$ rpki-client -vvf rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/D1C1AFB2135511F0976BA50CC4F9AE02.roa File: D1C1AFB2135511F0976BA50CC4F9AE02.roa (raw, json) Hash identifier: xHWD/+6Z6mOfeTNp4+pdNaNQc1T99Xc2O7Zqfmln3YE= Subject key identifier: D6:79:A4:E5:33:4E:E4:7E:1B:6E:EF:66:4B:C4:D8:B0:F3:47:61:D2 Certificate issuer: /CN=A9179672/serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Certificate serial: 94 Authority key identifier: 0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/D1C1AFB2135511F0976BA50CC4F9AE02.roa Signing time: Thu 09 Oct 2025 06:34:35 +0000 ROA not before: Thu 09 Oct 2025 06:34:35 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 152657 IP address blocks: 2001:df4:df40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179672, serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Validity Not Before: Oct 9 06:34:35 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e7577a-6972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:24:25:aa:57:23:b2:2e:04:44:6d:55:02:15: 81:57:95:25:96:96:d6:78:41:ea:5d:6f:af:2f:97: 1b:1a:6e:9e:28:6f:3b:5d:03:ce:ed:9a:fe:c0:75: a4:8f:01:6b:37:59:2b:43:7a:12:3a:45:4c:7b:d1: 49:fb:f0:67:82:76:30:3f:e9:aa:3c:40:e7:45:4a: 0f:6e:0c:4f:00:04:eb:a9:52:d4:cf:7d:38:22:f3: db:0b:48:eb:12:a0:e0:b7:90:b8:6a:0f:38:f8:31: 40:a0:2d:69:77:a9:3a:14:5d:02:e0:49:e7:07:2b: b8:03:5b:7d:cf:01:59:1e:61:8c:09:22:47:a5:2f: 4c:f9:2e:92:ec:43:6f:65:80:a0:a6:15:fd:d4:46: 7a:59:7d:a0:9b:25:4e:1c:58:57:d3:2a:1b:78:8e: 49:37:89:c9:cd:1a:ae:f6:62:dc:41:99:bd:b1:1c: 2c:dc:f2:3c:5a:b2:b0:25:61:36:ce:3a:e3:4d:24: ed:1e:9d:be:fa:11:f6:6a:c3:ab:93:6f:13:e7:10: 14:3b:54:72:99:1f:2f:bd:36:1c:25:cb:f8:d1:9e: b3:00:64:1a:a0:20:6a:01:6c:be:cf:3e:4e:b3:ab: d4:4d:de:9d:19:18:0a:ba:28:29:1b:b3:94:ec:48: 75:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:79:A4:E5:33:4E:E4:7E:1B:6E:EF:66:4B:C4:D8:B0:F3:47:61:D2 X509v3 Authority Key Identifier: keyid:0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/D1C1AFB2135511F0976BA50CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:df40::/48 Signature Algorithm: sha256WithRSAEncryption d7:59:56:4b:1f:d9:45:2a:3d:19:7a:e9:c6:99:c4:06:d1:97: 19:07:8e:29:84:71:42:3b:56:c5:55:74:43:10:3d:1f:91:99: 06:6c:cd:bc:09:08:98:fa:d8:04:62:8b:67:ee:26:4b:10:0e: 89:63:06:44:1f:58:bb:fc:f5:66:d0:5b:0b:29:99:f3:46:3c: 12:0b:f0:8d:23:f4:2e:20:b7:7b:96:8f:8c:bc:b5:54:e3:bf: 7c:6e:f5:89:4a:c8:38:a6:d8:ed:01:14:27:9e:8d:2a:62:44: 3d:85:72:ba:9c:d4:20:03:3e:91:1f:4b:75:cd:be:4a:31:ff: 5e:08:a4:9f:ba:d5:08:02:e8:0c:2e:37:b9:c3:7e:29:07:35: e9:26:82:91:72:e1:ca:8f:b2:a9:b5:10:9a:bf:3a:5a:74:c1: 37:20:ef:26:0e:fa:0c:06:95:c7:7b:ee:90:e4:ce:57:0d:09: 5d:46:99:32:c0:f8:bd:8a:7c:ff:eb:6e:75:02:22:39:ca:65: 42:58:9b:e8:0e:73:f1:80:cf:41:b0:d4:5b:e4:1e:ef:7b:83: 1c:05:f3:05:83:c6:93:18:c9:47:17:4a:33:36:f1:79:b8:61: f1:5c:41:1e:b6:32:62:86:1a:06:d0:22:a2:57:67:b4:58:94: 2a:27:0e:f9 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk2NzIxMTAvBgNVBAUTKDBDNjk3MENBQjlERjhFOUJEMTBFMUMzRTkxODkxQTA5 QTdFODhDMjAwHhcNMjUxMDA5MDYzNDM1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU3NTc3YS02OTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmiQlqlcjsi4ERG1VAhWBV5UllpbWeEHqXW+vL5cbGm6eKG87XQPO7Zr+wHWk jwFrN1krQ3oSOkVMe9FJ+/BngnYwP+mqPEDnRUoPbgxPAATrqVLUz304IvPbC0jr EqDgt5C4ag84+DFAoC1pd6k6FF0C4EnnByu4A1t9zwFZHmGMCSJHpS9M+S6S7ENv ZYCgphX91EZ6WX2gmyVOHFhX0yobeI5JN4nJzRqu9mLcQZm9sRws3PI8WrKwJWE2 zjrjTSTtHp2++hH2asOrk28T5xAUO1RymR8vvTYcJcv40Z6zAGQaoCBqAWy+zz5O s6vUTd6dGRgKuigpG7OU7Eh1tQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNZ5pOUz TuR+G27vZkvE2LDzR2HSMB8GA1UdIwQYMBaAFAxpcMq5346b0Q4cPpGJGgmn6Iwg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTY3Mi84OEFEQ0E5OENC RUYxMUVGOTE2NUMyNDZDNEY5QUUwMi9ER2x3eXJuZmpwdlJEaHcta1lrYUNhZm9q Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RHbHd5cm5manB2UkRody1rWWthQ2Fmb2pDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzk2NzIvODhBRENBOThDQkVGMTFFRjkxNjVDMjQ2QzRGOUFFMDIvRDFDMUFGQjIx MzU1MTFGMDk3NkJBNTBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3030AwDQYJKoZIhvcNAQELBQADggEBANdZVksf2UUq PRl66caZxAbRlxkHjimEcUI7VsVVdEMQPR+RmQZszbwJCJj62ARii2fuJksQDolj BkQfWLv89WbQWwspmfNGPBIL8I0j9C4gt3uWj4y8tVTjv3xu9YlKyDim2O0BFCee jSpiRD2Fcrqc1CADPpEfS3XNvkox/14IpJ+61QgC6AwuN7nDfikHNekmgpFy4cqP sqm1EJq/Olp0wTcg7yYO+gwGlcd77pDkzlcNCV1GmTLA+L2KfP/rbnUCIjnKZUJY m+gOc/GAz0Gw1FvkHu97gxwF8wWDxpMYyUcXSjM28Xm4YfFcQR62MmKGGgbQIqJX Z7RYlConDvk= -----END CERTIFICATE-----Generated at Mon Oct 20 22:43:29 2025 by rpki-client