$ rpki-client -vvf rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/E984A66AAC3211F09AD8CA60C4F9AE02.roa File: E984A66AAC3211F09AD8CA60C4F9AE02.roa (raw, json) Hash identifier: 8zEE98x0PtTnTuANGMUxq1+2Rj/m6rmYMLTVUh60RuQ= Subject key identifier: 7F:46:25:18:1F:58:62:52:65:46:A9:A8:B8:06:9B:EC:6D:8E:45:AF Certificate issuer: /CN=A9178E49/serialNumber=2D3DFB5E2212B2905868B177167D548B0DFE3CF4 Certificate serial: 08F6 Authority key identifier: 2D:3D:FB:5E:22:12:B2:90:58:68:B1:77:16:7D:54:8B:0D:FE:3C:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT37XiISspBYaLF3Fn1Uiw3-PPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/E984A66AAC3211F09AD8CA60C4F9AE02.roa Signing time: Sat 18 Oct 2025 14:58:32 +0000 ROA not before: Sat 18 Oct 2025 14:58:32 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140877 IP address blocks: 2400:dc60::/32 maxlen: 32 2400:dc60::/48 maxlen: 48 2400:dc60:1::/48 maxlen: 48 2400:dc60:2::/48 maxlen: 48 2400:dc60:3::/48 maxlen: 48 2400:dc60:4::/48 maxlen: 48 2400:dc60:5::/48 maxlen: 48 2400:dc60:6::/48 maxlen: 48 2400:dc60:7::/48 maxlen: 48 2400:dc60:8::/48 maxlen: 48 2400:dc60:9::/48 maxlen: 48 2400:dc60:a::/48 maxlen: 48 2400:dc60:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/LT37XiISspBYaLF3Fn1Uiw3-PPQ.crl rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/LT37XiISspBYaLF3Fn1Uiw3-PPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT37XiISspBYaLF3Fn1Uiw3-PPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2294 (0x8f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178E49, serialNumber=2D3DFB5E2212B2905868B177167D548B0DFE3CF4 Validity Not Before: Oct 18 14:58:32 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68f3ab17-6aaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b9:d8:ac:1d:24:79:f5:e1:af:90:39:9a:d4: 09:f4:cd:18:f4:4e:1a:09:27:d3:c7:12:a6:05:45: 94:18:12:32:81:14:e3:ae:3a:15:2d:0a:45:17:80: 07:50:37:28:03:b3:7d:41:39:a5:81:7e:79:2e:dc: df:38:48:8e:a4:85:b8:27:28:a8:fb:b5:53:af:e4: c8:6a:b0:f5:50:b0:b0:1f:c8:33:e3:b3:cf:65:8a: b9:b2:8a:82:61:43:e2:5f:df:f7:a5:21:dd:ef:83: 3f:2b:ed:70:16:5a:70:da:6c:79:3f:c9:f5:04:0e: e2:31:fc:3e:73:ac:a5:29:a9:c1:9f:56:79:20:b6: 5c:1c:74:b4:4f:e5:28:22:83:10:16:12:14:c7:5a: 4b:64:c7:3a:4f:2f:b0:1f:6f:09:8e:99:45:0a:9c: e2:f7:69:03:4b:4c:aa:1d:25:63:17:3b:00:0f:f3: 2a:ea:7a:5d:ce:3c:ea:0b:f8:82:34:4f:16:e9:38: 17:9b:95:49:fb:25:c8:bb:4d:91:8f:75:4e:21:fd: 83:6d:7a:dd:4d:26:d2:53:56:66:bc:d1:f8:43:53: 8d:55:dd:bd:92:f3:b4:76:8a:8d:da:27:77:31:93: a8:ce:18:f3:40:c5:ba:e8:28:33:f9:e5:f9:6c:fa: 01:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:46:25:18:1F:58:62:52:65:46:A9:A8:B8:06:9B:EC:6D:8E:45:AF X509v3 Authority Key Identifier: