$ rpki-client -vvf rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/DF8D07E8FB7E11EFA25DF775C4F9AE02.roa File: DF8D07E8FB7E11EFA25DF775C4F9AE02.roa (raw, json) Hash identifier: Leqb5XfRofLJ3cqjCHqmyKArkM3Rck1Tf0kybehmhSI= Subject key identifier: C5:BB:C4:DB:43:94:C0:57:87:31:E4:9F:8B:47:21:15:BC:35:87:C6 Certificate issuer: /CN=A9166C39/serialNumber=07E051B41ED82E3F53BF59AA84DD9ACA20CFB54C Certificate serial: 0901 Authority key identifier: 07:E0:51:B4:1E:D8:2E:3F:53:BF:59:AA:84:DD:9A:CA:20:CF:B5:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/DF8D07E8FB7E11EFA25DF775C4F9AE02.roa Signing time: Wed 10 Sep 2025 21:01:50 +0000 ROA not before: Wed 10 Sep 2025 21:01:50 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 400105 IP address blocks: 2001:df4:d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 20:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2305 (0x901) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166C39, serialNumber=07E051B41ED82E3F53BF59AA84DD9ACA20CFB54C Validity Not Before: Sep 10 21:01:50 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68c1e73e-30cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:37:c0:3b:4d:3d:0f:dc:28:12:c6:1e:ed:46: 26:0b:4a:99:b4:0d:52:24:40:b4:59:00:88:07:f1: db:12:32:d4:1b:15:1f:fc:d5:11:70:b1:07:84:e1: 44:c7:a3:a4:da:18:32:3b:47:52:de:3d:33:e3:4f: ed:1c:c4:49:46:28:54:ba:07:39:d3:47:a2:63:03: 02:6b:d6:c2:ab:9b:69:7c:21:91:a0:95:45:fc:09: da:88:a2:a4:13:cb:2a:72:03:e1:9b:66:ca:e2:92: 77:43:99:87:7d:4d:e9:59:9e:e3:01:7a:6f:9f:23: 7d:ae:fd:b5:0c:6a:66:4c:d9:b9:b2:93:41:c0:77: 0c:c0:38:f0:3f:a6:56:85:66:12:ac:25:77:bf:55: 53:a8:59:ca:9a:51:ba:10:6e:64:fa:08:fb:14:d7: c5:ea:d4:20:09:69:95:95:ff:e1:d4:ae:ea:da:6b: 99:78:c4:14:30:19:10:92:ae:09:97:62:a8:a8:79: bb:13:7f:22:57:2b:f1:1d:4d:e1:c8:9e:2a:29:ba: 63:aa:9a:65:b1:12:d5:ea:76:6b:a5:a1:5b:f6:12: 6e:59:8d:ce:e1:03:0e:2b:d7:f5:15:99:47:4a:fe: 78:4b:ec:d7:3f:b9:a7:fe:80:89:3d:89:0b:30:55: f1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:BB:C4:DB:43:94:C0:57:87:31:E4:9F:8B:47:21:15:BC:35:87:C6 X509v3 Authority Key Identifier: keyid:07:E0:51:B4:1E:D8:2E:3F:53:BF:59:AA:84:DD:9A:CA:20:CF:B5:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/DF8D07E8FB7E11EFA25DF775C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:d80::/48 Signature Algorithm: sha256WithRSAEncryption 