$ rpki-client -vvf rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/5A15EA040D7A11EB9D346C48C4F9AE02.roa File: 5A15EA040D7A11EB9D346C48C4F9AE02.roa (raw, json) Hash identifier: 1NXDKHdGdwmQ0HPSNP/L0h3g8vj3YJvsOmeCBe7yxT0= Subject key identifier: E9:6E:E2:F4:D1:18:BF:43:89:4C:A7:FB:E3:D4:C5:3E:EE:91:DD:A9 Certificate issuer: /CN=A9165456/serialNumber=2CE11008D2E03FEB3E637AD4F7E7272EDC60D53B Certificate serial: 0AB7 Authority key identifier: 2C:E1:10:08:D2:E0:3F:EB:3E:63:7A:D4:F7:E7:27:2E:DC:60:D5:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/5A15EA040D7A11EB9D346C48C4F9AE02.roa Signing time: Wed 20 Aug 2025 20:00:00 +0000 ROA not before: Wed 20 Aug 2025 20:00:00 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139190 IP address blocks: 2404:f340:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.crl rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:39:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2743 (0xab7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165456, serialNumber=2CE11008D2E03FEB3E637AD4F7E7272EDC60D53B Validity Not Before: Aug 20 20:00:00 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a62940-db8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:28:cd:16:43:05:e9:98:37:51:5e:fd:39:30: 23:04:cf:4e:72:5f:49:c3:74:04:73:1b:4b:29:1d: 54:3f:e5:28:d8:62:1d:c6:54:bc:a0:b6:47:c5:a9: 74:2d:3b:b1:51:91:1f:14:cf:55:3d:1e:91:ec:1d: ae:02:b8:02:da:6c:26:22:07:70:c9:68:bf:3f:00: 9e:bc:6d:bf:b5:8c:94:e4:37:fc:21:a1:38:f1:9f: e2:01:d8:53:90:a7:bc:5e:b8:e0:5b:0b:b0:94:a1: 3e:d1:f2:23:ae:5a:d7:17:60:c4:53:11:55:ba:2d: 56:a5:31:53:f8:36:ab:98:c4:06:af:ec:1d:d7:a7: ca:65:ac:84:a0:30:95:40:7d:3d:3e:d1:8a:25:4d: 2d:d7:73:43:7e:0b:d4:ec:ab:12:8a:4a:df:ff:81: 7d:7c:cb:84:66:0b:fd:7f:de:26:f2:75:8b:99:32: 5c:fd:77:e0:53:c2:fc:8b:d2:c4:68:cd:85:24:e7: a0:45:02:25:cc:9f:90:dc:e0:b7:62:83:ed:42:eb: 4a:d3:ea:89:8d:f9:42:db:2a:f5:b2:4f:07:37:46: 64:31:a5:7c:b0:3e:c4:b8:79:0c:d4:b0:b4:17:3c: ee:bc:b3:4f:cc:58:22:87:00:a9:7b:b5:71:92:97: ba:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:6E:E2:F4:D1:18:BF:43:89:4C:A7:FB:E3:D4:C5:3E:EE:91:DD:A9 X509v3 Authority Key Identifier: keyid:2C:E1:10:08:D2:E0:3F:EB:3E:63:7A:D4:F7:E7:27:2E:DC:60:D5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/5A15EA040D7A11EB9D346C48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f340:4000::/34 Signature Algorithm: sha256WithRSAEncryption 