$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/DCFFE916452611EDA4853E62C4F9AE02.roa File: DCFFE916452611EDA4853E62C4F9AE02.roa (raw, json) Hash identifier: Ctrd7yzaoKhPJ1SZfLY/mtqd2cD4Mo1aULu0wXYXeDQ= Subject key identifier: 36:C9:CF:E1:2A:26:74:93:BB:13:B6:2A:F7:C3:B2:53:58:71:BD:D0 Certificate issuer: /CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Certificate serial: 0B31 Authority key identifier: 76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/DCFFE916452611EDA4853E62C4F9AE02.roa Signing time: Wed 02 Apr 2025 19:50:32 +0000 ROA not before: Wed 02 Apr 2025 19:50:32 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138195 IP address blocks: 2404:a140:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 20:06:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2865 (0xb31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Validity Not Before: Apr 2 19:50:32 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ed9508-171b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a4:21:97:b1:af:95:ae:df:4c:11:12:c5:ae: c9:2c:11:3a:e2:74:fe:d8:73:7b:e9:d3:16:82:f4: 38:df:97:91:d9:0a:0d:bf:ba:a7:39:0d:93:e6:1e: bf:c4:e4:cb:37:52:00:7e:3b:ab:db:54:b3:06:f3: 05:a9:69:39:3b:fe:88:52:3a:af:9e:ab:2d:51:7b: 91:50:c1:0f:e2:aa:68:ff:1d:a6:57:a4:8c:e6:9a: d8:64:84:70:a5:06:09:dc:82:ae:8d:60:32:0c:34: f1:4a:68:e3:6c:42:50:74:64:c8:cd:27:fc:8b:41: 6f:23:a8:3a:f4:0b:b4:3a:76:4d:19:cc:6e:e2:05: e6:f8:97:99:88:4f:94:32:17:b5:9d:8a:3a:a2:22: 80:f5:16:9f:f7:6d:ff:98:e7:76:a5:2c:8e:30:fa: 47:c2:87:68:f2:77:3c:6a:7b:9b:b9:37:66:3a:0c: f5:93:11:05:b4:e2:03:aa:94:27:84:60:7b:92:ac: 15:e2:02:64:06:08:d7:be:4a:a5:77:43:01:02:97: ae:40:b6:f2:bf:5c:38:2d:7e:45:2c:27:d9:19:c4: a0:28:73:d1:32:3c:6d:67:5f:e8:52:ee:26:cf:b7: 03:da:b1:57:d1:f0:29:d7:f1:1a:ad:70:13:5c:56: 6c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:C9:CF:E1:2A:26:74:93:BB:13:B6:2A:F7:C3:B2:53:58:71:BD:D0 X509v3 Authority Key Identifier: keyid:76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/DCFFE916452611EDA4853E62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:a140:7::/48 Signature Algorithm: sha256WithRSAEncryption 55:7a:fe:19:07:4e:10:84:25:39:20:d7:bf:fb:b5:5a:4a:eb: 3b:b3:1a:13:73:00:95:6b:c3:8d:46:a5:e3:31:bf:e6:e0:43: 7f:c8:de:5a:4a:2c:f3:9b:52:91:ec:16:0a:6c:36:95:3f:37: f2:42:ea:a6:07:e1:e7:f8:30:16:44:26:bf:42:b6:05:02:b6: fb:a6:92:cf:de:be:bf:57:0c:1d:49:d4:3a:51:89:59:0c:18: 6c:ab:32:99:97:12:92:6f:55:98:68:54:07:22:90:0e:82:57: d6:94:51:6f:13:9a:ee:b4:d6:88:22:0f:b7:d3:9d:46:f7:8f: 18:6a:99:97:83:61:08:1d:65:26:13:c0:dd:b0:19:cb:a7:23: 32:e6:a4:fc:41:df:92:9c:31:7f:0d:b8:a6:8f:0a:4d:8a:3a: 93:bc:d8:6e:f3:35:46:19:ba:30:90:89:e8:aa:15:bf:4f:be: 82:99:fd:f2:7c:b3:30:f8:18:fe:bd:9d:32:aa:e4:8b:0f:51: 4a:da:fc:88:40:72:1b:bf:db:b6:20:31:95:dd:06:0c:9b:37: 30:bb:55:05:62:44:49:6c:6c:e4:de:84:1a:d7:21:2c:05:51: 90:f3:66:6a:d1:8f:b0:31:91:c2:59:38:dc:0a:5b:40:f3:b9: b8:5a:a1:58 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDc2M0Y3RkJEOTY0QTFDMzY2ODMwOEM5QTI5RTE1MDI1 QzBEREY5RDQwHhcNMjUwNDAyMTk1MDMyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkOTUwOC0xNzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6Qhl7Gvla7fTBESxa7JLBE64nT+2HN76dMWgvQ435eR2QoNv7qnOQ2T5h6/ xOTLN1IAfjur21SzBvMFqWk5O/6IUjqvnqstUXuRUMEP4qpo/x2mV6SM5prYZIRw pQYJ3IKujWAyDDTxSmjjbEJQdGTIzSf8i0FvI6g69Au0OnZNGcxu4gXm+JeZiE+U Mhe1nYo6oiKA9Raf923/mOd2pSyOMPpHwodo8nc8anubuTdmOgz1kxEFtOIDqpQn hGB7kqwV4gJkBgjXvkqld0MBApeuQLbyv1w4LX5FLCfZGcSgKHPRMjxtZ1/oUu4m z7cD2rFX0fAp1/EarXATXFZslQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDbJz+Eq JnSTuxO2KvfDslNYcb3QMB8GA1UdIwQYMBaAFHY/f72WShw2aDCMminhUCXA3fnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9EMUY2NEU3MjVF RUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hEWm9NSXlhS2VGUUpjRGQt ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RqOV92WlpLSERab01JeWFLZUZRSmNEZC1kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM4QUYvRDFGNjRFNzI1RUVGMTFFQUE1NEU2QzZDQzRGOUFFMDIvRENGRkU5MTY0 NTI2MTFFREE0ODUzRTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBKFAAAcwDQYJKoZIhvcNAQELBQADggEBAFV6/hkHThCE JTkg17/7tVpK6zuzGhNzAJVrw41GpeMxv+bgQ3/I3lpKLPObUpHsFgpsNpU/N/JC 6qYH4ef4MBZEJr9CtgUCtvumks/evr9XDB1J1DpRiVkMGGyrMpmXEpJvVZhoVAci kA6CV9aUUW8Tmu601ogiD7fTnUb3jxhqmZeDYQgdZSYTwN2wGcunIzLmpPxB35Kc MX8NuKaPCk2KOpO82G7zNUYZujCQieiqFb9PvoKZ/fJ8szD4GP69nTKq5IsPUUra /IhAchu/27YgMZXdBgybNzC7VQViRElsbOTehBrXISwFUZDzZmrRj7AxkcJZONwK W0DzubhaoVg= -----END CERTIFICATE-----Generated at Fri Oct 24 08:30:28 2025 by rpki-client