$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/F70CBA98E9B911EFB5B54650C4F9AE02.roa File: F70CBA98E9B911EFB5B54650C4F9AE02.roa (raw, json) Hash identifier: 2T6Fyq/x0X9hd51yz+uFduciFhCl9089BnkJOOwfbVI= Subject key identifier: 8C:81:35:30:43:44:54:3D:C2:E4:D5:B9:D0:18:CB:51:48:0E:A9:A1 Certificate issuer: /CN=A919E1FC/serialNumber=CA5F7A3121C1F5F989520C7A519713FB3A68CA7E Certificate serial: 5A Authority key identifier: CA:5F:7A:31:21:C1:F5:F9:89:52:0C:7A:51:97:13:FB:3A:68:CA:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/F70CBA98E9B911EFB5B54650C4F9AE02.roa Signing time: Tue 29 Jul 2025 08:40:27 +0000 ROA not before: Tue 29 Jul 2025 08:40:27 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153594 IP address blocks: 163.61.116.0/24 maxlen: 24 2001:df5:14c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.crl rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:35:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1FC, serialNumber=CA5F7A3121C1F5F989520C7A519713FB3A68CA7E Validity Not Before: Jul 29 08:40:27 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=688888fb-2099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bc:f8:d5:1a:9b:0f:b1:89:f7:12:a7:18:f8: c9:2e:e4:d4:7e:6c:68:da:85:e1:a9:23:fe:f2:6c: fd:4c:0c:39:ac:82:6c:d2:56:22:a0:0f:fa:21:69: 65:e1:74:39:fc:d0:c1:a0:77:f3:e6:8b:ce:8a:7c: c1:ce:b4:5c:65:2b:f1:a2:40:a6:ec:6f:b7:70:5a: bc:a8:b3:cf:30:0f:51:1e:d1:1b:59:44:74:82:f3: 2d:ea:57:30:6f:67:96:72:b5:73:1a:b3:30:2f:18: 08:11:af:d5:21:92:6d:06:a1:11:4c:d4:4f:55:93: 58:e8:0d:f3:76:c5:52:be:34:3d:e1:53:30:64:5b: 73:91:1d:8d:1f:5a:b9:a2:18:df:72:c4:a7:1a:09: 83:47:8b:a0:6b:c5:9c:06:fd:e3:1d:41:e0:26:57: f0:5a:0e:01:b3:18:f4:18:90:67:66:01:44:4a:e5: 65:a9:ac:90:a4:eb:55:a2:4b:87:aa:bb:4e:dd:13: a9:11:b1:0d:d0:7f:d0:de:2a:f6:fe:25:56:cb:bc: 4e:62:2a:07:cb:f6:89:c8:81:82:8a:de:fd:97:53: 25:6a:b6:22:33:2d:d3:4e:6a:d0:df:d8:5d:79:53: e2:9f:c5:7f:55:5d:46:e3:95:83:02:ef:d9:e8:79: c8:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:81:35:30:43:44:54:3D:C2:E4:D5:B9:D0:18:CB:51:48:0E:A9:A1 X509v3 Authority Key Identifier: keyid:CA:5F:7A:31:21:C1:F5:F9:89:52:0C:7A:51:97:13:FB:3A:68:CA:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/F70CBA98E9B911EFB5B54650C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.116.0/24 IPv6: 2001:df5:14c0::/48 Signature Algorithm: sha256WithRSAEncryption 89:32:81:88:03:58:14:74:a2:2d:ed:d1:6e:e9:e4:23:dd:56: 