$ rpki-client -vvf rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/3CAF51428A4011F089F66D4DC4F9AE02.roa File: 3CAF51428A4011F089F66D4DC4F9AE02.roa (raw, json) Hash identifier: ZzMBP858bjKyqNHajLa/B1+Ml+sgJ7x2b7/AcooKrCY= Subject key identifier: 6C:5C:DE:4F:BA:6E:5B:23:D2:C0:64:2C:18:27:F3:3F:0F:2B:9C:F8 Certificate issuer: /CN=A9112FE1/serialNumber=3D1FCB7255C52503E10AE584B1189A15CF56074E Certificate serial: 72 Authority key identifier: 3D:1F:CB:72:55:C5:25:03:E1:0A:E5:84:B1:18:9A:15:CF:56:07:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR_LclXFJQPhCuWEsRiaFc9WB04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/3CAF51428A4011F089F66D4DC4F9AE02.roa Signing time: Tue 16 Sep 2025 01:39:45 +0000 ROA not before: Tue 16 Sep 2025 01:39:45 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 149014 IP address blocks: 2404:de80:0:26::/64 maxlen: 64 2404:de80:c00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/PR_LclXFJQPhCuWEsRiaFc9WB04.crl rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/PR_LclXFJQPhCuWEsRiaFc9WB04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR_LclXFJQPhCuWEsRiaFc9WB04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 01:45:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112FE1, serialNumber=3D1FCB7255C52503E10AE584B1189A15CF56074E Validity Not Before: Sep 16 01:39:45 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68c8bfe1-3a22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c6:68:93:ac:9c:98:f8:2c:a3:79:a0:cf:8a: 2f:79:5c:44:97:91:d1:15:0c:c1:84:75:ad:ed:d4: 7c:df:38:d9:01:b0:6a:eb:03:af:6b:f9:09:94:10: c6:72:cb:a9:f5:c8:b9:80:15:68:03:eb:f9:4f:56: 62:50:0b:08:e5:e6:b6:eb:36:37:c9:3c:e0:88:6c: ab:0a:ef:72:dc:c5:a3:23:14:08:02:30:f1:d4:b3: 50:0f:80:0c:1a:02:c6:e5:8f:b9:eb:b7:59:06:d3: 63:0f:ac:e5:2d:e6:8d:eb:86:c7:ca:f1:a5:ed:08: c7:29:a9:31:b0:bb:bf:8f:00:72:49:71:35:b9:dc: e3:ba:16:45:0f:3c:75:9e:22:0f:d9:4d:93:a6:e6: 96:42:25:0f:71:46:1a:fd:9e:96:4e:a3:1c:7f:c6: 2b:12:1e:3e:1f:5d:d7:fc:8b:3c:31:4b:63:d3:27: d0:d0:4f:64:58:1a:42:21:8f:c6:84:ad:27:6e:f8: cb:7b:8b:6c:ef:83:ae:e6:d3:67:09:82:7e:dc:ec: b2:ab:fc:33:2f:51:a9:70:34:ef:62:56:6b:42:04: 51:8d:3e:d4:cc:fe:ea:51:eb:ba:15:df:3c:3e:9a: 75:a9:6b:7c:d4:d3:ed:2f:f1:80:2d:d7:e5:f0:42: d7:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:5C:DE:4F:BA:6E:5B:23:D2:C0:64:2C:18:27:F3:3F:0F:2B:9C:F8 X509v3 Authority Key Identifier: keyid:3D:1F:CB:72:55:C5:25:03:E1:0A:E5:84:B1:18:9A:15:CF:56:07:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/PR_LclXFJQPhCuWEsRiaFc9WB04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR_LclXFJQPhCuWEsRiaFc9WB04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/3CAF51428A4011F089F66D4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:de80:0:26::/64 