$ rpki-client -vvf rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/FF0025F80B7811EEB2EFC643C4F9AE02.roa File: FF0025F80B7811EEB2EFC643C4F9AE02.roa (raw, json) Hash identifier: q8NO+KLP5CuELgICWVCpo8gcxUyHjK7jNGZWSmFkgjE= Subject key identifier: 88:D1:8C:03:47:B4:D6:BA:2D:6C:00:E5:48:CB:12:55:2F:17:C6:D7 Certificate issuer: /CN=A915B536/serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Certificate serial: 0819 Authority key identifier: 82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/FF0025F80B7811EEB2EFC643C4F9AE02.roa Signing time: Fri 04 Apr 2025 21:34:35 +0000 ROA not before: Fri 04 Apr 2025 21:34:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45220 IP address blocks: 2001:dd8:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 21:27:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2073 (0x819) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B536, serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Validity Not Before: Apr 4 21:34:35 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f0506b-81e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a2:5c:dc:11:e4:d5:b0:17:25:e3:5f:e3:bb: c0:57:01:c2:b6:f8:18:ca:4b:24:bd:b7:d8:89:9c: 9c:19:4b:0c:09:ad:a0:d3:6e:bc:ee:f5:29:b0:18: 20:40:5e:fd:d0:ea:84:82:e3:3f:be:0a:ef:88:f4: 6b:f0:ef:19:cc:94:71:5a:41:d8:a3:2e:b9:bf:d6: c6:7c:b3:16:6a:95:79:98:2a:89:fb:a2:d3:77:c1: 43:e8:2b:c7:4d:9d:74:b7:13:71:a1:d9:ab:c6:0f: 4f:07:0b:c6:07:f0:85:38:46:20:89:73:ae:29:65: fa:4d:d4:6e:2c:29:a3:82:5b:d0:1e:63:c8:3e:60: ef:45:9c:b8:5d:94:38:fd:aa:a8:db:c6:14:5b:9f: 1b:70:c0:8a:e9:d9:19:eb:6e:68:1a:2f:a3:b5:00: e0:64:8f:f1:9f:2b:4f:83:73:b1:e1:32:e8:8c:44: 15:82:eb:ac:48:79:da:56:28:31:74:5d:06:5b:72: 11:7a:3d:aa:d2:9f:f3:bc:b7:4d:fd:ad:2a:a8:07: 92:01:48:98:85:91:fd:a4:04:65:b2:d9:5a:00:83: 4c:d2:27:c0:e5:cc:8c:1d:f5:8f:6f:84:23:64:7f: e6:76:8b:48:70:03:fb:27:a5:ba:16:fb:87:40:37: 3b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:D1:8C:03:47:B4:D6:BA:2D:6C:00:E5:48:CB:12:55:2F:17:C6:D7 X509v3 Authority Key Identifier: keyid:82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/FF0025F80B7811EEB2EFC643C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:dd8:2::/48 Signature Algorithm: sha256WithRSAEncryption 6e:d7:e1:f7:ee:95:b6:b4:99:20:18:83:93:d1:f7:31:d7:10: 44:aa:a0:9c:cc:06:36:bd:6a:6f:37:e9:5c:d1:34:4c:9a:4e: 59:f9:4e:14:e6:dc:78:bd:72:13:ab:01:4e:a2:50:1e:62:25: 2c:54:a6:2f:f5:f3:5b:c8:96:7f:b7:08:27:ee:5a:f5:76:71: 20:6d:87:fd:bb:2c:bb:9f:f1:2c:36:61:f5:71:83:bd:3a:67: 22:83:fb:f9:46:7c:fb:18:53:36:de:14:04:2b:0a:4c:42:23: fa:62:3f:57:cd:26:57:ee:7a:b9:27:bc:c2:60:66:bb:0b:9e: 45:ac:8d:3c:6f:af:af:e6:9c:dc:bd:91:f0:ff:30:88:39:1f: ea:91:8c:0b:29:2f:8f:e0:7b:04:b9:e7:38:bd:75:0b:0c:4a: c6:e0:3e:c4:8c:4d:42:b8:1f:6a:da:28:e2:62:a4:86:52:ef: 72:6f:85:ca:8c:55:37:f0:a8:a7:57:3e:38:4b:53:6d:37:00: 24:11:5a:83:1a:af:ad:7e:6f:6a:1d:8c:fe:04:52:98:88:2a: d1:9a:d2:3a:52:90:8b:2a:6b:c2:c2:4a:66:18:73:1e:fb:5a: 34:a3:70:6f:b5:d2:14:61:f0:00:cf:f4:22:a0:25:02:81:9d: 30:21:dc:4a -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1MzYxMTAvBgNVBAUTKDgyMTBENDM3NTY2NTRCMTA3MDVENUFCM0YzN0JGMDFB NzhCNzhDNDcwHhcNMjUwNDA0MjEzNDM1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwNTA2Yi04MWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn6Jc3BHk1bAXJeNf47vAVwHCtvgYykskvbfYiZycGUsMCa2g02687vUpsBgg QF790OqEguM/vgrviPRr8O8ZzJRxWkHYoy65v9bGfLMWapV5mCqJ+6LTd8FD6CvH TZ10txNxodmrxg9PBwvGB/CFOEYgiXOuKWX6TdRuLCmjglvQHmPIPmDvRZy4XZQ4 /aqo28YUW58bcMCK6dkZ625oGi+jtQDgZI/xnytPg3Ox4TLojEQVguusSHnaVigx dF0GW3IRej2q0p/zvLdN/a0qqAeSAUiYhZH9pARlstlaAINM0ifA5cyMHfWPb4Qj ZH/mdotIcAP7J6W6FvuHQDc7AQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIjRjANH tNa6LWwA5UjLElUvF8bXMB8GA1UdIwQYMBaAFIIQ1DdWZUsQcF1as/N78Bp4t4xH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjUzNi9FNEM4ODk3MkVC NzQxMUVBQkEwQTlFNDhDNEY5QUUwMi9naERVTjFabFN4QndYVnF6ODN2d0duaTNq RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doRFVOMVpsU3hCd1hWcXo4M3Z3R25pM2pFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1MzYvRTRDODg5NzJFQjc0MTFFQUJBMEE5RTQ4QzRGOUFFMDIvRkYwMDI1Rjgw Qjc4MTFFRUIyRUZDNjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3YAAIwDQYJKoZIhvcNAQELBQADggEBAG7X4ffulba0 mSAYg5PR9zHXEESqoJzMBja9am836VzRNEyaTln5ThTm3Hi9chOrAU6iUB5iJSxU pi/181vIln+3CCfuWvV2cSBth/27LLuf8Sw2YfVxg706ZyKD+/lGfPsYUzbeFAQr CkxCI/piP1fNJlfuerknvMJgZrsLnkWsjTxvr6/mnNy9kfD/MIg5H+qRjAspL4/g ewS55zi9dQsMSsbgPsSMTUK4H2raKOJipIZS73JvhcqMVTfwqKdXPjhLU203ACQR WoMar61+b2odjP4EUpiIKtGa0jpSkIsqa8LCSmYYcx77WjSjcG+10hRh8ADP9CKg JQKBnTAh3Eo= -----END CERTIFICATE-----Generated at Tue Oct 28 14:21:14 2025 by rpki-client