$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/BFDC8CE68AAB11EF93DB792CC4F9AE02.roa File: BFDC8CE68AAB11EF93DB792CC4F9AE02.roa (raw, json) Hash identifier: up6ZQnDC9VwnVYpnnVHiMX36yIvXwlpfLo6HkECnYII= Subject key identifier: 79:43:BE:37:3E:B2:CC:F2:08:08:45:E0:CF:21:F1:1A:9C:36:4E:97 Certificate issuer: /CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Certificate serial: 0253 Authority key identifier: 71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/BFDC8CE68AAB11EF93DB792CC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:24 +0000 ROA not before: Mon 23 Jun 2025 03:22:06 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 18256 IP address blocks: 87.124.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C, serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Validity Not Before: Jun 23 03:22:06 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a485fb-6598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f4:48:59:80:a3:c3:59:fc:92:95:7b:ff:e9: 31:84:71:26:fd:e9:a6:a4:c2:19:b9:ad:87:4c:e5: 3f:99:9d:5a:1e:55:7c:8c:0c:b5:d0:c6:bd:9c:36: 95:a4:e5:da:8c:51:4f:02:34:71:fa:4d:02:31:d2: 98:ee:49:88:af:6f:e1:07:65:fb:8c:8e:52:22:21: 8f:23:40:56:5e:5c:0a:0b:be:19:d4:90:88:5b:0e: b7:56:ae:a6:a8:6e:b6:a0:d7:4f:be:1f:7c:77:68: 45:6d:df:46:fd:2c:ae:22:3b:4c:a3:89:a3:7b:36: 94:ff:85:d6:c0:cb:ec:88:ee:1a:ed:af:73:65:71: e5:d5:eb:9d:eb:c0:0e:ac:3d:98:fe:1c:58:76:e3: 50:11:d9:a2:4d:c9:57:4b:b3:54:e6:44:a0:c9:2f: 6d:1b:3d:55:46:55:93:eb:df:4b:35:71:2f:46:1f: b7:5e:2f:51:82:a0:96:d9:e8:4f:41:00:c4:f7:2e: e3:ab:e8:ae:5f:aa:30:35:e4:f2:48:bf:b4:06:58: a3:18:6f:f1:8a:4a:cc:20:7f:eb:56:c2:5c:e3:be: 48:ec:c6:81:90:b2:0c:f5:63:93:64:ac:d9:d6:94: 93:8b:2c:1b:8a:50:c5:b2:9d:2a:b2:da:2c:0c:14: 95:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:43:BE:37:3E:B2:CC:F2:08:08:45:E0:CF:21:F1:1A:9C:36:4E:97 X509v3 Authority Key Identifier: keyid:71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/BFDC8CE68AAB11EF93DB792CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 87.124.71.0/24 Signature Algorithm: sha256WithRSAEncryption 36:0e:c8:19:07:4e:d0:50:bb:18:84:04:66:50:5f:e0:b2:8f: 75:c3:0b:26:36:0f:16:98:a0:2a:82:5e:7a:c9:9b:12:46:48: 1f:b2:51:47:55:49:6e:ef:d7:d9:66:ce:f5:45:11:38:9e:e2: b7:28:76:34:b9:68:1a:4c:b3:13:1c:3a:68:27:cd:35:35:67: c7:8f:71:57:a6:cc:94:33:48:a9:a1:bb:ee:20:e0:b2:a4:4d: 8a:4f:c8:88:54:2d:b4:ca:3a:29:0d:bd:5e:cd:03:c4:d4:2e: de:b3:be:52:c3:ae:ce:76:16:3f:af:86:bc:fc:62:95:9d:96: 00:66:02:26:bd:31:61:5f:c7:f9:2d:4d:ea:6c:51:2b:40:6a: b8:b0:83:5d:e4:bd:ed:76:05:65:a9:77:af:36:fb:b1:63:6c: 77:fa:f7:07:f9:b1:9c:6e:68:16:7a:62:1b:82:54:71:42:0b: 72:10:97:d5:2f:ba:9d:14:b2:97:a7:e3:8d:dc:a2:f7:fe:df: 36:49:5b:04:ab:a9:75:d4:27:8d:35:5e:86:a3:3d:28:93:7c: 39:09:3f:cd:5c:d1:67:e7:99:71:d8:de:35:ef:e7:e9:8a:b4: be:09:bc:9d:02:a6:5f:26:5c:cc:be:3c:c8:f5:a3:0d:fb:e6: 87:11:67:d8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKDcxRjQwMjE4QzFBRjQ3QzVFOTkzQTIxQTJCMjkyODRF NEMzMkM5MzQwHhcNMjUwNjIzMDMyMjA2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODVmYi02NTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvRIWYCjw1n8kpV7/+kxhHEm/emmpMIZua2HTOU/mZ1aHlV8jAy10Ma9nDaV pOXajFFPAjRx+k0CMdKY7kmIr2/hB2X7jI5SIiGPI0BWXlwKC74Z1JCIWw63Vq6m qG62oNdPvh98d2hFbd9G/SyuIjtMo4mjezaU/4XWwMvsiO4a7a9zZXHl1eud68AO rD2Y/hxYduNQEdmiTclXS7NU5kSgyS9tGz1VRlWT699LNXEvRh+3Xi9RgqCW2ehP QQDE9y7jq+iuX6owNeTySL+0BlijGG/xikrMIH/rVsJc475I7MaBkLIM9WOTZKzZ 1pSTiywbilDFsp0qstosDBSVXwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHlDvjc+ sszyCAhF4M8h8RqcNk6XMB8GA1UdIwQYMBaAFHH0AhjBr0fF6ZOiGispKE5MMsk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy82REUzQ0U3QzM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9jZlFDR01HdlI4WHBrNklhS3lrb1Rrd3l5 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2NmUUNHTUd2UjhYcGs2SWFLeWtvVGt3eXlUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNkRFM0NFN0MzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvQkZEQzhDRTY4 QUFCMTFFRjkzREI3OTJDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAV3xHMA0GCSqGSIb3DQEBCwUAA4IBAQA2DsgZB07QULsYhARmUF/g so91wwsmNg8WmKAqgl56yZsSRkgfslFHVUlu79fZZs71RRE4nuK3KHY0uWgaTLMT HDpoJ801NWfHj3FXpsyUM0ipobvuIOCypE2KT8iIVC20yjopDb1ezQPE1C7es75S w67OdhY/r4a8/GKVnZYAZgImvTFhX8f5LU3qbFErQGq4sINd5L3tdgVlqXevNvux Y2x3+vcH+bGcbmgWemIbglRxQgtyEJfVL7qdFLKXp+ON3KL3/t82SVsEq6l11CeN NV6Goz0ok3w5CT/NXNFn55lx2N417+fpirS+CbydAqZfJlzMvjzI9aMN++aHEWfY -----END CERTIFICATE-----Generated at Mon Mar 2 20:02:29 2026 by rpki-client