$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/ED8B1602A0D711EFB982AD62C4F9AE02.roa File: ED8B1602A0D711EFB982AD62C4F9AE02.roa (raw, json) Hash identifier: 9x2G7s9XnkzB/aoRrwX0fPhCy+k2H2dG9FDGRVFamnQ= Subject key identifier: 1B:1B:7E:76:49:72:BF:9F:E0:88:3A:FD:30:42:92:5F:B3:72:6B:C6 Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 054E Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/ED8B1602A0D711EFB982AD62C4F9AE02.roa Signing time: Wed 03 Sep 2025 00:15:36 +0000 ROA not before: Wed 03 Sep 2025 00:15:36 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38001 IP address blocks: 2401:df40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 23:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1358 (0x54e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Validity Not Before: Sep 3 00:15:36 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b788a8-6484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:47:78:c6:b0:37:d2:87:61:ef:14:b9:a0:e3: 0b:28:0a:07:0e:f2:0f:11:81:46:76:a2:b3:4c:92: f1:b4:be:6f:f9:1d:c3:18:1a:a1:c5:40:8a:ce:0f: 42:b9:1e:c6:56:72:93:4b:6a:c2:df:f6:18:5e:3a: ac:a7:ad:7f:3d:34:db:b8:90:90:b5:fa:5a:0c:3b: 1a:1f:6b:04:15:9b:81:5c:b1:19:98:0f:cb:15:14: 9e:51:ee:dc:24:b4:2b:21:65:93:b2:aa:4a:57:93: 89:75:6f:2e:29:5c:1f:6b:db:79:f9:bc:06:5c:2f: e2:c0:83:26:f7:6f:e4:02:fb:ea:27:30:a6:87:21: 42:6a:22:71:13:f4:3d:3d:26:f2:e7:4f:56:52:10: 8b:6c:f9:67:97:a4:5d:9e:0d:0f:b8:24:09:c5:e4: db:62:f9:66:c8:c4:e5:f2:20:25:db:f7:55:3b:28: bd:87:09:81:be:99:b1:13:69:c2:87:d3:b1:b5:99: 3f:e6:0c:e3:c9:df:d0:29:78:6a:8f:3d:ec:f0:54: de:7f:b9:0a:d8:24:c3:7c:c4:eb:2a:bb:32:a2:6e: 7d:f1:95:80:52:04:43:8a:25:34:68:bb:6d:1e:fb: 06:4c:9f:64:47:fe:53:b2:f2:da:a1:45:37:7d:5a: d0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:1B:7E:76:49:72:BF:9F:E0:88:3A:FD:30:42:92:5F:B3:72:6B:C6 X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/ED8B1602A0D711EFB982AD62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:df40:2::/48 Signature Algorithm: sha256WithRSAEncryption ae:4c:5a:b8:f9:76:8b:9a:d2:dc:9a:45:c6:3b:d7:2a:db:68: 6c:72:ce:cc:7b:c6:f9:03:16:f0:7f:33:16:22:12:d0:b9:a3: 81:61:79:f5:15:14:9b:15:c6:20:a2:f2:20:60:d9:65:8a:7e: 08:d3:ae:b2:38:72:ba:1e:05:64:42:18:b8:61:5c:e8:12:12: 00:a6:be:6f:4d:d4:82:47:c7:65:76:29:3a:6e:ea:00:82:4d: ce:9f:71:7a:18:36:f5:f0:b2:ed:e6:d6:24:90:24:b8:bc:3d: 38:6f:ac:bf:bd:d6:1d:ca:43:1b:3a:ac:91:8b:d8:b2:92:ee: 2e:9b:d8:c7:06:50:37:f6:99:8d:ea:cf:34:dc:b0:62:fe:e5: 80:f1:69:2e:32:bd:cb:1a:e2:29:67:60:e7:63:85:7c:91:35: 39:21:13:33:40:98:1a:2f:63:e2:64:76:7f:34:79:02:4c:17: 88:1d:65:dc:e9:08:f9:7c:1d:5d:e8:f0:62:43:02:62:ca:f7: 4e:3b:5c:dd:c4:9c:62:8a:4e:7b:4b:9e:a7:82:87:4d:2a:9b: 4f:61:99:c3:c0:cf:b7:bc:6f:a3:ca:3d:a6:df:d6:f2:d3:88: f6:f5:30:b6:32:5f:51:21:4e:86:a1:2d:1c:ef:67:6a:3b:0f: ef:52:ff:53 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjUwOTAzMDAxNTM2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ODhhOC02NDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkd4xrA30odh7xS5oOMLKAoHDvIPEYFGdqKzTJLxtL5v+R3DGBqhxUCKzg9C uR7GVnKTS2rC3/YYXjqsp61/PTTbuJCQtfpaDDsaH2sEFZuBXLEZmA/LFRSeUe7c JLQrIWWTsqpKV5OJdW8uKVwfa9t5+bwGXC/iwIMm92/kAvvqJzCmhyFCaiJxE/Q9 PSby509WUhCLbPlnl6Rdng0PuCQJxeTbYvlmyMTl8iAl2/dVOyi9hwmBvpmxE2nC h9OxtZk/5gzjyd/QKXhqjz3s8FTef7kK2CTDfMTrKrsyom598ZWAUgRDiiU0aLtt HvsGTJ9kR/5TsvLaoUU3fVrQuQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBsbfnZJ cr+f4Ig6/TBCkl+zcmvGMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU0QjcvRUIzMTJGMDIxRUFBMTFFQ0I3NTZCRjMwQzRGOUFFMDIvRUQ4QjE2MDJB MEQ3MTFFRkI5ODJBRDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAd9AAAIwDQYJKoZIhvcNAQELBQADggEBAK5MWrj5doua 0tyaRcY71yrbaGxyzsx7xvkDFvB/MxYiEtC5o4FhefUVFJsVxiCi8iBg2WWKfgjT rrI4croeBWRCGLhhXOgSEgCmvm9N1IJHx2V2KTpu6gCCTc6fcXoYNvXwsu3m1iSQ JLi8PThvrL+91h3KQxs6rJGL2LKS7i6b2McGUDf2mY3qzzTcsGL+5YDxaS4yvcsa 4ilnYOdjhXyRNTkhEzNAmBovY+Jkdn80eQJMF4gdZdzpCPl8HV3o8GJDAmLK9047 XN3EnGKKTntLnqeCh00qm09hmcPAz7e8b6PKPabf1vLTiPb1MLYyX1EhToahLRzv Z2o7D+9S/1M= -----END CERTIFICATE-----Generated at Sat Sep 6 14:26:09 2025 by rpki-client