$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1A54BE6216C811EFAA6A4727C4F9AE02.roa File: 1A54BE6216C811EFAA6A4727C4F9AE02.roa (raw, json) Hash identifier: ljPPG3Irpm8ghOUJizLq5YqAkiKCVl7udva0sdFxmk4= Subject key identifier: 7A:CA:61:F5:52:B2:63:FA:17:92:8E:99:0F:0A:3B:96:EA:9C:85:3B Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0FAE Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1A54BE6216C811EFAA6A4727C4F9AE02.roa Signing time: Mon 27 Oct 2025 14:29:28 +0000 ROA not before: Mon 27 Oct 2025 14:29:28 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 2406:840:e0e0::/44 maxlen: 48 2406:840:e666::/47 maxlen: 48 2406:840:fcf0::/44 maxlen: 48 2406:840:fd9f::/48 maxlen: 48 2406:840:fdd0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:57:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4014 (0xfae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Oct 27 14:29:28 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68ff81c8-4468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:eb:d4:0e:a9:9d:06:c4:98:cd:ee:87:9c:73: 73:77:3a:5e:00:b8:06:ad:95:78:8d:49:08:e5:33: 13:32:bb:43:6c:52:07:d9:a1:48:65:f5:df:ab:03: 8e:4e:a4:27:4e:24:f3:6d:e7:41:1a:a6:c4:57:2d: da:5a:1b:6b:d9:fb:5b:d9:6f:63:63:7b:00:6b:e2: 04:cb:6b:0c:67:03:22:15:4f:14:44:8c:e6:64:9d: c7:fe:e4:23:bd:71:89:68:40:10:aa:06:69:30:a4: 34:66:19:fa:c4:78:93:56:e1:4d:15:ae:86:f0:61: f1:70:c7:a0:b0:28:f4:2b:97:40:fe:99:c9:71:15: a6:d2:81:5a:ab:91:6e:f4:bc:89:94:b6:2f:a9:31: 6e:4b:b7:f2:40:60:6c:86:8c:7f:32:85:6b:63:c8: d6:9b:dc:c5:50:6a:47:50:b5:95:a9:e8:08:87:20: a1:42:7b:dd:cf:c2:f2:f4:4f:f8:23:2c:dd:03:cf: f5:3c:21:f1:ec:d4:a0:09:ec:7c:a4:6b:1e:9e:80: 92:b3:36:25:65:b4:fd:3a:a3:cc:45:5a:e2:11:18: 96:5a:53:86:77:94:68:f9:3c:36:b9:5b:e8:8e:80: 99:05:94:7e:0a:88:50:de:5b:05:76:23:1f:60:d4: 06:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:CA:61:F5:52:B2:63:FA:17:92:8E:99:0F:0A:3B:96:EA:9C:85:3B X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1A54BE6216C811EFAA6A4727C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e0e0::/44 2406:840:e666::/47 2406:840:fcf0::/44 2406:840:fd9f::/48 2406:840:fdd0::/44 Signature Algorithm: sha256WithRSAEncryption 1a:2a:cd:42:63:90:db:9a:1a:65:7c:b1:2e:3f:bd:6b:15:fe: f2:d7:36:51:20:b0:32:a2:b9:b8:8f:af:66:f9:ba:f6:73:99: fe:89:bb:03:a9:3b:c8:e4:16:8c:a2:ee:d8:22:95:02:88:5a: 8f:ee:49:6b:37:55:fc:80:b5:c1:dc:b9:9f:56:e8:fe:02:58: 30:3a:13:7d:6e:2f:8a:a9:75:30:86:eb:d1:35:58:82:92:5c: 2a:e7:14:2b:aa:4b:c9:c3:27:e5:fc:6a:79:c0:8d:9e:e8:94: 40:47:56:52:97:77:6a:bc:24:16:40:83:a4:a9:f5:32:39:f9: 3c:e7:58:fd:3c:be:41:1f:7c:65:d5:eb:be:81:e7:7b:8d:a3: c4:05:3b:2c:62:6d:90:27:a1:78:54:51:4e:9f:a6:0b:eb:8d: 95:e6:8d:4e:3b:7d:17:2a:64:1c:24:e3:8f:cb:b3:6e:7f:e8: 1f:dc:ba:75:b9:84:a6:48:29:0f:6c:01:14:b5:88:82:42:e8: d0:20:9c:39:3a:fd:dd:dc:44:cf:22:f3:05:92:e5:21:ce:51: ae:c6:e7:ac:c5:c4:c2:88:f0:ae:cb:c6:94:d5:ad:48:cd:3b: f2:c8:60:c2:7c:ae:21:f2:ba:5b:81:be:f7:7c:ab:82:e8:ca: bf:81:b3:ed -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICD64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUxMDI3MTQyOTI4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZmODFjOC00NDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4OvUDqmdBsSYze6HnHNzdzpeALgGrZV4jUkI5TMTMrtDbFIH2aFIZfXfqwOO TqQnTiTzbedBGqbEVy3aWhtr2ftb2W9jY3sAa+IEy2sMZwMiFU8URIzmZJ3H/uQj vXGJaEAQqgZpMKQ0Zhn6xHiTVuFNFa6G8GHxcMegsCj0K5dA/pnJcRWm0oFaq5Fu 9LyJlLYvqTFuS7fyQGBshox/MoVrY8jWm9zFUGpHULWVqegIhyChQnvdz8Ly9E/4 IyzdA8/1PCHx7NSgCex8pGsenoCSszYlZbT9OqPMRVriERiWWlOGd5Ro+Tw2uVvo joCZBZR+CohQ3lsFdiMfYNQGPQIDAQABo4ICvDCCArgwHQYDVR0OBBYEFHrKYfVS smP6F5KOmQ8KO5bqnIU7MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMUE1NEJFNjIx NkM4MTFFRkFBNkE0NzI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MDMEAgACMC0DBwQkBghA4OADBwEkBghA5mYDBwQkBghA/PADBwAkBghA/Z8D BwQkBghA/dAwDQYJKoZIhvcNAQELBQADggEBABoqzUJjkNuaGmV8sS4/vWsV/vLX NlEgsDKiubiPr2b5uvZzmf6JuwOpO8jkFoyi7tgilQKIWo/uSWs3VfyAtcHcuZ9W 6P4CWDA6E31uL4qpdTCG69E1WIKSXCrnFCuqS8nDJ+X8annAjZ7olEBHVlKXd2q8 JBZAg6Sp9TI5+TznWP08vkEffGXV676B53uNo8QFOyxibZAnoXhUUU6fpgvrjZXm jU47fRcqZBwk44/Ls25/6B/cunW5hKZIKQ9sARS1iIJC6NAgnDk6/d3cRM8i8wWS 5SHOUa7G56zFxMKI8K7LxpTVrUjNO/LIYMJ8riHyuluBvvd8q4Loyr+Bs+0= -----END CERTIFICATE-----Generated at Wed Nov 5 04:46:58 2025 by rpki-client