$ rpki-client -vvf rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/53E4239C99F811ECA0663D19C4F9AE02.roa File: 53E4239C99F811ECA0663D19C4F9AE02.roa (raw, json) Hash identifier: Y7h+ThuR3023tbfID3tJUzdvMuVp3Y56Ae3EjEbCXpU= Subject key identifier: 50:93:D3:D9:74:BA:1A:06:0F:6A:B4:83:67:27:C2:A3:1F:74:1C:38 Certificate issuer: /CN=A9138C14/serialNumber=BB0E550379FEA281A881A67479B77C8602D01314 Certificate serial: 0490 Authority key identifier: BB:0E:55:03:79:FE:A2:81:A8:81:A6:74:79:B7:7C:86:02:D0:13:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/53E4239C99F811ECA0663D19C4F9AE02.roa Signing time: Wed 01 Oct 2025 00:56:27 +0000 ROA not before: Wed 01 Oct 2025 00:56:27 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58411 IP address blocks: 2407:d040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.crl rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 02:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1168 (0x490) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138C14, serialNumber=BB0E550379FEA281A881A67479B77C8602D01314 Validity Not Before: Oct 1 00:56:27 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dc7c3b-1ded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:91:12:9d:d8:72:12:5c:14:d1:06:e1:bf:e1: ce:06:76:71:cb:e4:b8:25:04:ed:d6:cc:a9:fc:7c: 23:e9:03:e0:02:95:bb:24:b8:c4:ec:c1:42:5c:5f: d1:1c:26:c2:16:0d:27:17:0a:ef:bc:5c:c3:78:7b: 5e:66:98:09:9a:a4:41:df:0f:f4:55:63:b9:a1:a9: 6e:27:f8:fe:ff:49:8d:5d:39:bf:7f:be:d8:e9:b0: 4d:bd:21:f4:f2:8d:83:09:33:69:1f:ba:b6:22:25: d8:67:36:5d:2a:3c:6c:21:12:1a:31:0d:bb:83:ec: 43:ac:b2:78:68:14:60:ee:65:22:4b:10:d2:2b:38: 91:1e:97:c8:b6:fa:a0:0b:b2:3f:41:b4:99:13:b1: a8:e2:3a:11:d8:22:60:aa:67:34:14:92:a1:cf:6a: 7a:78:71:18:65:09:cf:b8:69:4f:f9:83:80:fa:47: 1d:a7:97:40:cc:c6:a4:ce:48:ac:fd:70:27:26:46: a9:01:22:f4:8e:a4:74:38:25:bf:33:0b:56:e1:b0: 13:7c:b9:36:c1:4f:04:ca:5f:1b:94:02:61:bc:bb: d5:78:de:a2:90:84:18:69:2f:c2:96:e8:c2:36:08: 66:85:6d:f7:35:a7:f0:c0:b6:0f:ad:33:1d:10:b3: 66:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:93:D3:D9:74:BA:1A:06:0F:6A:B4:83:67:27:C2:A3:1F:74:1C:38 X509v3 Authority Key Identifier: keyid:BB:0E:55:03:79:FE:A2:81:A8:81:A6:74:79:B7:7C:86:02:D0:13:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/53E4239C99F811ECA0663D19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:d040::/32 Signature Algorithm: