$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/DC7EC870132311ED84EFCD51C4F9AE02.roa File: DC7EC870132311ED84EFCD51C4F9AE02.roa (raw, json) Hash identifier: bkzdo6gT4bCes24nRardwTdQamMjq/Ev4gKXBN8lS/Q= Subject key identifier: F0:7C:26:7F:50:F9:0A:D0:F8:7A:64:99:BB:6C:72:31:35:6F:5E:F6 Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Certificate serial: 36BD Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/DC7EC870132311ED84EFCD51C4F9AE02.roa Signing time: Wed 08 Oct 2025 14:40:45 +0000 ROA not before: Wed 08 Oct 2025 14:40:45 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 18012 IP address blocks: 2404:150::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:15:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14013 (0x36bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91510AD, serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Validity Not Before: Oct 8 14:40:45 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e677ed-abde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7b:ec:e9:3a:55:29:2a:87:52:c2:aa:b9:fd: 02:07:34:b8:4c:a4:35:09:a7:11:10:6c:50:ba:fe: dc:ee:b4:ec:95:13:f1:be:ce:4b:da:c6:ee:f5:98: 01:6e:99:15:3d:a0:de:25:e3:42:0a:4b:16:79:ee: 53:0f:f0:ac:61:f1:9d:fc:11:85:d1:78:b0:c0:3b: c6:d6:fa:1b:08:6f:89:8a:9b:52:fb:7d:92:ce:6f: 3d:19:8c:d5:55:9c:ff:71:bd:2c:3e:50:36:f0:88: db:60:b0:b7:43:db:d8:06:ac:42:8a:c0:06:9c:7e: 42:38:7c:85:02:15:88:90:7b:7d:68:a3:7e:a7:56: 47:da:f6:8e:5d:88:96:1e:2b:87:2e:34:90:29:bd: e4:08:39:f6:a1:a9:93:2f:36:e1:d1:61:57:84:36: f4:df:53:bc:f0:46:90:b6:62:e0:8b:f6:8d:cc:a2: de:d3:42:2d:54:8f:61:18:ef:01:84:2d:11:47:cc: ee:78:ee:d0:82:35:44:58:dd:fa:29:e3:ce:0b:fb: 64:ed:49:ca:98:39:94:d6:52:de:81:e1:63:d3:14: ad:25:02:7c:b4:f3:49:c7:5a:d3:ea:cc:9c:62:e6: 55:b0:4a:2b:ee:17:19:ec:c6:c7:f3:de:82:71:cf: e4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:7C:26:7F:50:F9:0A:D0:F8:7A:64:99:BB:6C:72:31:35:6F:5E:F6 X509v3 Authority Key Identifier: keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/DC7EC870132311ED84EFCD51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:150::/32 Signature Algorithm: sha256WithRSAEncryption 39:97:4f:71:0e:eb:9e:12:b4:87:06:b0:48:b2:50:25:86:f0: fb:a1:c4:b3:57:84:7b:0f:f1:f1:c4:32:f0:1d:e0:6c:09:1c: f5:3d:36:90:99:37:3f:83:6b:d6:fd:5c:cb:52:58:b7:fa:df: fb:93:2d:10:a7:b0:5e:06:e9:d3:9f:9c:13:ea:97:1f:91:50: 61:e9:3a:00:e9:29:9b:5c:b6:89:1e:a1:39:b4:67:a6:1e:f5: 2d:bd:e7:c0:1e:fb:95:4f:72:ee:36:4c:26:a9:c7:ef:88:0c: 34:f2:28:f4:88:f1:ed:a7:1f:d3:79:9f:0e:ba:05:61:31:d2: d7:91:40:55:2a:ad:cd:8d:11:7d:03:ef:1f:72:d5:0f:8e:2c: f0:61:f2:12:a9:d6:18:1d:03:11:28:51:da:e0:ec:05:0f:3f: ae:35:ad:ef:5a:31:a6:3b:22:08:a3:57:2a:a4:7f:ef:a3:d2: 6e:be:79:c7:65:83:b8:67:e3:07:c0:41:ea:dd:e1:1c:26:00: c6:fc:89:ae:3c:bd:41:3c:6f:fa:f5:af:94:e4:0e:47:05:d6: cb:dc:2f:cc:db:8f:7e:d0:21:e5:8e:ff:5b:95:17:15:77:c1: 6e:ad:18:6a:aa:02:3a:90:dd:ab:47:1d:47:86:18:1a:e8:f3: f9:61:c8:97 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICNr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEwQUQxMTAvBgNVBAUTKEUxRTY5MDhBMTZFQzgxM0RBQTBCRDY0Nzk3QUU5REJE RUIwOTIyNTcwHhcNMjUxMDA4MTQ0MDQ1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2NzdlZC1hYmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXvs6TpVKSqHUsKquf0CBzS4TKQ1CacREGxQuv7c7rTslRPxvs5L2sbu9ZgB bpkVPaDeJeNCCksWee5TD/CsYfGd/BGF0XiwwDvG1vobCG+JiptS+32Szm89GYzV VZz/cb0sPlA28IjbYLC3Q9vYBqxCisAGnH5COHyFAhWIkHt9aKN+p1ZH2vaOXYiW HiuHLjSQKb3kCDn2oamTLzbh0WFXhDb031O88EaQtmLgi/aNzKLe00ItVI9hGO8B hC0RR8zueO7QgjVEWN36KePOC/tk7UnKmDmU1lLegeFj0xStJQJ8tPNJx1rT6syc YuZVsEor7hcZ7MbH896Ccc/k9QIDAQABo4ICljCCApIwHQYDVR0OBBYEFPB8Jn9Q +QrQ+HpkmbtscjE1b172MB8GA1UdIwQYMBaAFOHmkIoW7IE9qgvWR5eunb3rCSJX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTBBRC84QjVFNzVGRTFE ODcxMUUyODRCMzgzREYwOEIwMkNEMi80ZWFRaWhic2dUMnFDOVpIbDY2ZHZlc0pJ bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRlYVFpaGJzZ1QycUM5WkhsNjZkdmVzSklsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEwQUQvOEI1RTc1RkUxRDg3MTFFMjg0QjM4M0RGMDhCMDJDRDIvREM3RUM4NzAx MzIzMTFFRDg0RUZDRDUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBAFQMA0GCSqGSIb3DQEBCwUAA4IBAQA5l09xDuueErSH BrBIslAlhvD7ocSzV4R7D/HxxDLwHeBsCRz1PTaQmTc/g2vW/VzLUli3+t/7ky0Q p7BeBunTn5wT6pcfkVBh6ToA6SmbXLaJHqE5tGemHvUtvefAHvuVT3LuNkwmqcfv iAw08ij0iPHtpx/TeZ8OugVhMdLXkUBVKq3NjRF9A+8fctUPjizwYfISqdYYHQMR KFHa4OwFDz+uNa3vWjGmOyIIo1cqpH/vo9JuvnnHZYO4Z+MHwEHq3eEcJgDG/Imu PL1BPG/69a+U5A5HBdbL3C/M249+0CHljv9blRcVd8FurRhqqgI6kN2rRx1Hhhga 6PP5YciX -----END CERTIFICATE-----Generated at Mon Oct 20 06:54:17 2025 by rpki-client