$ rpki-client -vvf rpki.apnic.net/member_repository/A915E18D/70015C422AE211EBBBFC4F0AC4F9AE02/FFCBC5B4819B11EBA2616775C4F9AE02.roa File: FFCBC5B4819B11EBA2616775C4F9AE02.roa (raw, json) Hash identifier: eAr6Bm0SAycqFZVRJ4zqW+q/hASwwat0+nlZHDP2Q8U= Subject key identifier: 0B:29:B4:2C:AA:36:8F:6E:01:D7:3B:D5:66:DE:FC:DB:87:45:C8:A3 Certificate issuer: /CN=A915E18D/serialNumber=7B2F95CE6FDC2531BBCA3E53C1D6ED1BA2AA3604 Certificate serial: 07A0 Authority key identifier: 7B:2F:95:CE:6F:DC:25:31:BB:CA:3E:53:C1:D6:ED:1B:A2:AA:36:04 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/ey-Vzm_cJTG7yj5TwdbtG6KqNgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E18D/70015C422AE211EBBBFC4F0AC4F9AE02/FFCBC5B4819B11EBA2616775C4F9AE02.roa Signing time: Sun 02 Nov 2025 21:40:52 +0000 ROA not before: Sun 02 Nov 2025 21:40:52 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 132847 IP address blocks: 89.147.120.0/22 maxlen: 24 176.116.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E18D/70015C422AE211EBBBFC4F0AC4F9AE02/ey-Vzm_cJTG7yj5TwdbtG6KqNgQ.crl rsync://rpki.apnic.net/member_repository/A915E18D/70015C422AE211EBBBFC4F0AC4F9AE02/ey-Vzm_cJTG7yj5TwdbtG6KqNgQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/ey-Vzm_cJTG7yj5TwdbtG6KqNgQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:34:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1952 (0x7a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E18D, serialNumber=7B2F95CE6FDC2531BBCA3E53C1D6ED1BA2AA3604 Validity Not Before: Nov 2 21:40:52 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6907cfe4-ab7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2c:bd:12:c0:f3:cb:1c:b3:ec:f9:01:ba:b2: ea:5f:e1:82:1a:4c:cd:40:d3:6f:52:5f:1a:1c:07: ff:37:7a:41:55:c2:8b:72:b0:3f:07:25:76:18:55: 0d:78:cf:f2:e3:2f:09:dc:da:ed:85:27:b5:98:a2: 46:42:73:2a:0e:d3:1b:71:73:34:1c:05:49:36:73: b6:23:e2:b6:78:36:b6:07:07:dc:7e:f3:fd:d8:34: 06:d7:90:ed:09:f3:c6:03:97:eb:c5:40:a0:09:b6: a7:72:34:67:e4:49:5b:d1:e2:2b:dc:8f:1d:d0:b9: 04:01:0a:28:92:d8:71:e3:1f:6a:aa:25:47:ce:1e: 67:58:5d:43:e2:6f:cd:f4:50:c5:f5:92:b8:34:96: c5:85:60:6f:07:4b:11:6b:0e:e3:57:0f:c1:43:42: 02:e3:47:0c:10:18:34:5d:82:c1:d0:46:ba:cd:1b: ca:17:24:06:12:cb:de:10:2d:b2:ed:8e:58:ac:d9: ff:bc:20:9f:19:22:64:b5:6f:ee:6c:87:0e:a6:34: 16:c0:87:13:34:6a:8f:a7:d1:05:26:be:f7:04:2c: 78:23:eb:a1:b7:c8:77:f2:dc:b9:32:64:15:a6:18: a3:2c:3b:3e:16:e8:df:14:c8:98:47:f4:a1:34:a1: 65:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:29:B4:2C:AA:36:8F:6E:01:D7:3B:D5:66:DE:FC:DB:87:45:C8:A3 X509v3 Authority Key Identifier: keyid:7B:2F:95:CE:6F:DC:25:31:BB:CA:3E:53:C1:D6:ED:1B:A2:AA:36:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E18D/70015C422AE211EBBBFC4F0AC4F9AE02/ey-Vzm_cJTG7yj5TwdbtG6KqNgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/ey-Vzm_cJTG7yj5TwdbtG6KqNgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E18D/70015C422AE211EBBBFC4F0AC4F9AE02/FFCBC5B4819B11EBA2616775C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 89.147.120.0/22 176.116.127.0/24 Signature Algorithm: sha256WithRSAEncryption 50:5e:fc:f8:4c:67:a2:36:59:c9:e6:55:9a:4b:28:0d:6b:34: 5e:2e:bb:78:ce:41:06:27:20:a3:b4:19:3c:66:31:29:f9:4d: b8:b7:29:26:9e:69:4e:bb:14:fc:25:ab:e8:af:db:aa:83:77: 82:0a:c9:e6:45:43:25:60:7a:56:b7:bc:f1:ed:4d:cc:b2:fe: cc:e6:77:6a:bd:13:bc:54:62:b3:b5:30:27:b6:1d:1a:73:78: 79:18:e3:9f:32:07:ca:19:b1:d9:ff:36:bf:1c:94:90:d9:c9: 45:76:9f:c4:cc:ba:43:54:e7:ba:ed:24:7b:1b:d5:15:c0:ee: ad:b0:67:b6:3d:01:62:59:1a:dc:a1:f8:d9:1c:82:3c:2f:cf: 51:e9:9f:59:db:c7:c6:de:c0:61:2b:b7:22:5d:ea:e6:e1:a8: 8b:9f:02:36:23:d2:c4:cb:e0:02:3c:f6:1e:16:c8:0c:13:79: 8b:11:1c:55:e6:e8:58:2c:8e:c9:f6:4b:e4:9d:15:bc:cf:eb: ef:14:09:ad:a8:df:6b:35:1a:da:ef:ad:88:d8:6b:37:93:c8: 28:c5:76:42:f2:6e:bc:0e:04:39:9a:8f:d6:74:07:cc:4d:3a: 32:27:bf:dd:5c:3d:40:29:3c:a2:2b:5c:7f:5f:ec:8c:f0:91: 3b:a1:20:ab -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUUxOEQxMTAvBgNVBAUTKDdCMkY5NUNFNkZEQzI1MzFCQkNBM0U1M0MxRDZFRDFC QTJBQTM2MDQwHhcNMjUxMTAyMjE0MDUyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3Y2ZlNC1hYjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtiy9EsDzyxyz7PkBurLqX+GCGkzNQNNvUl8aHAf/N3pBVcKLcrA/ByV2GFUN eM/y4y8J3NrthSe1mKJGQnMqDtMbcXM0HAVJNnO2I+K2eDa2BwfcfvP92DQG15Dt CfPGA5frxUCgCbancjRn5Elb0eIr3I8d0LkEAQookthx4x9qqiVHzh5nWF1D4m/N 9FDF9ZK4NJbFhWBvB0sRaw7jVw/BQ0IC40cMEBg0XYLB0Ea6zRvKFyQGEsveEC2y 7Y5YrNn/vCCfGSJktW/ubIcOpjQWwIcTNGqPp9EFJr73BCx4I+uht8h38ty5MmQV phijLDs+FujfFMiYR/ShNKFlawIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAsptCyq No9uAdc71Wbe/NuHRcijMB8GA1UdIwQYMBaAFHsvlc5v3CUxu8o+U8HW7RuiqjYE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTE4RC83MDAxNUM0MjJB RTIxMUVCQkJGQzRGMEFDNEY5QUUwMi9leS1Wem1fY0pURzd5ajVUd2RidEc2S3FO Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2V5LVZ6bV9jSlRHN3lqNVR3ZGJ0RzZLcU5nUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUUxOEQvNzAwMTVDNDIyQUUyMTFFQkJCRkM0RjBBQzRGOUFFMDIvRkZDQkM1QjQ4 MTlCMTFFQkEyNjE2Nzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJZk3gDBACwdH8wDQYJKoZIhvcNAQELBQADggEBAFBe/PhM Z6I2WcnmVZpLKA1rNF4uu3jOQQYnIKO0GTxmMSn5Tbi3KSaeaU67FPwlq+iv26qD d4IKyeZFQyVgela3vPHtTcyy/szmd2q9E7xUYrO1MCe2HRpzeHkY458yB8oZsdn/ Nr8clJDZyUV2n8TMukNU57rtJHsb1RXA7q2wZ7Y9AWJZGtyh+Nkcgjwvz1Hpn1nb x8bewGErtyJd6ubhqIufAjYj0sTL4AI89h4WyAwTeYsRHFXm6Fgsjsn2S+SdFbzP 6+8UCa2o32s1GtrvrYjYazeTyCjFdkLybrwOBDmaj9Z0B8xNOjInv91cPUApPKIr XH9f7IzwkTuhIKs= -----END CERTIFICATE-----Generated at Wed Nov 5 08:09:54 2025 by rpki-client