$ rpki-client -vvf rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/CDD6FA7CAD8511F08C759F59C4F9AE02.roa File: CDD6FA7CAD8511F08C759F59C4F9AE02.roa (raw, json) Hash identifier: yXrHOs4+nJaaVCnnX4/LliEWbcY6OxUiaroiLnewb70= Subject key identifier: 95:E1:AF:72:53:62:A4:7E:D1:EE:10:C6:71:E6:29:B6:2A:9B:25:F5 Certificate issuer: /CN=A919AB96/serialNumber=C9C7FB3155EE5EB4541A7637998970806A46F3BF Certificate serial: 24 Authority key identifier: C9:C7:FB:31:55:EE:5E:B4:54:1A:76:37:99:89:70:80:6A:46:F3:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycf7MVXuXrRUGnY3mYlwgGpG878.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/CDD6FA7CAD8511F08C759F59C4F9AE02.roa Signing time: Mon 20 Oct 2025 07:24:25 +0000 ROA not before: Mon 20 Oct 2025 07:24:25 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55201 IP address blocks: 2404:c640::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/ycf7MVXuXrRUGnY3mYlwgGpG878.crl rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/ycf7MVXuXrRUGnY3mYlwgGpG878.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycf7MVXuXrRUGnY3mYlwgGpG878.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 07:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AB96, serialNumber=C9C7FB3155EE5EB4541A7637998970806A46F3BF Validity Not Before: Oct 20 07:24:25 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68f5e3a8-93b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0a:cc:97:04:4b:5b:ba:a3:5a:fe:43:82:e5: 61:17:b4:23:0c:07:04:89:d5:39:a7:6c:8e:3c:4a: f1:a0:33:95:ac:f3:8e:e9:05:5f:3e:d9:2c:27:92: 5d:e0:45:cf:a0:d4:36:90:06:da:77:7a:80:05:9f: b5:38:2b:c4:8f:95:0a:fd:d4:0b:9c:54:33:39:bf: 8c:3e:7f:96:16:2a:9c:16:5c:c9:a9:d7:94:46:44: a9:88:f8:3c:21:85:da:8b:ba:26:ab:99:c9:ff:d2: 4d:78:f7:7a:d1:48:9b:37:77:1b:f8:a9:90:ac:7e: 29:9f:f2:ef:be:be:86:2a:1d:6a:6f:c2:38:b0:82: 06:df:bf:19:38:60:6e:ff:7b:d1:98:98:27:95:8d: 51:1a:27:3f:4a:0b:9c:06:1d:e4:73:45:ab:bc:25: 54:7a:ae:03:40:5d:5a:6b:56:cd:95:98:8a:6b:14: 3e:d9:8a:8d:5c:bf:f5:10:04:f5:12:5d:36:45:7c: e3:e8:a4:5c:b4:13:2e:46:98:74:ab:91:48:0e:7c: 7d:4d:eb:75:06:12:0b:f3:36:ed:c0:ce:d4:64:ce: 1d:00:55:2b:60:12:b8:6d:56:35:bf:58:d0:aa:44: 02:40:bf:ba:1c:9f:a5:be:f9:52:da:b1:00:d4:2b: a4:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:E1:AF:72:53:62:A4:7E:D1:EE:10:C6:71:E6:29:B6:2A:9B:25:F5 X509v3 Authority Key Identifier: keyid:C9:C7:FB:31:55:EE:5E:B4:54:1A:76:37:99:89:70:80:6A:46:F3:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/ycf7MVXuXrRUGnY3mYlwgGpG878.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycf7MVXuXrRUGnY3mYlwgGpG878.