$ rpki-client -vvf rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/DD0545F6324A11EFA615F80FC4F9AE02.roa File: DD0545F6324A11EFA615F80FC4F9AE02.roa (raw, json) Hash identifier: C0PtpzbGpwbpDFL/uYPMPp9j/9TP8PxpK7PTzvirT4A= Subject key identifier: 7D:02:90:A9:1E:F7:F7:7F:8A:2B:3D:7A:28:7A:19:78:C5:56:D5:A9 Certificate issuer: /CN=A919A777/serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Certificate serial: 014C Authority key identifier: 64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/DD0545F6324A11EFA615F80FC4F9AE02.roa Signing time: Wed 03 Sep 2025 05:54:43 +0000 ROA not before: Wed 03 Sep 2025 05:54:43 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 215084 IP address blocks: 2403:ad80:101a::/48 maxlen: 48 2403:ad80:101b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A777, serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Validity Not Before: Sep 3 05:54:43 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7d822-a7f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:df:cc:8e:a9:b9:00:54:9c:9e:c1:cf:c4:d3: da:b7:bf:d9:26:ba:e3:f6:05:8c:2a:8e:84:1b:e8: 6e:73:a9:c5:07:c0:46:d0:90:41:5a:c7:cf:64:c8: f9:d2:37:e2:12:d2:79:32:e6:97:7f:18:e1:a0:2c: 81:73:d6:3c:68:17:3b:4c:ec:24:fd:b8:8b:27:13: 55:be:ea:b2:c9:7f:4c:5c:36:80:c2:80:cc:1b:b5: 54:fe:11:51:b8:aa:dc:f3:bd:28:6c:bf:c6:4f:f0: 45:2e:07:8c:fd:4b:73:20:fa:2a:b7:d7:7f:f8:4e: 81:4a:ce:7c:b1:9d:69:05:3e:f5:06:ca:2b:48:a9: ae:73:2b:2e:f2:b0:0a:28:cc:0e:b4:d5:81:87:65: 60:08:09:0b:72:82:30:9b:6d:c7:7d:aa:71:c1:9b: e7:c2:81:f3:10:31:e8:2e:62:d3:e2:6d:20:b6:e8: 0b:a1:47:0b:df:22:90:e3:36:fa:50:14:d7:e1:1b: 9e:22:18:97:2d:7b:2d:37:da:44:da:ba:fe:23:9c: 8f:0e:38:ad:90:ef:31:c1:a3:82:8e:22:56:5c:86: 4f:19:e4:2c:9a:09:6f:55:fa:2a:bb:55:c0:d8:71: 66:ca:48:b1:10:4b:95:d9:f5:16:c3:ee:f2:41:0b: 78:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:02:90:A9:1E:F7:F7:7F:8A:2B:3D:7A:28:7A:19:78:C5:56:D5:A9 X509v3 Authority Key Identifier: keyid:64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/DD0545F6324A11EFA615F80FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:ad80:101a::/47 Signature Algorithm: sha256WithRSAEncryption 5d:4d:17:a1:9e:0c:1c:b1:7e:d0:ba:a7:18:7e:4f:53:da:de: f1:b3:bb:c9:fe:21:c5:e2:ef:72:15:a7:61:51:fc:fe:b3:b1: 3b:5f:1f:63:1e:de:a2:5c:63:2e:44:81:62:e8:bc:f3:cd:a3: ba:99:70:66:f5:fe:13:36:03:10:4c:c7:f6:ff:df:4e:6a:42: 4c:3c:4c:c4:7d:f7:d4:e7:ff:af:e2:4b:0d:22:a6:60:f7:db: 03:1e:c7:d3:85:b2:36:e5:03:7b:55:5b:79:56:17:5b:60:ab: a0:a3:44:2f:77:1a:58:09:5f:fc:68:f0:cf:6c:0d:e1:e7:ee: ea:87:88:e0:f0:55:39:86:b9:b0:87:84:6c:c6:5c:fc:ec:91: 09:b4:fe:46:ca:bd:51:c7:02:ca:86:f7:90:77:60:b6:0e:72: b7:4a:e9:23:c6:fb:a8:1f:25:d8:69:78:5e:b5:28:2f:82:43: a2:56:5d:29:24:97:85:6a:49:27:5d:9d:4b:9a:c2:33:ef:a7: 51:3b:b6:11:b1:0a:32:47:ab:cc:d1:c1:a9:56:99:6f:3d:ef: 88:89:e4:7d:c2:86:f9:31:7e:19:18:df:84:66:46:b5:0b:f8: 9e:ec:75:a8:80:5d:52:a3:58:8d:e1:c1:33:59:c5:76:88:ba: 2f:e7:f0:5d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3NzcxMTAvBgNVBAUTKDY0N0QwOTI3REIzQjE3OEUyRjY1NEEzMjY4NTU3RkU1 QjVENjcyOUMwHhcNMjUwOTAzMDU1NDQzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ZDgyMi1hN2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8t/Mjqm5AFScnsHPxNPat7/ZJrrj9gWMKo6EG+huc6nFB8BG0JBBWsfPZMj5 0jfiEtJ5MuaXfxjhoCyBc9Y8aBc7TOwk/biLJxNVvuqyyX9MXDaAwoDMG7VU/hFR uKrc870obL/GT/BFLgeM/UtzIPoqt9d/+E6BSs58sZ1pBT71BsorSKmucysu8rAK KMwOtNWBh2VgCAkLcoIwm23HfapxwZvnwoHzEDHoLmLT4m0gtugLoUcL3yKQ4zb6 UBTX4RueIhiXLXstN9pE2rr+I5yPDjitkO8xwaOCjiJWXIZPGeQsmglvVfoqu1XA 2HFmykixEEuV2fUWw+7yQQt4wwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFH0CkKke 9/d/iis9eih6GXjFVtWpMB8GA1UdIwQYMBaAFGR9CSfbOxeOL2VKMmhVf+W11nKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTc3Ny8wQkE1NzJCMEVD NEYxMUVFQTFCMzg4NjZDNEY5QUUwMi9aSDBKSjlzN0Y0NHZaVW95YUZWXzViWFdj cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pIMEpKOXM3RjQ0dlpVb3lhRlZfNWJYV2Nwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3NzcvMEJBNTcyQjBFQzRGMTFFRUExQjM4ODY2QzRGOUFFMDIvREQwNTQ1RjYz MjRBMTFFRkE2MTVGODBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkA62AEBowDQYJKoZIhvcNAQELBQADggEBAF1NF6GeDByx ftC6pxh+T1Pa3vGzu8n+IcXi73IVp2FR/P6zsTtfH2Me3qJcYy5EgWLovPPNo7qZ cGb1/hM2AxBMx/b/305qQkw8TMR999Tn/6/iSw0ipmD32wMex9OFsjblA3tVW3lW F1tgq6CjRC93GlgJX/xo8M9sDeHn7uqHiODwVTmGubCHhGzGXPzskQm0/kbKvVHH AsqG95B3YLYOcrdK6SPG+6gfJdhpeF61KC+CQ6JWXSkkl4VqSSddnUuawjPvp1E7 thGxCjJHq8zRwalWmW8974iJ5H3ChvkxfhkY34RmRrUL+J7sdaiAXVKjWI3hwTNZ xXaIui/n8F0= -----END CERTIFICATE-----Generated at Mon Sep 8 02:42:52 2025 by rpki-client