$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/44B65A3890FF11EFA6BECB58C4F9AE02.roa File: 44B65A3890FF11EFA6BECB58C4F9AE02.roa (raw, json) Hash identifier: kFeLSlxr+WCGPho9rPBLPN730/5wUSHLkfcdGg7Yk2U= Subject key identifier: 76:0E:15:49:0E:46:9A:AC:5D:6A:A0:E5:C5:09:D8:A9:2E:D4:04:65 Certificate issuer: /CN=A9160C9E/serialNumber=100D9AEE91D227FE475934F2978C3617D8CFA8EE Certificate serial: CF Authority key identifier: 10:0D:9A:EE:91:D2:27:FE:47:59:34:F2:97:8C:36:17:D8:CF:A8:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/44B65A3890FF11EFA6BECB58C4F9AE02.roa Signing time: Sun 19 Oct 2025 09:12:59 +0000 ROA not before: Sun 19 Oct 2025 09:12:59 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153365 IP address blocks: 2401:cf20::/32 maxlen: 32 2401:cf20::/33 maxlen: 36 2401:cf20:8000::/33 maxlen: 35 2401:cf20:8000::/35 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.crl rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C9E, serialNumber=100D9AEE91D227FE475934F2978C3617D8CFA8EE Validity Not Before: Oct 19 09:12:59 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f4ab9a-f086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:95:d6:6e:1b:aa:8e:9d:f6:bd:ba:a1:b6:ba: 60:2a:3b:77:d0:dd:13:00:22:ef:a5:c1:05:60:9a: f5:68:19:f6:cd:6c:80:92:2d:0c:ba:d4:a8:c6:f2: 16:dd:c2:7f:aa:07:bf:d3:3d:1e:88:05:53:00:04: 1a:37:a8:10:96:4a:4a:95:78:30:f1:06:df:7c:14: 09:95:40:35:11:e0:9f:13:d2:c7:4a:fb:39:ce:ff: 4f:19:26:88:06:bb:0a:f4:ac:4d:a0:4f:e8:27:ce: 9b:7c:f6:00:61:40:c7:66:cf:fc:a0:dd:7c:03:93: 52:1f:27:0c:d6:ec:b4:25:d4:57:b3:e3:f5:63:a7: 29:87:ad:4e:69:9f:5b:c5:8c:72:95:66:ce:b7:8d: 78:11:ad:2a:03:80:d6:71:55:70:08:39:01:ed:b9: e8:6f:b3:b1:96:20:e7:1a:00:fe:b5:12:91:b9:1c: e3:13:4c:e8:43:87:51:3b:df:de:ac:a8:b0:39:75: 89:15:f7:ff:c3:f1:b6:92:96:52:a8:df:c7:1c:70: eb:91:a0:6c:a1:c8:e9:4e:71:bd:18:74:5b:88:eb: 9d:9c:17:5c:5e:ad:a0:a1:07:e3:c7:c0:50:46:bc: e6:15:26:1d:3a:e1:98:99:ef:9d:8e:1f:54:a0:08: 42:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:0E:15:49:0E:46:9A:AC:5D:6A:A0:E5:C5:09:D8:A9:2E:D4:04:65 X509v3 Authority Key Identifier: keyid:10:0D:9A:EE:91:D2:27:FE:47:59:34:F2:97:8C:36:17:D8:CF:A8:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/44B65A3890FF11EFA6BECB58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:cf20::/32 Signature Algorithm: sha256WithRSAEncryption 