dTV4azZkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5MkMvRTJDMDc3REU3NzY2MTFFRkI1NUVEMjc5QzRGOUFFMDIvOEUwMEZCRjI3 NzdFMTFFRjhEMEVDQzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBaKA/wADBwQkBaKA/4AwDQYJKoZIhvcNAQELBQADggEB AHqkiWt0xNkcPAlCVEhnwG4AKmufX8IgEauLXBhMbm948vrNKwPQgAAs2y10A3nD hj3FTV3B5ThguMvM/XDsyspl21FgQn5SI6R5vu2qgxMprM49HSBQeVBJtkcGoZ2i Ka37rqfa40QsKzpTX2/hAyn7PxQE725nyClPQfaZI2wqxErCEcGjRaEN9TWam4My Zi9IHScMw+tnJB2ON1gGL60nPIdrmHN4olqb20CeexQ7BErfjnpG5w+7KaWZP3u6 B9TY7bDU0hPF9Gyfju8rg4/E+ahzjWzDAoAelXhzviLikD3bbk25r76nmheGJ+dy 830g9zwOPj9po/4EGeXOgxM= -----END CERTIFICATE-----Generated at Tue Jul 22 05:10:51 2025 by rpki-client