04:7f:2b:d1:78:60:44:7d:6b:26:ff:ca:c4:cd:ff:3c:18:f3: 5d:82:69:97:96:9a:b5:78:d6:fb:1a:ba:22:59:c6:ec:4e:6a: fd:0e:1f:0a:76:8d:b3:05:ab:d9:86:2b:d0:31:14:77:38:6d: 9a:e8:e2:5e:e0:46:53:bb:08:20:74:e9:6e:65:15:59:37:c3: 4b:41:bc:47:93:34:82:f9:3a:fa:b0:f5:c3:b7:06:88:1f:f7: 2b:23:de:0b:ec:84:69:7d:7d:f0:49:6e:fe:ff:a8:60:40:66: b5:43:6b:8a:33:7a:07:cf:8e:94:d9:09:45:49:4f:5c:c7:ab: c8:94:c9:ef:cb:42:f1:5f:b9:cd:ae:4a:88:67:95:6a:15:89: 28:f6:d9:0f:58:fd:47:d0:73:cb:7e:03:04:69:8f:3b:34:d6: 53:ff:a5:02:b0:e8:66:6a:3d:72:d0:f6:12:f3:a5:f2:ef:99: d2:9b:21:55:51:ee:cf:75:38:3e:1d:41:28:ad:b9:ea:60:b0: 71:f6:2c:89:53:c6:50:79:ca:04:5b:f9:0e:44:28:b7:e1:c9: 6f:2a:5a:f0:11:9b:49:7d:30:aa:10:ae:3b:d0:25:7e:0d:32: 63:9c:62:3f:8b:7b:9e:f8:83:d4:58:d1:29:30:4b:d7:80:b2: 81:39:e6:af -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZDMzkxMTAvBgNVBAUTKDA3RTA1MUI0MUVEODJFM0Y1M0JGNTlBQTg0REQ5QUNB MjBDRkI1NEMwHhcNMjUwOTEwMjEwMTUwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMxZTczZS0zMGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjfAO009D9woEsYe7UYmC0qZtA1SJEC0WQCIB/HbEjLUGxUf/NURcLEHhOFE x6Ok2hgyO0dS3j0z40/tHMRJRihUugc500eiYwMCa9bCq5tpfCGRoJVF/AnaiKKk E8sqcgPhm2bK4pJ3Q5mHfU3pWZ7jAXpvnyN9rv21DGpmTNm5spNBwHcMwDjwP6ZW hWYSrCV3v1VTqFnKmlG6EG5k+gj7FNfF6tQgCWmVlf/h1K7q2muZeMQUMBkQkq4J l2KoqHm7E38iVyvxHU3hyJ4qKbpjqpplsRLV6nZrpaFb9hJuWY3O4QMOK9f1FZlH Sv54S+zXP7mn/oCJPYkLMFXxqwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMW7xNtD lMBXhzHkn4tHIRW8NYfGMB8GA1UdIwQYMBaAFAfgUbQe2C4/U79ZqoTdmsogz7VM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkMzOS8yN0VFQ0ZEMEJC OTcxMUVBQTFBNjZDNTNDNEY5QUUwMi9CLUJSdEI3WUxqOVR2MW1xaE4yYXlpRFB0 VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ItQlJ0QjdZTGo5VHYxbXFoTjJheWlEUHRVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjZDMzkvMjdFRUNGRDBCQjk3MTFFQUExQTY2QzUzQzRGOUFFMDIvREY4RDA3RThG QjdFMTFFRkEyNURGNzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30DYAwDQYJKoZIhvcNAQELBQADggEBAAR/K9F4YER9 ayb/ysTN/zwY812CaZeWmrV41vsauiJZxuxOav0OHwp2jbMFq9mGK9AxFHc4bZro 4l7gRlO7CCB06W5lFVk3w0tBvEeTNIL5Ovqw9cO3Bogf9ysj3gvshGl9ffBJbv7/ qGBAZrVDa4ozegfPjpTZCUVJT1zHq8iUye/LQvFfuc2uSohnlWoViSj22Q9Y/UfQ c8t+AwRpjzs01lP/pQKw6GZqPXLQ9hLzpfLvmdKbIVVR7s91OD4dQSituepgsHH2 LIlTxlB5ygRb+Q5EKLfhyW8qWvARm0l9MKoQrjvQJX4NMmOcYj+Le574g9RY0Skw S9eAsoE55q8= -----END CERTIFICATE-----Generated at Mon Oct 27 17:37:01 2025 by rpki-client