$ rpki-client -vvf rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/B3C4F6FCC8E811EFA15E172AC4F9AE02.roa File: B3C4F6FCC8E811EFA15E172AC4F9AE02.roa (raw, json) Hash identifier: 7X3op8FxLKCInR/9TSODy+LRMH6+i0DMcG4PbSJZGR0= Subject key identifier: 5B:B5:D5:91:03:38:09:5A:D7:97:E7:5F:C3:C4:98:7F:86:C1:F7:36 Certificate issuer: /CN=A912142C/serialNumber=BF583FF07DA356FDE282819F47BCEE247513119A Certificate serial: 34CA Authority key identifier: BF:58:3F:F0:7D:A3:56:FD:E2:82:81:9F:47:BC:EE:24:75:13:11:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1g_8H2jVv3igoGfR7zuJHUTEZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/B3C4F6FCC8E811EFA15E172AC4F9AE02.roa Signing time: Fri 04 Jul 2025 14:51:20 +0000 ROA not before: Fri 04 Jul 2025 14:51:20 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9484 IP address blocks: 2404:ec80:105::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.crl rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1g_8H2jVv3igoGfR7zuJHUTEZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:29:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13514 (0x34ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912142C, serialNumber=BF583FF07DA356FDE282819F47BCEE247513119A Validity Not Before: Jul 4 14:51:20 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6867ea68-25d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:c7:65:95:05:2b:29:ce:27:56:0b:57:2c:4c: 22:ff:f6:f6:67:d6:9e:e9:e0:87:b9:ef:c4:35:09: a7:47:14:37:8d:15:ec:ac:0e:eb:a7:c3:ea:0d:bc: 8b:9f:79:fb:a9:75:58:38:d9:b9:96:9d:f2:f5:83: f2:f2:b0:62:e3:f6:af:9a:df:3f:8b:f1:4d:97:d9: 9a:01:de:97:56:fc:3d:ec:83:96:d4:83:c5:d0:50: fd:fa:fa:98:94:61:38:8e:96:c8:c3:74:2d:be:a7: d2:33:d1:ed:c7:c9:28:54:a3:55:b3:a4:57:10:8f: 3b:68:5a:a7:b6:51:29:79:bf:d7:92:8c:5e:00:14: c7:05:ca:dc:f8:8c:3f:a1:6c:61:ca:b5:68:59:1d: c5:91:14:d8:0b:6f:1e:de:80:2a:86:16:c7:e6:33: 4d:cf:59:0d:0e:79:8a:cb:92:fc:5a:c7:ea:52:22: 2b:56:88:15:4c:35:21:a0:02:9d:1b:cf:1f:fb:ec: d1:f3:38:26:e8:0e:47:14:95:c5:50:ab:68:04:b3: 77:07:1c:9c:9f:d4:4d:7c:a5:88:b5:8e:27:77:64: 0a:da:d2:83:60:6e:aa:33:c8:d8:1e:28:80:46:6a: 07:05:da:d8:82:34:f0:f6:ef:9c:3e:9c:41:d3:3a: 4b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:B5:D5:91:03:38:09:5A:D7:97:E7:5F:C3:C4:98:7F:86:C1:F7:36 X509v3 Authority Key Identifier: keyid:BF:58:3F:F0:7D:A3:56:FD:E2:82:81:9F:47:BC:EE:24:75:13:11:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1g_8H2jVv3igoGfR7zuJHUTEZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/B3C4F6FCC8E811EFA15E172AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:ec80:105::/48 