$ rpki-client -vvf rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/936A4548AC3A11F0A9C43F44C4F9AE02.roa File: 936A4548AC3A11F0A9C43F44C4F9AE02.roa (raw, json) Hash identifier: aDzusaC8Tp4Xh29QzEkDqXm9UtTCSIlF3bFjfnnKcb4= Subject key identifier: A7:A0:9C:AC:61:83:E7:F4:D8:62:D6:D9:B9:C3:22:F7:50:DD:4E:C1 Certificate issuer: /CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Certificate serial: 0188 Authority key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/936A4548AC3A11F0A9C43F44C4F9AE02.roa Signing time: Sat 18 Oct 2025 15:53:23 +0000 ROA not before: Sat 18 Oct 2025 15:53:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 206675 IP address blocks: 2403:27c0:c02::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:12:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A66F, serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Validity Not Before: Oct 18 15:53:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68f3b7f3-5ac0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6c:50:af:37:50:13:09:67:c6:37:e1:35:89: 62:bb:40:f5:ae:81:4e:7b:72:ae:f0:73:55:d9:b7: 5d:9d:b6:cc:17:fe:86:82:ce:4e:4a:03:b3:b8:8a: ec:0a:b2:87:7b:21:a9:78:05:10:83:cb:8e:84:5d: 17:19:10:81:97:97:63:50:e7:87:8c:a7:42:a6:2a: 88:a7:60:f9:11:d7:47:aa:e3:c5:1a:0b:65:0d:85: ba:eb:ca:db:34:d9:74:24:26:f9:61:df:d6:3a:9a: 52:3b:8b:2c:b0:25:c1:e1:77:ee:30:3d:b3:6b:9a: d8:5f:13:40:48:cb:20:c7:31:89:77:6c:c2:86:99: 21:f7:34:04:f9:36:d4:16:a6:5e:fb:a6:83:83:c7: c0:85:5f:bd:36:95:00:84:f9:53:f6:89:29:5f:e8: 54:e3:ea:75:80:3e:5b:c8:f8:d6:62:a1:c9:3d:3b: df:e9:80:b4:c2:f2:b6:9c:b7:aa:30:ad:11:1a:65: 8a:7a:78:14:be:9f:55:3c:3d:f5:c6:5b:25:03:46: 49:26:d6:10:93:8d:de:7a:3d:d2:9a:15:82:f1:e1: eb:09:be:54:21:1e:1f:f4:58:13:17:c5:d5:7f:31: 68:68:6f:f1:e1:b6:bc:8d:90:9d:01:da:e6:d8:e8: 69:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:A0:9C:AC:61:83:E7:F4:D8:62:D6:D9:B9:C3:22:F7:50:DD:4E:C1 X509v3 Authority Key Identifier: keyid:B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/936A4548AC3A11F0A9C43F44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:27c0:c02::/47 Signature Algorithm: sha256WithRSAEncryption 30:02:f3:13:97:65:48:61:f5:bb:7d:8e:35:de:3a:fe:2e:44: 05:68:bb:29:94:37:5d:80:ad:d6:d7:65:71:2a:a0:5b:b3:50: a8:9f:e9:45:50:fb:3a:84:c4:ec:fd:07:d2:d4:22:0f:bd:4b: 92:ab:2e:8a:21:50:cc:28:89:c9:37:c0:1c:75:c8:74:b8:78: 4f:30:f7:54:81:56:87:51:6d:3f:18:6f:9e:33:e1:b0:7b:fe: 40:85:75:af:59:5d:a0:69:e1:c0:a1:7b:59:5b:6d:4e:89:f2: dd:21:95:04:4a:26:51:9b:a3:da:a9:ca:1f:32:01:1e:51:70: 6a:62:b0:42:03:33:43:02:95:8f:56:99:51:5a:dc:8a:7b:c7: b0:88:05:62:6a:0f:69:57:90:22:23:6c:7d:30:e8:03:36:14: 18:31:20:6e:07:29:7c:13:cb:15:0b:18:96:ef:1e:97:aa:37: 98:df:98:3a:0f:c8:3e:41:d0:ab:f5:84:18:fa:4d:66:11:85: c4:b8:9c:13:91:57:9a:e7:69:48:52:bd:ec:46:73:f2:52:31: a6:3a:92:0e:d4:b9:57:9d:dc:4e:8d:dd:94:69:f3:14:7f:69: f8:04:ea:a5:a0:f6:dc:cf:8d:82:f9:40:d9:97:a5:ed:77:23: a1:c3:e4:14 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2NkYxMTAvBgNVBAUTKEIyMkMzRDBBQkNEMzkxOTQ4NkEzRTYxRThENzg4OTIz OTIyQkY2QTUwHhcNMjUxMDE4MTU1MzIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYzYjdmMy01YWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2xQrzdQEwlnxjfhNYliu0D1roFOe3Ku8HNV2bddnbbMF/6Ggs5OSgOzuIrs CrKHeyGpeAUQg8uOhF0XGRCBl5djUOeHjKdCpiqIp2D5EddHquPFGgtlDYW668rb NNl0JCb5Yd/WOppSO4sssCXB4XfuMD2za5rYXxNASMsgxzGJd2zChpkh9zQE+TbU FqZe+6aDg8fAhV+9NpUAhPlT9okpX+hU4+p1gD5byPjWYqHJPTvf6YC0wvK2nLeq MK0RGmWKengUvp9VPD31xlslA0ZJJtYQk43eej3SmhWC8eHrCb5UIR4f9FgTF8XV fzFoaG/x4ba8jZCdAdrm2Ohp8QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKegnKxh g+f02GLW2bnDIvdQ3U7BMB8GA1UdIwQYMBaAFLIsPQq805GUhqPmHo14iSOSK/al MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY2Ri84RkNDOUQyOEM2 RjkxMUVFOTdFNkZCMURDNEY5QUUwMi9zaXc5Q3J6VGtaU0dvLVllalhpSkk1SXI5 cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NpdzlDcnpUa1pTR28tWWVqWGlKSTVJcjlxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E2NkYvOEZDQzlEMjhDNkY5MTFFRTk3RTZGQjFEQzRGOUFFMDIvOTM2QTQ1NDhB QzNBMTFGMEE5QzQzRjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkAyfADAIwDQYJKoZIhvcNAQELBQADggEBADAC8xOXZUhh 9bt9jjXeOv4uRAVouymUN12ArdbXZXEqoFuzUKif6UVQ+zqExOz9B9LUIg+9S5Kr LoohUMwoick3wBx1yHS4eE8w91SBVodRbT8Yb54z4bB7/kCFda9ZXaBp4cChe1lb bU6J8t0hlQRKJlGbo9qpyh8yAR5RcGpisEIDM0MClY9WmVFa3Ip7x7CIBWJqD2lX kCIjbH0w6AM2FBgxIG4HKXwTyxULGJbvHpeqN5jfmDoPyD5B0Kv1hBj6TWYRhcS4 nBORV5rnaUhSvexGc/JSMaY6kg7UuVed3E6N3ZRp8xR/afgE6qWg9tzPjYL5QNmX pe13I6HD5BQ= -----END CERTIFICATE-----Generated at Mon Oct 20 17:59:12 2025 by rpki-client