$ rpki-client -vvf rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/3219F778803B11F0BAF8A92DC4F9AE02.roa File: 3219F778803B11F0BAF8A92DC4F9AE02.roa (raw, json) Hash identifier: wQANzC+vxnCt7989jhRyKru2wqvXc60TI9XtRkcZtKc= Subject key identifier: AD:06:19:C1:7B:89:EF:F9:62:A0:5E:3F:C0:95:61:E8:93:F4:76:CD Certificate issuer: /CN=A9127B24/serialNumber=F53BCFB8C72C1A3AB65E0EA88E3A1A21D28CD161 Certificate serial: 9E Authority key identifier: F5:3B:CF:B8:C7:2C:1A:3A:B6:5E:0E:A8:8E:3A:1A:21:D2:8C:D1:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/3219F778803B11F0BAF8A92DC4F9AE02.roa Signing time: Sat 23 Aug 2025 16:06:58 +0000 ROA not before: Sat 23 Aug 2025 16:06:58 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153336 IP address blocks: 2401:c5e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.crl rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 16:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127B24, serialNumber=F53BCFB8C72C1A3AB65E0EA88E3A1A21D28CD161 Validity Not Before: Aug 23 16:06:58 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68a9e722-0725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:90:8f:9b:e0:82:13:a4:2f:0c:2f:f3:b3:35: 3f:39:34:32:63:81:8e:d1:a9:9e:21:e4:a0:84:6b: e5:0b:92:26:eb:14:20:15:12:8c:36:79:c9:d1:31: b8:a1:f1:a0:06:c8:f2:97:6b:49:21:34:6c:34:ce: 01:05:1f:5d:4f:72:ec:f4:49:14:7b:67:1f:e4:90: ae:da:44:56:74:60:63:92:71:88:93:39:9f:f4:a4: 52:98:64:58:61:3c:2c:77:03:fa:60:1b:9d:5b:c8: 21:b8:ee:83:27:ac:f3:04:91:c2:41:86:60:61:a7: 06:05:e2:d5:a9:1e:5a:d3:75:13:3f:3f:a1:7b:a9: 5c:35:02:87:3b:02:17:0c:b7:ea:3e:a5:00:23:54: c4:55:cc:43:f2:bd:8a:35:e4:d3:4d:ef:12:e2:1c: de:65:a7:1c:6a:81:0a:f7:24:8c:b2:14:a6:1c:53: 39:db:2e:f2:11:c8:08:f5:26:f4:47:8b:eb:1b:a0: 5b:58:45:18:af:63:72:0c:9d:c5:7c:8c:9f:99:a5: eb:cf:84:43:cd:15:d7:2a:be:a2:02:17:1b:7a:be: cf:c8:de:62:6b:4f:f4:f5:5a:18:60:45:52:c9:fb: 7a:03:ac:a6:7b:6a:fe:80:59:58:b3:c9:09:7a:e9: 3d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:06:19:C1:7B:89:EF:F9:62:A0:5E:3F:C0:95:61:E8:93:F4:76:CD X509v3 Authority Key Identifier: keyid:F5:3B:CF:B8:C7:2C:1A:3A:B6:5E:0E:A8:8E:3A:1A:21:D2:8C:D1:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/3219F778803B11F0BAF8A92DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:c5e0::/32 Signature Algorithm: sha256WithRSAEncryption 