2404:de80:c00::/40 Signature Algorithm: sha256WithRSAEncryption 0b:54:1f:ee:28:ab:6e:c2:ab:31:dd:79:05:c9:b1:a0:cb:73: a1:38:a1:73:8e:6f:5f:ad:bf:f5:48:d0:95:45:04:aa:71:74: 3f:3f:06:db:5d:f3:e7:07:68:9d:fd:d3:00:cf:78:e6:a6:bf: 5b:d9:bc:6f:67:a1:3b:a1:5a:cd:2a:f8:09:72:2c:c2:5f:9e: d2:d7:6e:0f:04:e6:2b:2b:45:70:ea:30:22:39:a4:c5:74:c2: 20:50:e7:7a:63:5f:b1:74:32:fd:26:cf:af:a2:95:03:5e:64: f3:f1:dd:59:53:41:9c:6e:c4:22:cd:ef:8c:1c:b8:ce:1e:04: 86:0d:4d:19:8c:d3:1d:5f:91:06:5e:f0:68:72:5e:f6:31:67: d9:29:90:71:f8:ef:53:65:90:67:25:ad:99:78:e8:be:9c:84: 99:81:0f:0f:c1:b2:df:30:f9:fc:92:29:9a:f4:5b:0c:31:13: a3:6a:58:63:11:40:8d:8d:ee:04:c6:5a:38:9b:c6:e0:36:7d: 3b:01:8f:13:ae:6d:3c:48:34:75:d9:e9:03:33:95:c4:c9:21: 34:72:0f:25:a3:39:f3:5d:65:33:10:70:bd:7c:2e:e1:96:04: f8:d2:5a:08:f1:be:74:8d:3e:96:2e:7b:3e:3f:91:10:6c:01: bd:4e:33:8b -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MkZFMTExMC8GA1UEBRMoM0QxRkNCNzI1NUM1MjUwM0UxMEFFNTg0QjExODlBMTVD RjU2MDc0RTAeFw0yNTA5MTYwMTM5NDVaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YzhiZmUxLTNhMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVxmiTrJyY+CyjeaDPii95XESXkdEVDMGEda3t1HzfONkBsGrrA69r+QmUEMZy y6n1yLmAFWgD6/lPVmJQCwjl5rbrNjfJPOCIbKsK73LcxaMjFAgCMPHUs1APgAwa Asblj7nrt1kG02MPrOUt5o3rhsfK8aXtCMcpqTGwu7+PAHJJcTW53OO6FkUPPHWe Ig/ZTZOm5pZCJQ9xRhr9npZOoxx/xisSHj4fXdf8izwxS2PTJ9DQT2RYGkIhj8aE rSdu+Mt7i2zvg67m02cJgn7c7LKr/DMvUalwNO9iVmtCBFGNPtTM/upR67oV3zw+ mnWpa3zU0+0v8YAt1+XwQtc/AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUbFzeT7pu WyPSwGQsGCfzPw8rnPgwHwYDVR0jBBgwFoAUPR/LclXFJQPhCuWEsRiaFc9WB04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEyRkUxL0M0NTYxMDJFMDlG MTExRjA4QjQ0QTMyNUM0RjlBRTAyL1BSX0xjbFhGSlFQaEN1V0VzUmlhRmM5V0Iw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUFJfTGNsWEZKUVBoQ3VXRXNSaWFGYzlXQjA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkZFMS9DNDU2MTAyRTA5RjExMUYwOEI0NEEzMjVDNEY5QUUwMi8zQ0FGNTE0MjhB NDAxMUYwODlGNjZENERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAsBggrBgEFBQcBBwEB/wQd MBswGQQCAAIwEwMJACQE3oAAAAAmAwYAJATegAwwDQYJKoZIhvcNAQELBQADggEB AAtUH+4oq27CqzHdeQXJsaDLc6E4oXOOb1+tv/VI0JVFBKpxdD8/Bttd8+cHaJ39 0wDPeOamv1vZvG9noTuhWs0q+AlyLMJfntLXbg8E5isrRXDqMCI5pMV0wiBQ53pj X7F0Mv0mz6+ilQNeZPPx3VlTQZxuxCLN74wcuM4eBIYNTRmM0x1fkQZe8GhyXvYx Z9kpkHH471NlkGclrZl46L6chJmBDw/Bst8w+fySKZr0WwwxE6NqWGMRQI2N7gTG WjibxuA2fTsBjxOubTxINHXZ6QMzlcTJITRyDyWjOfNdZTMQcL18LuGWBPjSWgjx vnSNPpYuez4/kRBsAb1OM4s= -----END CERTIFICATE-----Generated at Tue Sep 16 05:48:44 2025 by rpki-client