$ rpki-client -vvf rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/8FD9EFB21C4B11EFA5B6383EC4F9AE02.roa File: 8FD9EFB21C4B11EFA5B6383EC4F9AE02.roa (raw, json) Hash identifier: fSxpUr+WUEiMsQuXQ14Z3BJW2UDp3SS+KK2DrcMSuYE= Subject key identifier: A6:DE:A1:1F:C7:3D:AC:3F:83:4F:C2:F6:F6:44:AC:68:83:55:4F:6F Certificate issuer: /CN=A917BEA7/serialNumber=0B8D638FFD38B1F77E48E1BB5DF29929CE7D78B5 Certificate serial: 01D4 Authority key identifier: 0B:8D:63:8F:FD:38:B1:F7:7E:48:E1:BB:5D:F2:99:29:CE:7D:78:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/8FD9EFB21C4B11EFA5B6383EC4F9AE02.roa Signing time: Sun 31 Aug 2025 04:21:17 +0000 ROA not before: Sun 31 Aug 2025 04:21:17 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 10111 IP address blocks: 2401:e60:10::/44 maxlen: 44 2401:e60:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.crl rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 03:39:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BEA7, serialNumber=0B8D638FFD38B1F77E48E1BB5DF29929CE7D78B5 Validity Not Before: Aug 31 04:21:17 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68b3cdbd-b59d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:1f:22:17:da:d9:99:e6:bc:41:98:2d:ed:e0: e7:bd:61:16:ce:d6:a8:3b:89:9f:69:fe:f5:29:8b: 6e:b9:af:3d:a1:c9:8f:d4:55:87:f6:69:cc:d5:80: 76:4a:fb:1c:e1:78:e2:fa:72:4b:62:df:0f:06:8b: 52:b5:56:bc:99:58:da:83:e6:fc:2b:d6:45:94:ec: 00:96:f4:63:c8:96:ed:ac:c4:75:0a:73:7b:7c:9e: 5b:b9:b0:03:e9:11:b0:e9:18:83:15:48:d0:0e:79: a1:70:9e:e8:4a:38:f2:7d:0c:6b:21:7d:8d:af:c7: 5f:cf:bd:5e:fc:68:5b:75:33:72:b5:a9:24:a9:b7: b3:d9:53:02:a2:9c:23:b4:1f:cf:d0:28:ef:40:27: c8:2b:8a:8b:a9:23:eb:72:68:59:2e:ae:95:41:c2: 56:ab:62:b5:54:48:07:d7:dd:e0:47:31:f8:6b:c6: b8:fd:62:49:3e:58:90:bf:3c:19:71:44:13:8c:23: a2:a9:de:79:11:5d:a1:86:13:d4:bb:f3:3c:9e:47: 83:99:66:68:0a:6d:1f:e7:bf:ad:1e:fd:47:0c:df: d7:22:cd:67:20:ec:78:57:74:e5:fb:25:7d:33:9f: f7:4e:84:81:18:dd:c6:a3:af:8d:df:1c:f4:b2:fe: d9:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:DE:A1:1F:C7:3D:AC:3F:83:4F:C2:F6:F6:44:AC:68:83:55:4F:6F X509v3 Authority Key Identifier: keyid:0B:8D:63:8F:FD:38:B1:F7:7E:48:E1:BB:5D:F2:99:29:CE:7D:78:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/8FD9EFB21C4B11EFA5B6383EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e60:10::/44 Signature Algorithm: sha256WithRSAEncryption 