$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/84064494E48F11EF8386EA50C4F9AE02.roa File: 84064494E48F11EF8386EA50C4F9AE02.roa (raw, json) Hash identifier: AffWt9J6no4G+h1FpGfN0NTkhva8z6z11If0wdojgPY= Subject key identifier: 33:40:DC:79:EB:19:27:6F:40:46:E0:1E:DC:06:05:C3:04:AF:FC:46 Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1D84 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/84064494E48F11EF8386EA50C4F9AE02.roa Signing time: Wed 24 Sep 2025 16:34:39 +0000 ROA not before: Wed 24 Sep 2025 16:34:39 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 149844 IP address blocks: 2406:d00:ccc4::/48 maxlen: 48 2406:d00:ccc5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7556 (0x1d84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Sep 24 16:34:39 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d41d9e-d053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:6d:66:0f:e2:a0:a1:52:61:75:be:3f:4c:4a: a7:7d:29:2d:4f:1b:5e:3e:ed:4f:c6:fb:86:eb:41: c8:75:ed:ed:80:4c:a1:4d:37:cf:c9:ca:cd:53:88: 97:3d:7e:f9:d3:31:8d:e8:17:47:87:f0:e5:6e:e2: cf:bb:d5:39:9e:66:3a:f1:32:fa:96:e1:3f:eb:5c: 73:6b:97:07:64:84:90:f3:c7:1a:d1:1e:0d:00:d2: f2:6b:00:de:57:6b:23:0f:42:4e:54:1b:23:a1:5b: ea:95:b9:c2:0d:18:b1:3e:6c:7f:3a:8d:e0:aa:a2: ce:a4:c3:6f:6e:a4:b8:80:96:53:b1:41:2f:a3:eb: bb:09:5c:f9:f8:be:98:1b:52:20:be:cf:48:61:21: 63:53:82:ea:92:d4:a4:c6:b1:02:bf:c0:4c:7e:b7: 8f:97:42:28:8e:99:de:3a:a5:85:eb:56:82:d3:7c: 83:33:b0:c9:7e:ac:18:4c:05:21:9b:2b:4b:ca:17: d5:b4:6a:78:39:5d:51:3a:e9:11:52:1b:09:87:94: c7:fc:5c:52:77:a3:cc:63:f9:a9:1a:7a:33:28:69: 7b:27:2f:a8:c0:e1:d7:2d:23:aa:e9:12:f5:da:25: 49:f3:ab:66:b0:f8:ee:b5:25:1a:38:cc:50:0c:72: 7d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:40:DC:79:EB:19:27:6F:40:46:E0:1E:DC:06:05:C3:04:AF:FC:46 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/84064494E48F11EF8386EA50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:d00:ccc4::/47 Signature Algorithm: sha256WithRSAEncryption 9c:4e:8f:42:7b:61:66:f9:67:af:ef:89:ba:90:b6:ce:40:0c: ea:b6:7b:ac:20:e0:9f:b5:38:2e:f1:5d:b3:bf:88:ea:9b:5b: 1e:8b:a9:31:da:a1:f2:b3:32:27:5a:49:44:b6:d6:ce:d0:c8: ca:e3:96:13:c1:af:fb:cc:c1:1d:65:44:1c:19:36:51:66:48: a4:e1:79:7b:46:5c:d9:de:4b:44:bb:f5:55:4e:84:7f:0f:45: 02:b7:23:e1:86:1d:ac:ab:09:25:60:ce:e9:8f:c1:58:70:54: eb:da:a7:05:d9:70:76:03:be:c4:5d:aa:6d:b9:17:fb:ad:21: 68:f8:a7:3c:d8:6b:10:e3:54:17:ad:79:fe:da:e4:d0:99:01: 4e:83:2c:6d:00:66:ed:19:3b:33:5f:b1:16:14:bb:41:dd:e6: 3d:27:29:cf:a9:68:0a:12:8d:88:83:1f:7b:a0:70:fd:94:c8: 90:52:94:08:d2:c6:56:71:7b:be:c3:c0:79:a3:10:c6:21:9e: 54:80:30:af:4e:37:76:62:05:11:22:dd:b9:ba:0b:f5:c7:7f: 37:a5:9b:35:3d:2c:1f:63:37:a6:48:79:12:e4:7f:0b:a8:4a: a6:8e:db:6a:d5:18:34:ff:12:45:59:0d:41:14:ac:25:b6:7c: 65:9d:02:50 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICHYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjUwOTI0MTYzNDM5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0MWQ5ZS1kMDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/G1mD+KgoVJhdb4/TEqnfSktTxtePu1PxvuG60HIde3tgEyhTTfPycrNU4iX PX750zGN6BdHh/DlbuLPu9U5nmY68TL6luE/61xza5cHZISQ88ca0R4NANLyawDe V2sjD0JOVBsjoVvqlbnCDRixPmx/Oo3gqqLOpMNvbqS4gJZTsUEvo+u7CVz5+L6Y G1Igvs9IYSFjU4LqktSkxrECv8BMfrePl0IojpneOqWF61aC03yDM7DJfqwYTAUh mytLyhfVtGp4OV1ROukRUhsJh5TH/FxSd6PMY/mpGnozKGl7Jy+owOHXLSOq6RL1 2iVJ86tmsPjutSUaOMxQDHJ94wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDNA3Hnr GSdvQEbgHtwGBcMEr/xGMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E4NEEvMTgwNTE5MUFFMUVGMTFFNjlEMzY1MDFCQzRGOUFFMDIvODQwNjQ0OTRF NDhGMTFFRjgzODZFQTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkBg0AzMQwDQYJKoZIhvcNAQELBQADggEBAJxOj0J7YWb5 Z6/vibqQts5ADOq2e6wg4J+1OC7xXbO/iOqbWx6LqTHaofKzMidaSUS21s7QyMrj lhPBr/vMwR1lRBwZNlFmSKTheXtGXNneS0S79VVOhH8PRQK3I+GGHayrCSVgzumP wVhwVOvapwXZcHYDvsRdqm25F/utIWj4pzzYaxDjVBetef7a5NCZAU6DLG0AZu0Z OzNfsRYUu0Hd5j0nKc+paAoSjYiDH3ugcP2UyJBSlAjSxlZxe77DwHmjEMYhnlSA MK9ON3ZiBREi3bm6C/XHfzelmzU9LB9jN6ZIeRLkfwuoSqaO22rVGDT/EkVZDUEU rCW2fGWdAlA= -----END CERTIFICATE-----Generated at Mon Oct 20 16:04:36 2025 by rpki-client