$ rpki-client -vvf rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/F2257AC0289011ED8AEEB43CC4F9AE02.roa File: F2257AC0289011ED8AEEB43CC4F9AE02.roa (raw, json) Hash identifier: qN+LRpSVnBxJ+EVMhollH7lNOxo/HzDT+qSzlpuJsAY= Subject key identifier: D1:62:DB:72:0B:E8:44:B4:D0:FF:8A:70:E7:C8:6D:89:52:DD:AB:D1 Certificate issuer: /CN=A91340D8/serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Certificate serial: 0279 Authority key identifier: 1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/F2257AC0289011ED8AEEB43CC4F9AE02.roa Signing time: Sun 21 Sep 2025 02:20:07 +0000 ROA not before: Sun 21 Sep 2025 02:20:07 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 19855 IP address blocks: 2400:7160:2000::/44 maxlen: 44 2400:7160:2020::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 633 (0x279) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91340D8, serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Validity Not Before: Sep 21 02:20:07 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68cf60d7-03fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2c:ac:0b:d4:93:88:01:87:43:1f:94:39:57: 63:2b:cb:de:d7:78:4d:03:18:e4:ac:8f:17:25:a1: 82:f4:90:c2:ed:01:68:25:6b:61:62:9d:20:09:a0: 64:ad:13:5f:71:6f:33:8f:0d:d8:3b:17:e2:dd:f9: 3e:a8:57:98:c6:ad:c7:a5:ee:35:33:d5:17:0e:01: 37:c9:b0:95:6b:17:83:b6:e3:3d:1b:c9:28:55:30: 0d:00:cc:4a:15:03:62:6c:e3:7c:34:dd:95:55:4e: dd:91:4e:73:10:b5:35:d2:35:28:04:29:15:b1:8e: 8a:9a:e3:a9:29:16:80:15:be:fb:f5:a6:1b:f6:89: 38:4b:c0:a0:ac:e5:15:86:0c:32:ff:92:f9:ba:08: cc:f9:1d:8e:d8:59:ea:3a:68:74:8f:01:6a:f4:16: ec:6f:e9:97:32:6f:98:25:19:17:d6:24:44:e7:87: 67:4a:4e:0b:d0:d5:df:34:5b:91:21:f1:ab:96:d5: 05:58:e7:43:c9:70:b0:26:8c:c2:93:83:dc:1d:03: 5c:e3:c6:99:72:50:2a:64:62:0a:8d:74:74:43:e9: 0f:c0:05:ca:91:06:67:bf:40:b2:ee:91:96:d4:08: 1f:66:38:84:f0:9b:2a:14:95:9c:7b:80:11:ea:0c: cb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:62:DB:72:0B:E8:44:B4:D0:FF:8A:70:E7:C8:6D:89:52:DD:AB:D1 X509v3 Authority Key Identifier: keyid:1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/F2257AC0289011ED8AEEB43CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:7160:2000::/44 2400:7160:2020::/44 Signature Algorithm: sha256WithRSAEncryption 4c:06:f9:f3:69:9f:ab:26:3d:66:fa:8e:84:ee:9e:42:6f:f2: 1a:2f:f7:70:57:6f:bd:e3:55:a8:a9:14:84:c7:0f:a8:28:f2: 97:d9:74:91:02:15:ce:84:94:22:2b:f7:1e:75:bf:af:6c:d3: a1:16:86:cf:4e:b8:03:c6:2d:f2:12:2c:1a:db:37:57:7a:ca: 39:d6:19:5e:ed:38:fa:a3:d2:5e:18:a0:1e:3f:a1:c9:60:08: a6:9e:57:fc:f2:6f:5a:e4:c4:b6:f5:01:88:c0:2a:61:08:ee: 5d:09:84:8a:61:89:34:08:34:a6:30:ba:f4:c2:31:42:95:72: a1:5c:b4:77:82:df:1f:00:2a:9b:cd:02:4a:94:1d:50:d2:de: 8f:80:0b:b7:cf:3d:e9:0a:c2:d8:88:19:20:14:31:70:1d:05: 65:7e:4a:20:ed:1f:78:69:6a:30:8a:7f:4f:c8:54:b7:46:5e: 68:02:de:f2:56:9b:d0:bc:c5:c3:ae:e3:c5:26:53:be:d9:3b: eb:9a:60:61:9d:4e:46:a1:85:97:3e:28:ba:8c:96:d9:4d:1e: df:48:5b:8a:d8:dc:40:52:b1:50:2f:b4:61:22:a4:76:55:d6: d2:84:eb:37:81:d0:72:af:c7:db:6d:89:36:4b:11:8c:99:4d: f5:c8:e5:44 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQwRDgxMTAvBgNVBAUTKDFCOEFFN0M3NDMwMTcyOUQ4NUMzMTU5NTI0OUMzQjQ4 RjFCOTE1MUUwHhcNMjUwOTIxMDIyMDA3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNmNjBkNy0wM2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyysC9STiAGHQx+UOVdjK8ve13hNAxjkrI8XJaGC9JDC7QFoJWthYp0gCaBk rRNfcW8zjw3YOxfi3fk+qFeYxq3Hpe41M9UXDgE3ybCVaxeDtuM9G8koVTANAMxK FQNibON8NN2VVU7dkU5zELU10jUoBCkVsY6KmuOpKRaAFb779aYb9ok4S8CgrOUV hgwy/5L5ugjM+R2O2FnqOmh0jwFq9Bbsb+mXMm+YJRkX1iRE54dnSk4L0NXfNFuR IfGrltUFWOdDyXCwJozCk4PcHQNc48aZclAqZGIKjXR0Q+kPwAXKkQZnv0Cy7pGW 1AgfZjiE8JsqFJWce4AR6gzLSQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNFi23IL 6ES00P+KcOfIbYlS3avRMB8GA1UdIwQYMBaAFBuK58dDAXKdhcMVlSScO0jxuRUe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDBEOC9CM0RFNUNFNDI4 OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNwMkZ3eFdWSkp3N1NQRzVG UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0cm54ME1CY3AyRnd4V1ZKSnc3U1BHNUZSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQwRDgvQjNERTVDRTQyODhEMTFFREE5QTRFQTZGQzRGOUFFMDIvRjIyNTdBQzAy ODkwMTFFRDhBRUVCNDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkAHFgIAADBwQkAHFgICAwDQYJKoZIhvcNAQELBQADggEB AEwG+fNpn6smPWb6joTunkJv8hov93BXb73jVaipFITHD6go8pfZdJECFc6ElCIr 9x51v69s06EWhs9OuAPGLfISLBrbN1d6yjnWGV7tOPqj0l4YoB4/oclgCKaeV/zy b1rkxLb1AYjAKmEI7l0JhIphiTQINKYwuvTCMUKVcqFctHeC3x8AKpvNAkqUHVDS 3o+AC7fPPekKwtiIGSAUMXAdBWV+SiDtH3hpajCKf0/IVLdGXmgC3vJWm9C8xcOu 48UmU77ZO+uaYGGdTkahhZc+KLqMltlNHt9IW4rY3EBSsVAvtGEipHZV1tKE6zeB 0HKvx9ttiTZLEYyZTfXI5UQ= -----END CERTIFICATE-----Generated at Mon Oct 20 21:26:26 2025 by rpki-client