$ rpki-client -vvf rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/BB17221E211611F08D31C34DC4F9AE02.roa File: BB17221E211611F08D31C34DC4F9AE02.roa (raw, json) Hash identifier: ROJzIN797AliUmkcNaXXEwujC8/puzfhlC19YDeoFFk= Subject key identifier: 15:F5:EF:18:72:F1:6B:83:22:41:BA:C6:82:BD:76:44:B6:39:E7:40 Certificate issuer: /CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Certificate serial: 0167 Authority key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/BB17221E211611F08D31C34DC4F9AE02.roa Signing time: Fri 29 Aug 2025 05:25:34 +0000 ROA not before: Fri 29 Aug 2025 05:25:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137897 IP address blocks: 2403:27c0:c02::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:05:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A66F, serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Validity Not Before: Aug 29 05:25:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b139cd-50bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:dd:a5:7f:7b:83:fc:3c:2b:fd:ac:7b:64:ca: 5f:07:5b:85:46:55:66:fc:45:cb:09:11:56:55:ae: f9:3a:25:13:98:d4:72:6c:35:3b:b2:d0:89:38:e5: 16:63:4b:41:ee:ca:f0:c1:c5:e6:9c:ef:fa:1a:3a: 9e:3c:c7:9d:ea:f8:e6:5d:83:0a:70:cb:d1:66:67: b6:1c:cd:60:1e:23:f6:7c:20:5a:8f:b0:93:20:95: 98:ec:87:63:d4:d5:f4:3e:f8:cb:04:c6:ea:38:28: 7e:76:8e:04:ef:00:75:cc:05:41:44:76:12:ad:d3: 49:17:ec:6c:1a:68:e8:47:77:88:dc:ae:b2:2d:83: 2c:c0:e1:83:9b:45:f5:e7:9b:66:cb:92:c4:9f:0f: 2c:41:f6:3a:2a:77:4e:58:54:da:a0:6d:b4:2f:88: e9:37:02:11:f9:11:05:07:8e:58:2a:13:f4:bb:fe: b1:b2:94:37:20:5b:39:6f:0f:29:d6:63:aa:c2:94: 4d:b8:2c:3c:c8:cd:3e:08:93:d0:08:65:96:7b:9f: d6:3a:9b:80:88:a2:67:8e:8d:e5:51:1e:ff:ba:30: d3:4a:17:c1:ff:0e:f3:b6:f0:e6:a1:6b:a0:a7:a2: a0:c4:71:a2:35:a7:a0:6f:5e:3a:ad:ac:e2:ae:7c: 27:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F5:EF:18:72:F1:6B:83:22:41:BA:C6:82:BD:76:44:B6:39:E7:40 X509v3 Authority Key Identifier: keyid:B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/BB17221E211611F08D31C34DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:27c0:c02::/47 Signature Algorithm: sha256WithRSAEncryption 95:42:bd:93:12:6e:b7:0b:08:df:ca:35:19:dd:c1:1c:82:ff: ce:8e:5b:f0:67:39:18:c7:6a:fc:a1:04:e4:42:1e:4d:a1:bf: 95:59:7a:b7:8a:99:4e:2f:42:ee:ee:c3:a9:f5:6b:ee:4b:d9: 9b:77:f0:77:64:d8:b6:f2:8e:71:4a:34:8d:ac:df:c5:59:05: 70:35:4f:ff:a6:1c:cd:95:17:77:1f:7d:3b:b4:75:ec:46:a1: 7e:d9:f3:6f:90:80:b3:a2:05:65:88:36:e5:33:79:e7:e2:76: 5e:d7:cb:ae:26:3d:e0:1c:6d:b3:ba:f7:99:23:4c:a4:98:e7: 53:3f:f7:c0:8b:5a:09:76:c7:fb:88:e5:2e:72:c6:1d:75:1c: 9a:f9:42:d5:20:b3:23:91:2b:4b:a8:66:77:e6:0b:31:8f:46: 2c:bd:c1:fd:e3:10:69:2a:9d:47:a8:e1:38:1c:58:8e:6a:a9: b4:02:e3:7c:da:26:8b:a2:38:da:e9:ef:ad:2d:d2:b0:61:96: 6c:32:b0:78:49:54:32:ba:38:26:49:7d:0e:d4:45:96:fe:f1: 67:d6:ac:e9:97:a9:e4:f1:e8:a9:e1:9b:1f:fb:aa:66:de:07: 97:75:f4:e7:17:e9:c0:18:91:48:28:72:f7:6b:23:61:a6:05: c4:4f:de:40 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2NkYxMTAvBgNVBAUTKEIyMkMzRDBBQkNEMzkxOTQ4NkEzRTYxRThENzg4OTIz OTIyQkY2QTUwHhcNMjUwODI5MDUyNTMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMzljZC01MGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6N2lf3uD/Dwr/ax7ZMpfB1uFRlVm/EXLCRFWVa75OiUTmNRybDU7stCJOOUW Y0tB7srwwcXmnO/6GjqePMed6vjmXYMKcMvRZme2HM1gHiP2fCBaj7CTIJWY7Idj 1NX0PvjLBMbqOCh+do4E7wB1zAVBRHYSrdNJF+xsGmjoR3eI3K6yLYMswOGDm0X1 55tmy5LEnw8sQfY6KndOWFTaoG20L4jpNwIR+REFB45YKhP0u/6xspQ3IFs5bw8p 1mOqwpRNuCw8yM0+CJPQCGWWe5/WOpuAiKJnjo3lUR7/ujDTShfB/w7ztvDmoWug p6KgxHGiNaegb146razirnwn3QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBX17xhy 8WuDIkG6xoK9dkS2OedAMB8GA1UdIwQYMBaAFLIsPQq805GUhqPmHo14iSOSK/al MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY2Ri84RkNDOUQyOEM2 RjkxMUVFOTdFNkZCMURDNEY5QUUwMi9zaXc5Q3J6VGtaU0dvLVllalhpSkk1SXI5 cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NpdzlDcnpUa1pTR28tWWVqWGlKSTVJcjlxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E2NkYvOEZDQzlEMjhDNkY5MTFFRTk3RTZGQjFEQzRGOUFFMDIvQkIxNzIyMUUy MTE2MTFGMDhEMzFDMzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkAyfADAIwDQYJKoZIhvcNAQELBQADggEBAJVCvZMSbrcL CN/KNRndwRyC/86OW/BnORjHavyhBORCHk2hv5VZereKmU4vQu7uw6n1a+5L2Zt3 8Hdk2LbyjnFKNI2s38VZBXA1T/+mHM2VF3cffTu0dexGoX7Z82+QgLOiBWWINuUz eefidl7Xy64mPeAcbbO695kjTKSY51M/98CLWgl2x/uI5S5yxh11HJr5QtUgsyOR K0uoZnfmCzGPRiy9wf3jEGkqnUeo4TgcWI5qqbQC43zaJouiONrp760t0rBhlmwy sHhJVDK6OCZJfQ7URZb+8WfWrOmXqeTx6Knhmx/7qmbeB5d19OcX6cAYkUgocvdr I2GmBcRP3kA= -----END CERTIFICATE-----Generated at Sun Sep 7 15:21:18 2025 by rpki-client