$ rpki-client -vvf rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/DDFB4716AB0D11F0A533CC38C4F9AE02.roa File: DDFB4716AB0D11F0A533CC38C4F9AE02.roa (raw, json) Hash identifier: ST+eEmFvXhm94+Eq+HZ5fYqUNUrS3+2d6gwKeVG/128= Subject key identifier: E9:04:8D:F9:54:61:5D:83:42:0D:7E:98:00:7F:E4:0D:D8:85:21:87 Certificate issuer: /CN=A917E726/serialNumber=D74AC1B8A3335243FCB2F9905BC51DBDCB0E236D Certificate serial: 0B1C Authority key identifier: D7:4A:C1:B8:A3:33:52:43:FC:B2:F9:90:5B:C5:1D:BD:CB:0E:23:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/DDFB4716AB0D11F0A533CC38C4F9AE02.roa Signing time: Fri 17 Oct 2025 04:00:50 +0000 ROA not before: Fri 17 Oct 2025 04:00:50 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 140213 IP address blocks: 2001:df2:df80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.crl rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:17:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2844 (0xb1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E726, serialNumber=D74AC1B8A3335243FCB2F9905BC51DBDCB0E236D Validity Not Before: Oct 17 04:00:50 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68f1bf71-8ad9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a9:db:70:74:03:e3:98:5d:3b:4d:50:82:e5: d9:17:56:89:19:d5:21:53:1a:f7:28:29:0d:28:6e: 7a:09:4d:5f:07:7c:13:4e:38:ea:f7:83:b5:34:30: 91:09:05:d4:71:85:fb:a3:5d:0f:d2:67:a5:af:f0: 7c:81:84:a9:a4:9a:49:c2:a0:d4:24:e6:50:ac:75: c5:d9:20:73:33:c2:3a:17:c5:f5:21:df:78:fa:7a: 36:0c:3e:67:68:9b:f2:92:6f:94:76:00:80:81:9f: 2a:2a:ba:1f:72:bc:2d:e1:44:7e:15:2b:28:fc:7d: 83:1e:97:8d:74:dd:e9:a8:34:28:db:4e:92:6d:e7: 69:32:f1:6a:e7:61:91:b9:ec:db:e0:6f:30:a1:96: 9a:bd:f7:54:c0:16:ff:02:78:ef:67:1d:d5:c2:1a: 07:ee:9c:44:ae:b2:70:3c:ca:b6:4f:8b:d8:24:66: 20:10:34:c0:17:84:6e:43:7a:3b:de:e1:57:29:c8: d3:da:03:2a:4b:36:d2:a7:3b:1a:75:32:4b:93:cc: 2d:6a:b4:62:b0:2a:86:04:04:1e:31:a2:45:9f:b0: a2:ae:80:fe:a6:cc:90:f6:9e:82:ed:e5:69:d9:02: 57:1d:5d:9f:de:fb:b1:92:26:48:31:fc:ff:cf:40: 60:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:04:8D:F9:54:61:5D:83:42:0D:7E:98:00:7F:E4:0D:D8:85:21:87 X509v3 Authority Key Identifier: keyid:D7:4A:C1:B8:A3:33:52:43:FC:B2:F9:90:5B:C5:1D:BD:CB:0E:23:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/DDFB4716AB0D11F0A533CC38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df2:df80::/48 Signature Algorithm: sha256WithRSAEncryption 