$ rpki-client -vvf rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/8E8D88CC7FF911F09985006DC4F9AE02.roa File: 8E8D88CC7FF911F09985006DC4F9AE02.roa (raw, json) Hash identifier: ephMktk7dldPDpqOYOq0zlTVGd1aoKcLbgXlsFlKEgM= Subject key identifier: 2E:8A:B9:4E:E2:64:12:68:FC:45:F3:D2:76:CE:BD:24:B4:87:3D:69 Certificate issuer: /CN=A9198847/serialNumber=A6EF06B689581821C78C88291BBDF5C512A33F41 Certificate serial: 0DCA Authority key identifier: A6:EF:06:B6:89:58:18:21:C7:8C:88:29:1B:BD:F5:C5:12:A3:3F:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/8E8D88CC7FF911F09985006DC4F9AE02.roa Signing time: Sat 23 Aug 2025 08:17:07 +0000 ROA not before: Sat 23 Aug 2025 08:17:07 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 151080 IP address blocks: 2402:76c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.crl rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3530 (0xdca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198847, serialNumber=A6EF06B689581821C78C88291BBDF5C512A33F41 Validity Not Before: Aug 23 08:17:07 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68a97902-f7f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fb:2b:29:ce:a5:c9:ef:60:5b:35:b2:39:c7: 18:68:f3:d1:f3:59:a6:90:ef:4e:2f:59:df:4d:6e: 86:18:6c:b3:99:ef:ab:17:67:34:f4:b2:65:55:f1: ca:65:4c:2d:9a:00:83:66:b5:84:2e:1e:0d:f9:a5: 92:bf:11:50:31:ff:46:c5:b9:a0:cf:5c:e0:3e:fc: 8f:f6:c1:88:03:c6:41:7f:16:a9:e0:cb:65:bc:d3: dd:54:9d:03:f7:ac:49:eb:65:ba:59:c9:51:f8:6d: 41:73:0d:19:f6:4f:40:44:08:86:07:10:34:57:64: fc:2b:4b:10:7c:70:87:15:dd:02:b3:83:08:bc:e7: 5a:db:ca:f6:88:74:fa:10:ae:ae:fd:fc:6e:ca:39: 10:10:f9:a2:b2:0c:f3:3e:5a:e8:2f:e4:c1:6f:89: 0f:21:0b:b0:e0:ba:17:50:04:f5:0d:93:06:4a:45: 4e:06:ec:66:af:41:28:20:7c:98:05:08:f9:8a:82: 1e:df:56:9f:fa:3f:f1:8a:67:69:ef:72:83:24:d2: 33:17:00:99:78:15:21:ec:0c:42:15:d5:e4:56:7d: e8:cc:a8:b6:cd:48:ec:7f:79:2e:86:ef:75:a0:71: 9a:db:ff:fb:25:58:d2:88:3d:f9:b8:a8:93:e6:4f: 8e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:8A:B9:4E:E2:64:12:68:FC:45:F3:D2:76:CE:BD:24:B4:87:3D:69 X509v3 Authority Key Identifier: keyid:A6:EF:06:B6:89:58:18:21:C7:8C:88:29:1B:BD:F5:C5:12:A3:3F:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/8E8D88CC7FF911F09985006DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:76c0::/32 Signature Algorithm: sha256WithRSAEncryption 