$ rpki-client -vvf rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/18E7B6C80B5B11EB80C8B15FC4F9AE02.roa File: 18E7B6C80B5B11EB80C8B15FC4F9AE02.roa (raw, json) Hash identifier: hLP1YV65RYOfP9UTV36s4plQryfXd3KAYO5xxCl+fH0= Subject key identifier: 21:FC:2A:E8:14:DA:84:E7:A6:78:F2:94:17:77:E4:D7:26:40:D4:98 Certificate issuer: /CN=A917EA7F/serialNumber=18442A116C30101BEC8C89F4501978C092036BB8 Certificate serial: 07AC Authority key identifier: 18:44:2A:11:6C:30:10:1B:EC:8C:89:F4:50:19:78:C0:92:03:6B:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/18E7B6C80B5B11EB80C8B15FC4F9AE02.roa Signing time: Wed 02 Jul 2025 22:01:37 +0000 ROA not before: Wed 02 Jul 2025 22:01:37 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132825 IP address blocks: 2407:1100::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1964 (0x7ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EA7F, serialNumber=18442A116C30101BEC8C89F4501978C092036BB8 Validity Not Before: Jul 2 22:01:37 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6865ac41-eb2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:52:33:ff:d1:84:50:11:33:71:79:54:a6:cf: b6:64:b1:e5:20:a4:e7:06:96:27:73:95:42:25:07: 39:d8:73:f2:2f:0a:72:ba:03:ea:6f:cb:27:8d:df: a2:da:24:af:12:c5:4f:d6:42:e9:69:c7:67:0a:4b: 1e:b3:78:e1:98:88:00:6b:ff:5f:96:cc:6c:a5:5f: c7:65:1a:5c:87:b8:c9:bd:4f:ab:5b:08:26:ab:c6: 7c:f6:ce:6e:55:9e:56:52:7b:d7:19:10:b5:98:d4: 5f:e8:8a:17:f2:73:f6:14:3a:6e:36:68:9b:a9:92: 0f:95:11:4c:e8:0f:ab:ce:f6:3e:6b:d4:11:1d:25: 9f:ae:7c:8e:c0:cb:59:45:40:83:cf:56:08:d0:19: 0b:13:4f:4f:56:c0:ec:9f:a1:37:45:be:83:ad:35: c9:72:ff:ff:31:4c:8f:9c:a2:90:21:32:53:38:c6: 9c:e6:1d:0b:5a:36:eb:01:3b:3f:ad:bf:f5:ec:f5: bb:b2:e9:da:37:e3:fd:42:36:6f:86:66:82:2a:61: f0:43:30:24:34:bb:45:43:f4:64:5b:92:75:22:97: ce:98:08:e1:1b:5d:1e:60:dd:7a:05:11:83:de:74: 2b:36:a0:9f:a7:39:4f:95:c5:49:5e:af:b0:be:f1: 09:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:FC:2A:E8:14:DA:84:E7:A6:78:F2:94:17:77:E4:D7:26:40:D4:98 X509v3 Authority Key Identifier: keyid:18:44:2A:11:6C:30:10:1B:EC:8C:89:F4:50:19:78:C0:92:03:6B:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/18E7B6C80B5B11EB80C8B15FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:1100::/32 Signature Algorithm: sha256WithRSAEncryption 91:d8:df:78:d1:48:fb:1d:be:aa:76:11:f8:7e:85:af:6e:06: 