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/CDD6FA7CAD8511F08C759F59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:c640::/32 Signature Algorithm: sha256WithRSAEncryption 8c:91:bc:b1:3e:cb:5a:03:ed:a4:69:d4:7f:0b:c0:45:8a:9c: 71:d1:d5:83:79:1f:25:eb:94:03:26:68:9f:85:c1:7d:82:b1: de:86:83:7f:f4:b5:53:18:88:a3:07:4a:9d:03:b6:7b:e3:e8: 04:85:27:8a:d6:43:ee:bc:78:e7:06:ac:34:a6:8e:df:e8:d3: 54:e5:41:00:f0:73:47:a9:9c:37:a7:e1:78:e9:4a:ac:3d:70: d0:08:bb:be:01:a5:1f:d1:1f:76:b0:45:c1:54:7e:8a:22:99: 49:40:c2:6d:6e:65:21:40:a9:51:8a:af:03:b5:a8:0f:98:7b: b8:f2:79:94:3b:d5:44:8c:87:f9:8f:78:20:70:45:52:49:07: bd:f0:aa:ff:34:c1:ad:e5:27:69:5d:ef:ec:34:78:cd:36:b9: ee:10:bc:7e:cd:db:bb:94:45:e4:76:40:32:79:ef:be:2c:cb: fd:bb:88:74:a4:3e:3d:14:0a:c2:97:6f:ec:0c:42:3d:6d:98: 84:dc:ad:1d:3c:7d:d2:c9:7d:7d:e8:60:f8:3c:32:a4:60:aa: d5:14:dc:d4:de:e4:9d:3e:e8:10:b3:87:47:7c:bd:97:cf:b3: 33:61:52:86:d0:af:ec:f2:08:03:93:6e:ba:89:80:ff:e8:3e: 67:9e:d7:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QUI5NjExMC8GA1UEBRMoQzlDN0ZCMzE1NUVFNUVCNDU0MUE3NjM3OTk4OTcwODA2 QTQ2RjNCRjAeFw0yNTEwMjAwNzI0MjVaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZjVlM2E4LTkzYjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBCsyXBEtbuqNa/kOC5WEXtCMMBwSJ1TmnbI48SvGgM5Ws847pBV8+2Swnkl3g Rc+g1DaQBtp3eoAFn7U4K8SPlQr91AucVDM5v4w+f5YWKpwWXMmp15RGRKmI+Dwh hdqLuiarmcn/0k1493rRSJs3dxv4qZCsfimf8u++voYqHWpvwjiwggbfvxk4YG7/ e9GYmCeVjVEaJz9KC5wGHeRzRau8JVR6rgNAXVprVs2VmIprFD7Zio1cv/UQBPUS XTZFfOPopFy0Ey5GmHSrkUgOfH1N63UGEgvzNu3AztRkzh0AVStgErhtVjW/WNCq RAJAv7ocn6W++VLasQDUK6RVAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUleGvclNi pH7R7hDGceYptiqbJfUwHwYDVR0jBBgwFoAUycf7MVXuXrRUGnY3mYlwgGpG878w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBQjk2LzExNjU2MTMyN0Y3 RjExRjA4NDE3NTkzRkM0RjlBRTAyL3ljZjdNVlh1WHJSVUduWTNtWWx3Z0dwRzg3 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveWNmN01WWHVYclJVR25ZM21ZbHdnR3BHODc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUI5Ni8xMTY1NjEzMjdGN0YxMUYwODQxNzU5M0ZDNEY5QUUwMi9DREQ2RkE3Q0FE ODUxMUYwOEM3NTlGNTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQExkAwDQYJKoZIhvcNAQELBQADggEBAIyRvLE+y1oD7aRp 1H8LwEWKnHHR1YN5HyXrlAMmaJ+FwX2Csd6Gg3/0tVMYiKMHSp0Dtnvj6ASFJ4rW Q+68eOcGrDSmjt/o01TlQQDwc0epnDen4XjpSqw9cNAIu74BpR/RH3awRcFUfooi mUlAwm1uZSFAqVGKrwO1qA+Ye7jyeZQ71USMh/mPeCBwRVJJB73wqv80wa3lJ2ld 7+w0eM02ue4QvH7N27uUReR2QDJ5774sy/27iHSkPj0UCsKXb+wMQj1tmITcrR08 fdLJfX3oYPg8MqRgqtUU3NTe5J0+6BCzh0d8vZfPszNhUobQr+zyCAOTbrqJgP/o Pmee14k= -----END CERTIFICATE-----Generated at Tue Oct 21 11:28:41 2025 by rpki-client