$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/95B5C59E2DCE11EEB652B16FC4F9AE02.roa File: 95B5C59E2DCE11EEB652B16FC4F9AE02.roa (raw, json) Hash identifier: 96SYU6m7SGiOTx98szkfXwpjHUBpGQY+sEJUou+Xksk= Subject key identifier: 85:71:24:48:8E:76:4F:74:87:CF:BA:9D:3D:61:E8:BC:C9:99:E7:5F Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 35AA Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/95B5C59E2DCE11EEB652B16FC4F9AE02.roa Signing time: Thu 30 Oct 2025 15:31:23 +0000 ROA not before: Thu 30 Oct 2025 15:31:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 148003 IP address blocks: 240a:eff6::/32 maxlen: 32 240a:eff7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13738 (0x35aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Oct 30 15:31:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=690384cb-25f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9a:00:1a:e2:36:6d:ec:2a:8e:4d:2b:90:19: fa:de:b6:54:85:df:8e:19:c0:30:09:1d:bd:13:31: d1:8e:c0:b6:9b:e4:52:63:dd:35:d7:08:b1:18:e8: c9:bc:60:c9:ff:9e:6a:58:aa:31:44:95:31:fc:0f: 0e:3f:59:11:bf:e0:6e:59:20:c5:9d:fb:1b:b5:70: b3:2c:3f:01:88:65:af:ab:e5:a6:3d:c9:8d:00:dc: e4:fb:8f:98:be:96:59:47:f8:3e:be:f6:da:44:0e: 47:7c:15:87:1c:6b:0b:aa:0f:8b:48:4c:38:21:68: b6:45:3a:0d:06:e7:57:9f:40:ee:e1:a4:1b:5a:52: f2:00:49:15:cf:a8:f6:1d:ab:d0:04:f1:20:c5:84: e2:7c:56:c5:7a:c7:03:54:4d:a1:7e:96:6e:a4:bf: dc:fd:85:e2:45:ba:43:d5:ed:67:18:4c:f7:5b:c6: 3f:25:c7:48:e8:bb:56:b0:6a:2f:f6:f5:7e:23:53: bf:bd:77:e7:33:e0:12:2b:75:3a:0e:e4:c6:5e:e1: 91:95:0c:9a:b5:a0:90:e5:a9:90:fd:bf:d0:f4:08: ff:96:c0:c2:b7:6f:e5:78:62:c4:e8:81:db:8b:e7: 1a:1f:1d:6a:1b:03:9b:78:1d:89:ab:61:c8:13:8a: ed:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:71:24:48:8E:76:4F:74:87:CF:BA:9D:3D:61:E8:BC:C9:99:E7:5F X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/95B5C59E2DCE11EEB652B16FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:eff6::/31 Signature Algorithm: sha256WithRSAEncryption aa:bc:13:2c:94:63:cd:bd:03:82:08:b6:14:d5:bc:05:57:af: d0:12:59:ed:33:18:28:7d:2e:12:6b:b8:31:f2:60:98:5d:be: 08:41:78:f9:19:ae:00:cd:f2:6a:7f:14:07:8c:4c:e7:2e:b4: 37:e1:02:72:00:bb:fb:57:62:c0:bc:f5:17:79:8a:04:6f:01: e5:11:a1:30:01:87:db:db:12:fb:67:7b:37:24:3e:ea:f3:39: e5:7b:05:d5:41:f8:5f:e1:01:35:e2:99:1a:7f:6e:56:dc:cd: cb:dd:28:81:fd:0b:11:82:a2:8c:8d:2c:b6:8d:52:50:b7:b5: 55:14:73:2b:9f:b3:19:38:6f:1a:d8:d9:b1:df:bf:ee:c6:1f: b7:0e:b6:b8:2d:99:ca:dd:bf:71:f6:0f:7d:a3:05:92:cb:b3: 06:47:ad:2f:35:5e:09:12:80:9b:02:80:96:74:76:ba:b0:2d: 5b:98:07:6c:ff:14:2c:eb:59:bd:ba:36:9d:17:f6:d5:ea:0d: 04:e5:e0:64:85:41:33:09:39:62:91:11:cb:ae:a2:c2:dc:dc: c3:32:b1:74:1a:e6:ac:e4:42:ac:0a:10:fd:f0:30:0a:5c:af: 74:66:f9:6c:9f:25:f3:c7:4f:b3:1e:5d:19:8d:32:81:85:9a: c8:cf:e1:57 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICNaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUxMDMwMTUzMTIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzODRjYi0yNWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ZoAGuI2bewqjk0rkBn63rZUhd+OGcAwCR29EzHRjsC2m+RSY9011wixGOjJ vGDJ/55qWKoxRJUx/A8OP1kRv+BuWSDFnfsbtXCzLD8BiGWvq+WmPcmNANzk+4+Y vpZZR/g+vvbaRA5HfBWHHGsLqg+LSEw4IWi2RToNBudXn0Du4aQbWlLyAEkVz6j2 HavQBPEgxYTifFbFescDVE2hfpZupL/c/YXiRbpD1e1nGEz3W8Y/JcdI6LtWsGov 9vV+I1O/vXfnM+ASK3U6DuTGXuGRlQyataCQ5amQ/b/Q9Aj/lsDCt2/leGLE6IHb i+caHx1qGwObeB2Jq2HIE4rtlwIDAQABo4ICljCCApIwHQYDVR0OBBYEFIVxJEiO dk90h8+6nT1h6LzJmedfMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvOTVCNUM1OUUy RENFMTFFRUI2NTJCMTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQEkCu/2MA0GCSqGSIb3DQEBCwUAA4IBAQCqvBMslGPNvQOC CLYU1bwFV6/QElntMxgofS4Sa7gx8mCYXb4IQXj5Ga4AzfJqfxQHjEznLrQ34QJy ALv7V2LAvPUXeYoEbwHlEaEwAYfb2xL7Z3s3JD7q8znlewXVQfhf4QE14pkaf25W 3M3L3SiB/QsRgqKMjSy2jVJQt7VVFHMrn7MZOG8a2Nmx37/uxh+3Dra4LZnK3b9x 9g99owWSy7MGR60vNV4JEoCbAoCWdHa6sC1bmAds/xQs61m9ujadF/bV6g0E5eBk hUEzCTlikRHLrqLC3NzDMrF0Guas5EKsChD98DAKXK90ZvlsnyXzx0+zHl0ZjTKB hZrIz+FX -----END CERTIFICATE-----Generated at Tue Nov 4 19:11:09 2025 by rpki-client