$ rpki-client -vvf rpki.apnic.net/member_repository/A9122039/FB70DF6AFF2011EB8160AC51C4F9AE02/1FC8419E4B6F11EF98BA6B27C4F9AE02.roa File: 1FC8419E4B6F11EF98BA6B27C4F9AE02.roa (raw, json) Hash identifier: ZIpPhxn3ZcCbFE5Pdx2VemD1MQNZXD0fX/y2N95QY8k= Subject key identifier: 6B:8C:FB:50:D1:27:0A:AF:9D:2D:8E:C5:88:9B:F2:AD:3F:B0:FD:68 Certificate issuer: /CN=A9122039/serialNumber=374D9A2C832F2344BDD8CA406311793F66D4C735 Certificate serial: 0543 Authority key identifier: 37:4D:9A:2C:83:2F:23:44:BD:D8:CA:40:63:11:79:3F:66:D4:C7:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N02aLIMvI0S92MpAYxF5P2bUxzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122039/FB70DF6AFF2011EB8160AC51C4F9AE02/1FC8419E4B6F11EF98BA6B27C4F9AE02.roa Signing time: Sat 17 May 2025 00:14:39 +0000 ROA not before: Sat 17 May 2025 00:14:39 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 33011 IP address blocks: 2402:f2c0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122039/FB70DF6AFF2011EB8160AC51C4F9AE02/N02aLIMvI0S92MpAYxF5P2bUxzU.crl rsync://rpki.apnic.net/member_repository/A9122039/FB70DF6AFF2011EB8160AC51C4F9AE02/N02aLIMvI0S92MpAYxF5P2bUxzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N02aLIMvI0S92MpAYxF5P2bUxzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 23:06:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1347 (0x543) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122039, serialNumber=374D9A2C832F2344BDD8CA406311793F66D4C735 Validity Not Before: May 17 00:14:39 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6827d4ef-229e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:bb:c5:2a:d4:83:39:8c:a4:ac:5d:1e:25:1f: 7e:7f:3c:04:e9:11:a3:31:89:a1:65:76:91:2d:16: c3:a0:9a:17:d7:ba:01:8f:64:de:aa:b7:c9:4e:2c: 22:cb:36:c1:6d:78:c8:55:89:1b:4b:77:60:87:a5: 98:95:85:7e:a7:19:a1:8e:38:96:02:aa:14:7e:31: 41:e4:a6:7c:63:2f:82:f6:87:ee:9a:82:48:73:47: 83:e4:2c:91:7c:90:32:84:17:83:fa:8f:08:1b:5e: f3:d6:c1:50:d9:70:69:4b:66:a0:b4:c6:7c:6e:aa: 5e:fb:e1:d8:31:0a:0c:79:32:e8:d5:5a:d3:f9:a4: 44:5f:77:45:06:c3:a9:80:5d:88:c4:2b:94:d0:e1: 27:35:d2:6d:c7:a2:6f:99:48:af:cd:2b:b5:85:15: c8:3e:30:58:7c:2c:9b:61:34:3d:43:80:05:36:f3: 82:96:d7:32:f3:d0:1a:3e:7e:1e:ce:7a:83:2a:ba: 0d:61:58:14:a7:80:cb:0a:ac:d6:17:67:0e:f1:ba: d8:fd:91:c6:4e:76:20:00:60:ea:a2:aa:06:0b:36: 09:85:b5:68:02:58:47:b5:fb:60:f6:40:91:4f:31: cd:c2:94:e9:67:4d:51:9c:0a:9d:29:7e:94:8f:25: a0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:8C:FB:50:D1:27:0A:AF:9D:2D:8E:C5:88:9B:F2:AD:3F:B0:FD:68 X509v3 Authority Key Identifier: