$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/EB3FE1C61B6411ECAAB1D328C4F9AE02.roa File: EB3FE1C61B6411ECAAB1D328C4F9AE02.roa (raw, json) Hash identifier: nDdtc4fqfOTSbb5iCoB70ze8NVonJMIYgxedc+2CDmI= Subject key identifier: 80:F2:4F:C4:01:E5:99:9F:25:D2:B2:1F:26:6B:F4:88:79:25:62:B5 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 35A5 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/EB3FE1C61B6411ECAAB1D328C4F9AE02.roa Signing time: Thu 30 Oct 2025 15:31:19 +0000 ROA not before: Thu 30 Oct 2025 15:31:19 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 142501 IP address blocks: 2405:8a00:ffff::/48 maxlen: 48 2409:e:e0::/48 maxlen: 48 2409:e:e1::/48 maxlen: 48 2409:e:e2::/48 maxlen: 48 2409:e:e4::/48 maxlen: 48 2409:e:e6::/48 maxlen: 48 2409:e:e8::/48 maxlen: 48 2409:e:ea::/48 maxlen: 48 2409:e:ec::/48 maxlen: 48 2409:e:ee::/48 maxlen: 48 2409:f::/32 maxlen: 32 2409:f:f1::/48 maxlen: 48 2409:f:f3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13733 (0x35a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Oct 30 15:31:19 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=690384c6-0f94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5a:c4:72:1f:01:a7:dd:4b:d2:0a:f4:01:aa: 1b:c5:4c:25:37:7a:fa:c5:e1:06:6c:07:74:a7:60: b4:22:7b:33:fe:d9:fe:42:ea:a3:12:17:55:1e:1f: 5c:9e:48:b0:ae:68:cd:92:2d:5b:59:c9:39:11:1d: 96:63:1c:cf:f2:a5:cc:ec:42:24:18:c1:48:11:59: ab:91:bb:09:53:fc:2e:dc:be:a9:ad:ea:a3:12:1b: e2:08:86:b8:16:67:d2:20:be:5f:ca:cc:06:0a:85: 59:8f:4e:38:83:4c:a3:00:23:9b:13:5a:3a:39:44: 3c:86:4a:2d:50:22:ae:06:98:83:c7:c6:fe:ef:4c: fc:86:80:ea:83:41:1d:1a:8c:46:40:c4:5e:67:e7: f3:59:dc:9e:68:d4:51:22:8a:70:fe:5b:4b:94:85: a1:6e:87:dd:f5:ee:08:54:04:e0:9b:99:81:3f:0b: 80:78:f9:ad:ce:03:f3:f8:ef:d0:f6:4e:c8:88:26: a8:6f:dc:1f:eb:e6:1d:b3:0b:f0:f1:be:07:99:19: 21:f0:78:72:5e:6e:fc:41:b8:26:11:df:40:29:63: ac:c5:1b:9b:7d:2e:2d:a4:06:09:49:fa:52:fc:45: 64:86:e8:9c:80:5c:ec:c4:e2:ea:1e:99:ea:63:24: d2:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F2:4F:C4:01:E5:99:9F:25:D2:B2:1F:26:6B:F4:88:79:25:62:B5 X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/EB3FE1C61B6411ECAAB1D328C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:8a00:ffff::/48 2409:e:e0::-2409:e:e2:ffff:ffff:ffff:ffff:ffff 2409:e:e4::/48 2409:e:e6::/48 