$ rpki-client -vvf rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/9530495612BE11F08CCA4623C4F9AE02.roa File: 9530495612BE11F08CCA4623C4F9AE02.roa (raw, json) Hash identifier: Kq0ugwH9OuTBQBxfFQ8ElxHtYYyZ1NmJOiuKPPFe80I= Subject key identifier: 38:B9:DF:71:0F:7D:6F:9D:7A:09:22:E5:BF:C7:99:61:57:5D:8F:7E Certificate issuer: /CN=A9190D72/serialNumber=1EB9AE8BF5959FE8BF2EB82B923B717EFF3106C5 Certificate serial: 0137 Authority key identifier: 1E:B9:AE:8B:F5:95:9F:E8:BF:2E:B8:2B:92:3B:71:7E:FF:31:06:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/9530495612BE11F08CCA4623C4F9AE02.roa Signing time: Fri 12 Sep 2025 19:11:43 +0000 ROA not before: Fri 12 Sep 2025 19:11:43 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152586 IP address blocks: 2401:8360:2::/48 maxlen: 48 2401:8360:6::/48 maxlen: 48 2401:8360:b::/48 maxlen: 48 2401:8360:c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.crl rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:19:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190D72, serialNumber=1EB9AE8BF5959FE8BF2EB82B923B717EFF3106C5 Validity Not Before: Sep 12 19:11:43 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68c4706e-d09f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cf:3b:a2:b1:b2:9b:d7:92:fb:41:34:81:9e: 68:86:6d:06:93:62:06:75:2d:bb:39:a3:be:e9:3d: e0:0e:e8:0a:3e:1c:b2:93:10:a7:c1:6e:83:cc:9c: fa:cc:bd:e0:a0:e5:a5:5c:60:e8:79:e5:78:84:1a: 54:c7:b9:aa:44:c2:1f:ef:6f:cb:95:d1:d0:4a:a3: 90:6f:a6:49:ca:64:cd:93:89:ba:0e:f9:eb:3c:3d: cc:0e:76:4e:eb:c2:81:39:be:a7:81:e6:b0:fb:c6: 9e:70:48:c5:cc:0f:a4:38:b4:22:a8:f1:38:39:93: 0d:2a:36:76:0b:39:90:35:49:86:91:1d:89:24:31: 3f:37:56:6b:0f:a8:52:6f:72:90:cb:19:e5:b8:a8: fa:c2:6c:e3:80:2f:ff:7c:aa:14:a6:33:97:50:12: e8:2a:59:29:07:b4:de:90:bc:68:0d:96:ee:aa:80: 44:04:de:65:04:d7:da:51:01:c6:4c:eb:6c:2e:78: ad:76:fa:39:5f:96:37:56:bc:0a:3d:d5:0d:58:7d: 6b:2b:ad:68:0e:40:f7:84:cd:af:d7:fe:f9:40:e2: d5:f3:9f:fd:4b:16:b9:0f:01:59:7f:3c:cc:4e:16: e3:e9:83:35:f6:77:1b:d1:6a:21:60:14:5a:26:ff: 91:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:B9:DF:71:0F:7D:6F:9D:7A:09:22:E5:BF:C7:99:61:57:5D:8F:7E X509v3 Authority Key Identifier: keyid:1E:B9:AE:8B:F5:95:9F:E8:BF:2E:B8:2B:92:3B:71:7E:FF:31:06:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/9530495612BE11F08CCA4623C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:8360:2::/48 2401:8360:6::/48 2401:8360:b::-2401:8360:c:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption b0:a1:2e:da:8b:05:01:52:1c:11:bd:59:eb:f0:13:51:77:ac: cc:43:b4:48:d4:f0:94:f3:7c:82:fc:7c:90:23:1c:fc:04:1b: ec:d2:40:bb:ae:e9:97:8a:4a:8e:0e:4f:fd:87:f6:c0:7b:8a: 60:55:89:1e:4b:5f:3d:53:42:e0:05:f5:17:ff:11:08:79:b4: 16:af:c5:3d:ee:90:e5:db:c1:ab:b3:e5:4e:20:46:4e:a6:c1: 09:a0:74:15:ea:ac:f3:0a:23:36:0d:9d:ea:b1:ea:91:86:09: 14:7e:d1:73:d9:90:15:a4:9b:c2:53:7e:aa:1b:b9:9e:da:69: b7:5a:c7:fb:54:44:ee:ae:bb:8f:c8:72:1b:6a:a0:f2:fa:da: 68:4e:c4:c4:da:41:8a:f2:fd:52:38:f3:1e:ed:af:71:2d:33: 70:f6:28:9a:12:90:30:40:3c:a3:9f:5a:61:1e:dd:7e:8d:c8: cb:e7:a5:de:f0:50:c2:ff:4b:ce:23:11:e1:34:fa:a2:11:ad: 2a:90:da:16:26:a4:f3:f2:62:92:56:80:bd:c7:a8:61:15:79: 17:71:aa:49:84:8b:1b:68:03:92:1d:ce:91:a9:bd:24:22:80: ac:df:9d:fa:fc:09:82:6b:2f:05:5a:5d:c3:aa:f9:df:be:52: 50:12:91:ed -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBENzIxMTAvBgNVBAUTKDFFQjlBRThCRjU5NTlGRThCRjJFQjgyQjkyM0I3MTdF RkYzMTA2QzUwHhcNMjUwOTEyMTkxMTQzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0NzA2ZS1kMDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAws87orGym9eS+0E0gZ5ohm0Gk2IGdS27OaO+6T3gDugKPhyykxCnwW6DzJz6 zL3goOWlXGDoeeV4hBpUx7mqRMIf72/LldHQSqOQb6ZJymTNk4m6DvnrPD3MDnZO 68KBOb6ngeaw+8aecEjFzA+kOLQiqPE4OZMNKjZ2CzmQNUmGkR2JJDE/N1ZrD6hS b3KQyxnluKj6wmzjgC//fKoUpjOXUBLoKlkpB7TekLxoDZbuqoBEBN5lBNfaUQHG TOtsLnitdvo5X5Y3VrwKPdUNWH1rK61oDkD3hM2v1/75QOLV85/9Sxa5DwFZfzzM Thbj6YM19ncb0WohYBRaJv+RyQIDAQABo4ICtTCCArEwHQYDVR0OBBYEFDi533EP fW+degki5b/HmWFXXY9+MB8GA1UdIwQYMBaAFB65rov1lZ/ovy64K5I7cX7/MQbF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEQ3Mi84QjI1QUQwNEQy MkIxMUVFQkMxNDUzNDNDNEY5QUUwMi9Icm11aV9XVm4taV9Mcmdya2p0eGZ2OHhC c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hybXVpX1dWbi1pX0xyZ3JranR4ZnY4eEJzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTBENzIvOEIyNUFEMDREMjJCMTFFRUJDMTQ1MzQzQzRGOUFFMDIvOTUzMDQ5NTYx MkJFMTFGMDhDQ0E0NjIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgACMCYDBwAkAYNgAAIDBwAkAYNgAAYwEgMHACQBg2AACwMHACQBg2AA DDANBgkqhkiG9w0BAQsFAAOCAQEAsKEu2osFAVIcEb1Z6/ATUXeszEO0SNTwlPN8 gvx8kCMc/AQb7NJAu67pl4pKjg5P/Yf2wHuKYFWJHktfPVNC4AX1F/8RCHm0Fq/F Pe6Q5dvBq7PlTiBGTqbBCaB0Feqs8wojNg2d6rHqkYYJFH7Rc9mQFaSbwlN+qhu5 ntppt1rH+1RE7q67j8hyG2qg8vraaE7ExNpBivL9UjjzHu2vcS0zcPYomhKQMEA8 o59aYR7dfo3Iy+el3vBQwv9LziMR4TT6ohGtKpDaFiak8/JiklaAvceoYRV5F3Gq SYSLG2gDkh3Okam9JCKArN+d+vwJgmsvBVpdw6r5375SUBKR7Q== -----END CERTIFICATE-----Generated at Mon Oct 20 00:20:26 2025 by rpki-client