23:cf:e3:3a:91:02:e4:8f:c2:fe:de:e2:ed:21:c3:ab:aa:ad: 81:35:ce:12:86:d1:e9:f6:15:2e:aa:4d:49:28:25:10:9b:e0: 57:d0:6e:11:5b:cb:d5:1c:10:bc:ee:32:2d:f1:6c:96:63:98: ac:58:db:e2:4b:8f:a0:5b:bc:00:64:8b:cf:16:4b:b8:68:a2: 34:21:e1:ce:fa:da:86:96:c1:b0:3a:c7:0e:37:b7:11:fe:e5: 87:85:bc:55:cc:4b:9d:ee:2f:96:9e:59:0b:a0:7c:67:2e:9f: 1d:91:49:b0:80:d0:28:4f:76:5e:4c:f4:8b:8f:02:e3:b0:35: d7:b7:5c:d9:97:62:f7:36:ff:8a:30:36:6e:96:10:e1:c7:20: b5:1a:6d:25:fa:61:6d:02:38:bd:a6:5d:ef:2f:97:87:82:19: 68:f8:1f:96:91:78:13:49:30:77:73:f6:87:70:27:a2:52:2e: 6c:95:10:de:5f:12:6e:fb:0f:e9:63:6f:86:87:d2:20:6e:67: ab:0a:c9:69:73:aa:a8:94:c4:69:65:02:88:f0:f5:e6:1e:0c: f8:7f:88:36:fd:70:52:35:35:7a:2b:ba:0b:8b:6e:ca:0c:60: 05:c0:c8:21:c6:58:a2:97:22:ff:12:8b:4b:cd:f9:e4:99:35: d1:19:96:4f -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdCMjQxMTAvBgNVBAUTKEY1M0JDRkI4QzcyQzFBM0FCNjVFMEVBODhFM0ExQTIx RDI4Q0QxNjEwHhcNMjUwODIzMTYwNjU4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE5ZTcyMi0wNzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZCPm+CCE6QvDC/zszU/OTQyY4GO0ameIeSghGvlC5Im6xQgFRKMNnnJ0TG4 ofGgBsjyl2tJITRsNM4BBR9dT3Ls9EkUe2cf5JCu2kRWdGBjknGIkzmf9KRSmGRY YTwsdwP6YBudW8ghuO6DJ6zzBJHCQYZgYacGBeLVqR5a03UTPz+he6lcNQKHOwIX DLfqPqUAI1TEVcxD8r2KNeTTTe8S4hzeZaccaoEK9ySMshSmHFM52y7yEcgI9Sb0 R4vrG6BbWEUYr2NyDJ3FfIyfmaXrz4RDzRXXKr6iAhcber7PyN5ia0/09VoYYEVS yft6A6yme2r+gFlYs8kJeuk9fQIDAQABo4ICljCCApIwHQYDVR0OBBYEFK0GGcF7 ie/5YqBeP8CVYeiT9HbNMB8GA1UdIwQYMBaAFPU7z7jHLBo6tl4OqI46GiHSjNFh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0IyNC8xRTRGM0E1QzhG NzYxMUVGODRFQzc3MTVDNEY5QUUwMi85VHZQdU1jc0dqcTJYZzZvampvYUlkS00w V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlUdlB1TWNzR2pxMlhnNm9qam9hSWRLTTBXRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjdCMjQvMUU0RjNBNUM4Rjc2MTFFRjg0RUM3NzE1QzRGOUFFMDIvMzIxOUY3Nzg4 MDNCMTFGMEJBRjhBOTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAcXgMA0GCSqGSIb3DQEBCwUAA4IBAQAjz+M6kQLkj8L+ 3uLtIcOrqq2BNc4ShtHp9hUuqk1JKCUQm+BX0G4RW8vVHBC87jIt8WyWY5isWNvi S4+gW7wAZIvPFku4aKI0IeHO+tqGlsGwOscON7cR/uWHhbxVzEud7i+WnlkLoHxn Lp8dkUmwgNAoT3ZeTPSLjwLjsDXXt1zZl2L3Nv+KMDZulhDhxyC1Gm0l+mFtAji9 pl3vL5eHghlo+B+WkXgTSTB3c/aHcCeiUi5slRDeXxJu+w/pY2+Gh9IgbmerCslp c6qolMRpZQKI8PXmHgz4f4g2/XBSNTV6K7oLi27KDGAFwMghxliilyL/EotLzfnk mTXRGZZP -----END CERTIFICATE-----Generated at Sun Aug 24 11:03:07 2025 by rpki-client