keyid:37:4D:9A:2C:83:2F:23:44:BD:D8:CA:40:63:11:79:3F:66:D4:C7:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122039/FB70DF6AFF2011EB8160AC51C4F9AE02/N02aLIMvI0S92MpAYxF5P2bUxzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N02aLIMvI0S92MpAYxF5P2bUxzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122039/FB70DF6AFF2011EB8160AC51C4F9AE02/1FC8419E4B6F11EF98BA6B27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:f2c0::/32 Signature Algorithm: sha256WithRSAEncryption 93:44:2f:16:2a:8b:6f:2d:83:ed:7e:d8:8d:f9:00:fc:26:06: c6:04:ef:3d:c3:22:93:01:4a:f0:41:a2:ff:cb:53:eb:ff:75: ea:28:56:a5:42:85:f5:9f:44:08:86:12:d8:82:19:bb:1b:89: 95:f8:e0:17:47:f1:da:f7:7e:ca:0c:c6:f8:59:c2:91:85:db: 34:50:86:60:a3:6d:a9:fd:28:4c:ac:8a:66:b4:74:d7:aa:fa: 3e:a5:77:75:e6:80:a8:9a:ba:9f:94:32:f8:89:5e:d9:b5:f8: 6a:e2:70:c4:3f:13:87:03:32:8d:12:46:b0:cf:e9:34:77:3e: 9c:ba:dd:0d:59:da:09:ad:7b:34:9c:a7:06:2b:eb:a7:ac:97: dd:ee:50:5c:6e:da:51:8f:c4:03:0c:6c:6a:d9:56:45:d9:15: 0d:4e:74:c2:e1:65:9f:7e:17:93:5d:f1:61:d6:58:6e:24:10: 6d:af:98:1e:4f:17:1d:28:2c:50:c8:aa:e0:a8:22:bb:45:13: 2d:eb:6c:5f:86:06:d4:0c:57:7c:4b:1a:c6:38:ca:1c:b8:84: 16:ad:bf:da:5e:9d:0d:69:a0:e2:56:ed:37:9e:fb:49:d5:f4: f0:f0:86:50:40:87:ed:2a:87:64:ef:41:50:81:81:68:e7:5e: a0:c3:52:01 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIwMzkxMTAvBgNVBAUTKDM3NEQ5QTJDODMyRjIzNDRCREQ4Q0E0MDYzMTE3OTNG NjZENEM3MzUwHhcNMjUwNTE3MDAxNDM5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3ZDRlZi0yMjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA37vFKtSDOYykrF0eJR9+fzwE6RGjMYmhZXaRLRbDoJoX17oBj2TeqrfJTiwi yzbBbXjIVYkbS3dgh6WYlYV+pxmhjjiWAqoUfjFB5KZ8Yy+C9ofumoJIc0eD5CyR fJAyhBeD+o8IG17z1sFQ2XBpS2agtMZ8bqpe++HYMQoMeTLo1VrT+aREX3dFBsOp gF2IxCuU0OEnNdJtx6JvmUivzSu1hRXIPjBYfCybYTQ9Q4AFNvOCltcy89AaPn4e znqDKroNYVgUp4DLCqzWF2cO8brY/ZHGTnYgAGDqoqoGCzYJhbVoAlhHtftg9kCR TzHNwpTpZ01RnAqdKX6UjyWgLQIDAQABo4ICljCCApIwHQYDVR0OBBYEFGuM+1DR JwqvnS2OxYib8q0/sP1oMB8GA1UdIwQYMBaAFDdNmiyDLyNEvdjKQGMReT9m1Mc1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjAzOS9GQjcwREY2QUZG MjAxMUVCODE2MEFDNTFDNEY5QUUwMi9OMDJhTElNdkkwUzkyTXBBWXhGNVAyYlV4 elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04wMmFMSU12STBTOTJNcEFZeEY1UDJiVXh6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjIwMzkvRkI3MERGNkFGRjIwMTFFQjgxNjBBQzUxQzRGOUFFMDIvMUZDODQxOUU0 QjZGMTFFRjk4QkE2QjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAvLAMA0GCSqGSIb3DQEBCwUAA4IBAQCTRC8WKotvLYPt ftiN+QD8JgbGBO89wyKTAUrwQaL/y1Pr/3XqKFalQoX1n0QIhhLYghm7G4mV+OAX R/Ha937KDMb4WcKRhds0UIZgo22p/ShMrIpmtHTXqvo+pXd15oComrqflDL4iV7Z tfhq4nDEPxOHAzKNEkawz+k0dz6cut0NWdoJrXs0nKcGK+unrJfd7lBcbtpRj8QD DGxq2VZF2RUNTnTC4WWffheTXfFh1lhuJBBtr5geTxcdKCxQyKrgqCK7RRMt62xf hgbUDFd8SxrGOMocuIQWrb/aXp0NaaDiVu03nvtJ1fTw8IZQQIftKodk70FQgYFo 516gw1IB -----END CERTIFICATE-----Generated at Wed Oct 29 05:47:04 2025 by rpki-client