sha256WithRSAEncryption 7f:f5:e6:46:38:37:b9:5c:d7:b2:8e:ad:02:aa:4c:04:b5:27: 59:00:72:bd:23:7b:a5:1d:3a:98:83:10:82:25:2a:f5:c7:b2: ea:e6:e4:f2:b0:f7:1c:82:c4:9a:16:ad:71:03:ab:f5:c0:32: e7:5f:c6:02:bc:2d:6f:6b:66:df:c8:c0:86:43:2d:64:64:ba: e8:63:d0:9b:52:07:3a:eb:c9:50:90:12:3e:6f:62:db:9b:21: 43:dd:7d:fb:cc:12:b1:ea:04:4e:c1:c2:10:98:84:09:95:58: 4d:2b:6b:24:4d:39:b8:70:a9:58:7a:ce:d4:53:97:c1:b8:2e: 2d:6f:51:40:c7:fe:d4:3f:d2:ab:30:0a:c9:00:5f:1d:18:4c: 84:c8:60:ef:7d:f8:6b:32:2d:b0:0d:a9:72:55:ab:3a:89:8a: 96:23:ab:32:ec:67:d2:2e:16:00:0a:34:10:72:2f:94:13:f0: 53:a8:4c:6e:4f:f7:93:08:08:c0:22:71:e4:fc:fc:b5:d5:41: b4:51:ba:99:9c:ff:5e:9e:b0:f8:52:77:3d:89:01:57:9c:61: fb:6f:c6:f0:2e:1c:42:76:d9:a2:06:16:de:ef:d1:36:f1:e1: d3:0d:43:99:79:a0:c1:5b:f4:ba:c1:0f:c7:98:87:0b:f2:38: 56:9b:7c:0d -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhDMTQxMTAvBgNVBAUTKEJCMEU1NTAzNzlGRUEyODFBODgxQTY3NDc5Qjc3Qzg2 MDJEMDEzMTQwHhcNMjUxMDAxMDA1NjI3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjN2MzYi0xZGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspESndhyElwU0Qbhv+HOBnZxy+S4JQTt1syp/Hwj6QPgApW7JLjE7MFCXF/R HCbCFg0nFwrvvFzDeHteZpgJmqRB3w/0VWO5oaluJ/j+/0mNXTm/f77Y6bBNvSH0 8o2DCTNpH7q2IiXYZzZdKjxsIRIaMQ27g+xDrLJ4aBRg7mUiSxDSKziRHpfItvqg C7I/QbSZE7Go4joR2CJgqmc0FJKhz2p6eHEYZQnPuGlP+YOA+kcdp5dAzMakzkis /XAnJkapASL0jqR0OCW/MwtW4bATfLk2wU8Eyl8blAJhvLvVeN6ikIQYaS/ClujC NghmhW33NafwwLYPrTMdELNmXQIDAQABo4ICljCCApIwHQYDVR0OBBYEFFCT09l0 uhoGD2q0g2cnwqMfdBw4MB8GA1UdIwQYMBaAFLsOVQN5/qKBqIGmdHm3fIYC0BMU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEMxNC8zRTRDNDYzMDVC QzQxMUVDOTYyNzkzNTRDNEY5QUUwMi91dzVWQTNuLW9vR29nYVowZWJkOGhnTFFF eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V3NVZBM24tb29Hb2dhWjBlYmQ4aGdMUUV4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzhDMTQvM0U0QzQ2MzA1QkM0MTFFQzk2Mjc5MzU0QzRGOUFFMDIvNTNFNDIzOUM5 OUY4MTFFQ0EwNjYzRDE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkB9BAMA0GCSqGSIb3DQEBCwUAA4IBAQB/9eZGODe5XNey jq0CqkwEtSdZAHK9I3ulHTqYgxCCJSr1x7Lq5uTysPccgsSaFq1xA6v1wDLnX8YC vC1va2bfyMCGQy1kZLroY9CbUgc668lQkBI+b2LbmyFD3X37zBKx6gROwcIQmIQJ lVhNK2skTTm4cKlYes7UU5fBuC4tb1FAx/7UP9KrMArJAF8dGEyEyGDvffhrMi2w DalyVas6iYqWI6sy7GfSLhYACjQQci+UE/BTqExuT/eTCAjAInHk/Py11UG0UbqZ nP9enrD4Unc9iQFXnGH7b8bwLhxCdtmiBhbe79E28eHTDUOZeaDBW/S6wQ/HmIcL 8jhWm3wN -----END CERTIFICATE-----Generated at Tue Oct 14 13:05:44 2025 by rpki-client