97:b3:36:8a:2f:f6:b0:4e:bb:56:0f:1e:ae:6e:79:c5:14:4a: ef:cd:73:22:6d:26:0b:f8:5d:e8:bf:56:6e:a2:85:09:01:c2: 98:bc:b7:79:eb:45:d8:60:ee:bd:0a:e8:3b:1c:1a:81:7b:b9: d4:5c:ef:86:a8:a2:c3:22:1e:dc:d3:20:51:c8:6f:b9:02:87: 02:e0:b3:0d:c8:ed:05:65:d5:52:a2:79:ae:f5:a4:02:0e:40: 94:6b:54:08:36:85:c4:06:08:41:90:99:ac:5d:d8:82:5e:1d: 0b:9a:a0:e4:44:06:f1:7c:b2:41:37:ec:8d:9b:70:17:4c:f3: 69:52:91:dc:f8:8e:91:fe:b5:f3:95:8a:78:bb:e9:95:5c:32: a6:eb:7a:5e:ec:c2:ef:56:04:8a:bc:a4:86:53:81:da:95:60: c2:bf:92:3e:9d:3f:cc:a1:76:c6:6e:ee:e9:6b:72:5c:d3:20: be:43:0e:53:7f:a5:77:c6:f6:81:56:89:cb:8a:9d:5b:c0:3e: 77:21:3a:00:b7:59:0d:12:57:f2:3a:5a:5a:c6:34:f7:ab:da: bc:39:10:3a:89:fb:82:ad:9c:88:9c:f8:86:7b:a9:3b:df:0a: 73:e5:ca:a6:1f:d1:42:ec:9b:09:82:28:0a:4a:2d:11:07:df: cf:a7:62:a9 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3MjYxMTAvBgNVBAUTKEQ3NEFDMUI4QTMzMzUyNDNGQ0IyRjk5MDVCQzUxREJE Q0IwRTIzNkQwHhcNMjUxMDE3MDQwMDUwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGYxYmY3MS04YWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6nbcHQD45hdO01QguXZF1aJGdUhUxr3KCkNKG56CU1fB3wTTjjq94O1NDCR CQXUcYX7o10P0melr/B8gYSppJpJwqDUJOZQrHXF2SBzM8I6F8X1Id94+no2DD5n aJvykm+UdgCAgZ8qKrofcrwt4UR+FSso/H2DHpeNdN3pqDQo206SbedpMvFq52GR uezb4G8woZaavfdUwBb/AnjvZx3VwhoH7pxErrJwPMq2T4vYJGYgEDTAF4RuQ3o7 3uFXKcjT2gMqSzbSpzsadTJLk8wtarRisCqGBAQeMaJFn7CiroD+psyQ9p6C7eVp 2QJXHV2f3vuxkiZIMfz/z0BgKwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOkEjflU YV2DQg1+mAB/5A3YhSGHMB8GA1UdIwQYMBaAFNdKwbijM1JD/LL5kFvFHb3LDiNt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTcyNi82REJGQTM4QTUy RDkxMUVBODI3REQwODJDNEY5QUUwMi8xMHJCdUtNelVrUDhzdm1RVzhVZHZjc09J MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEwckJ1S016VWtQOHN2bVFXOFVkdmNzT0kyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U3MjYvNkRCRkEzOEE1MkQ5MTFFQTgyN0REMDgyQzRGOUFFMDIvRERGQjQ3MTZB QjBEMTFGMEE1MzNDQzM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3y34AwDQYJKoZIhvcNAQELBQADggEBAJezNoov9rBO u1YPHq5uecUUSu/NcyJtJgv4Xei/Vm6ihQkBwpi8t3nrRdhg7r0K6DscGoF7udRc 74aoosMiHtzTIFHIb7kChwLgsw3I7QVl1VKiea71pAIOQJRrVAg2hcQGCEGQmaxd 2IJeHQuaoOREBvF8skE37I2bcBdM82lSkdz4jpH+tfOVini76ZVcMqbrel7swu9W BIq8pIZTgdqVYMK/kj6dP8yhdsZu7ulrclzTIL5DDlN/pXfG9oFWicuKnVvAPnch OgC3WQ0SV/I6WlrGNPer2rw5EDqJ+4KtnIic+IZ7qTvfCnPlyqYf0ULsmwmCKApK LREH38+nYqk= -----END CERTIFICATE-----Generated at Mon Oct 20 08:30:58 2025 by rpki-client