$ rpki-client -vvf rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/B47102FE77F211EFBA1E9F7EC4F9AE02.roa File: B47102FE77F211EFBA1E9F7EC4F9AE02.roa (raw, json) Hash identifier: AW0AjmB1MBpf81Bbaj4obKJm9vXagVv8vcAISz8uehk= Subject key identifier: AA:08:57:34:7D:A7:42:C9:B8:BE:B5:EC:17:6E:45:D0:B4:E8:9E:19 Certificate issuer: /CN=A914E600/serialNumber=7F8245BBD4D459721B41D4FF2BBFB425FF118953 Certificate serial: B8 Authority key identifier: 7F:82:45:BB:D4:D4:59:72:1B:41:D4:FF:2B:BF:B4:25:FF:11:89:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/B47102FE77F211EFBA1E9F7EC4F9AE02.roa Signing time: Sat 23 Aug 2025 06:41:50 +0000 ROA not before: Sat 23 Aug 2025 06:41:50 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137552 IP address blocks: 2001:df4:1840::/47 maxlen: 47 2001:df4:1840::/48 maxlen: 48 2001:df4:1841::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.crl rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 07:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E600, serialNumber=7F8245BBD4D459721B41D4FF2BBFB425FF118953 Validity Not Before: Aug 23 06:41:50 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a962ae-1fb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3b:d6:68:95:35:dc:e6:71:c3:17:13:73:64: ad:5f:6e:e8:6b:7d:84:13:8e:b0:1c:29:48:21:cf: 0a:ac:11:ee:e4:71:ee:bb:a4:df:6d:d4:99:c8:6d: 97:2e:da:ba:ac:f8:91:2f:b9:cc:e6:00:b8:62:42: b9:1a:11:ef:e5:90:38:f0:1f:8a:d7:c1:20:bf:fa: 59:63:cd:3e:bd:d5:5e:44:10:da:27:e8:66:96:cd: 3d:b3:36:84:d9:d9:f8:fb:5c:6b:21:b0:ac:6e:ce: ee:37:b3:a3:69:ae:65:6a:bb:0a:e5:b8:1e:83:20: 16:fe:f3:b3:7c:0c:0c:d2:f7:ab:b5:3a:6d:e3:f0: c1:ff:40:b2:8c:91:24:22:3c:70:84:4b:f9:da:ef: ec:e5:44:f2:db:6c:19:ce:62:77:68:c4:37:ac:01: bf:4f:ee:37:f3:81:0f:89:bb:b6:3c:f8:ce:8c:49: 74:50:c3:40:2c:55:96:98:ca:a5:2d:99:05:8c:ad: 93:eb:a1:30:e4:1f:21:b3:57:24:23:84:28:01:a1: dc:48:75:47:00:03:52:bf:9b:5e:dc:d2:66:ca:e1: ec:05:12:77:21:ab:bb:be:82:fe:ec:0f:29:d5:de: b5:1e:5f:70:3e:71:b3:9e:3a:95:e5:03:fc:0f:65: 9c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:08:57:34:7D:A7:42:C9:B8:BE:B5:EC:17:6E:45:D0:B4:E8:9E:19 X509v3 Authority Key Identifier: keyid:7F:82:45:BB:D4:D4:59:72:1B:41:D4:FF:2B:BF:B4:25:FF:11:89:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/B47102FE77F211EFBA1E9F7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:1840::/47 Signature Algorithm: sha256WithRSAEncryption 