keyid:2D:3D:FB:5E:22:12:B2:90:58:68:B1:77:16:7D:54:8B:0D:FE:3C:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/LT37XiISspBYaLF3Fn1Uiw3-PPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT37XiISspBYaLF3Fn1Uiw3-PPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/E984A66AAC3211F09AD8CA60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:dc60::/32 Signature Algorithm: sha256WithRSAEncryption 91:91:01:8f:92:98:24:4d:b0:9c:bf:90:f4:ed:a7:f3:82:75: cf:e3:69:cd:c6:c1:6d:e1:1a:f6:88:ca:e0:f2:4d:84:86:9d: 96:55:f7:af:eb:9d:f6:1a:ef:2e:e0:a5:c5:73:a7:50:88:a1: d6:ef:3b:36:40:f7:dc:f6:b2:00:a2:aa:bf:d9:73:a8:a7:74: e0:33:22:cc:32:0a:9a:00:d2:dd:0e:db:8e:39:84:68:14:36: 68:8b:25:83:be:be:fb:b5:c8:70:98:56:0b:53:1f:78:bf:fc: 1d:01:2a:7c:9b:fe:86:ff:14:00:60:fe:10:76:71:46:4d:a1: 9a:f8:49:81:77:36:c7:26:48:65:f7:84:46:ba:f2:96:99:4c: 06:83:75:81:e0:9e:55:81:9b:37:94:32:35:80:f5:a2:df:cc: bb:6b:e3:6c:c0:49:7d:37:1b:34:c7:e2:14:55:b9:0c:6d:7f: ed:18:67:d0:5d:8f:63:1b:ed:43:7c:7b:19:ae:22:71:86:65: e1:00:29:0e:39:ee:52:79:83:7c:7a:53:08:c3:e3:cb:cf:8b: 08:e8:53:4c:90:ab:08:10:4f:70:ae:30:31:28:f1:c6:bf:f0: 47:36:1f:e7:86:74:9b:f5:22:f5:40:d2:23:40:d8:02:07:4c: 68:22:82:2b -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFNDkxMTAvBgNVBAUTKDJEM0RGQjVFMjIxMkIyOTA1ODY4QjE3NzE2N0Q1NDhC MERGRTNDRjQwHhcNMjUxMDE4MTQ1ODMyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYzYWIxNy02YWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrnYrB0kefXhr5A5mtQJ9M0Y9E4aCSfTxxKmBUWUGBIygRTjrjoVLQpFF4AH UDcoA7N9QTmlgX55LtzfOEiOpIW4Jyio+7VTr+TIarD1ULCwH8gz47PPZYq5soqC YUPiX9/3pSHd74M/K+1wFlpw2mx5P8n1BA7iMfw+c6ylKanBn1Z5ILZcHHS0T+Uo IoMQFhIUx1pLZMc6Ty+wH28JjplFCpzi92kDS0yqHSVjFzsAD/Mq6npdzjzqC/iC NE8W6TgXm5VJ+yXIu02Rj3VOIf2DbXrdTSbSU1ZmvNH4Q1ONVd29kvO0doqN2id3 MZOozhjzQMW66Cgz+eX5bPoBDwIDAQABo4ICljCCApIwHQYDVR0OBBYEFH9GJRgf WGJSZUapqLgGm+xtjkWvMB8GA1UdIwQYMBaAFC09+14iErKQWGixdxZ9VIsN/jz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEU0OS8zRjAyMDI0NkJF MTIxMUVBQkI2MEEyODJDNEY5QUUwMi9MVDM3WGlJU3NwQllhTEYzRm4xVWl3My1Q UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUMzdYaUlTc3BCWWFMRjNGbjFVaXczLVBQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhFNDkvM0YwMjAyNDZCRTEyMTFFQUJCNjBBMjgyQzRGOUFFMDIvRTk4NEE2NkFB QzMyMTFGMDlBRDhDQTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkANxgMA0GCSqGSIb3DQEBCwUAA4IBAQCRkQGPkpgkTbCc v5D07afzgnXP42nNxsFt4Rr2iMrg8k2Ehp2WVfev6532Gu8u4KXFc6dQiKHW7zs2 QPfc9rIAoqq/2XOop3TgMyLMMgqaANLdDtuOOYRoFDZoiyWDvr77tchwmFYLUx94 v/wdASp8m/6G/xQAYP4QdnFGTaGa+EmBdzbHJkhl94RGuvKWmUwGg3WB4J5VgZs3 lDI1gPWi38y7a+NswEl9Nxs0x+IUVbkMbX/tGGfQXY9jG+1DfHsZriJxhmXhACkO Oe5SeYN8elMIw+PLz4sI6FNMkKsIEE9wrjAxKPHGv/BHNh/nhnSb9SL1QNIjQNgC B0xoIoIr -----END CERTIFICATE-----Generated at Tue Oct 21 07:21:03 2025 by rpki-client