$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/EF1D0466455311E98FA31F68C4F9AE02.roa File: EF1D0466455311E98FA31F68C4F9AE02.roa (raw, json) Hash identifier: bbr75VePBSQhbmm3KlmHsLYo/ATNizzMszRI6/9uPZ8= Subject key identifier: 85:00:7D:7C:77:07:57:C5:05:CC:00:BA:38:68:C1:21:94:F6:37:2D Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 35AD Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/EF1D0466455311E98FA31F68C4F9AE02.roa Signing time: Thu 30 Oct 2025 15:31:26 +0000 ROA not before: Thu 30 Oct 2025 15:31:26 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 55433 IP address blocks: 2405:8a00:6029::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13741 (0x35ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Oct 30 15:31:26 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=690384ce-0596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f9:94:76:f3:94:c1:39:71:47:61:fe:1e:37: 08:85:46:27:3a:df:f3:16:b0:12:44:c2:05:dd:c2: 6a:0e:ca:96:f0:27:db:18:dc:ba:7c:dd:66:ab:41: e1:6a:c3:df:32:6a:4b:80:9e:70:92:2d:79:3e:a8: a2:f0:7f:08:7c:b9:e4:8a:63:4f:3e:8e:b3:39:fb: a6:ec:17:34:06:d5:ab:d8:3f:ce:c4:4f:0b:ba:97: 7f:1f:03:e8:9c:db:15:d4:4c:79:85:92:ae:b2:0e: 57:76:76:f8:05:66:f4:08:71:58:fc:e5:aa:60:51: e5:38:16:1d:b4:58:52:66:97:9f:97:a9:fd:ce:51: 39:32:e4:59:b2:21:5d:e5:3d:a9:c8:5b:f9:fe:bd: 5b:26:c2:82:d6:19:5d:54:94:55:06:92:3b:79:45: 57:b5:c4:5b:69:56:81:6e:ed:6a:16:2e:1d:9b:ff: f8:4c:9f:f0:da:55:1e:06:21:73:6f:40:59:1c:0a: f7:9d:04:b1:1a:bb:05:b5:5a:c0:33:f0:b7:b5:16: 84:fb:29:e9:4e:7a:17:d8:5c:5b:40:4b:06:3e:16: 3d:9c:1b:2b:24:10:ba:a8:29:91:cc:b6:73:f6:61: bc:8c:89:f1:e8:71:12:4d:eb:72:a8:1a:28:d0:16: 5f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:00:7D:7C:77:07:57:C5:05:CC:00:BA:38:68:C1:21:94:F6:37:2D X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/EF1D0466455311E98FA31F68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:8a00:6029::/48 Signature Algorithm: sha256WithRSAEncryption 61:bc:ee:db:8b:de:0e:4f:c5:49:61:0f:98:9d:7e:b3:0b:c7: 44:42:d8:2d:3b:96:33:17:a6:17:a7:44:d4:03:8f:4e:8f:b3: 6a:66:21:27:98:05:77:3d:d1:33:07:34:58:9a:02:02:17:f4: ce:83:f2:0a:20:b7:9c:1d:44:4a:dc:ac:90:a4:ff:54:82:2c: bd:1f:ce:5e:4f:71:cb:8b:c9:96:1d:a6:9e:57:8c:99:c6:71: 97:42:9c:41:9e:e8:31:77:7e:6b:b8:9d:57:46:78:95:ff:e0: 16:19:54:d4:b1:b9:cf:9d:24:18:5e:dc:b2:83:be:87:a9:35: ac:24:45:7d:17:59:a3:19:36:ed:bb:59:94:e4:c0:7c:98:1c: bd:75:a3:d2:41:47:6f:9c:37:cd:c6:8c:f0:9a:a7:f3:f0:5a: b7:82:59:8a:ef:19:f4:e4:51:ee:dc:22:e8:aa:fc:3f:37:7d: c4:bb:1e:d5:86:99:c9:df:2a:bf:c6:4d:a8:53:68:13:d7:b2: 52:6f:22:53:d2:5e:55:bb:23:66:ec:61:de:5b:4e:30:49:44: 08:0e:b3:f4:1a:08:02:b6:d8:f5:20:35:8e:e1:9e:ce:c3:dc: 21:c8:37:db:66:24:65:bc:4f:1f:82:2d:21:7b:ee:d5:4d:bb: 53:ff:17:f6 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICNa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUxMDMwMTUzMTI2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzODRjZS0wNTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvmUdvOUwTlxR2H+HjcIhUYnOt/zFrASRMIF3cJqDsqW8CfbGNy6fN1mq0Hh asPfMmpLgJ5wki15Pqii8H8IfLnkimNPPo6zOfum7Bc0BtWr2D/OxE8Lupd/HwPo nNsV1Ex5hZKusg5Xdnb4BWb0CHFY/OWqYFHlOBYdtFhSZpefl6n9zlE5MuRZsiFd 5T2pyFv5/r1bJsKC1hldVJRVBpI7eUVXtcRbaVaBbu1qFi4dm//4TJ/w2lUeBiFz b0BZHAr3nQSxGrsFtVrAM/C3tRaE+ynpTnoX2FxbQEsGPhY9nBsrJBC6qCmRzLZz 9mG8jInx6HESTetyqBoo0BZfDQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIUAfXx3 B1fFBcwAujhowSGU9jctMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvRUYxRDA0NjY0 NTUzMTFFOThGQTMxRjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBYoAYCkwDQYJKoZIhvcNAQELBQADggEBAGG87tuL3g5P xUlhD5idfrMLx0RC2C07ljMXphenRNQDj06Ps2pmISeYBXc90TMHNFiaAgIX9M6D 8gogt5wdRErcrJCk/1SCLL0fzl5PccuLyZYdpp5XjJnGcZdCnEGe6DF3fmu4nVdG eJX/4BYZVNSxuc+dJBhe3LKDvoepNawkRX0XWaMZNu27WZTkwHyYHL11o9JBR2+c N83GjPCap/PwWreCWYrvGfTkUe7cIuiq/D83fcS7HtWGmcnfKr/GTahTaBPXslJv IlPSXlW7I2bsYd5bTjBJRAgOs/QaCAK22PUgNY7hns7D3CHIN9tmJGW8Tx+CLSF7 7tVNu1P/F/Y= -----END CERTIFICATE-----Generated at Wed Nov 5 15:17:42 2025 by rpki-client