$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DDB31A6E896511F0BFB7885BC4F9AE02.roa File: DDB31A6E896511F0BFB7885BC4F9AE02.roa (raw, json) Hash identifier: xTw0ZB2ia4Rh0IV62EIXu00jPWcu4zxV/o64to33Svg= Subject key identifier: D2:0D:57:60:96:38:E2:29:AE:30:1F:A9:DF:A7:F7:E9:75:AD:BC:BB Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C433 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DDB31A6E896511F0BFB7885BC4F9AE02.roa Signing time: Thu 04 Sep 2025 08:05:05 +0000 ROA not before: Thu 04 Sep 2025 08:05:05 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153956 IP address blocks: 2001:df5:b140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50227 (0xc433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Sep 4 08:05:05 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68b94831-237f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a9:33:c9:d1:f4:e3:d3:c6:2e:2f:a7:71:d5: d7:46:a6:aa:c5:3e:da:3d:eb:f4:11:d3:75:30:53: 51:79:6b:90:04:5a:21:22:6a:25:e5:5b:b4:e1:14: a9:1e:01:ae:16:0b:2f:6c:2e:8d:4d:be:b2:80:79: 58:b1:f0:a8:70:63:74:f5:ee:4e:ac:b8:69:13:6f: 7f:bf:25:99:e2:ed:a4:a0:f1:ab:c9:f7:58:67:15: 94:1a:36:ad:60:a9:fd:3a:db:e4:07:df:02:ec:5a: 2e:20:72:cc:12:8e:4e:71:90:f1:eb:9b:15:fc:3f: c5:55:12:19:0a:8f:f2:0c:8a:4f:47:01:c4:f2:21: 1b:89:2b:9b:a5:4e:28:64:d7:9b:4e:a8:94:e9:16: a2:15:e5:f6:91:6d:d0:96:d0:54:a9:8e:08:bd:e7: 15:47:90:66:1e:49:e1:62:02:c1:a0:1d:9d:56:e3: b7:83:a9:85:06:8a:b0:25:53:9d:40:e0:08:cc:38: a0:70:46:12:04:e5:de:92:35:9d:f3:8e:73:c3:eb: d5:ee:07:f8:e8:b9:49:73:be:33:d8:de:8e:52:0f: 49:31:a1:73:22:f5:ca:85:e8:62:c3:67:c8:9c:68: ee:3d:7b:42:39:6a:3d:9e:e2:ad:27:07:33:b1:17: 48:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:0D:57:60:96:38:E2:29:AE:30:1F:A9:DF:A7:F7:E9:75:AD:BC:BB X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DDB31A6E896511F0BFB7885BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:b140::/48 Signature Algorithm: sha256WithRSAEncryption 75:5c:10:6d:23:8e:15:72:7a:a9:87:7b:ca:ee:5a:56:a9:a5: c4:86:9e:a7:b3:a7:ab:ce:d9:27:a6:31:c6:a4:47:f4:22:0f: 92:c2:2f:6e:0e:c0:bb:29:39:48:ea:04:b1:c6:d5:89:23:c6: 2c:35:c8:b9:65:a3:18:a4:8b:a3:e9:d3:4f:7f:7a:3c:8d:bf: df:43:a7:56:af:5a:a0:cc:fa:fc:7a:bc:46:ac:9a:b7:07:7d: 04:36:1f:0c:26:a3:a8:c2:6d:b3:4f:26:24:15:df:35:3d:d0: 2f:04:09:e7:e8:3f:41:94:b2:79:a9:0e:aa:89:0a:2e:f9:2d: a0:ff:5e:da:75:d3:f7:86:0b:d9:c6:a9:74:3f:1a:60:41:94: 06:7e:0b:a5:8b:d4:30:22:7f:b5:5a:52:b9:9b:65:c9:9b:2d: 03:11:88:0c:a1:a0:b0:03:46:9b:40:4e:e5:e1:43:64:03:93: 3f:97:aa:e9:a8:b0:64:a1:0e:94:ac:11:b0:e0:46:36:99:f0: 29:89:26:f6:f8:6c:a6:d4:c0:cb:77:a0:c0:ee:1c:78:81:8a: 31:57:33:ec:5d:0a:c7:f3:cb:8c:1e:8a:a4:27:66:bb:76:3c: eb:89:a0:f8:c3:bb:06:5e:da:09:06:99:30:7c:ef:4f:8a:8b: 1a:08:66:6e -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAMQzMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDkwNDA4MDUwNVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjhiOTQ4MzEtMjM3ZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOqpM8nR9OPTxi4vp3HV10amqsU+2j3r9BHTdTBTUXlrkARaISJqJeVbtOEU qR4BrhYLL2wujU2+soB5WLHwqHBjdPXuTqy4aRNvf78lmeLtpKDxq8n3WGcVlBo2 rWCp/Trb5AffAuxaLiByzBKOTnGQ8eubFfw/xVUSGQqP8gyKT0cBxPIhG4krm6VO KGTXm06olOkWohXl9pFt0JbQVKmOCL3nFUeQZh5J4WICwaAdnVbjt4OphQaKsCVT nUDgCMw4oHBGEgTl3pI1nfOOc8Pr1e4H+Oi5SXO+M9jejlIPSTGhcyL1yoXoYsNn yJxo7j17QjlqPZ7irScHM7EXSD0CAwEAAaOCApgwggKUMB0GA1UdDgQWBBTSDVdg ljjiKa4wH6nfp/fpda28uzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0REQjMxQTZF ODk2NTExRjBCRkI3ODg1QkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN9bFAMA0GCSqGSIb3DQEBCwUAA4IBAQB1XBBtI44V cnqph3vK7lpWqaXEhp6ns6erztknpjHGpEf0Ig+Swi9uDsC7KTlI6gSxxtWJI8Ys Nci5ZaMYpIuj6dNPf3o8jb/fQ6dWr1qgzPr8erxGrJq3B30ENh8MJqOowm2zTyYk Fd81PdAvBAnn6D9BlLJ5qQ6qiQou+S2g/17addP3hgvZxql0PxpgQZQGfguli9Qw In+1WlK5m2XJmy0DEYgMoaCwA0abQE7l4UNkA5M/l6rpqLBkoQ6UrBGw4EY2mfAp iSb2+Gym1MDLd6DA7hx4gYoxVzPsXQrH88uMHoqkJ2a7djzriaD4w7sGXtoJBpkw fO9PiosaCGZu -----END CERTIFICATE-----Generated at Sat Sep 6 13:47:41 2025 by rpki-client