$ rpki-client -vvf rpki.apnic.net/member_repository/A9131C4B/1400662A91F511F08834EB1AC4F9AE02/D65EFE0A91F711F087341C45C4F9AE02.roa File: D65EFE0A91F711F087341C45C4F9AE02.roa (raw, json) Hash identifier: kAhTjUWVZV9wMTU00Q644BmyUxt0di+mCyDgFqmBb/g= Subject key identifier: F6:89:6C:B6:2A:B7:A3:F7:76:75:AE:54:08:58:E8:D7:95:EF:2D:15 Certificate issuer: /CN=A9131C4B/serialNumber=5BF00014734AD1B565B1086D12FFCAB590CCB8BB Certificate serial: 02 Authority key identifier: 5B:F0:00:14:73:4A:D1:B5:65:B1:08:6D:12:FF:CA:B5:90:CC:B8:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_AAFHNK0bVlsQhtEv_KtZDMuLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131C4B/1400662A91F511F08834EB1AC4F9AE02/D65EFE0A91F711F087341C45C4F9AE02.roa Signing time: Mon 15 Sep 2025 05:50:09 +0000 ROA not before: Mon 15 Sep 2025 05:50:09 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153929 IP address blocks: 2402:ea0::/40 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131C4B/1400662A91F511F08834EB1AC4F9AE02/W_AAFHNK0bVlsQhtEv_KtZDMuLs.crl rsync://rpki.apnic.net/member_repository/A9131C4B/1400662A91F511F08834EB1AC4F9AE02/W_AAFHNK0bVlsQhtEv_KtZDMuLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_AAFHNK0bVlsQhtEv_KtZDMuLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 08:56:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131C4B, serialNumber=5BF00014734AD1B565B1086D12FFCAB590CCB8BB Validity Not Before: Sep 15 05:50:09 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68c7a911-b475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:55:ae:4d:eb:ec:0c:cf:90:f1:fc:13:c4:20: 92:d8:91:ed:0c:ce:1b:ec:59:db:83:4b:c7:9f:1e: 25:6a:55:db:f1:6c:38:35:ce:51:9e:b1:13:6a:8d: 98:e3:f4:8a:a2:ee:8a:df:4d:45:cb:95:40:02:e0: dc:a2:30:c0:92:4a:73:bf:bf:20:09:52:80:59:92: d0:2c:85:13:64:21:cf:31:51:10:8b:0c:8a:30:fd: cf:a0:71:00:63:ac:a6:b4:0e:78:83:03:35:a6:fc: 24:a2:65:ea:d6:9a:f4:36:38:fe:bb:91:5a:15:a4: 4a:f5:0f:4a:8d:76:d0:ca:b2:0a:30:54:52:b6:5a: cf:cc:9b:2b:54:64:c5:b4:7b:2e:27:c6:32:3f:12: 4e:3b:a8:0f:f9:8f:c1:9f:a3:c3:29:e5:38:b4:67: 7f:3d:a7:98:36:c6:62:66:bc:d0:3c:53:dc:19:c7: 3a:f8:d3:fd:a1:b2:2f:fa:5e:be:4c:ee:51:c3:4d: b5:2d:0d:48:13:30:2f:a7:ff:c7:6e:6c:fc:eb:64: f2:7a:a1:30:9d:f0:5c:28:0c:2f:85:32:fd:db:c6: e6:5c:cc:38:27:7e:b2:96:f8:87:59:1a:9d:e5:fa: 4e:cd:48:85:3a:00:10:e5:3a:f3:e5:f1:30:5d:2a: cd:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:89:6C:B6:2A:B7:A3:F7:76:75:AE:54:08:58:E8:D7:95:EF:2D:15 X509v3 Authority Key Identifier: keyid:5B:F0:00:14:73:4A:D1:B5:65:B1:08:6D:12:FF:CA:B5:90:CC:B8:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131C4B/1400662A91F511F08834EB1AC4F9AE02/W_AAFHNK0bVlsQhtEv_KtZDMuLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_AAFHNK0bVlsQhtEv_KtZDMuLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131C4B/1400662A91F511F08834EB1AC4F9AE02/D65EFE0A91F711F087341C45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:ea0::/40 Signature Algorithm: sha256WithRSAEncryption 06:52:7c:22:13:6b:ae:d1:7c:0f:e5:53:2b:45:95:5f:67:37: 64:71:83:c8:dc:c7:02:c9:39:ab:82:52:6f:85:fd:bc:e0:d5: eb:e1:d6:44:eb:87:65:6b:87:fb:05:07:ef:4d:93:20:c1:79: b0:e3:24:de:d4:ec:78:42:dc:6b:ad:2a:0d:f0:00:88:ef:b8: 3a:71:f6:0a:e2:80:51:16:cc:85:99:83:20:bb:b4:89:96:60: c7:21:c8:55:bc:d8:c3:cd:21:df:db:13:b6:bd:a4:c0:0f:e5: 30:e8:73:e6:f7:83:49:ee:0a:81:3f:55:62:14:d6:85:bf:de: 25:67:fe:7e:5d:d3:cd:83:74:cf:79:93:42:af:a1:f0:d9:63: 02:64:e9:68:ee:af:b3:cb:79:2a:9f:07:4c:cd:f8:e6:61:33: c6:85:c8:e1:3f:49:06:ce:ba:74:e8:c4:65:9f:49:41:db:a9: 46:00:23:39:66:a5:09:9c:34:53:3f:b3:02:85:ac:a1:36:78: 2e:9c:92:29:50:a7:16:33:39:d6:ec:f6:89:50:bd:82:ef:a4: 70:9a:b2:aa:cb:56:db:d5:59:c2:7c:b3:e3:56:8a:11:dc:50: 75:c3:d9:c2:7d:0b:a1:6f:06:5f:23:22:0d:23:95:ab:ed:7a: 3b:4b:3a:b5 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MUM0QjExMC8GA1UEBRMoNUJGMDAwMTQ3MzRBRDFCNTY1QjEwODZEMTJGRkNBQjU5 MENDQjhCQjAeFw0yNTA5MTUwNTUwMDlaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YzdhOTExLWI0NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEVa5N6+wMz5Dx/BPEIJLYke0MzhvsWduDS8efHiVqVdvxbDg1zlGesRNqjZjj 9Iqi7orfTUXLlUAC4NyiMMCSSnO/vyAJUoBZktAshRNkIc8xURCLDIow/c+gcQBj rKa0DniDAzWm/CSiZerWmvQ2OP67kVoVpEr1D0qNdtDKsgowVFK2Ws/MmytUZMW0 ey4nxjI/Ek47qA/5j8Gfo8Mp5Ti0Z389p5g2xmJmvNA8U9wZxzr40/2hsi/6Xr5M 7lHDTbUtDUgTMC+n/8dubPzrZPJ6oTCd8FwoDC+FMv3bxuZczDgnfrKW+IdZGp3l +k7NSIU6ABDlOvPl8TBdKs3lAgMBAAGjggKXMIICkzAdBgNVHQ4EFgQU9olstiq3 o/d2da5UCFjo15XvLRUwHwYDVR0jBBgwFoAUW/AAFHNK0bVlsQhtEv/KtZDMuLsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxQzRCLzE0MDA2NjJBOTFG NTExRjA4ODM0RUIxQUM0RjlBRTAyL1dfQUFGSE5LMGJWbHNRaHRFdl9LdFpETXVM cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV19BQUZITkswYlZsc1FodEV2X0t0WkRNdUxzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUM0Qi8xNDAwNjYyQTkxRjUxMUYwODgzNEVCMUFDNEY5QUUwMi9ENjVFRkUwQTkx RjcxMUYwODczNDFDNDVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAhBggrBgEFBQcBBwEB/wQS MBAwDgQCAAIwCAMGACQCDqAAMA0GCSqGSIb3DQEBCwUAA4IBAQAGUnwiE2uu0XwP 5VMrRZVfZzdkcYPI3McCyTmrglJvhf284NXr4dZE64dla4f7BQfvTZMgwXmw4yTe 1Ox4QtxrrSoN8ACI77g6cfYK4oBRFsyFmYMgu7SJlmDHIchVvNjDzSHf2xO2vaTA D+Uw6HPm94NJ7gqBP1ViFNaFv94lZ/5+XdPNg3TPeZNCr6Hw2WMCZOlo7q+zy3kq nwdMzfjmYTPGhcjhP0kGzrp06MRln0lB26lGACM5ZqUJnDRTP7MChayhNngunJIp UKcWMznW7PaJUL2C76RwmrKqy1bb1VnCfLPjVooR3FB1w9nCfQuhbwZfIyINI5Wr 7Xo7Szq1 -----END CERTIFICATE-----Generated at Fri Sep 19 04:22:14 2025 by rpki-client