$ rpki-client -vvf rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/BB982DDC211611F08D31C34DC4F9AE02.roa File: BB982DDC211611F08D31C34DC4F9AE02.roa (raw, json) Hash identifier: kdnh0lY80uMfga5l6WUOTwTWs5iXaL/0Tn0l6KDoAeU= Subject key identifier: 92:2C:DF:4A:45:FC:B2:FC:7B:F9:FB:E1:96:32:84:04:45:BB:D7:E1 Certificate issuer: /CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Certificate serial: 016A Authority key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/BB982DDC211611F08D31C34DC4F9AE02.roa Signing time: Fri 29 Aug 2025 05:25:36 +0000 ROA not before: Fri 29 Aug 2025 05:25:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 4515 IP address blocks: 2403:27c0:c02::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:05:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A66F, serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Validity Not Before: Aug 29 05:25:36 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b139d0-d9cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:58:8c:a9:c2:3f:0e:90:65:c2:5d:dd:79:7a: d2:cd:04:54:11:dd:e2:20:09:c2:aa:68:ac:3f:38: 2c:4f:fa:aa:3d:d5:33:e7:12:62:f5:e0:f5:10:3a: c8:57:d1:4e:6b:67:5d:02:d7:96:d3:7d:f0:b9:f9: df:9f:df:d0:d0:b5:3c:e0:8e:c1:64:bf:08:f6:f8: 1d:83:7e:06:90:bb:e7:f3:28:a6:f3:38:36:24:06: 73:cf:7d:b1:f4:3f:cc:fd:18:d2:9b:47:fe:c9:49: a4:08:52:0b:b0:ce:61:9b:c4:99:25:28:0f:6c:2b: f3:b4:aa:91:31:1d:12:9e:da:67:7f:7f:3a:df:12: 87:df:5e:cd:70:77:ae:e4:e0:ce:73:7f:8b:5c:30: 3c:de:bc:1c:17:d1:6b:9b:25:9f:a1:16:6c:89:6f: 3a:6e:6d:6c:ae:db:ae:d8:1c:23:c0:41:c3:d3:a6: 3f:07:30:8b:4e:48:29:69:84:c7:88:a6:11:b7:a5: d4:47:70:7d:db:50:de:31:3a:f1:7d:08:e7:a8:1a: 20:1d:3c:d4:aa:e3:0c:02:20:95:de:64:c7:d0:3a: 83:7c:e4:f8:03:f9:e7:2e:46:23:58:38:a6:db:25: 4a:e7:97:b4:bb:0e:c2:5c:47:c9:60:3a:d6:fc:de: 39:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:2C:DF:4A:45:FC:B2:FC:7B:F9:FB:E1:96:32:84:04:45:BB:D7:E1 X509v3 Authority Key Identifier: keyid:B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/BB982DDC211611F08D31C34DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:27c0:c02::/47 Signature Algorithm: sha256WithRSAEncryption 8d:da:1d:b8:10:63:12:92:b3:01:77:81:cd:35:32:8e:25:ae: 62:f1:44:88:29:35:89:7c:39:dd:37:ad:af:26:f5:0a:ab:21: 69:44:35:6d:07:3e:f2:02:e0:65:4f:cb:75:a9:5d:97:f4:bf: 42:71:6d:d0:ed:c4:22:51:9f:96:c0:48:05:de:1e:b1:b3:36: 68:e7:7d:81:2a:92:2b:4f:f1:a2:db:9b:6e:41:ed:12:4f:a4: e3:bd:ce:3c:6e:68:19:49:f1:ef:3c:28:09:5f:d3:fc:ac:b6: fc:1e:2e:38:53:b3:f8:5d:e8:a9:14:89:66:b7:a3:97:36:d7: 4f:38:a6:e0:c1:5a:2a:26:f1:06:39:fb:ff:eb:15:65:f4:bf: b5:d9:9a:96:17:6e:31:bc:d8:8d:29:50:75:79:d4:34:8e:bf: e3:db:39:67:ca:fc:1d:8c:8e:e3:c9:97:78:10:c4:02:e6:a8: 8d:4c:11:5a:83:b3:0e:3f:80:53:a8:ce:54:c0:c1:d0:2e:6c: d3:de:bd:8a:5e:61:f1:68:32:cd:90:f1:0e:a2:04:0c:3b:a0: 1a:ca:69:d9:21:4f:8f:a9:b7:2f:a4:83:c9:94:5c:2d:5d:9e: 32:53:1c:ba:ea:8f:9d:ce:76:6f:77:05:90:24:ce:aa:6e:d1: 29:75:bc:c0 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2NkYxMTAvBgNVBAUTKEIyMkMzRDBBQkNEMzkxOTQ4NkEzRTYxRThENzg4OTIz OTIyQkY2QTUwHhcNMjUwODI5MDUyNTM2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMzlkMC1kOWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFiMqcI/DpBlwl3deXrSzQRUEd3iIAnCqmisPzgsT/qqPdUz5xJi9eD1EDrI V9FOa2ddAteW033wufnfn9/Q0LU84I7BZL8I9vgdg34GkLvn8yim8zg2JAZzz32x 9D/M/RjSm0f+yUmkCFILsM5hm8SZJSgPbCvztKqRMR0Sntpnf3863xKH317NcHeu 5ODOc3+LXDA83rwcF9FrmyWfoRZsiW86bm1srtuu2BwjwEHD06Y/BzCLTkgpaYTH iKYRt6XUR3B921DeMTrxfQjnqBogHTzUquMMAiCV3mTH0DqDfOT4A/nnLkYjWDim 2yVK55e0uw7CXEfJYDrW/N455wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJIs30pF /LL8e/n74ZYyhARFu9fhMB8GA1UdIwQYMBaAFLIsPQq805GUhqPmHo14iSOSK/al MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY2Ri84RkNDOUQyOEM2 RjkxMUVFOTdFNkZCMURDNEY5QUUwMi9zaXc5Q3J6VGtaU0dvLVllalhpSkk1SXI5 cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NpdzlDcnpUa1pTR28tWWVqWGlKSTVJcjlxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E2NkYvOEZDQzlEMjhDNkY5MTFFRTk3RTZGQjFEQzRGOUFFMDIvQkI5ODJEREMy MTE2MTFGMDhEMzFDMzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkAyfADAIwDQYJKoZIhvcNAQELBQADggEBAI3aHbgQYxKS swF3gc01Mo4lrmLxRIgpNYl8Od03ra8m9QqrIWlENW0HPvIC4GVPy3WpXZf0v0Jx bdDtxCJRn5bASAXeHrGzNmjnfYEqkitP8aLbm25B7RJPpOO9zjxuaBlJ8e88KAlf 0/ystvweLjhTs/hd6KkUiWa3o5c21084puDBWiom8QY5+//rFWX0v7XZmpYXbjG8 2I0pUHV51DSOv+PbOWfK/B2MjuPJl3gQxALmqI1MEVqDsw4/gFOozlTAwdAubNPe vYpeYfFoMs2Q8Q6iBAw7oBrKadkhT4+pty+kg8mUXC1dnjJTHLrqj53Odm93BZAk zqpu0Sl1vMA= -----END CERTIFICATE-----Generated at Tue Sep 9 02:13:24 2025 by rpki-client