$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/D55BADE4193911ED82BB7358C4F9AE02.roa File: D55BADE4193911ED82BB7358C4F9AE02.roa (raw, json) Hash identifier: ZPy83X+llb5TX5qPVKAkiJ8agApzyoWgfAKhXe3bcmU= Subject key identifier: DE:3E:C3:4E:09:25:C1:3E:29:83:DC:DB:BC:7C:11:ED:98:EB:94:95 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 0858 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/D55BADE4193911ED82BB7358C4F9AE02.roa Signing time: Wed 08 Oct 2025 22:54:22 +0000 ROA not before: Wed 08 Oct 2025 22:54:22 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9381 IP address blocks: 2401:2c80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2136 (0x858) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 8 22:54:22 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e6eb9e-f2b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bc:59:d0:f7:32:60:26:5c:df:34:d5:63:42: 04:5a:e5:d9:dd:e7:bc:4e:56:ba:43:23:51:43:83: 9b:c6:4f:67:68:a6:cd:c6:f5:41:d6:11:5a:d2:d4: 16:5c:5b:fd:d6:5b:cd:69:8f:1b:2e:20:ff:f1:9f: ed:91:ec:7b:32:62:b2:f3:20:7e:ae:a4:d5:ca:5b: 54:00:92:c3:7b:e2:66:18:bf:c9:2c:9b:50:bb:c1: 3f:f5:51:bb:1d:7b:dd:13:a5:6e:36:7f:64:77:96: 80:9d:63:49:b0:97:c2:d8:04:ad:af:96:d8:63:3c: 4f:84:d5:dc:ef:ee:23:b8:cf:53:8c:7b:18:fd:5e: cd:7e:5b:44:49:fa:95:de:ee:34:13:9e:59:00:b6: 63:41:7d:65:6e:b0:31:fa:1e:ce:55:f8:0f:4b:27: 29:ac:69:7a:02:2f:d0:56:b5:f7:ec:bb:e7:f3:72: d0:ef:07:30:4e:6c:8e:9c:05:d7:b1:7c:df:27:e3: bf:1e:10:41:c1:f2:4c:10:7a:10:01:89:8e:ec:dc: fe:3c:8d:04:31:d4:be:ad:d5:01:13:b0:35:73:a6: 52:52:d6:9f:91:e2:bf:bd:e4:cd:4e:63:34:36:7d: aa:07:c0:bd:01:98:00:60:b7:67:3d:71:5b:63:56: ea:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:3E:C3:4E:09:25:C1:3E:29:83:DC:DB:BC:7C:11:ED:98:EB:94:95 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/D55BADE4193911ED82BB7358C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:2c80::/32 Signature Algorithm: sha256WithRSAEncryption 86:8d:1f:ef:f8:12:37:eb:b5:89:1f:6e:84:d9:cb:0f:27:7a: 69:f8:25:a0:6d:db:05:3e:db:d6:a2:74:a3:b7:7a:20:e0:b0: f9:c7:bd:f5:70:b3:78:b9:4a:8e:a0:86:c4:fa:f1:16:4b:bb: a1:1d:e7:a1:0e:73:cb:a2:db:ad:55:26:20:99:35:b7:91:3a: a0:1e:8b:35:4d:b6:a2:7b:88:16:95:5a:ed:82:33:be:d2:49: 4f:1f:82:14:0a:e6:88:02:5e:25:cc:14:58:06:88:3a:18:3d: 66:b2:eb:dc:60:55:bf:b5:7b:e4:26:8d:f0:d9:d4:4b:fc:89: f1:a8:18:57:4f:f2:a6:6d:3a:96:6c:0f:c3:e0:35:c0:c7:0e: 31:fd:83:c9:0a:9f:d9:04:1d:90:62:85:2a:fb:f6:90:6f:61: e7:34:9e:63:de:f6:e7:96:85:db:3a:11:e9:b3:06:e3:ac:34: c1:f6:cc:1b:9e:57:aa:b6:5f:ee:8b:a9:fc:7f:19:15:81:95: fb:fe:cd:2c:1f:9a:6b:ad:4c:82:79:9b:61:45:45:2f:8e:97: ac:fb:b2:e7:62:3b:22:f3:74:84:bb:3a:d8:ca:34:be:a1:55: d6:f2:47:d7:d1:49:03:dd:4d:e9:75:04:43:75:d7:0d:d1:75: 26:24:52:44 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUxMDA4MjI1NDIyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2ZWI5ZS1mMmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurxZ0PcyYCZc3zTVY0IEWuXZ3ee8Tla6QyNRQ4Obxk9naKbNxvVB1hFa0tQW XFv91lvNaY8bLiD/8Z/tkex7MmKy8yB+rqTVyltUAJLDe+JmGL/JLJtQu8E/9VG7 HXvdE6VuNn9kd5aAnWNJsJfC2AStr5bYYzxPhNXc7+4juM9TjHsY/V7NfltESfqV 3u40E55ZALZjQX1lbrAx+h7OVfgPSycprGl6Ai/QVrX37Lvn83LQ7wcwTmyOnAXX sXzfJ+O/HhBBwfJMEHoQAYmO7Nz+PI0EMdS+rdUBE7A1c6ZSUtafkeK/veTNTmM0 Nn2qB8C9AZgAYLdnPXFbY1bqRQIDAQABo4ICljCCApIwHQYDVR0OBBYEFN4+w04J JcE+KYPc27x8Ee2Y65SVMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvRDU1QkFERTQx OTM5MTFFRDgyQkI3MzU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkASyAMA0GCSqGSIb3DQEBCwUAA4IBAQCGjR/v+BI367WJ H26E2csPJ3pp+CWgbdsFPtvWonSjt3og4LD5x731cLN4uUqOoIbE+vEWS7uhHeeh DnPLotutVSYgmTW3kTqgHos1Tbaie4gWlVrtgjO+0klPH4IUCuaIAl4lzBRYBog6 GD1msuvcYFW/tXvkJo3w2dRL/InxqBhXT/KmbTqWbA/D4DXAxw4x/YPJCp/ZBB2Q YoUq+/aQb2HnNJ5j3vbnloXbOhHpswbjrDTB9swbnleqtl/ui6n8fxkVgZX7/s0s H5prrUyCeZthRUUvjpes+7LnYjsi83SEuzrYyjS+oVXW8kfX0UkD3U3pdQRDddcN 0XUmJFJE -----END CERTIFICATE-----Generated at Mon Oct 20 08:55:35 2025 by rpki-client