$ rpki-client -vvf rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/9A20324CDD6011EB9935406BC4F9AE02.roa File: 9A20324CDD6011EB9935406BC4F9AE02.roa (raw, json) Hash identifier: Jn0BrvewJ0VHEBEPQp+4AkXwLJvrQBlbc50TDzwhQxc= Subject key identifier: C4:2F:4C:CA:77:6D:46:E6:A6:35:D1:F8:84:73:8B:17:00:A6:87:30 Certificate issuer: /CN=A9121B73/serialNumber=66CE6D078C88930FAC801089C3E4C4A33382901E Certificate serial: 2473 Authority key identifier: 66:CE:6D:07:8C:88:93:0F:AC:80:10:89:C3:E4:C4:A3:33:82:90:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zs5tB4yIkw-sgBCJw-TEozOCkB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/9A20324CDD6011EB9935406BC4F9AE02.roa Signing time: Thu 28 Aug 2025 16:03:45 +0000 ROA not before: Thu 28 Aug 2025 16:03:45 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 59347 IP address blocks: 2403:cc80::/32 maxlen: 32 2403:cc80::/48 maxlen: 48 2403:cc80:1::/48 maxlen: 48 2403:cc80:2::/48 maxlen: 48 2403:cc80:3::/48 maxlen: 48 2403:cc80:4::/48 maxlen: 48 2403:cc80:5::/48 maxlen: 48 2403:cc80:d::/48 maxlen: 48 2403:cc80:e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/Zs5tB4yIkw-sgBCJw-TEozOCkB4.crl rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/Zs5tB4yIkw-sgBCJw-TEozOCkB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zs5tB4yIkw-sgBCJw-TEozOCkB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 15:53:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9331 (0x2473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121B73, serialNumber=66CE6D078C88930FAC801089C3E4C4A33382901E Validity Not Before: Aug 28 16:03:45 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68b07de0-3dbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:49:13:88:cf:af:78:e1:77:8e:25:ab:ff:93: e9:97:71:5c:f2:75:06:26:97:02:7e:c3:a6:3e:54: a8:16:db:d3:45:c6:e9:2a:28:75:be:a9:1d:6c:b5: bf:83:a4:55:cc:35:92:ce:95:9a:8a:6c:e4:c2:ed: 3d:82:c5:b5:f1:74:1a:ff:cc:4b:f8:38:cc:46:73: ee:4c:88:81:ed:a8:28:9d:6f:24:77:76:3c:3c:fb: 19:c7:3a:0a:d2:86:f0:09:87:bc:60:dd:fb:2e:8c: 5c:12:55:68:06:94:85:ad:d7:a3:04:b0:50:9d:81: 65:c1:80:0f:8b:f0:94:bd:8f:0a:50:ef:27:51:20: 7c:f0:2a:b5:ae:06:23:4a:ee:d2:bd:90:bf:20:09: 8a:58:36:a7:e0:05:46:37:d0:6a:ed:30:a9:3e:79: 7f:ca:e0:bc:a8:1b:51:62:4f:05:57:5b:11:6f:91: db:ef:99:51:1c:74:63:a8:2a:90:f6:2f:9e:31:f8: df:1b:6e:40:f3:c2:03:29:61:07:3f:90:a8:fa:d8: 97:ea:e5:8c:7d:dd:8e:e4:55:58:f7:5c:53:40:14: cc:61:ae:66:b5:1e:46:b5:e0:67:a0:43:80:de:57: 46:03:01:6e:02:3d:47:1c:79:b8:5c:bd:3f:b9:ae: 4e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:2F:4C:CA:77:6D:46:E6:A6:35:D1:F8:84:73:8B:17:00:A6:87:30 X509v3 Authority Key Identifier: keyid:66:CE:6D:07:8C:88:93:0F:AC:80:10:89:C3:E4:C4:A3:33:82:90:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/Zs5tB4yIkw-sgBCJw-TEozOCkB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zs5tB4yIkw-sgBCJw-TEozOCkB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/9A20324CDD6011EB9935406BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cc80::/32 Signature Algorithm: sha256WithRSAEncryption cd:69:48:92:a4:d8:b3:85:23:4a:8a:bb:82:1c:ae:79:08:a9: 63:da:c4:e8:18:7d:e8:c6:39:1f:7a:5d:1a:50:61:9e:53:0c: 1b:ed:89:55:66:eb:21:24:02:54:1f:88:f7:60:1e:e2:0e:57: 43:a4:a9:f7:ed:af:24:ac:22:ff:e0:bf:5b:c3:26:2c:78:4d: 66:95:08:f9:72:40:ae:b8:d6:62:97:10:a1:65:a1:87:c4:3c: 4c:19:10:18:47:fd:fb:3c:28:9e:ef:d4:0d:31:aa:b1:cb:2e: a7:eb:db:1a:05:c7:be:76:f2:d5:9b:61:9a:88:13:d8:25:0f: 2d:01:7e:ce:59:41:32:7c:63:5e:f2:c0:8b:76:26:3f:67:69: 64:fd:58:a8:01:02:da:e3:00:93:0c:68:3f:0f:e4:5b:20:3e: e4:ac:1c:65:9c:ba:2b:62:13:a7:c7:db:75:c2:9d:90:0f:5c: 45:9f:d0:50:a8:b5:e9:2a:d5:ab:bf:98:4b:2d:36:70:c4:17: 9b:9d:1e:7a:29:4e:f7:1d:76:2e:32:b6:1e:ff:22:33:fb:42: c9:f2:5c:18:1e:d7:3f:d6:e2:66:a9:07:b2:c6:56:d9:1d:ba: 74:fd:d4:01:a0:d1:eb:ee:02:a0:cd:b6:2c:5c:f5:e1:c5:54: 1e:86:d7:f1 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICJHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFCNzMxMTAvBgNVBAUTKDY2Q0U2RDA3OEM4ODkzMEZBQzgwMTA4OUMzRTRDNEEz MzM4MjkwMUUwHhcNMjUwODI4MTYwMzQ1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwN2RlMC0zZGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0kTiM+veOF3jiWr/5Ppl3Fc8nUGJpcCfsOmPlSoFtvTRcbpKih1vqkdbLW/ g6RVzDWSzpWaimzkwu09gsW18XQa/8xL+DjMRnPuTIiB7agonW8kd3Y8PPsZxzoK 0obwCYe8YN37LoxcElVoBpSFrdejBLBQnYFlwYAPi/CUvY8KUO8nUSB88Cq1rgYj Su7SvZC/IAmKWDan4AVGN9Bq7TCpPnl/yuC8qBtRYk8FV1sRb5Hb75lRHHRjqCqQ 9i+eMfjfG25A88IDKWEHP5Co+tiX6uWMfd2O5FVY91xTQBTMYa5mtR5GteBnoEOA 3ldGAwFuAj1HHHm4XL0/ua5OJQIDAQABo4ICljCCApIwHQYDVR0OBBYEFMQvTMp3 bUbmpjXR+IRzixcApocwMB8GA1UdIwQYMBaAFGbObQeMiJMPrIAQicPkxKMzgpAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUI3My8yQjc3RUYyQTVF REYxMUU1ODFBRDg4MENDNEY5QUUwMi9aczV0QjR5SWt3LXNnQkNKdy1URW96T0Nr QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pzNXRCNHlJa3ctc2dCQ0p3LVRFb3pPQ2tCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjFCNzMvMkI3N0VGMkE1RURGMTFFNTgxQUQ4ODBDQzRGOUFFMDIvOUEyMDMyNENE RDYwMTFFQjk5MzU0MDZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkA8yAMA0GCSqGSIb3DQEBCwUAA4IBAQDNaUiSpNizhSNK iruCHK55CKlj2sToGH3oxjkfel0aUGGeUwwb7YlVZushJAJUH4j3YB7iDldDpKn3 7a8krCL/4L9bwyYseE1mlQj5ckCuuNZilxChZaGHxDxMGRAYR/37PCie79QNMaqx yy6n69saBce+dvLVm2GaiBPYJQ8tAX7OWUEyfGNe8sCLdiY/Z2lk/VioAQLa4wCT DGg/D+RbID7krBxlnLorYhOnx9t1wp2QD1xFn9BQqLXpKtWrv5hLLTZwxBebnR56 KU73HXYuMrYe/yIz+0LJ8lwYHtc/1uJmqQeyxlbZHbp0/dQBoNHr7gKgzbYsXPXh xVQehtfx -----END CERTIFICATE-----Generated at Fri Sep 19 11:40:05 2025 by rpki-client