2d:63:64:7c:7a:b2:91:e4:45:a9:9d:ff:53:cd:19:4d:f1:76: a1:32:d4:12:e9:86:0a:ed:30:22:82:07:15:94:75:34:c6:c5: 12:7a:35:56:c3:52:74:b7:c2:ec:33:90:9b:b7:0c:43:34:90: 6b:e6:38:a6:5f:ea:42:76:43:bf:bf:f9:53:bf:4e:41:0b:5d: ae:25:a2:72:bc:cd:fe:4f:bf:b9:64:d0:3e:1d:87:48:03:96: 80:a8:b7:9b:10:8d:b0:3c:be:f7:76:0a:78:cb:32:5e:57:e8: 46:25:26:1f:f6:9f:7a:78:7b:7c:c8:fd:ca:32:19:51:2a:fb: 06:5e:89:c0:10:b4:16:29:6e:02:64:e5:ee:37:d7:3a:95:0e: 63:73:5a:b6:f5:20:0a:7e:08:c9:e8:12:bc:8c:82:5b:c4:15: fd:36:ef:24:86:ce:c6:b9:4b:ff:e6:6a:f6:65:d7:7a:88:38: c9:24:fa:d8:6d:df:43:04:75:8b:81:5b:83:70:32:03:c7:f0: 7e:90:74:b7:bc:71:09:89:8e:d0:09:62:28:53:a4:0e:85:a0: 49:af:6b:f0:e1:fb:58:1d:32:31:02:c9:ad:27:2b:ec:40:2f: f5:37:09:43 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICB6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VBN0YxMTAvBgNVBAUTKDE4NDQyQTExNkMzMDEwMUJFQzhDODlGNDUwMTk3OEMw OTIwMzZCQjgwHhcNMjUwNzAyMjIwMTM3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YWM0MS1lYjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVIz/9GEUBEzcXlUps+2ZLHlIKTnBpYnc5VCJQc52HPyLwpyugPqb8snjd+i 2iSvEsVP1kLpacdnCkses3jhmIgAa/9flsxspV/HZRpch7jJvU+rWwgmq8Z89s5u VZ5WUnvXGRC1mNRf6IoX8nP2FDpuNmibqZIPlRFM6A+rzvY+a9QRHSWfrnyOwMtZ RUCDz1YI0BkLE09PVsDsn6E3Rb6DrTXJcv//MUyPnKKQITJTOMac5h0LWjbrATs/ rb/17PW7sunaN+P9QjZvhmaCKmHwQzAkNLtFQ/RkW5J1IpfOmAjhG10eYN16BRGD 3nQrNqCfpzlPlcVJXq+wvvEJIQIDAQABo4ICljCCApIwHQYDVR0OBBYEFCH8KugU 2oTnpnjylBd35NcmQNSYMB8GA1UdIwQYMBaAFBhEKhFsMBAb7IyJ9FAZeMCSA2u4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUE3Ri9FOTY0QUY0QzBC NTkxMUVCOTM1OTBBNUZDNEY5QUUwMi9HRVFxRVd3d0VCdnNqSW4wVUJsNHdKSURh N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dFUXFFV3d3RUJ2c2pJbjBVQmw0d0pJRGE3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VBN0YvRTk2NEFGNEMwQjU5MTFFQjkzNTkwQTVGQzRGOUFFMDIvMThFN0I2Qzgw QjVCMTFFQjgwQzhCMTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBxEAMA0GCSqGSIb3DQEBCwUAA4IBAQCR2N940Uj7Hb6q dhH4foWvbgYtY2R8erKR5EWpnf9TzRlN8XahMtQS6YYK7TAiggcVlHU0xsUSejVW w1J0t8LsM5CbtwxDNJBr5jimX+pCdkO/v/lTv05BC12uJaJyvM3+T7+5ZNA+HYdI A5aAqLebEI2wPL73dgp4yzJeV+hGJSYf9p96eHt8yP3KMhlRKvsGXonAELQWKW4C ZOXuN9c6lQ5jc1q29SAKfgjJ6BK8jIJbxBX9Nu8khs7GuUv/5mr2Zdd6iDjJJPrY bd9DBHWLgVuDcDIDx/B+kHS3vHEJiY7QCWIoU6QOhaBJr2vw4ftYHTIxAsmtJyvs QC/1NwlD -----END CERTIFICATE-----Generated at Wed Nov 5 21:28:13 2025 by rpki-client