Signature Algorithm: sha256WithRSAEncryption 34:1b:67:2e:11:41:a3:f6:a8:a8:3f:d5:fd:5a:a5:bd:80:bd: 37:e9:c5:16:18:b5:fc:91:13:6c:25:43:a3:fc:d4:7d:46:a8: 8b:87:12:fc:ce:28:f6:59:7f:5c:65:80:bf:0d:c6:0e:9f:56: 79:c5:fe:5b:37:1c:f7:7b:27:71:56:83:4e:13:79:75:fd:fd: b2:6b:45:f5:d1:ed:a8:62:24:c8:60:df:cc:23:ca:e3:0c:03: fd:e0:ca:21:98:b4:cb:6b:79:33:5f:04:9e:29:f6:c6:2c:8e: 36:62:74:16:dc:7d:88:c0:7f:8b:74:99:49:72:78:53:ac:97: a7:04:c5:c5:37:0a:44:1b:40:34:2c:95:1a:f8:5e:c1:ff:bb: f9:fa:6b:17:f3:c0:9d:b2:8d:25:5a:90:24:67:14:91:04:71: 98:f7:58:20:50:a6:ed:56:4e:17:26:d7:52:93:f2:51:cf:a9: eb:3d:42:c4:e3:d4:a4:28:07:ae:4a:6e:45:36:79:25:eb:cd: 0b:43:09:1c:5d:52:0f:e5:ef:67:59:ac:89:16:c5:69:ea:b1: 80:92:f2:f1:18:12:9a:cd:dd:08:f0:7b:d0:eb:54:3a:cc:c8: 7b:15:3c:63:5d:31:9c:39:2e:c2:0a:02:c8:88:ff:ba:d1:ac: 30:18:b7:68 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICNMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE0MkMxMTAvBgNVBAUTKEJGNTgzRkYwN0RBMzU2RkRFMjgyODE5RjQ3QkNFRTI0 NzUxMzExOUEwHhcNMjUwNzA0MTQ1MTIwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY3ZWE2OC0yNWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkMdllQUrKc4nVgtXLEwi//b2Z9ae6eCHue/ENQmnRxQ3jRXsrA7rp8PqDbyL n3n7qXVYONm5lp3y9YPy8rBi4/avmt8/i/FNl9maAd6XVvw97IOW1IPF0FD9+vqY lGE4jpbIw3QtvqfSM9Htx8koVKNVs6RXEI87aFqntlEpeb/XkoxeABTHBcrc+Iw/ oWxhyrVoWR3FkRTYC28e3oAqhhbH5jNNz1kNDnmKy5L8WsfqUiIrVogVTDUhoAKd G88f++zR8zgm6A5HFJXFUKtoBLN3Bxycn9RNfKWItY4nd2QK2tKDYG6qM8jYHiiA RmoHBdrYgjTw9u+cPpxB0zpLBwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFu11ZED OAla15fnX8PEmH+Gwfc2MB8GA1UdIwQYMBaAFL9YP/B9o1b94oKBn0e87iR1ExGa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTQyQy8yMEIzN0NGRTFE ODcxMUUyQkRFRkY3REUwOEIwMkNEMi92MWdfOEgyalZ2M2lnb0dmUjd6dUpIVVRF Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YxZ184SDJqVnYzaWdvR2ZSN3p1SkhVVEVaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE0MkMvMjBCMzdDRkUxRDg3MTFFMkJERUZGN0RFMDhCMDJDRDIvQjNDNEY2RkND OEU4MTFFRkExNUUxNzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBOyAAQUwDQYJKoZIhvcNAQELBQADggEBADQbZy4RQaP2 qKg/1f1apb2AvTfpxRYYtfyRE2wlQ6P81H1GqIuHEvzOKPZZf1xlgL8Nxg6fVnnF /ls3HPd7J3FWg04TeXX9/bJrRfXR7ahiJMhg38wjyuMMA/3gyiGYtMtreTNfBJ4p 9sYsjjZidBbcfYjAf4t0mUlyeFOsl6cExcU3CkQbQDQslRr4XsH/u/n6axfzwJ2y jSVakCRnFJEEcZj3WCBQpu1WThcm11KT8lHPqes9QsTj1KQoB65KbkU2eSXrzQtD CRxdUg/l72dZrIkWxWnqsYCS8vEYEprN3Qjwe9DrVDrMyHsVPGNdMZw5LsIKAsiI /7rRrDAYt2g= -----END CERTIFICATE-----Generated at Wed Nov 5 15:21:16 2025 by rpki-client