$ rpki-client -vvf rpki.apnic.net/member_repository/A9132C07/4CA02976909B11F0A93B9137C4F9AE02/EF9B0ACE909B11F09E634B7AC4F9AE02.roa File: EF9B0ACE909B11F09E634B7AC4F9AE02.roa (raw, json) Hash identifier: 9dYGUjFWYuN31AuscKGSqmOWFznYjjVv+DbwenmQE88= Subject key identifier: 44:0F:D0:EE:F4:92:7C:78:4A:C0:9C:AC:23:35:EE:C3:52:B5:4D:31 Certificate issuer: /CN=A9132C07/serialNumber=A8FE9BEFFC6541E6B632C421D78A7DCC08B0AC8C Certificate serial: 02 Authority key identifier: A8:FE:9B:EF:FC:65:41:E6:B6:32:C4:21:D7:8A:7D:CC:08:B0:AC:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qP6b7_xlQea2MsQh14p9zAiwrIw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132C07/4CA02976909B11F0A93B9137C4F9AE02/EF9B0ACE909B11F09E634B7AC4F9AE02.roa Signing time: Sat 13 Sep 2025 12:19:46 +0000 ROA not before: Sat 13 Sep 2025 12:19:46 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 154182 IP address blocks: 202.6.204.0/23 maxlen: 24 2001:df6:11c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132C07/4CA02976909B11F0A93B9137C4F9AE02/qP6b7_xlQea2MsQh14p9zAiwrIw.crl rsync://rpki.apnic.net/member_repository/A9132C07/4CA02976909B11F0A93B9137C4F9AE02/qP6b7_xlQea2MsQh14p9zAiwrIw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qP6b7_xlQea2MsQh14p9zAiwrIw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 08:56:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132C07, serialNumber=A8FE9BEFFC6541E6B632C421D78A7DCC08B0AC8C Validity Not Before: Sep 13 12:19:46 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c56162-b536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8e:69:ef:f6:d0:9b:7d:d8:fc:71:fb:e4:ba: 63:57:91:1d:54:f7:a3:8d:99:35:ec:88:bd:8a:55: fc:f5:5b:fd:5f:be:d2:29:0e:22:ae:d8:51:b0:10: 26:08:32:0b:b9:a8:3d:de:c7:68:27:7f:74:2e:6a: 00:7a:ac:bf:45:75:46:8c:d8:1f:34:5c:49:f8:d6: 63:06:0a:a2:11:82:d8:57:2d:bc:c3:d4:8b:13:01: 47:85:5e:c0:cf:88:6e:bc:cb:ec:04:bb:81:62:0a: 08:50:70:16:96:a6:15:91:e9:44:2e:dc:ba:ab:cd: 9f:2f:25:c0:e9:f4:08:c8:6a:36:52:17:f0:08:22: fa:68:d7:7d:9a:cd:ed:5c:35:e6:2f:d5:61:87:15: 81:fa:d8:dc:7d:b1:ee:56:f6:01:3b:6e:f3:24:b8: cc:5e:c7:e5:49:19:ab:25:97:9c:4c:2c:d4:36:94: b4:41:66:9c:18:33:eb:38:8e:ed:02:07:a6:d1:5d: 72:50:93:59:ed:04:f9:7d:bc:c0:2c:64:f0:ec:34: 06:b7:37:83:15:1d:ab:8d:6e:01:40:19:62:21:8b: 7c:d8:c1:cd:ee:12:72:1c:bf:a7:f6:80:86:d1:c8: 77:d8:50:a1:ef:d2:d8:cb:71:8a:bb:f8:c0:e1:98: 6c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:0F:D0:EE:F4:92:7C:78:4A:C0:9C:AC:23:35:EE:C3:52:B5:4D:31 X509v3 Authority Key Identifier: keyid:A8:FE:9B:EF:FC:65:41:E6:B6:32:C4:21:D7:8A:7D:CC:08:B0:AC:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132C07/4CA02976909B11F0A93B9137C4F9AE02/qP6b7_xlQea2MsQh14p9zAiwrIw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qP6b7_xlQea2MsQh14p9zAiwrIw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132C07/4CA02976909B11F0A93B9137C4F9AE02/EF9B0ACE909B11F09E634B7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.6.204.0/23 IPv6: 2001:df6:11c0::/48 Signature Algorithm: sha256WithRSAEncryption 96:0a:4e:bc:24:5c:8f:49:97:11:d6:63:9b:25:49:98:02:2e: 44:00:b5:3a:77:03:f7:48:87:88:b3:d5:55:58:b4:5f:a3:e8: a2:3e:bb:9c:40:6e:3c:6e:71:60:9e:59:8d:07:c4:c6:a7:8e: 1f:35:85:00:f4:3e:ca:6a:9b:86:22:3a:46:d0:d8:58:36:26: b7:b5:b5:31:cc:20:b4:cd:41:36:e4:84:00:45:9a:69:b4:3b: 2b:0f:4d:44:cf:d0:fc:7b:86:84:41:61:73:b8:46:f6:5b:3d: 74:72:6b:0e:c1:98:da:6b:79:a7:06:8e:97:9c:df:91:68:bc: 39:aa:80:f0:89:12:ed:07:3a:6d:30:b5:a4:78:a9:1d:a8:0a: 6e:71:2e:f4:db:ff:92:6c:09:f4:ba:d8:25:a6:97:70:15:13: db:8c:30:69:44:e1:67:df:97:d6:8e:2a:cd:27:74:5e:1d:db: de:1b:1c:ca:67:03:a0:24:97:47:2d:c0:3c:b4:3b:fb:00:74: 43:52:b1:dc:4c:61:01:f8:d6:0d:b3:b8:c2:9d:ea:89:de:8b: 67:96:34:dd:20:1d:dc:d2:e7:55:bc:02:d5:be:db:39:9c:59: be:f2:a9:19:36:bf:73:e6:68:5e:00:ac:2e:05:a1:93:ad:5d: 6f:81:e4:5e -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MkMwNzExMC8GA1UEBRMoQThGRTlCRUZGQzY1NDFFNkI2MzJDNDIxRDc4QTdEQ0Mw OEIwQUM4QzAeFw0yNTA5MTMxMjE5NDZaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YzU2MTYyLWI1MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/jmnv9tCbfdj8cfvkumNXkR1U96ONmTXsiL2KVfz1W/1fvtIpDiKu2FGwECYI Mgu5qD3ex2gnf3QuagB6rL9FdUaM2B80XEn41mMGCqIRgthXLbzD1IsTAUeFXsDP iG68y+wEu4FiCghQcBaWphWR6UQu3LqrzZ8vJcDp9AjIajZSF/AIIvpo132aze1c NeYv1WGHFYH62Nx9se5W9gE7bvMkuMxex+VJGasll5xMLNQ2lLRBZpwYM+s4ju0C B6bRXXJQk1ntBPl9vMAsZPDsNAa3N4MVHauNbgFAGWIhi3zYwc3uEnIcv6f2gIbR yHfYUKHv0tjLcYq7+MDhmGxxAgMBAAGjggKmMIICojAdBgNVHQ4EFgQURA/Q7vSS fHhKwJysIzXuw1K1TTEwHwYDVR0jBBgwFoAUqP6b7/xlQea2MsQh14p9zAiwrIww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyQzA3LzRDQTAyOTc2OTA5 QjExRjBBOTNCOTEzN0M0RjlBRTAyL3FQNmI3X3hsUWVhMk1zUWgxNHA5ekFpd3JJ dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcVA2YjdfeGxRZWEyTXNRaDE0cDl6QWl3ckl3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkMwNy80Q0EwMjk3NjkwOUIxMUYwQTkzQjkxMzdDNEY5QUUwMi9FRjlCMEFDRTkw OUIxMUYwOUU2MzRCN0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAcoGzDAPBAIAAjAJAwcAIAEN9hHAMA0GCSqGSIb3DQEBCwUA A4IBAQCWCk68JFyPSZcR1mObJUmYAi5EALU6dwP3SIeIs9VVWLRfo+iiPrucQG48 bnFgnlmNB8TGp44fNYUA9D7KapuGIjpG0NhYNia3tbUxzCC0zUE25IQARZpptDsr D01Ez9D8e4aEQWFzuEb2Wz10cmsOwZjaa3mnBo6XnN+RaLw5qoDwiRLtBzptMLWk eKkdqApucS702/+SbAn0utglppdwFRPbjDBpROFn35fWjirNJ3ReHdveGxzKZwOg JJdHLcA8tDv7AHRDUrHcTGEB+NYNs7jCneqJ3otnljTdIB3c0udVvALVvts5nFm+ 8qkZNr9z5mheAKwuBaGTrV1vgeRe -----END CERTIFICATE-----Generated at Fri Sep 19 08:51:29 2025 by rpki-client