$ rpki-client -vvf rpki.apnic.net/member_repository/A917D31E/537845A0B4BB11F0A1353722C4F9AE02/3505DC88B6E411F090AAA224C4F9AE02.roa File: 3505DC88B6E411F090AAA224C4F9AE02.roa (raw, json) Hash identifier: NC1EW44txePxXOncUvp1UoY7Puvst1exL43E60v3h6Q= Subject key identifier: CF:B2:D5:3A:71:2C:AF:DC:E0:46:9B:67:6F:1C:7E:28:35:51:DC:32 Certificate issuer: /CN=A917D31E/serialNumber=FC4AF86E70099DA0BAAC2EDDC77D1BEF4C75A895 Certificate serial: 07 Authority key identifier: FC:4A:F8:6E:70:09:9D:A0:BA:AC:2E:DD:C7:7D:1B:EF:4C:75:A8:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Er4bnAJnaC6rC7dx30b70x1qJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D31E/537845A0B4BB11F0A1353722C4F9AE02/3505DC88B6E411F090AAA224C4F9AE02.roa Signing time: Sat 01 Nov 2025 05:32:51 +0000 ROA not before: Sat 01 Nov 2025 05:32:51 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154310 IP address blocks: 2001:df6:3c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D31E/537845A0B4BB11F0A1353722C4F9AE02/_Er4bnAJnaC6rC7dx30b70x1qJU.crl rsync://rpki.apnic.net/member_repository/A917D31E/537845A0B4BB11F0A1353722C4F9AE02/_Er4bnAJnaC6rC7dx30b70x1qJU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Er4bnAJnaC6rC7dx30b70x1qJU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D31E, serialNumber=FC4AF86E70099DA0BAAC2EDDC77D1BEF4C75A895 Validity Not Before: Nov 1 05:32:51 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69059b82-aaeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ed:a2:a5:4c:0b:a8:53:40:d6:26:55:b6:92: 9c:9c:1f:0f:e8:d9:e8:b1:b9:58:f6:9e:5e:da:b8: 69:27:51:94:65:b8:42:fb:e7:92:2b:52:73:b3:00: 5c:d3:16:e8:18:66:e7:06:97:82:a2:b4:fb:f5:83: a4:91:8a:dd:43:ad:8a:fc:c1:a2:94:ac:1d:05:ad: 9f:0b:d7:91:c3:ca:82:e8:7e:ff:37:1e:68:4a:ad: 72:39:b5:73:c1:83:57:21:29:98:21:90:68:25:34: a0:01:c4:43:35:fe:02:76:0a:a1:f8:f7:e2:e8:b5: 4d:df:c6:5f:dd:e2:33:ab:91:4d:1a:6f:b5:0e:01: 00:21:39:f3:98:b8:08:1e:c8:6c:3d:d6:c7:2c:74: 86:55:ff:46:92:d0:d0:6d:e4:70:fd:ce:5c:ff:0a: a6:be:2b:7c:3d:5c:e0:49:4c:c2:19:3c:21:b2:8c: e1:e1:54:c1:a1:27:b8:06:22:91:af:59:dc:f9:74: d8:8e:c3:58:b4:d5:6b:24:39:08:d0:f9:94:42:42: a1:89:d2:f3:f7:e3:81:36:75:85:20:52:03:a6:9e: ce:20:f5:d3:5b:a5:07:5f:0e:a4:91:54:d2:8b:e4: 2a:17:b2:92:c4:02:66:ec:9d:89:f4:11:9e:8b:af: fd:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B2:D5:3A:71:2C:AF:DC:E0:46:9B:67:6F:1C:7E:28:35:51:DC:32 X509v3 Authority Key Identifier: keyid:FC:4A:F8:6E:70:09:9D:A0:BA:AC:2E:DD:C7:7D:1B:EF:4C:75:A8:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D31E/537845A0B4BB11F0A1353722C4F9AE02/_Er4bnAJnaC6rC7dx30b70x1qJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Er4bnAJnaC6rC7dx30b70x1qJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D31E/537845A0B4BB11F0A1353722C4F9AE02/3505DC88B6E411F090AAA224C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:3c40::/48 