$ rpki-client -vvf rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/E02718B0FB7E11EFA25DF775C4F9AE02.roa File: E02718B0FB7E11EFA25DF775C4F9AE02.roa (raw, json) Hash identifier: 9SsfPFEpNqBFgCdLY2IklkloHnAbZJJJLXhyoF85vCY= Subject key identifier: 86:5D:24:D5:9F:62:12:BA:AE:25:3A:BF:51:96:E6:FD:AF:6E:BC:D6 Certificate issuer: /CN=A9166C39/serialNumber=07E051B41ED82E3F53BF59AA84DD9ACA20CFB54C Certificate serial: 0903 Authority key identifier: 07:E0:51:B4:1E:D8:2E:3F:53:BF:59:AA:84:DD:9A:CA:20:CF:B5:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/E02718B0FB7E11EFA25DF775C4F9AE02.roa Signing time: Wed 10 Sep 2025 21:01:52 +0000 ROA not before: Wed 10 Sep 2025 21:01:52 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 993 IP address blocks: 2001:df4:d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2307 (0x903) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166C39, serialNumber=07E051B41ED82E3F53BF59AA84DD9ACA20CFB54C Validity Not Before: Sep 10 21:01:52 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68c1e740-7e09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c3:3c:a2:2e:14:2e:67:f8:f6:36:d5:ff:2d: 7e:1c:05:fe:d1:d3:37:28:ea:30:67:54:89:d1:40: 50:b3:81:9b:2a:00:55:bf:87:f4:90:7f:91:35:a9: ee:03:da:93:94:b4:71:b2:88:0f:aa:df:12:be:96: e4:0d:85:b8:61:05:7f:07:07:f8:81:62:92:f7:5a: 14:43:98:09:60:64:52:d3:db:83:af:44:56:e6:de: f9:69:5a:ef:71:e2:81:37:fd:27:8d:23:4d:9a:c1: 04:0d:cc:20:11:4e:89:03:50:7b:30:42:7b:c9:5f: 61:64:12:79:f6:24:3d:4e:4e:56:0a:e2:57:08:cd: 27:19:35:12:ec:21:e2:9b:95:3a:09:5a:36:18:72: dd:b7:77:06:2e:8e:60:9f:3c:51:e1:30:19:95:7e: e2:65:79:cd:94:b3:6c:95:5e:a1:c1:96:9a:a1:ad: e8:f0:e7:85:07:f5:d5:f5:f5:11:db:24:69:c6:69: ee:22:e7:55:ed:eb:87:11:46:23:11:02:d7:64:e5: 0d:2b:f4:ac:11:58:b6:24:9f:a3:0b:07:a6:db:3d: 9f:67:ff:3a:9d:a8:ba:3b:91:41:09:90:87:61:28: a9:f7:b6:8a:42:da:78:30:33:ef:95:8e:73:99:d0: 7f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:5D:24:D5:9F:62:12:BA:AE:25:3A:BF:51:96:E6:FD:AF:6E:BC:D6 X509v3 Authority Key Identifier: keyid:07:E0:51:B4:1E:D8:2E:3F:53:BF:59:AA:84:DD:9A:CA:20:CF:B5:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/E02718B0FB7E11EFA25DF775C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:d80::/48 Signature Algorithm: sha256WithRSAEncryption 89:cb:5e:38:de:f0:05:67:04:fd:86:ce:a7:37:bc:c8:f0:17: d0:b6:70:8b:88:da:b5:09:0c:e1:1c:26:1f:2b:c8:b1:4c:ed: 37:64:99:4d:b9:c8:d0:f6:53:96:86:eb:cc:81:05:63:f3:3e: 41:59:22:88:f0:22:77:31:bd:0f:3a:7b:48:55:bf:76:49:6a: 29:eb:79:80:80:a8:00:4a:63:2c:b2:c1:03:8d:47:e7:87:06: e4:3b:a1:0d:9c:83:fb:1c:e4:dc:d7:16:2b:fe:61:78:ff:bb: 26:c4:cc:29:23:a1:6b:b1:4c:27:52:21:e0:f5:81:31:e8:d5: 8f:b7:9a:3e:07:d8:2b:ae:97:0b:19:10:24:43:7b:17:43:4c: 74:ed:0c:6e:53:54:36:fd:20:f2:6d:62:28:6c:7b:46:5b:f5: 57:7e:cf:a8:04:e6:a9:1f:04:b2:70:0c:fb:11:9b:6a:6a:ba: 40:78:60:9d:2c:35:0d:b4:1a:f5:a8:1a:3a:6e:bd:7e:74:a2: b0:3d:fa:bb:f3:95:84:0e:ce:76:4d:38:f0:fd:58:14:15:c1: 82:a4:fa:aa:3d:f7:a2:42:19:b8:8f:f9:7f:12:b6:b1:3e:37: 51:9e:19:e2:c8:76:d7:17:6e:2e:ab:e1:d2:99:c0:af:a1:ed: fb:27:82:e7 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZDMzkxMTAvBgNVBAUTKDA3RTA1MUI0MUVEODJFM0Y1M0JGNTlBQTg0REQ5QUNB MjBDRkI1NEMwHhcNMjUwOTEwMjEwMTUyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMxZTc0MC03ZTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8M8oi4ULmf49jbV/y1+HAX+0dM3KOowZ1SJ0UBQs4GbKgBVv4f0kH+RNanu A9qTlLRxsogPqt8SvpbkDYW4YQV/Bwf4gWKS91oUQ5gJYGRS09uDr0RW5t75aVrv ceKBN/0njSNNmsEEDcwgEU6JA1B7MEJ7yV9hZBJ59iQ9Tk5WCuJXCM0nGTUS7CHi m5U6CVo2GHLdt3cGLo5gnzxR4TAZlX7iZXnNlLNslV6hwZaaoa3o8OeFB/XV9fUR 2yRpxmnuIudV7euHEUYjEQLXZOUNK/SsEVi2JJ+jCwem2z2fZ/86nai6O5FBCZCH YSip97aKQtp4MDPvlY5zmdB/NQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIZdJNWf YhK6riU6v1GW5v2vbrzWMB8GA1UdIwQYMBaAFAfgUbQe2C4/U79ZqoTdmsogz7VM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkMzOS8yN0VFQ0ZEMEJC OTcxMUVBQTFBNjZDNTNDNEY5QUUwMi9CLUJSdEI3WUxqOVR2MW1xaE4yYXlpRFB0 VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ItQlJ0QjdZTGo5VHYxbXFoTjJheWlEUHRVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjZDMzkvMjdFRUNGRDBCQjk3MTFFQUExQTY2QzUzQzRGOUFFMDIvRTAyNzE4QjBG QjdFMTFFRkEyNURGNzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30DYAwDQYJKoZIhvcNAQELBQADggEBAInLXjje8AVn BP2Gzqc3vMjwF9C2cIuI2rUJDOEcJh8ryLFM7TdkmU25yND2U5aG68yBBWPzPkFZ IojwIncxvQ86e0hVv3ZJainreYCAqABKYyyywQONR+eHBuQ7oQ2cg/sc5NzXFiv+ YXj/uybEzCkjoWuxTCdSIeD1gTHo1Y+3mj4H2CuulwsZECRDexdDTHTtDG5TVDb9 IPJtYihse0Zb9Vd+z6gE5qkfBLJwDPsRm2pqukB4YJ0sNQ20GvWoGjpuvX50orA9 +rvzlYQOznZNOPD9WBQVwYKk+qo996JCGbiP+X8StrE+N1GeGeLIdtcXbi6r4dKZ wK+h7fsnguc= -----END CERTIFICATE-----Generated at Mon Oct 20 12:43:21 2025 by rpki-client