21:7b:7a:bb:b6:5f:c5:4f:2f:5d:12:5f:04:56:f9:8a:a8:5f: a6:51:b9:5d:49:af:7f:40:30:00:91:ef:16:21:6f:4d:5b:88: e7:ae:d6:9a:cb:eb:4d:d4:9e:b1:30:0b:55:b5:a1:dc:41:c9: 73:a6:3f:cf:d4:e7:24:60:fe:38:34:48:35:a8:98:00:9a:90: e1:94:06:0f:1b:fa:cb:9a:b9:ef:e4:cb:c7:52:29:12:cd:99: f6:87:82:69:68:b4:67:f4:2f:ed:91:43:b8:d1:12:2a:50:cc: 33:ee:a6:e9:2b:a4:5c:6e:49:ee:50:a9:bc:c3:b2:2f:3a:23: 96:2a:a2:fb:cf:60:c0:d1:18:0a:b9:f2:e7:a0:1b:73:30:dd: a1:78:d5:21:0e:49:50:0c:6e:3d:06:1b:b1:23:b2:7c:52:51: 09:19:c0:b7:38:ed:de:0a:1d:76:4d:70:c4:cc:63:46:ad:49: 56:f6:7a:b2:17:58:0a:41:65:2e:a6:19:f0:5e:61:c9:6f:c5: 10:8a:3e:84:05:90:55:fd:02:d6:66:47:27:59:36:31:d2:39: 92:12:f3:be:7c:a3:d2:8c:77:3f:19:86:fa:01:b3:f5:52:0a: 7d:6c:2e:bb:58:36:f6:4e:d5:d3:8f:72:4e:d4:cd:d1:87:6f: 60:01:af:90 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg4NDcxMTAvBgNVBAUTKEE2RUYwNkI2ODk1ODE4MjFDNzhDODgyOTFCQkRGNUM1 MTJBMzNGNDEwHhcNMjUwODIzMDgxNzA3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGE5NzkwMi1mN2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fsrKc6lye9gWzWyOccYaPPR81mmkO9OL1nfTW6GGGyzme+rF2c09LJlVfHK ZUwtmgCDZrWELh4N+aWSvxFQMf9Gxbmgz1zgPvyP9sGIA8ZBfxap4MtlvNPdVJ0D 96xJ62W6WclR+G1Bcw0Z9k9ARAiGBxA0V2T8K0sQfHCHFd0Cs4MIvOda28r2iHT6 EK6u/fxuyjkQEPmisgzzPlroL+TBb4kPIQuw4LoXUAT1DZMGSkVOBuxmr0EoIHyY BQj5ioIe31af+j/ximdp73KDJNIzFwCZeBUh7AxCFdXkVn3ozKi2zUjsf3kuhu91 oHGa2//7JVjSiD35uKiT5k+ORwIDAQABo4ICljCCApIwHQYDVR0OBBYEFC6KuU7i ZBJo/EXz0nbOvSS0hz1pMB8GA1UdIwQYMBaAFKbvBraJWBghx4yIKRu99cUSoz9B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODg0Ny9EREZCQjBCOEQ3 ODExMUU5QjQyM0FDNEJDNEY5QUUwMi9wdThHdG9sWUdDSEhqSWdwRzczMXhSS2pQ MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B1OEd0b2xZR0NISGpJZ3BHNzMxeFJLalAwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTg4NDcvRERGQkIwQjhENzgxMTFFOUI0MjNBQzRCQzRGOUFFMDIvOEU4RDg4Q0M3 RkY5MTFGMDk5ODUwMDZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAnbAMA0GCSqGSIb3DQEBCwUAA4IBAQAhe3q7tl/FTy9d El8EVvmKqF+mUbldSa9/QDAAke8WIW9NW4jnrtaay+tN1J6xMAtVtaHcQclzpj/P 1OckYP44NEg1qJgAmpDhlAYPG/rLmrnv5MvHUikSzZn2h4JpaLRn9C/tkUO40RIq UMwz7qbpK6RcbknuUKm8w7IvOiOWKqL7z2DA0RgKufLnoBtzMN2heNUhDklQDG49 BhuxI7J8UlEJGcC3OO3eCh12TXDEzGNGrUlW9nqyF1gKQWUuphnwXmHJb8UQij6E BZBV/QLWZkcnWTYx0jmSEvO+fKPSjHc/GYb6AbP1Ugp9bC67WDb2TtXTj3JO1M3R h29gAa+Q -----END CERTIFICATE-----Generated at Sun Aug 24 09:17:54 2025 by rpki-client