$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/16D4DB82A40E11EEAAB83671C4F9AE02.roa File: 16D4DB82A40E11EEAAB83671C4F9AE02.roa (raw, json) Hash identifier: hn+qGaZCtkUKYopOyzVnHKxTxBxzaX/N9RY/bypGInA= Subject key identifier: 5A:A2:0D:BD:A4:DC:4C:36:CB:78:64:47:D3:D3:D7:39:54:14:5F:E9 Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 054C Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/16D4DB82A40E11EEAAB83671C4F9AE02.roa Signing time: Wed 03 Sep 2025 00:15:34 +0000 ROA not before: Wed 03 Sep 2025 00:15:34 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 23734 IP address blocks: 2401:df40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 23:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1356 (0x54c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Validity Not Before: Sep 3 00:15:34 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b788a6-4223 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a3:82:bb:c8:63:fe:56:09:51:8e:67:61:6b: 58:f9:2d:04:a6:71:23:56:33:24:0f:59:1c:9e:0c: 9e:69:79:28:d2:7b:98:7e:fa:dd:66:ac:3b:42:fa: 53:1a:f6:25:12:54:76:61:58:db:24:87:cf:e4:6e: ca:67:4c:fa:b8:23:56:a8:4a:6f:ac:7c:0a:54:f7: 32:8a:c4:26:b9:e5:4a:36:28:d2:dd:1e:1d:8a:90: 65:16:e9:2b:29:fe:11:a7:b8:93:69:5c:ef:36:39: e9:fb:1f:c2:7a:5e:2b:35:15:ca:f4:a6:b1:a3:0d: b0:55:7f:03:e8:31:e9:94:0a:b5:a5:f7:64:dd:16: 28:bf:e7:e3:12:2f:24:b3:de:c8:b2:29:04:bf:23: 7d:c2:63:4e:fa:cd:96:dc:11:be:5b:b3:9d:d1:5a: 77:f0:c7:27:8e:ed:3e:c5:14:d1:92:fc:e5:3e:a5: 28:8c:b2:5d:83:f5:b3:c9:7b:9f:5c:d8:45:bf:69: e2:cd:7c:10:64:00:2d:4b:b4:2d:5c:0d:97:75:d9: 18:b9:01:4c:2f:38:6f:12:4a:8e:cc:92:8a:34:b6: a8:ac:37:cf:65:a3:98:7a:88:b9:8b:be:dc:6b:5f: 4f:8a:a7:fb:3b:e3:66:0a:c6:f6:5d:10:72:2b:67: cf:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:A2:0D:BD:A4:DC:4C:36:CB:78:64:47:D3:D3:D7:39:54:14:5F:E9 X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/16D4DB82A40E11EEAAB83671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:df40:1::/48 Signature Algorithm: sha256WithRSAEncryption 54:e9:97:7d:67:d7:3e:d9:8d:94:11:c8:9a:b6:f1:f1:fd:b9: cc:d8:66:bb:9b:09:4a:ea:8d:1c:14:e6:0e:31:b2:c4:f1:10: fa:eb:d6:1d:34:a3:a7:8c:45:4a:71:c8:9d:97:30:28:24:a7: 4d:9d:85:d6:c9:79:ce:ef:6c:68:3c:01:e8:3c:be:60:93:ef: 5b:03:13:01:92:2e:55:64:6c:d2:6f:f4:34:a0:54:36:64:fe: 4b:2b:9b:ee:9d:d3:3d:a9:9d:9e:bc:c5:54:be:8a:d4:23:16: 38:bc:21:6b:f0:1b:6c:25:57:71:9b:27:d5:e2:94:08:13:23: b4:fc:d2:95:f6:b3:59:7a:e2:ac:39:d8:ab:c3:18:de:06:ad: 51:02:a6:67:e9:f1:7c:a0:f6:5d:85:8a:72:14:c9:d5:1d:dd: 67:9c:7f:cb:f8:af:30:a1:40:d6:56:77:df:cf:e1:db:f4:81: f0:12:47:9c:4e:b7:57:b9:d8:b9:7d:71:2f:72:9c:10:92:21: 58:c5:cc:8f:10:45:ab:d7:1f:26:e7:35:ad:32:2c:e2:a5:02: 9c:1f:1a:3a:24:3a:0f:cc:e8:59:c8:bb:88:b0:46:e0:7e:d3: 68:80:cf:ea:89:32:2a:bf:ed:b3:c3:1c:08:6e:0d:c1:c5:19: 21:70:7d:34 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjUwOTAzMDAxNTM0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ODhhNi00MjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaOCu8hj/lYJUY5nYWtY+S0EpnEjVjMkD1kcngyeaXko0nuYfvrdZqw7QvpT GvYlElR2YVjbJIfP5G7KZ0z6uCNWqEpvrHwKVPcyisQmueVKNijS3R4dipBlFukr Kf4Rp7iTaVzvNjnp+x/Cel4rNRXK9Kaxow2wVX8D6DHplAq1pfdk3RYov+fjEi8k s97IsikEvyN9wmNO+s2W3BG+W7Od0Vp38Mcnju0+xRTRkvzlPqUojLJdg/WzyXuf XNhFv2nizXwQZAAtS7QtXA2XddkYuQFMLzhvEkqOzJKKNLaorDfPZaOYeoi5i77c a19Piqf7O+NmCsb2XRByK2fPRwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFqiDb2k 3Ew2y3hkR9PT1zlUFF/pMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU0QjcvRUIzMTJGMDIxRUFBMTFFQ0I3NTZCRjMwQzRGOUFFMDIvMTZENERCODJB NDBFMTFFRUFBQjgzNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAd9AAAEwDQYJKoZIhvcNAQELBQADggEBAFTpl31n1z7Z jZQRyJq28fH9uczYZrubCUrqjRwU5g4xssTxEPrr1h00o6eMRUpxyJ2XMCgkp02d hdbJec7vbGg8Aeg8vmCT71sDEwGSLlVkbNJv9DSgVDZk/ksrm+6d0z2pnZ68xVS+ itQjFji8IWvwG2wlV3GbJ9XilAgTI7T80pX2s1l64qw52KvDGN4GrVECpmfp8Xyg 9l2FinIUydUd3Wecf8v4rzChQNZWd9/P4dv0gfASR5xOt1e52Ll9cS9ynBCSIVjF zI8QRavXHybnNa0yLOKlApwfGjokOg/M6FnIu4iwRuB+02iAz+qJMiq/7bPDHAhu DcHFGSFwfTQ= -----END CERTIFICATE-----Generated at Sat Sep 6 14:25:11 2025 by rpki-client