30:32:af:18:2d:5e:49:52:7e:d5:94:74:18:fe:3b:84:36:dc: e0:f5:54:40:ea:23:41:74:63:c5:92:7c:41:6a:cd:4c:b0:52: 5a:15:bc:8f:4a:cf:c8:e1:c0:e6:de:77:e8:cb:82:b5:3a:12: a4:0e:d8:09:41:49:b3:68:4b:f6:dc:57:b4:5b:b3:09:d0:f1: b8:b3:75:3f:5c:aa:d3:d3:ac:aa:7d:83:19:6b:4c:0d:c1:8a: db:0a:b7:5d:57:f9:17:51:f1:a9:34:f2:33:32:9e:13:6d:10: 4a:3d:4c:b2:9d:32:4c:e7:36:4f:40:4d:22:fa:cd:be:0e:bd: 4c:f9:8c:6b:c2:94:d3:f8:da:ef:f9:66:38:1e:5c:85:61:af: ea:04:f5:ed:35:39:85:57:40:e6:50:2d:49:13:79:31:00:d5: aa:ac:05:3f:83:23:e3:0b:dc:15:9a:e0:15:66:b3:d0:88:ae: b1:24:6b:7b:af:1a:50:27:ea:a9:64:c8:15:53:c6:79:17:a7: 7c:35:a4:3e:91:c7:2d:84:ac:fd:55:dc:a6:e7:ca:a6:d0:87: d4:be:98:4c:e7:aa:95:74:a4:dc:1a:46:3a:e4:6b:31:aa:a0: e8:a6:cc:7a -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RTFGQzExMC8GA1UEBRMoQ0E1RjdBMzEyMUMxRjVGOTg5NTIwQzdBNTE5NzEzRkIz QTY4Q0E3RTAeFw0yNTA3MjkwODQwMjdaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ODg4OGZiLTIwOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1vPjVGpsPsYn3EqcY+Mku5NR+bGjaheGpI/7ybP1MDDmsgmzSViKgD/ohaWXh dDn80MGgd/Pmi86KfMHOtFxlK/GiQKbsb7dwWryos88wD1Ee0RtZRHSC8y3qVzBv Z5ZytXMaszAvGAgRr9Uhkm0GoRFM1E9Vk1joDfN2xVK+ND3hUzBkW3ORHY0fWrmi GN9yxKcaCYNHi6BrxZwG/eMdQeAmV/BaDgGzGPQYkGdmAURK5WWprJCk61WiS4eq u07dE6kRsQ3Qf9DeKvb+JVbLvE5iKgfL9onIgYKK3v2XUyVqtiIzLdNOatDf2F15 U+KfxX9VXUbjlYMC79noecjfAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUjIE1MENE VD3C5NW50BjLUUgOqaEwHwYDVR0jBBgwFoAUyl96MSHB9fmJUgx6UZcT+zpoyn4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlFMUZDLzVCMzI1RkE2RTlC OTExRUZCNkRBNDE0Q0M0RjlBRTAyL3lsOTZNU0hCOWZtSlVneDZVWmNULXpwb3lu NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveWw5Nk1TSEI5Zm1KVWd4NlVaY1QtenBveW40LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFGQy81QjMyNUZBNkU5QjkxMUVGQjZEQTQxNENDNEY5QUUwMi9GNzBDQkE5OEU5 QjkxMUVGQjVCNTQ2NTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAKM9dDAPBAIAAjAJAwcAIAEN9RTAMA0GCSqGSIb3DQEBCwUA A4IBAQCJMoGIA1gUdKIt7dFu6eQj3VYwMq8YLV5JUn7VlHQY/juENtzg9VRA6iNB dGPFknxBas1MsFJaFbyPSs/I4cDm3nfoy4K1OhKkDtgJQUmzaEv23Fe0W7MJ0PG4 s3U/XKrT06yqfYMZa0wNwYrbCrddV/kXUfGpNPIzMp4TbRBKPUyynTJM5zZPQE0i +s2+Dr1M+YxrwpTT+Nrv+WY4HlyFYa/qBPXtNTmFV0DmUC1JE3kxANWqrAU/gyPj C9wVmuAVZrPQiK6xJGt7rxpQJ+qpZMgVU8Z5F6d8NaQ+kccthKz9Vdym58qm0IfU vphM56qVdKTcGkY65GsxqqDopsx6 -----END CERTIFICATE-----Generated at Tue Nov 4 16:37:21 2025 by rpki-client