$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/A6449CBA54A011EFB35AED26C4F9AE02.roa File: A6449CBA54A011EFB35AED26C4F9AE02.roa (raw, json) Hash identifier: Hdt3DT88wjtxw1TUKGFWHT6pNsnIEUfha62M8xw528A= Subject key identifier: D7:86:A5:EA:E7:F8:16:9D:0E:7E:27:FC:5F:A6:CD:A3:FE:0E:45:68 Certificate issuer: /CN=A9163EB9/serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2 Certificate serial: D9 Authority key identifier: 3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/A6449CBA54A011EFB35AED26C4F9AE02.roa Signing time: Tue 23 Sep 2025 06:25:37 +0000 ROA not before: Tue 23 Sep 2025 06:25:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131108 IP address blocks: 2401:b860::/32 maxlen: 32 2401:b860::/36 maxlen: 36 2401:b860:1000::/36 maxlen: 36 2401:b860:2000::/36 maxlen: 36 2401:b860:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EB9, serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2 Validity Not Before: Sep 23 06:25:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68d23d61-d34d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e3:b3:90:1c:e2:40:cc:85:38:56:cc:ba:16: 36:94:07:45:2a:92:c9:ce:b4:d8:ff:d4:c2:8c:57: d8:e5:31:0c:46:ce:0a:fe:f7:e2:39:77:4f:7b:74: 30:47:da:bd:a4:94:e7:79:e5:ac:fd:6a:fc:05:7b: c2:7b:fb:82:a4:e0:86:e7:34:fb:0a:bd:21:2d:6e: 73:81:e5:c2:3c:f0:3e:2e:06:97:f6:0f:be:2a:cd: 40:af:e5:8c:91:8b:f0:5e:79:4b:68:77:e7:c5:10: 56:d6:6a:04:ea:7e:80:4d:a7:de:9d:b1:c0:18:15: bd:0c:ce:0c:08:00:fd:c7:c1:32:7a:77:85:8c:db: f3:9e:2b:2e:4a:d4:85:1c:02:b6:95:a1:54:a9:72: be:6d:f3:82:42:21:7a:d7:53:ae:09:11:13:4e:ad: 76:6a:9a:45:de:48:cb:02:9a:f5:03:37:fb:ee:06: 21:33:27:e6:11:94:03:49:5d:06:68:24:6e:23:59: 7d:3a:b1:4c:1e:87:79:5b:e9:b4:69:b8:04:1c:6f: f1:e8:54:a0:e7:73:6f:10:a8:e2:84:5e:d8:98:86: dd:bc:ea:5f:01:54:88:8d:63:29:14:93:66:0b:4a: 90:9a:94:75:e2:1f:94:24:65:0b:0c:34:a7:15:57: e8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:86:A5:EA:E7:F8:16:9D:0E:7E:27:FC:5F:A6:CD:A3:FE:0E:45:68 X509v3 Authority Key Identifier: keyid:3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/A6449CBA54A011EFB35AED26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b860::/32 Signature Algorithm: sha256WithRSAEncryption 49:91:dd:39:cd:f3:45:c8:87:cc:a0:86:13:e4:9a:e4:ac:91: 1c:63:4b:31:65:87:13:21:aa:49:a4:b6:b8:2a:ce:96:28:f6: 19:18:ac:5e:dc:14:f9:19:5e:a8:a0:1b:ad:da:16:e5:e8:64: 09:fb:c2:d7:67:b3:56:98:0e:e2:20:c3:51:2f:30:8a:31:c1: c9:94:8f:e2:5a:c5:a4:ec:32:16:1c:0c:8c:be:11:80:a0:da: 88:36:1b:68:01:d3:65:ed:a5:02:ab:50:c0:68:68:14:ab:34: a1:f9:a4:76:08:e6:71:91:7b:a7:dc:76:e4:fe:30:a0:d0:49: 36:c8:d8:6f:0f:a0:1b:8e:ff:26:db:6c:9a:46:c7:a3:8e:14: 25:c7:7b:9e:73:3d:31:62:e9:99:1b:50:63:30:af:c1:2e:d3: f5:ba:71:62:5a:87:c0:bf:30:94:fa:98:06:f5:20:ce:2e:dc: b3:bf:ce:6d:8d:93:f2:14:cf:67:4f:c0:80:4f:ed:8c:16:59: eb:60:a3:04:be:5d:b4:81:f0:09:7f:34:7d:7d:86:03:9f:c4: 8e:7a:ef:2e:73:7a:e1:b7:dd:9b:6d:96:e8:b7:60:2c:15:de: d9:1e:88:b7:19:69:f9:09:9a:5e:3c:88:9f:e2:a0:ba:38:87: 9d:ec:04:c1 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNFQjkxMTAvBgNVBAUTKDNDQzc3OTBFMjAzNzY2NUVGNDk2MkI4MURBRDJGRDA3 RUQ0NkY4QjIwHhcNMjUwOTIzMDYyNTM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQyM2Q2MS1kMzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOOzkBziQMyFOFbMuhY2lAdFKpLJzrTY/9TCjFfY5TEMRs4K/vfiOXdPe3Qw R9q9pJTneeWs/Wr8BXvCe/uCpOCG5zT7Cr0hLW5zgeXCPPA+LgaX9g++Ks1Ar+WM kYvwXnlLaHfnxRBW1moE6n6ATafenbHAGBW9DM4MCAD9x8EyeneFjNvznisuStSF HAK2laFUqXK+bfOCQiF611OuCRETTq12appF3kjLApr1Azf77gYhMyfmEZQDSV0G aCRuI1l9OrFMHod5W+m0abgEHG/x6FSg53NvEKjihF7YmIbdvOpfAVSIjWMpFJNm C0qQmpR14h+UJGULDDSnFVfolwIDAQABo4ICljCCApIwHQYDVR0OBBYEFNeGpern +BadDn4n/F+mzaP+DkVoMB8GA1UdIwQYMBaAFDzHeQ4gN2Ze9JYrgdrS/QftRviy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0VCOS8wNTFDOUU2NDU0 QTAxMUVGODZBRTU5MjJDNEY5QUUwMi9QTWQ1RGlBM1psNzBsaXVCMnRMOUItMUct TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BNZDVEaUEzWmw3MGxpdUIydEw5Qi0xRy1MSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjNFQjkvMDUxQzlFNjQ1NEEwMTFFRjg2QUU1OTIyQzRGOUFFMDIvQTY0NDlDQkE1 NEEwMTFFRkIzNUFFRDI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAbhgMA0GCSqGSIb3DQEBCwUAA4IBAQBJkd05zfNFyIfM oIYT5JrkrJEcY0sxZYcTIapJpLa4Ks6WKPYZGKxe3BT5GV6ooBut2hbl6GQJ+8LX Z7NWmA7iIMNRLzCKMcHJlI/iWsWk7DIWHAyMvhGAoNqINhtoAdNl7aUCq1DAaGgU qzSh+aR2COZxkXun3Hbk/jCg0Ek2yNhvD6Abjv8m22yaRsejjhQlx3uecz0xYumZ G1BjMK/BLtP1unFiWofAvzCU+pgG9SDOLtyzv85tjZPyFM9nT8CAT+2MFlnrYKME vl20gfAJfzR9fYYDn8SOeu8uc3rht92bbZbot2AsFd7ZHoi3GWn5CZpePIif4qC6 OIed7ATB -----END CERTIFICATE-----Generated at Tue Oct 21 03:17:01 2025 by rpki-client