2e:a4:f1:cd:96:ae:b5:a8:00:5b:94:95:2e:51:b3:01:ab:ff: 15:26:26:78:56:f0:f8:89:f6:5c:96:e7:af:ac:22:d2:2f:a2: c5:22:82:44:d6:3f:46:c5:a9:cd:e7:09:d0:a9:3e:67:4f:cd: 44:23:74:06:db:c2:ee:94:cd:3f:94:f6:92:f5:74:b0:25:f6: 89:c6:64:c5:fb:ba:17:b9:95:0f:17:c7:85:99:70:bb:0f:8e: 15:54:0f:b7:5d:c3:17:78:3c:ae:a9:2b:5b:36:1c:f2:35:04: bf:a1:48:ac:de:ea:71:da:0d:d8:51:b3:71:cf:35:67:61:c2: 16:1c:21:ae:cc:27:cc:2c:6c:ac:82:7d:ce:4a:e4:4c:a1:49: f4:ef:09:98:86:9f:04:19:5b:62:c5:ae:75:5d:f6:56:15:19: a6:94:ad:78:6c:21:43:e9:05:1b:07:95:72:5d:5c:7d:4d:17: 88:8c:6c:a8:83:1c:a0:54:45:76:9b:2f:85:2d:9d:36:df:f5: 71:13:73:f3:80:e3:82:ee:46:50:83:36:fb:d5:be:66:4a:56: c2:7c:7a:e2:c5:b6:b4:51:81:9f:0c:a9:19:ad:ab:f8:77:83: 58:3a:be:12:58:b2:43:63:cb:71:ca:40:47:c1:f7:c3:91:d1: b4:45:2f:e2 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2MDAxMTAvBgNVBAUTKDdGODI0NUJCRDRENDU5NzIxQjQxRDRGRjJCQkZCNDI1 RkYxMTg5NTMwHhcNMjUwODIzMDY0MTUwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE5NjJhZS0xZmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjvWaJU13OZxwxcTc2StX27oa32EE46wHClIIc8KrBHu5HHuu6TfbdSZyG2X Ltq6rPiRL7nM5gC4YkK5GhHv5ZA48B+K18Egv/pZY80+vdVeRBDaJ+hmls09szaE 2dn4+1xrIbCsbs7uN7Ojaa5larsK5bgegyAW/vOzfAwM0vertTpt4/DB/0CyjJEk IjxwhEv52u/s5UTy22wZzmJ3aMQ3rAG/T+4384EPibu2PPjOjEl0UMNALFWWmMql LZkFjK2T66Ew5B8hs1ckI4QoAaHcSHVHAANSv5te3NJmyuHsBRJ3Iau7voL+7A8p 1d61Hl9wPnGznjqV5QP8D2Wc8QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKoIVzR9 p0LJuL617BduRdC06J4ZMB8GA1UdIwQYMBaAFH+CRbvU1FlyG0HU/yu/tCX/EYlT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTYwMC8yQUE3RDQ1RTc3 RjExMUVGQUMxMTI5NDJDNEY5QUUwMi9mNEpGdTlUVVdYSWJRZFRfSzctMEpmOFJp Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y0SkZ1OVRVV1hJYlFkVF9LNy0wSmY4UmlWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU2MDAvMkFBN0Q0NUU3N0YxMTFFRkFDMTEyOTQyQzRGOUFFMDIvQjQ3MTAyRkU3 N0YyMTFFRkJBMUU5RjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEgAQ30GEAwDQYJKoZIhvcNAQELBQADggEBAC6k8c2WrrWo AFuUlS5RswGr/xUmJnhW8PiJ9lyW56+sItIvosUigkTWP0bFqc3nCdCpPmdPzUQj dAbbwu6UzT+U9pL1dLAl9onGZMX7uhe5lQ8Xx4WZcLsPjhVUD7ddwxd4PK6pK1s2 HPI1BL+hSKze6nHaDdhRs3HPNWdhwhYcIa7MJ8wsbKyCfc5K5EyhSfTvCZiGnwQZ W2LFrnVd9lYVGaaUrXhsIUPpBRsHlXJdXH1NF4iMbKiDHKBURXabL4UtnTbf9XET c/OA44LuRlCDNvvVvmZKVsJ8euLFtrRRgZ8MqRmtq/h3g1g6vhJYskNjy3HKQEfB 98OR0bRFL+I= -----END CERTIFICATE-----Generated at Fri Oct 24 09:09:58 2025 by rpki-client