$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/DC25866C6E6011EF830E7360C4F9AE02.roa File: DC25866C6E6011EF830E7360C4F9AE02.roa (raw, json) Hash identifier: 1+tBkh/KRxsCoNoBsHbiCpekgiywYiF7geYpDb1aSLs= Subject key identifier: E4:0D:54:E8:33:9C:7C:0B:19:65:98:BD:B0:5F:BB:23:58:2E:D2:93 Certificate issuer: /CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Certificate serial: 0245 Authority key identifier: 71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/DC25866C6E6011EF830E7360C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:31:12 +0000 ROA not before: Mon 23 Jun 2025 03:21:52 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132876 IP address blocks: 87.124.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C, serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Validity Not Before: Jun 23 03:21:52 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a485ef-5b46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a7:83:c6:8b:cc:d5:42:78:cd:a6:6a:1e:d5: 42:a1:f6:71:9c:57:36:68:bd:23:d7:0c:a0:1d:72: 7b:5c:36:c4:ff:da:30:7a:67:3c:e6:0e:ae:c3:e0: 87:07:3f:d8:08:ff:59:ef:87:ff:9b:96:56:3f:4d: 98:99:3b:2c:2c:5e:71:be:c5:0e:45:73:e0:4b:58: de:3a:0f:b0:8c:45:1d:d0:56:66:f3:51:34:66:33: 46:3d:87:a5:16:83:89:01:91:a9:9a:ef:67:a4:dc: 49:2a:74:f6:c7:c0:e3:fd:4f:c6:6f:4c:cc:a9:98: 51:27:dd:29:21:90:db:2f:70:ad:c4:ef:dd:7f:6c: 2e:b5:00:6b:c6:3d:9c:cd:a1:4a:84:aa:56:11:9d: f1:29:e8:e5:43:9d:63:11:f0:3b:ad:71:2b:1e:e2: bf:95:3a:32:71:c9:8b:b9:4b:35:4f:e8:14:5b:21: 8d:58:98:72:5e:d2:b2:11:a0:54:91:63:90:93:bb: d9:3c:7d:62:c5:5b:fc:69:af:25:a1:7d:fc:a7:39: 76:40:9c:1b:2b:87:6e:86:6f:f1:e3:ad:68:e3:54: ab:01:55:75:07:ea:24:11:c6:64:f0:d0:cb:24:86: 65:96:8b:99:0f:72:79:5e:39:dc:04:90:3e:a1:c1: 8e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:0D:54:E8:33:9C:7C:0B:19:65:98:BD:B0:5F:BB:23:58:2E:D2:93 X509v3 Authority Key Identifier: keyid:71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/DC25866C6E6011EF830E7360C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 87.124.0.0/24 Signature Algorithm: sha256WithRSAEncryption 13:e0:41:f8:21:bf:dd:6e:77:10:77:cf:ef:f7:6e:60:49:8e: 06:3f:db:67:e3:a7:28:9d:a5:87:21:f2:40:19:fc:9a:15:64: ad:28:c7:2b:89:db:7b:21:c9:4e:be:25:ac:63:30:b7:88:5c: 60:d5:62:a0:4d:17:de:25:73:47:34:04:5b:56:72:c7:93:5f: c9:a5:45:fc:ce:e0:37:59:be:13:3a:2f:b4:95:ca:34:ea:b0: 02:38:74:ab:0e:24:12:56:c6:75:d6:58:5f:ce:c7:6f:68:2f: 2b:5c:68:c3:d5:f1:75:14:82:c4:74:34:09:44:49:61:88:0b: 40:b2:cc:cc:19:53:8b:59:c5:5a:4a:79:18:7c:c0:11:fb:f7: 09:b1:ad:65:d9:19:e9:89:be:83:95:8a:f8:0d:0a:10:66:60: 6a:5b:6c:e7:11:35:0b:5e:f5:70:eb:5f:51:9e:32:b3:0a:59: 81:8d:fb:31:b0:38:ba:eb:3a:65:5f:58:27:51:06:90:f8:2e: c3:d0:d4:d5:6c:f6:24:47:47:89:5c:46:2c:36:1b:6b:3a:91: 1b:4f:b0:e8:e1:3a:13:08:71:6b:23:07:3c:9c:a6:20:84:11: 44:bd:b9:84:73:d0:6b:53:4a:01:8f:fe:8a:c5:1f:82:28:5e: d7:1b:bb:8b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKDcxRjQwMjE4QzFBRjQ3QzVFOTkzQTIxQTJCMjkyODRF NEMzMkM5MzQwHhcNMjUwNjIzMDMyMTUyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODVlZi01YjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnKeDxovM1UJ4zaZqHtVCofZxnFc2aL0j1wygHXJ7XDbE/9owemc85g6uw+CH Bz/YCP9Z74f/m5ZWP02YmTssLF5xvsUORXPgS1jeOg+wjEUd0FZm81E0ZjNGPYel FoOJAZGpmu9npNxJKnT2x8Dj/U/Gb0zMqZhRJ90pIZDbL3CtxO/df2wutQBrxj2c zaFKhKpWEZ3xKejlQ51jEfA7rXErHuK/lToyccmLuUs1T+gUWyGNWJhyXtKyEaBU kWOQk7vZPH1ixVv8aa8loX38pzl2QJwbK4duhm/x461o41SrAVV1B+okEcZk8NDL JIZllouZD3J5XjncBJA+ocGOvQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOQNVOgz nHwLGWWYvbBfuyNYLtKTMB8GA1UdIwQYMBaAFHH0AhjBr0fF6ZOiGispKE5MMsk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy82REUzQ0U3QzM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9jZlFDR01HdlI4WHBrNklhS3lrb1Rrd3l5 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2NmUUNHTUd2UjhYcGs2SWFLeWtvVGt3eXlUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNkRFM0NFN0MzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvREMyNTg2NkM2 RTYwMTFFRjgzMEU3MzYwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAV3wAMA0GCSqGSIb3DQEBCwUAA4IBAQAT4EH4Ib/dbncQd8/v925g SY4GP9tn46conaWHIfJAGfyaFWStKMcridt7IclOviWsYzC3iFxg1WKgTRfeJXNH NARbVnLHk1/JpUX8zuA3Wb4TOi+0lco06rACOHSrDiQSVsZ11lhfzsdvaC8rXGjD 1fF1FILEdDQJRElhiAtAsszMGVOLWcVaSnkYfMAR+/cJsa1l2Rnpib6DlYr4DQoQ ZmBqW2znETULXvVw619RnjKzClmBjfsxsDi66zplX1gnUQaQ+C7D0NTVbPYkR0eJ XEYsNhtrOpEbT7Do4ToTCHFrIwc8nKYghBFEvbmEc9BrU0oBj/6KxR+CKF7XG7uL -----END CERTIFICATE-----Generated at Mon Mar 2 14:37:04 2026 by rpki-client