$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/567C85C0B34111F09BB3B84DC4F9AE02.roa File: 567C85C0B34111F09BB3B84DC4F9AE02.roa (raw, json) Hash identifier: Ex3GVAxJWLWD960nKqXi5N3R5GiiSRyjH0XEdwCY6S4= Subject key identifier: 4E:4A:8D:EE:10:AE:F9:4D:55:00:84:0F:C6:16:DF:C9:E8:83:62:A1 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0FAC Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/567C85C0B34111F09BB3B84DC4F9AE02.roa Signing time: Mon 27 Oct 2025 14:29:26 +0000 ROA not before: Mon 27 Oct 2025 14:29:26 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137264 IP address blocks: 2406:840:fcf0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:57:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4012 (0xfac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Oct 27 14:29:26 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68ff81c5-9d9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:79:89:24:39:88:af:70:cd:99:ae:19:14:98: 6a:29:72:c3:be:ff:cc:60:7d:ec:8b:b2:b4:29:57: 55:ce:36:7a:b7:c5:70:47:c9:7e:e0:e9:8f:75:e4: 71:f1:89:0c:b2:9f:09:54:01:b4:2d:c0:72:51:43: 49:eb:95:95:94:34:2f:e2:19:7f:b7:b1:47:98:67: 0a:32:16:04:1d:cb:70:e5:47:69:d5:aa:19:b7:3c: 19:ee:1a:91:f2:fd:24:7e:80:b5:68:eb:2b:27:b9: 28:09:29:3d:af:f6:b1:d5:87:77:1b:4b:07:fd:5e: cb:b8:73:39:3c:c4:5f:4c:8b:2c:9b:d6:1c:e1:4c: a2:b7:5f:49:10:ec:1e:ad:45:5c:da:8c:56:8a:29: e8:f3:92:c0:74:04:ce:fc:1d:dc:84:d3:c6:e0:7d: 51:9d:54:49:39:0e:8f:6b:42:2a:61:e3:f3:8c:51: 9b:51:8a:87:27:07:2e:8f:f9:92:cf:ac:80:ab:3d: 8e:d8:d5:5d:f8:72:5d:85:c4:12:19:13:6a:2b:5f: fe:30:26:a2:be:f1:b2:6e:37:7f:b0:ad:13:54:be: 66:25:b3:a5:fd:70:68:10:05:e7:d9:92:e9:a7:54: 4e:9f:e3:f6:36:a0:4d:83:4e:d0:3e:86:88:14:67: ba:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:4A:8D:EE:10:AE:F9:4D:55:00:84:0F:C6:16:DF:C9:E8:83:62:A1 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/567C85C0B34111F09BB3B84DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fcf0::/44 Signature Algorithm: sha256WithRSAEncryption 95:3d:9a:7b:5a:95:81:42:fc:f1:f1:8f:65:66:4a:70:ec:c8: 13:72:54:6e:36:c9:17:f7:0b:a0:51:73:22:5b:31:93:b5:d4: 58:d4:22:c3:f3:d5:72:10:c3:63:23:f9:49:9c:22:01:f8:fe: 18:f9:0a:c9:30:5d:dc:8d:13:20:5a:ab:15:87:d5:ee:9f:a0: 0e:2c:53:5f:89:93:1a:c2:7b:02:5d:5a:e2:de:58:fc:a8:87: 32:a5:fb:bc:86:6a:69:93:aa:af:d4:74:fe:ac:61:ce:1f:48: 58:86:04:fc:22:b5:94:80:8d:2c:c5:ff:c8:a9:f1:d0:b0:b4: 32:bf:2b:72:2d:58:cb:ad:8e:43:17:dd:52:9f:3a:06:53:5e: 42:ee:bc:91:ca:35:b8:d9:52:36:b0:e3:32:b5:f5:b7:08:43: fb:81:aa:b6:ce:c0:f6:52:c2:bb:d1:4c:42:d2:bf:52:17:98: 8f:4c:0f:50:ec:7c:65:62:2f:18:d3:25:da:85:1a:e6:08:93: e6:85:01:d1:e9:84:b2:8b:e1:43:d8:d9:bb:7b:11:03:43:41: c9:98:47:77:97:39:6d:2c:8b:09:a1:44:8b:9e:8a:77:43:5e: 1d:d2:ae:99:61:b9:ba:d4:92:34:4d:08:15:ac:bc:ef:ca:cb: cc:45:73:fc -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICD6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUxMDI3MTQyOTI2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZmODFjNS05ZDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsnmJJDmIr3DNma4ZFJhqKXLDvv/MYH3si7K0KVdVzjZ6t8VwR8l+4OmPdeRx 8YkMsp8JVAG0LcByUUNJ65WVlDQv4hl/t7FHmGcKMhYEHctw5Udp1aoZtzwZ7hqR 8v0kfoC1aOsrJ7koCSk9r/ax1Yd3G0sH/V7LuHM5PMRfTIssm9Yc4Uyit19JEOwe rUVc2oxWiino85LAdATO/B3chNPG4H1RnVRJOQ6Pa0IqYePzjFGbUYqHJwcuj/mS z6yAqz2O2NVd+HJdhcQSGRNqK1/+MCaivvGybjd/sK0TVL5mJbOl/XBoEAXn2ZLp p1ROn+P2NqBNg07QPoaIFGe65QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFE5Kje4Q rvlNVQCED8YW38nog2KhMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNTY3Qzg1QzBC MzQxMTFGMDlCQjNCODREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA/PAwDQYJKoZIhvcNAQELBQADggEBAJU9mntalYFC /PHxj2VmSnDsyBNyVG42yRf3C6BRcyJbMZO11FjUIsPz1XIQw2Mj+UmcIgH4/hj5 CskwXdyNEyBaqxWH1e6foA4sU1+JkxrCewJdWuLeWPyohzKl+7yGammTqq/UdP6s Yc4fSFiGBPwitZSAjSzF/8ip8dCwtDK/K3ItWMutjkMX3VKfOgZTXkLuvJHKNbjZ Ujaw4zK19bcIQ/uBqrbOwPZSwrvRTELSv1IXmI9MD1DsfGViLxjTJdqFGuYIk+aF AdHphLKL4UPY2bt7EQNDQcmYR3eXOW0siwmhRIueindDXh3SrplhubrUkjRNCBWs vO/Ky8xFc/w= -----END CERTIFICATE-----Generated at Wed Nov 5 04:23:59 2025 by rpki-client