2409:e:e8::/48 2409:e:ea::/48 2409:e:ec::/48 2409:e:ee::/48 2409:f::/32 Signature Algorithm: sha256WithRSAEncryption 7f:68:ec:e4:9f:ff:ee:d8:dc:75:76:72:71:60:01:bf:74:a8: 15:38:68:b2:82:01:6f:1a:e2:5d:9e:7e:12:76:95:be:d1:b4: 54:3f:ea:ff:9a:e3:ba:4c:ee:9a:49:b9:8e:fd:76:61:77:e0: 29:3e:2a:5c:c6:f8:83:b1:82:a8:15:a3:a3:29:c2:34:0f:72: ec:9f:5d:20:df:39:24:40:73:33:a6:6a:44:af:84:be:27:e2: 12:d4:3f:f4:86:62:82:20:5f:89:ec:5d:7e:6b:3e:a4:57:b1: 94:4a:e3:bb:ce:c6:dd:17:68:8a:b8:52:a3:8d:a5:3c:a7:7b: 72:7a:d9:fd:e5:ab:08:3d:ab:c8:7c:72:a7:9a:c5:96:7c:bc: 0b:40:5f:36:40:5c:9d:ad:cc:f9:f1:ca:79:49:b3:f8:50:3e: f9:5a:b1:fd:cc:dc:ef:0c:0f:96:e3:76:0d:27:c6:ae:1c:29: fd:a0:3f:2b:4c:f9:cc:0e:94:19:e9:67:91:ef:84:5a:dc:3b: 7a:94:6a:47:9d:c4:76:31:be:cb:42:13:bc:3b:ec:00:b1:be: ee:ec:95:1f:55:dc:68:79:08:9a:85:f5:f8:0d:f9:e7:1f:7c: c4:1b:c8:dc:55:fa:80:93:c8:16:b1:a4:55:99:f7:87:61:18: 27:3f:07:30 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgICNaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUxMDMwMTUzMTE5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzODRjNi0wZjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVrEch8Bp91L0gr0AaobxUwlN3r6xeEGbAd0p2C0Insz/tn+QuqjEhdVHh9c nkiwrmjNki1bWck5ER2WYxzP8qXM7EIkGMFIEVmrkbsJU/wu3L6preqjEhviCIa4 FmfSIL5fyswGCoVZj044g0yjACObE1o6OUQ8hkotUCKuBpiDx8b+70z8hoDqg0Ed GoxGQMReZ+fzWdyeaNRRIopw/ltLlIWhbofd9e4IVATgm5mBPwuAePmtzgPz+O/Q 9k7IiCaob9wf6+Ydswvw8b4HmRkh8HhyXm78QbgmEd9AKWOsxRubfS4tpAYJSfpS /EVkhuicgFzsxOLqHpnqYyTS3QIDAQABo4IC6TCCAuUwHQYDVR0OBBYEFIDyT8QB 5ZmfJdKyHyZr9Ih5JWK1MB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvRUIzRkUxQzYx QjY0MTFFQ0FBQjFEMzI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwcwYIKwYBBQUHAQcBAf8E ZDBiMGAEAgACMFoDBwAkBYoA//8wEgMHBSQJAA4A4AMHACQJAA4A4gMHACQJAA4A 5AMHACQJAA4A5gMHACQJAA4A6AMHACQJAA4A6gMHACQJAA4A7AMHACQJAA4A7gMF ACQJAA8wDQYJKoZIhvcNAQELBQADggEBAH9o7OSf/+7Y3HV2cnFgAb90qBU4aLKC AW8a4l2efhJ2lb7RtFQ/6v+a47pM7ppJuY79dmF34Ck+KlzG+IOxgqgVo6MpwjQP cuyfXSDfOSRAczOmakSvhL4n4hLUP/SGYoIgX4nsXX5rPqRXsZRK47vOxt0XaIq4 UqONpTyne3J62f3lqwg9q8h8cqeaxZZ8vAtAXzZAXJ2tzPnxynlJs/hQPvlasf3M 3O8MD5bjdg0nxq4cKf2gPytM+cwOlBnpZ5HvhFrcO3qUakedxHYxvstCE7w77ACx vu7slR9V3Gh5CJqF9fgN+ecffMQbyNxV+oCTyBaxpFWZ94dhGCc/BzA= -----END CERTIFICATE-----Generated at Wed Nov 5 16:41:33 2025 by rpki-client