9a:f8:a7:c3:d8:c1:19:7f:df:69:42:0e:b9:10:92:9a:ed:ea: c4:f4:b1:8d:76:fb:44:23:9b:07:4c:3c:5e:11:b2:01:2a:ca: 08:c3:14:e5:05:0c:c1:ad:19:13:b7:16:02:4b:15:55:fa:b8: 22:37:52:d2:29:e8:68:fa:1d:b6:3e:99:24:ba:6a:cf:b8:d3: c8:3b:23:4b:97:fa:26:51:ba:10:26:0c:51:e0:35:3b:92:2e: 7c:6a:44:6e:72:94:f8:1f:d6:2a:64:3c:f5:67:36:fe:73:da: 8f:da:eb:a4:b9:bf:76:4b:ff:f0:7b:28:30:38:bc:b2:93:ca: 74:5d:c5:ba:55:3b:da:33:43:41:2f:03:e2:f5:85:76:82:ef: 1b:3e:1d:fc:e5:14:0c:ed:e5:50:48:08:0a:d2:ae:0d:22:6c: be:ba:89:6c:b8:7b:45:1b:b2:d9:4f:13:a0:ee:e1:b1:4a:ae: a8:13:fe:a8:41:ba:ed:2b:76:df:18:c1:a1:80:b8:b9:3f:14: ee:2d:12:86:31:1b:79:83:76:48:b7:35:e9:d8:d4:cd:c2:df: 91:31:16:ad:51:fd:ca:8e:a0:4f:16:e2:8b:79:e1:78:0b:ad: 46:b7:0a:18:b4:8e:6d:6c:87:75:fa:84:f1:c3:14:21:90:5b: 02:9e:08:d7 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOUUxMTAvBgNVBAUTKDEwMEQ5QUVFOTFEMjI3RkU0NzU5MzRGMjk3OEMzNjE3 RDhDRkE4RUUwHhcNMjUxMDE5MDkxMjU5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY0YWI5YS1mMDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8pXWbhuqjp32vbqhtrpgKjt30N0TACLvpcEFYJr1aBn2zWyAki0MutSoxvIW 3cJ/qge/0z0eiAVTAAQaN6gQlkpKlXgw8QbffBQJlUA1EeCfE9LHSvs5zv9PGSaI BrsK9KxNoE/oJ86bfPYAYUDHZs/8oN18A5NSHycM1uy0JdRXs+P1Y6cph61OaZ9b xYxylWbOt414Ea0qA4DWcVVwCDkB7bnob7OxliDnGgD+tRKRuRzjE0zoQ4dRO9/e rKiwOXWJFff/w/G2kpZSqN/HHHDrkaBsocjpTnG9GHRbiOudnBdcXq2goQfjx8BQ RrzmFSYdOuGYme+djh9UoAhCAQIDAQABo4ICljCCApIwHQYDVR0OBBYEFHYOFUkO RpqsXWqg5cUJ2Kku1ARlMB8GA1UdIwQYMBaAFBANmu6R0if+R1k08peMNhfYz6ju MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5RS81N0ZGNEJDQThC Q0ExMUVGQUJGQzFBMzlDNEY5QUUwMi9FQTJhN3BIU0pfNUhXVFR5bDR3MkY5alBx TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBMmE3cEhTSl81SFdUVHlsNHcyRjlqUHFPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjBDOUUvNTdGRjRCQ0E4QkNBMTFFRkFCRkMxQTM5QzRGOUFFMDIvNDRCNjVBMzg5 MEZGMTFFRkE2QkVDQjU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAc8gMA0GCSqGSIb3DQEBCwUAA4IBAQCa+KfD2MEZf99p Qg65EJKa7erE9LGNdvtEI5sHTDxeEbIBKsoIwxTlBQzBrRkTtxYCSxVV+rgiN1LS Keho+h22PpkkumrPuNPIOyNLl/omUboQJgxR4DU7ki58akRucpT4H9YqZDz1Zzb+ c9qP2uukub92S//weygwOLyyk8p0XcW6VTvaM0NBLwPi9YV2gu8bPh385RQM7eVQ SAgK0q4NImy+uolsuHtFG7LZTxOg7uGxSq6oE/6oQbrtK3bfGMGhgLi5PxTuLRKG MRt5g3ZItzXp2NTNwt+RMRatUf3KjqBPFuKLeeF4C61GtwoYtI5tbId1+oTxwxQh kFsCngjX -----END CERTIFICATE-----Generated at Mon Oct 20 10:43:35 2025 by rpki-client