$ rpki-client -vvf rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/42D62828962711F0B74FEE0CC4F9AE02.roa File: 42D62828962711F0B74FEE0CC4F9AE02.roa (raw, json) Hash identifier: 0z7LOagwkk6qGA8xhyY/PPVphtP1S0sI7WQf0daRuRk= Subject key identifier: 06:B5:41:12:11:3E:A8:7F:19:45:70:59:BA:B0:33:4A:A5:EA:61:AA Certificate issuer: /CN=A9199CFF/serialNumber=50BA63B93F8291295EE47031B96B45CDA5C24B0D Certificate serial: 7D Authority key identifier: 50:BA:63:B9:3F:82:91:29:5E:E4:70:31:B9:6B:45:CD:A5:C2:4B:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/42D62828962711F0B74FEE0CC4F9AE02.roa Signing time: Sat 20 Sep 2025 13:39:42 +0000 ROA not before: Sat 20 Sep 2025 13:39:42 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153523 IP address blocks: 2001:df4:e940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.crl rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:49:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199CFF, serialNumber=50BA63B93F8291295EE47031B96B45CDA5C24B0D Validity Not Before: Sep 20 13:39:42 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68ceae9e-8c2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e7:c9:fe:fa:61:2b:b5:4d:c3:1f:90:bc:13: 19:da:58:96:41:9c:74:fa:1e:21:62:d8:f5:f9:08: a7:06:af:f9:bf:ae:6a:0e:78:3b:1e:71:10:e1:22: 8b:48:07:63:dd:3d:a4:0d:00:86:8f:66:91:a2:34: 62:e2:1f:93:1e:f3:97:a9:eb:8d:8a:82:a1:64:74: b3:1a:3d:c1:66:ad:16:26:06:a9:9f:01:bc:2c:87: 6e:dc:ff:62:f4:ed:d7:e5:e4:ee:24:d8:39:bd:bf: ae:8a:2a:df:2a:33:84:cf:ce:7d:88:96:24:cd:03: b7:8f:03:00:10:9c:06:f2:2a:7e:b7:38:ea:96:ce: 9b:6e:81:af:db:af:a3:b8:f6:ad:de:1b:d5:4a:e7: 06:16:51:8a:9a:93:e2:57:a8:2e:69:4b:66:86:ef: e1:27:e2:bf:4b:5c:22:8d:17:f3:3a:91:bf:2a:5a: ad:70:3a:e7:8e:c3:52:9e:12:3c:4a:29:a2:7a:af: 11:19:af:c6:ee:74:3f:1b:a9:b7:94:69:58:b1:27: d0:5e:47:6d:ad:47:1a:b6:c2:40:15:28:e2:65:11: 75:e8:a4:21:82:a8:4d:ed:70:78:71:2f:25:41:5a: 11:0c:4e:fb:d4:c0:bc:8f:d0:6c:39:04:10:8d:7d: 8f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:B5:41:12:11:3E:A8:7F:19:45:70:59:BA:B0:33:4A:A5:EA:61:AA X509v3 Authority Key Identifier: keyid:50:BA:63:B9:3F:82:91:29:5E:E4:70:31:B9:6B:45:CD:A5:C2:4B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/42D62828962711F0B74FEE0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:e940::/48 Signature Algorithm: sha256WithRSAEncryption 51:b0:ff:d3:24:97:18:72:c7:5b:b6:27:9d:a8:c7:09:fd:9e: dd:6a:24:dd:a9:c9:5e:c0:89:e9:36:7b:cb:12:3b:6c:a8:bc: fa:24:73:e5:94:95:a2:b2:d2:c5:2f:44:5e:a4:ea:98:5a:98: f6:51:26:41:4c:0b:05:65:3f:22:cf:30:5c:00:cb:04:a9:e7: 6a:c7:8c:ce:80:3f:6f:0f:db:00:3e:d3:c8:35:03:5a:7f:46: 67:d1:a8:f9:0b:42:89:46:d1:61:b2:b3:fe:89:e1:75:58:89: fd:4a:6a:80:a6:4d:a0:db:b9:7d:f7:13:70:9a:98:e7:2f:fc: 0f:92:6f:71:3c:06:93:f6:95:cb:4f:0c:c1:4e:c0:96:f3:db: bc:51:73:53:63:e6:74:40:81:25:9c:e7:43:24:e7:be:2b:7b: 01:29:d4:c7:db:15:0f:09:bd:01:47:1a:80:c5:28:8a:f7:aa: 92:2e:bc:08:19:d9:63:6a:ce:04:4a:60:c5:96:7a:46:8a:0c: 6a:01:e6:66:85:58:67:9e:ae:79:f9:a3:c9:e2:22:1b:7d:0a: 7a:d3:1c:c8:c8:bd:3b:dd:a4:4c:74:24:97:5e:b0:83:d5:06: 49:b8:32:ac:6f:05:08:bb:cb:ea:a6:9b:fb:6c:ae:41:a7:e9: 45:f8:04:0e -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OUNGRjExMC8GA1UEBRMoNTBCQTYzQjkzRjgyOTEyOTVFRTQ3MDMxQjk2QjQ1Q0RB NUMyNEIwRDAeFw0yNTA5MjAxMzM5NDJaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Y2VhZTllLThjMmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC158n++mErtU3DH5C8ExnaWJZBnHT6HiFi2PX5CKcGr/m/rmoOeDsecRDhIotI B2PdPaQNAIaPZpGiNGLiH5Me85ep642KgqFkdLMaPcFmrRYmBqmfAbwsh27c/2L0 7dfl5O4k2Dm9v66KKt8qM4TPzn2IliTNA7ePAwAQnAbyKn63OOqWzptuga/br6O4 9q3eG9VK5wYWUYqak+JXqC5pS2aG7+En4r9LXCKNF/M6kb8qWq1wOueOw1KeEjxK KaJ6rxEZr8budD8bqbeUaVixJ9BeR22tRxq2wkAVKOJlEXXopCGCqE3tcHhxLyVB WhEMTvvUwLyP0Gw5BBCNfY8vAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUBrVBEhE+ qH8ZRXBZurAzSqXqYaowHwYDVR0jBBgwFoAUULpjuT+CkSle5HAxuWtFzaXCSw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5Q0ZGLzJBRTE2QTU4RDdF MDExRUY4QjE3M0QyRkM0RjlBRTAyL1VMcGp1VC1Da1NsZTVIQXh1V3RGemFYQ1N3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVUxwanVULUNrU2xlNUhBeHVXdEZ6YVhDU3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUNGRi8yQUUxNkE1OEQ3RTAxMUVGOEIxNzNEMkZDNEY5QUUwMi80MkQ2MjgyODk2 MjcxMUYwQjc0RkVFMENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfTpQDANBgkqhkiG9w0BAQsFAAOCAQEAUbD/0ySXGHLH W7YnnajHCf2e3Wok3anJXsCJ6TZ7yxI7bKi8+iRz5ZSVorLSxS9EXqTqmFqY9lEm QUwLBWU/Is8wXADLBKnnaseMzoA/bw/bAD7TyDUDWn9GZ9Go+QtCiUbRYbKz/onh dViJ/UpqgKZNoNu5ffcTcJqY5y/8D5JvcTwGk/aVy08MwU7AlvPbvFFzU2PmdECB JZznQyTnvit7ASnUx9sVDwm9AUcagMUoiveqki68CBnZY2rOBEpgxZZ6RooMagHm ZoVYZ56uefmjyeIiG30KetMcyMi9O92kTHQkl16wg9UGSbgyrG8FCLvL6qab+2yu QafpRfgEDg== -----END CERTIFICATE-----Generated at Mon Oct 20 13:01:14 2025 by rpki-client