6d:04:5f:2f:76:c8:1a:30:a2:54:4d:df:dd:52:13:54:96:66: dd:d8:df:10:07:37:7f:4f:14:95:a5:6b:88:1e:7c:69:25:23: f9:77:d0:65:ca:57:56:be:09:d8:3d:41:2f:ae:e4:4c:0c:a5: a5:f3:9c:30:54:47:c8:53:b2:6a:12:90:64:5b:44:2a:fd:af: a9:bf:b6:19:b9:5d:08:77:00:59:fd:6d:58:a6:12:12:04:19: cd:5b:8b:6b:8c:f5:be:47:ca:d3:ec:da:c7:2f:c2:0a:c0:50: 22:87:85:6c:cc:33:ff:a7:67:39:e2:a2:f0:a9:2f:2b:df:77: 3b:e8:fb:55:a7:a0:cf:70:24:f6:8e:30:ed:98:e4:d1:8d:d1: a1:0e:a8:a7:3d:c6:d4:92:3c:dd:67:4c:fd:d6:30:55:4c:22: 59:71:2c:f8:b9:9f:ee:1e:5f:f7:c2:92:1d:d8:bd:c1:69:ed: b8:18:bf:89:be:0e:d0:5d:4a:0f:52:24:1d:a5:98:79:47:05: 99:85:d2:07:20:0e:41:46:74:cd:22:c8:70:40:bd:a4:ac:3e: 7c:a9:14:f9:b9:ae:4d:e8:e9:9b:21:4f:08:38:1a:7b:20:bd: ce:14:af:a9:ac:0e:90:e4:5b:8d:55:c7:25:97:97:81:69:03: 0c:83:a2:03 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICCrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU0NTYxMTAvBgNVBAUTKDJDRTExMDA4RDJFMDNGRUIzRTYzN0FENEY3RTcyNzJF REM2MEQ1M0IwHhcNMjUwODIwMjAwMDAwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2Mjk0MC1kYjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzijNFkMF6Zg3UV79OTAjBM9Ocl9Jw3QEcxtLKR1UP+Uo2GIdxlS8oLZHxal0 LTuxUZEfFM9VPR6R7B2uArgC2mwmIgdwyWi/PwCevG2/tYyU5Df8IaE48Z/iAdhT kKe8XrjgWwuwlKE+0fIjrlrXF2DEUxFVui1WpTFT+DarmMQGr+wd16fKZayEoDCV QH09PtGKJU0t13NDfgvU7KsSikrf/4F9fMuEZgv9f94m8nWLmTJc/XfgU8L8i9LE aM2FJOegRQIlzJ+Q3OC3YoPtQutK0+qJjflC2yr1sk8HN0ZkMaV8sD7EuHkM1LC0 FzzuvLNPzFgihwCpe7Vxkpe6IwIDAQABo4IClzCCApMwHQYDVR0OBBYEFOlu4vTR GL9DiUyn++PUxT7ukd2pMB8GA1UdIwQYMBaAFCzhEAjS4D/rPmN61PfnJy7cYNU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTQ1Ni8yMzc4RTA4MDVF RTUxMUVBQUE1MkRFNDdDNEY5QUUwMi9MT0VRQ05MZ1Atcy1ZM3JVOS1jbkx0eGcx VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xPRVFDTkxnUC1zLVkzclU5LWNuTHR4ZzFUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU0NTYvMjM3OEUwODA1RUU1MTFFQUFBNTJERTQ3QzRGOUFFMDIvNUExNUVBMDQw RDdBMTFFQjlEMzQ2QzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgYkBPNAQDANBgkqhkiG9w0BAQsFAAOCAQEAbQRfL3bIGjCi VE3f3VITVJZm3djfEAc3f08UlaVriB58aSUj+XfQZcpXVr4J2D1BL67kTAylpfOc MFRHyFOyahKQZFtEKv2vqb+2GbldCHcAWf1tWKYSEgQZzVuLa4z1vkfK0+zaxy/C CsBQIoeFbMwz/6dnOeKi8KkvK993O+j7Vaegz3Ak9o4w7Zjk0Y3RoQ6opz3G1JI8 3WdM/dYwVUwiWXEs+Lmf7h5f98KSHdi9wWntuBi/ib4O0F1KD1IkHaWYeUcFmYXS ByAOQUZ0zSLIcEC9pKw+fKkU+bmuTejpmyFPCDgaeyC9zhSvqawOkORbjVXHJZeX gWkDDIOiAw== -----END CERTIFICATE-----Generated at Sun Aug 24 07:03:36 2025 by rpki-client