Signature Algorithm: sha256WithRSAEncryption 83:b2:63:27:fe:d5:2f:00:85:9a:c2:47:51:00:84:46:c1:45: ba:6f:f8:27:78:2f:30:c8:6e:09:b5:d7:e6:19:3e:f6:71:ed: b0:78:b5:33:ce:bf:b1:fb:96:b1:63:7e:6f:c2:19:99:d3:84: 0f:d8:29:37:6e:23:0c:3d:63:95:ba:79:df:12:6a:0d:0d:91: af:03:e7:79:72:a2:f1:d9:90:a1:02:d0:f2:23:e3:e0:e7:1e: 5f:d0:33:a7:e2:fc:c0:69:7c:53:e6:15:7d:19:b4:fd:71:67: 27:af:c6:27:e1:f3:10:8b:b3:cf:74:4b:1b:fd:4b:0e:49:b4: d1:bc:43:f0:6d:34:9c:9e:99:85:9e:3c:42:bd:68:45:4e:fb: fb:b7:4e:bf:0f:5c:6a:47:69:a8:fd:d4:9c:22:e0:fa:66:31: 6e:1c:4f:07:8b:e5:b0:a9:b7:3c:65:bd:10:4e:fa:a3:cd:cc: c1:88:e9:fc:7b:11:63:e7:4f:72:6b:3d:d6:8e:1a:55:a2:0f: 25:e3:63:52:a9:24:a3:84:99:38:29:59:98:cb:67:46:ec:47: 9b:8d:0c:06:c6:5f:b7:e1:4a:84:54:e5:3d:f0:f2:b2:d4:aa: 23:cc:81:c9:fc:25:25:ee:b7:97:71:29:20:e0:9d:ff:5c:2a: 96:2d:c9:a3 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDMxRTExMC8GA1UEBRMoRkM0QUY4NkU3MDA5OURBMEJBQUMyRUREQzc3RDFCRUY0 Qzc1QTg5NTAeFw0yNTExMDEwNTMyNTFaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDU5YjgyLWFhZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC87aKlTAuoU0DWJlW2kpycHw/o2eixuVj2nl7auGknUZRluEL755IrUnOzAFzT FugYZucGl4KitPv1g6SRit1DrYr8waKUrB0FrZ8L15HDyoLofv83HmhKrXI5tXPB g1chKZghkGglNKABxEM1/gJ2CqH49+LotU3fxl/d4jOrkU0ab7UOAQAhOfOYuAge yGw91scsdIZV/0aS0NBt5HD9zlz/Cqa+K3w9XOBJTMIZPCGyjOHhVMGhJ7gGIpGv Wdz5dNiOw1i01WskOQjQ+ZRCQqGJ0vP344E2dYUgUgOmns4g9dNbpQdfDqSRVNKL 5CoXspLEAmbsnYn0EZ6Lr/2TAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUz7LVOnEs r9zgRptnbxx+KDVR3DIwHwYDVR0jBBgwFoAU/Er4bnAJnaC6rC7dx30b70x1qJUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEMzFFLzUzNzg0NUEwQjRC QjExRjBBMTM1MzcyMkM0RjlBRTAyL19FcjRibkFKbmFDNnJDN2R4MzBiNzB4MXFK VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX0VyNGJuQUpuYUM2ckM3ZHgzMGI3MHgxcUpVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDMxRS81Mzc4NDVBMEI0QkIxMUYwQTEzNTM3MjJDNEY5QUUwMi8zNTA1REM4OEI2 RTQxMUYwOTBBQUEyMjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfY8QDANBgkqhkiG9w0BAQsFAAOCAQEAg7JjJ/7VLwCF msJHUQCERsFFum/4J3gvMMhuCbXX5hk+9nHtsHi1M86/sfuWsWN+b8IZmdOED9gp N24jDD1jlbp53xJqDQ2RrwPneXKi8dmQoQLQ8iPj4OceX9Azp+L8wGl8U+YVfRm0 /XFnJ6/GJ+HzEIuzz3RLG/1LDkm00bxD8G00nJ6ZhZ48Qr1oRU77+7dOvw9cakdp qP3UnCLg+mYxbhxPB4vlsKm3PGW9EE76o83MwYjp/HsRY+dPcms91o4aVaIPJeNj Uqkko4SZOClZmMtnRuxHm40MBsZft+FKhFTlPfDystSqI8yByfwlJe63l3EpIOCd /1wqli3Jow== -----END CERTIFICATE-----Generated at Wed Nov 5 09:38:12 2025 by rpki-client