$ rpki-client -vvf rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/9ED46D5C72F611EE857CC13FC4F9AE02.roa File: 9ED46D5C72F611EE857CC13FC4F9AE02.roa (raw, json) Hash identifier: /CgW1RCBBKg0G9J60cVrkPNi3RQ9sxBskKzs6426hF8= Subject key identifier: 7B:59:A3:23:AC:45:EF:9A:D2:96:64:79:58:7A:52:9E:2E:25:9F:21 Certificate issuer: /CN=A918754F/serialNumber=20CB58BB7CD424E761BC393BFCB8D676685F6C0D Certificate serial: 2647 Authority key identifier: 20:CB:58:BB:7C:D4:24:E7:61:BC:39:3B:FC:B8:D6:76:68:5F:6C:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMtYu3zUJOdhvDk7_LjWdmhfbA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/9ED46D5C72F611EE857CC13FC4F9AE02.roa Signing time: Sun 28 Sep 2025 16:13:25 +0000 ROA not before: Sun 28 Sep 2025 16:13:25 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58691 IP address blocks: 2407:1500::/33 maxlen: 36 2407:1500::/48 maxlen: 48 2407:1500:1::/48 maxlen: 48 2407:1500:2::/48 maxlen: 48 2407:1500:3::/48 maxlen: 48 2407:1500:4::/48 maxlen: 48 2407:1500:5::/48 maxlen: 48 2407:1500:6::/48 maxlen: 48 2407:1500:7::/48 maxlen: 48 2407:1500:8::/48 maxlen: 48 2407:1500:9::/48 maxlen: 48 2407:1500:10::/48 maxlen: 48 2407:1500:8000::/33 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/IMtYu3zUJOdhvDk7_LjWdmhfbA0.crl rsync://rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/IMtYu3zUJOdhvDk7_LjWdmhfbA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMtYu3zUJOdhvDk7_LjWdmhfbA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9799 (0x2647) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918754F, serialNumber=20CB58BB7CD424E761BC393BFCB8D676685F6C0D Validity Not Before: Sep 28 16:13:25 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d95ea5-5b92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a5:ea:9e:5a:49:20:f4:d1:bc:83:f6:39:99: 7f:67:8f:d8:4a:ff:cf:b8:b5:11:91:73:28:44:58: a2:dd:cc:e2:f7:6f:7a:d6:df:4e:d9:ca:b9:0f:4d: 8b:ad:85:2d:b1:11:87:96:70:44:90:cd:e7:6b:4a: 31:b9:00:8f:fe:94:49:db:e5:b5:6e:c6:ac:68:97: 72:af:ce:b1:93:11:b1:26:d0:5f:df:37:38:1b:45: d1:b6:92:fc:7a:37:7f:ea:75:94:c0:b9:80:e8:6c: a6:30:7c:6b:0b:cc:4c:22:a0:6a:cc:04:30:c6:34: e8:b8:20:a7:be:e3:83:eb:8e:df:50:63:ed:8d:de: fb:f1:8c:35:60:ed:45:4d:f8:eb:22:13:ee:4d:75: ec:ce:7c:30:28:4a:27:9a:f3:3f:f7:5c:9b:4d:bb: 06:90:cf:df:c7:78:26:79:c0:b7:03:a4:9e:9b:7f: 29:a0:ad:5b:fb:70:bf:65:18:63:f8:82:00:87:44: e3:25:89:03:70:31:11:8c:88:50:a4:ee:3b:71:93: 19:6b:76:4b:96:5e:1e:d8:92:22:88:df:6b:81:7f: 44:97:b0:3b:55:bb:24:1d:0b:e5:d5:b4:9b:a0:c1: 88:43:bb:76:d7:f0:c9:6b:05:1b:2f:89:21:4d:6f: 36:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:59:A3:23:AC:45:EF:9A:D2:96:64:79:58:7A:52:9E:2E:25:9F:21 X509v3 Authority Key Identifier: keyid:20:CB:58:BB:7C:D4:24:E7:61:BC:39:3B:FC:B8:D6:76:68:5F:6C:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/IMtYu3zUJOdhvDk7_LjWdmhfbA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMtYu3zUJOdhvDk7_LjWdmhfbA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/9ED46D5C72F611EE857CC13FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:1500::/32 Signature Algorithm: sha256WithRSAEncryption 1b:08:25:a3:f2:13:25:f3:20:92:60:58:7d:c5:95:78:e3:ca: fc:ff:5f:77:80:3b:52:25:fc:e5:bd:25:10:95:aa:30:95:8d: 64:c8:10:ff:91:51:8a:69:8d:b2:05:c7:3d:f2:84:71:46:49: 5b:78:d1:18:b7:47:30:78:ef:fa:39:e4:e4:28:96:bd:90:9a: 2a:73:65:7b:d3:75:e3:8a:77:8a:ee:08:46:36:06:33:21:db: 10:86:27:a3:bb:d5:7b:47:31:aa:c6:40:e4:ef:2b:3e:3c:31: 29:c1:45:02:4d:c9:f6:2a:d2:de:ce:64:04:d8:49:ab:7d:a3: d8:c4:45:0e:ec:32:3c:87:ba:ee:95:12:8f:f7:17:17:72:dd: fe:90:84:a1:7f:11:f9:dc:d3:c4:a4:7a:28:f3:e9:fe:4f:79: 4f:fb:13:8d:21:21:ef:9e:31:2a:e6:5a:a1:83:ca:39:78:d7: d5:bb:d8:06:95:84:72:fb:82:1c:4f:28:c4:96:19:f2:88:c6: 3e:a8:65:8f:ce:88:58:b9:ec:aa:6f:f1:fb:cc:a3:42:12:ea: 36:3c:90:ed:ca:5c:fb:e6:ac:09:99:6f:ef:cb:80:64:cc:f7: b1:89:39:9b:4b:39:a7:c0:bf:da:80:5b:df:37:48:de:c2:ef: 37:7a:3b:2d -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICJkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc1NEYxMTAvBgNVBAUTKDIwQ0I1OEJCN0NENDI0RTc2MUJDMzkzQkZDQjhENjc2 Njg1RjZDMEQwHhcNMjUwOTI4MTYxMzI1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ5NWVhNS01YjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6XqnlpJIPTRvIP2OZl/Z4/YSv/PuLURkXMoRFii3czi92961t9O2cq5D02L rYUtsRGHlnBEkM3na0oxuQCP/pRJ2+W1bsasaJdyr86xkxGxJtBf3zc4G0XRtpL8 ejd/6nWUwLmA6GymMHxrC8xMIqBqzAQwxjTouCCnvuOD647fUGPtjd778Yw1YO1F TfjrIhPuTXXsznwwKEonmvM/91ybTbsGkM/fx3gmecC3A6Sem38poK1b+3C/ZRhj +IIAh0TjJYkDcDERjIhQpO47cZMZa3ZLll4e2JIiiN9rgX9El7A7VbskHQvl1bSb oMGIQ7t21/DJawUbL4khTW82OwIDAQABo4ICljCCApIwHQYDVR0OBBYEFHtZoyOs Re+a0pZkeVh6Up4uJZ8hMB8GA1UdIwQYMBaAFCDLWLt81CTnYbw5O/y41nZoX2wN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzU0Ri8yQUQxNkYzMDFB NEExMUU1OTIwOUVENzJDNEY5QUUwMi9JTXRZdTN6VUpPZGh2RGs3X0xqV2RtaGZi QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lNdFl1M3pVSk9kaHZEazdfTGpXZG1oZmJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc1NEYvMkFEMTZGMzAxQTRBMTFFNTkyMDlFRDcyQzRGOUFFMDIvOUVENDZENUM3 MkY2MTFFRTg1N0NDMTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBxUAMA0GCSqGSIb3DQEBCwUAA4IBAQAbCCWj8hMl8yCS YFh9xZV448r8/193gDtSJfzlvSUQlaowlY1kyBD/kVGKaY2yBcc98oRxRklbeNEY t0cweO/6OeTkKJa9kJoqc2V703XjineK7ghGNgYzIdsQhieju9V7RzGqxkDk7ys+ PDEpwUUCTcn2KtLezmQE2EmrfaPYxEUO7DI8h7rulRKP9xcXct3+kIShfxH53NPE pHoo8+n+T3lP+xONISHvnjEq5lqhg8o5eNfVu9gGlYRy+4IcTyjElhnyiMY+qGWP zohYueyqb/H7zKNCEuo2PJDtylz75qwJmW/vy4BkzPexiTmbSzmnwL/agFvfN0je wu83ejst -----END CERTIFICATE-----Generated at Mon Oct 20 11:28:07 2025 by rpki-client