$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/8BF4322E978211EF8ED65F7CC4F9AE02.roa File: 8BF4322E978211EF8ED65F7CC4F9AE02.roa (raw, json) Hash identifier: L954B9Qgt6fx+kXJ7gmYs8Hjp/cbh5YATNVEXTvQSks= Subject key identifier: 95:A3:6B:EF:D6:4E:9E:DD:8C:6D:DE:B2:37:7E:06:F3:31:E8:D7:FC Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0F40 Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/8BF4322E978211EF8ED65F7CC4F9AE02.roa Signing time: Wed 04 Jun 2025 18:00:12 +0000 ROA not before: Wed 04 Jun 2025 18:00:12 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137256 IP address blocks: 2402:3180::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 17:58:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3904 (0xf40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF, serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Validity Not Before: Jun 4 18:00:12 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684089ab-3d8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:01:99:9a:62:0f:24:9d:ba:14:f3:4d:5c:b2: dd:59:31:7a:88:c4:92:03:db:fe:88:f9:b7:81:68: de:37:18:d0:17:db:eb:2f:6b:e2:46:73:85:5c:9b: 12:06:0b:31:6f:92:6b:0f:71:82:9a:3f:57:a4:e5: 84:bb:d8:36:a5:8e:6d:bb:42:89:35:1d:27:fa:f8: ff:c0:b8:55:41:ac:ac:e4:9c:00:4e:f2:16:f1:28: 61:59:7b:b5:e7:cb:f2:5a:85:78:a5:5a:26:5a:94: 45:e4:eb:88:3b:c9:be:98:82:b4:78:0f:0d:44:d5: 9e:77:5a:cc:1d:9c:0a:e0:f3:35:a0:53:7f:69:78: 4d:fd:f3:1a:7e:b4:80:56:9a:24:68:e9:95:37:40: f7:e2:e9:5f:b4:90:96:79:da:92:a1:0e:06:35:a3: ed:34:6a:46:fc:0d:0f:cf:4b:e0:9b:66:1b:2f:8c: 52:5a:f6:37:d3:81:cb:fd:53:06:f9:0b:2c:81:95: 9c:79:c8:9a:db:f4:e5:63:06:97:cc:df:62:3c:86: 73:22:5e:bc:b3:ec:c4:63:7f:af:2e:b9:91:34:e7: 42:20:7d:9b:dc:62:3e:c9:23:76:3a:23:93:39:7f: 46:16:8b:20:65:b0:dc:0a:93:5d:92:a9:5c:cf:c2: 92:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:A3:6B:EF:D6:4E:9E:DD:8C:6D:DE:B2:37:7E:06:F3:31:E8:D7:FC X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/8BF4322E978211EF8ED65F7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:3180::/45 Signature Algorithm: sha256WithRSAEncryption 0c:51:de:c8:d7:6d:7d:05:cd:1e:1e:07:ed:fa:60:20:9a:39: f6:bc:38:b5:b4:ac:88:67:a0:89:f8:85:73:4e:a5:a8:34:a0: 12:cd:10:5f:0a:16:43:19:de:bf:f2:a4:81:e6:bf:ce:00:a9: 96:74:70:7a:65:95:82:c0:89:14:b5:f2:82:9c:98:97:16:e8: a3:d0:9e:21:70:f4:e2:89:a6:52:09:57:08:4d:41:65:58:86: 8d:35:58:b9:12:71:e9:c6:3f:b3:dc:5d:0e:93:a0:01:d0:39: f3:0c:ee:bd:7b:13:ff:dd:a8:f7:1c:ae:e2:c8:18:c1:50:ca: 46:84:a3:6f:8a:85:92:f6:38:5f:72:51:60:a2:8a:e6:2e:8a: 79:66:83:93:e9:a7:00:fa:68:74:24:11:6d:33:83:46:12:45: 11:48:3c:60:b4:a3:cc:a4:6d:5e:56:05:56:df:3f:62:7b:2a: 1e:ce:c5:f1:1b:40:91:be:fe:31:b8:58:b1:b3:4c:3c:ae:ff: 8a:7c:f6:41:5d:ca:ac:09:87:c4:72:20:37:c2:ad:9f:c0:6b: 2a:3a:a3:0a:d4:71:ae:7e:0d:64:f8:13:a0:65:fd:53:de:fa: 2f:c6:8a:32:71:d8:08:6c:69:b4:0d:76:38:90:e2:f9:64:7c: 18:80:01:b3 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICD0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjUwNjA0MTgwMDEyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwODlhYi0zZDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5AGZmmIPJJ26FPNNXLLdWTF6iMSSA9v+iPm3gWjeNxjQF9vrL2viRnOFXJsS Bgsxb5JrD3GCmj9XpOWEu9g2pY5tu0KJNR0n+vj/wLhVQays5JwATvIW8ShhWXu1 58vyWoV4pVomWpRF5OuIO8m+mIK0eA8NRNWed1rMHZwK4PM1oFN/aXhN/fMafrSA VpokaOmVN0D34ulftJCWedqSoQ4GNaPtNGpG/A0Pz0vgm2YbL4xSWvY304HL/VMG +QssgZWcecia2/TlYwaXzN9iPIZzIl68s+zEY3+vLrmRNOdCIH2b3GI+ySN2OiOT OX9GFosgZbDcCpNdkqlcz8KS+QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJWja+/W Tp7djG3esjd+BvMx6Nf8MB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRkYvRTQyQkVBQzI5M0YwMTFFOUJDMENGRjcxQzRGOUFFMDIvOEJGNDMyMkU5 NzgyMTFFRjhFRDY1RjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwMkAjGAAAAwDQYJKoZIhvcNAQELBQADggEBAAxR3sjXbX0F zR4eB+36YCCaOfa8OLW0rIhnoIn4hXNOpag0oBLNEF8KFkMZ3r/ypIHmv84AqZZ0 cHpllYLAiRS18oKcmJcW6KPQniFw9OKJplIJVwhNQWVYho01WLkScenGP7PcXQ6T oAHQOfMM7r17E//dqPccruLIGMFQykaEo2+KhZL2OF9yUWCiiuYuinlmg5PppwD6 aHQkEW0zg0YSRRFIPGC0o8ykbV5WBVbfP2J7Kh7OxfEbQJG+/jG4WLGzTDyu/4p8 9kFdyqwJh8RyIDfCrZ/Aayo6owrUca5+DWT4E6Bl/VPe+i/GijJx2AhsabQNdjiQ 4vlkfBiAAbM= -----END CERTIFICATE-----Generated at Tue Oct 28 04:18:32 2025 by rpki-client