78:08:a0:bf:0d:98:50:1a:e2:06:39:b3:fb:a9:12:93:0c:28: 1c:e3:7b:e7:ec:a5:28:7d:a6:e4:8b:9a:bd:af:05:d5:d1:19: 2d:20:b1:56:36:5e:49:ff:77:43:89:98:ef:bc:03:3a:b4:b3: 85:70:3f:ef:94:43:bb:fe:e3:bf:00:0e:04:19:65:ca:13:71: 36:5e:99:cf:2b:b2:c8:34:c3:32:8f:d7:84:6e:d3:4c:07:99: 44:4e:dc:1d:d9:7e:c7:6d:6b:7b:e7:d3:c7:62:d1:f1:ad:f1: c7:bc:e1:86:e4:bf:c2:d7:f5:fc:53:b9:b1:0f:af:ef:48:2e: d9:6a:97:1a:b8:fc:cb:04:8f:54:80:6f:cf:3c:8b:5d:98:01: 30:89:e7:3f:92:2c:74:9c:61:83:c9:b5:46:ba:7a:75:93:61: ba:6b:82:89:7c:3f:bb:8e:8e:4c:48:0b:c1:1b:02:8b:e2:ea: 0c:87:71:36:55:54:0b:e7:7e:b1:86:34:06:d1:e7:b9:97:4f: 13:fc:d0:1b:12:f3:cf:72:41:5d:18:7a:31:cc:13:75:14:d2: e8:d0:b0:2d:f2:db:48:c9:55:4d:2e:46:f2:bd:a2:dc:6b:a8: 6b:c8:d7:38:0e:06:ef:73:c0:58:2f:70:ea:8c:66:9b:9a:7c: 1a:61:b8:aa -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JFQTcxMTAvBgNVBAUTKDBCOEQ2MzhGRkQzOEIxRjc3RTQ4RTFCQjVERjI5OTI5 Q0U3RDc4QjUwHhcNMjUwODMxMDQyMTE3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzY2RiZC1iNTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4h8iF9rZmea8QZgt7eDnvWEWztaoO4mfaf71KYtuua89ocmP1FWH9mnM1YB2 Svsc4Xji+nJLYt8PBotStVa8mVjag+b8K9ZFlOwAlvRjyJbtrMR1CnN7fJ5bubAD 6RGw6RiDFUjQDnmhcJ7oSjjyfQxrIX2Nr8dfz71e/GhbdTNytakkqbez2VMCopwj tB/P0CjvQCfIK4qLqSPrcmhZLq6VQcJWq2K1VEgH193gRzH4a8a4/WJJPliQvzwZ cUQTjCOiqd55EV2hhhPUu/M8nkeDmWZoCm0f57+tHv1HDN/XIs1nIOx4V3Tl+yV9 M5/3ToSBGN3Go6+N3xz0sv7ZQwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKbeoR/H Paw/g0/C9vZErGiDVU9vMB8GA1UdIwQYMBaAFAuNY4/9OLH3fkjhu13ymSnOfXi1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkVBNy8wNDRGNjQ0ODEx NjgxMUVFQUM2M0MyMzRDNEY5QUUwMi9DNDFqal8wNHNmZC1TT0c3WGZLWktjNTll TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M0MWpqXzA0c2ZkLVNPRzdYZktaS2M1OWVMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JFQTcvMDQ0RjY0NDgxMTY4MTFFRUFDNjNDMjM0QzRGOUFFMDIvOEZEOUVGQjIx QzRCMTFFRkE1QjYzODNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkAQ5gABAwDQYJKoZIhvcNAQELBQADggEBAHgIoL8NmFAa 4gY5s/upEpMMKBzje+fspSh9puSLmr2vBdXRGS0gsVY2Xkn/d0OJmO+8Azq0s4Vw P++UQ7v+478ADgQZZcoTcTZemc8rssg0wzKP14Ru00wHmURO3B3Zfsdta3vn08di 0fGt8ce84Ybkv8LX9fxTubEPr+9ILtlqlxq4/MsEj1SAb888i12YATCJ5z+SLHSc YYPJtUa6enWTYbprgol8P7uOjkxIC8EbAovi6gyHcTZVVAvnfrGGNAbR57mXTxP8 0BsS889yQV0YejHME3UU0ujQsC3y20jJVU0uRvK9otxrqGvI1zgOBu9zwFgvcOqM ZpuafBphuKo= -----END CERTIFICATE-----Generated at Sat Sep 6 13:14:54 2025 by rpki-client