$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/BC60BC2A63F711EA8CBEB029C4F9AE02.roa File: BC60BC2A63F711EA8CBEB029C4F9AE02.roa (raw, json) Hash identifier: K8liO7Xk31uaDD5yrLQ/2bkKZExCc4ANVhaCHC181Xs= Subject key identifier: 56:2B:36:36:EB:54:30:3E:45:D3:F9:F0:37:CF:5B:C9:41:52:4D:E4 Certificate issuer: /CN=A919EF51/serialNumber=52D680E045DCE990789E0D7772617C60C36ED18E Certificate serial: 0B65 Authority key identifier: 52:D6:80:E0:45:DC:E9:90:78:9E:0D:77:72:61:7C:60:C3:6E:D1:8E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/BC60BC2A63F711EA8CBEB029C4F9AE02.roa Signing time: Fri 26 Sep 2025 19:20:15 +0000 ROA not before: Fri 26 Sep 2025 19:20:15 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 0 IP address blocks: 2001:7fa:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.crl rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Oct 2025 19:12:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2917 (0xb65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF51, serialNumber=52D680E045DCE990789E0D7772617C60C36ED18E Validity Not Before: Sep 26 19:20:15 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d6e76f-2d14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:be:01:0c:ac:a7:3a:85:38:04:24:59:4c:66: 77:18:e3:f6:25:67:ec:47:89:0e:3a:ed:46:de:23: df:d5:66:18:2f:13:52:be:2e:94:95:4a:16:4a:f6: e1:0d:1a:af:27:df:9b:3d:a3:a5:c4:fb:a7:a2:98: 3e:c8:b4:5b:a0:ad:6f:5f:f6:a8:a1:52:f7:21:87: dc:f7:00:1b:d7:37:d8:ea:6c:28:76:50:59:9a:aa: e2:27:86:1f:e6:7b:67:b7:26:8a:c7:52:02:f1:69: 6a:dc:00:9e:07:7f:f6:4e:7f:8c:d8:0b:d8:2e:5c: c3:21:46:f5:c3:56:77:6c:b9:2c:0f:6a:b4:a1:28: 05:3b:a4:ca:39:ca:eb:d0:88:fe:dd:7e:25:a1:46: 4f:7f:fc:c5:85:a1:04:a7:72:9f:bc:3d:87:a4:94: 00:07:f2:1e:73:5b:80:f6:03:f5:16:2f:fe:00:84: 8f:71:17:d0:69:e6:05:58:37:1c:12:58:a8:ec:99: 81:b0:7a:44:90:cf:15:1f:8f:2d:6d:bc:e2:fb:1d: d9:d4:87:8a:91:06:50:dd:ec:d2:8f:44:e4:c4:1d: 98:d2:6d:dc:81:18:ae:de:67:45:87:a0:35:a2:3c: 98:34:9b:23:df:f3:b0:77:b0:0b:f3:63:d9:e8:1b: b4:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:2B:36:36:EB:54:30:3E:45:D3:F9:F0:37:CF:5B:C9:41:52:4D:E4 X509v3 Authority Key Identifier: keyid:52:D6:80:E0:45:DC:E9:90:78:9E:0D:77:72:61:7C:60:C3:6E:D1:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/BC60BC2A63F711EA8CBEB029C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:7fa:11::/48 Signature Algorithm: sha256WithRSAEncryption 89:53:60:72:db:24:92:5d:f3:bb:f9:16:90:9f:94:10:5b:f4: 6f:2e:85:d3:a1:99:29:c5:e8:63:5e:97:7d:99:be:75:2e:78: 5f:6a:85:70:78:5c:52:d3:7a:ec:79:bb:0c:eb:bc:e1:e1:9d: 07:e5:3e:4f:58:ab:56:ab:ce:7c:ae:b3:33:5f:a9:27:4a:6d: bd:d1:26:a7:2f:b1:7f:c4:a9:84:fd:e8:f4:6a:5a:66:c5:8d: 0c:b8:c6:65:69:4d:4b:23:f8:1d:9a:14:a7:c6:f9:c8:7a:ef: 4b:aa:b8:20:d5:dd:5b:50:45:c4:27:eb:62:11:13:46:69:e2: 5e:c2:e3:78:93:79:84:b5:64:04:a8:36:03:0f:87:eb:bb:c5: fd:09:38:ea:a0:f0:d4:a6:77:f1:2e:80:0d:9b:5d:75:20:a5: ed:e6:5e:26:85:dc:e0:f0:51:6b:52:4a:1e:ce:7c:d5:8f:7a: 36:cf:06:0f:df:94:dd:5a:d4:0e:d7:18:5b:be:ec:cf:5a:eb: 96:d2:b1:63:49:4b:cc:c3:8c:5a:cc:1a:0c:84:59:98:4d:58: f0:57:75:ad:e1:b5:d3:c8:e2:04:15:0c:e6:03:45:72:48:88: b3:07:d1:92:52:68:eb:4f:52:ee:e9:bc:93:b3:44:4f:22:28: 4b:29:85:ef -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICC2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNTExMTAvBgNVBAUTKDUyRDY4MEUwNDVEQ0U5OTA3ODlFMEQ3NzcyNjE3QzYw QzM2RUQxOEUwHhcNMjUwOTI2MTkyMDE1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ2ZTc2Zi0yZDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA674BDKynOoU4BCRZTGZ3GOP2JWfsR4kOOu1G3iPf1WYYLxNSvi6UlUoWSvbh DRqvJ9+bPaOlxPunopg+yLRboK1vX/aooVL3IYfc9wAb1zfY6mwodlBZmqriJ4Yf 5ntntyaKx1IC8Wlq3ACeB3/2Tn+M2AvYLlzDIUb1w1Z3bLksD2q0oSgFO6TKOcrr 0Ij+3X4loUZPf/zFhaEEp3KfvD2HpJQAB/Iec1uA9gP1Fi/+AISPcRfQaeYFWDcc Elio7JmBsHpEkM8VH48tbbzi+x3Z1IeKkQZQ3ezSj0TkxB2Y0m3cgRiu3mdFh6A1 ojyYNJsj3/Owd7AL82PZ6Bu0uQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFYrNjbr VDA+RdP58DfPW8lBUk3kMB8GA1UdIwQYMBaAFFLWgOBF3OmQeJ4Nd3JhfGDDbtGO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY1MS9CQTNDRDRBNjNE ODIxMUVBOUYyNjczNzBDNEY5QUUwMi9VdGFBNEVYYzZaQjRuZzEzY21GOFlNTnUw WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1V0YUE0RVhjNlpCNG5nMTNjbUY4WU1OdTBZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVGNTEvQkEzQ0Q0QTYzRDgyMTFFQTlGMjY3MzcwQzRGOUFFMDIvQkM2MEJDMkE2 M0Y3MTFFQThDQkVCMDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQf6ABEwDQYJKoZIhvcNAQELBQADggEBAIlTYHLbJJJd 87v5FpCflBBb9G8uhdOhmSnF6GNel32ZvnUueF9qhXB4XFLTeux5uwzrvOHhnQfl Pk9Yq1arznyuszNfqSdKbb3RJqcvsX/EqYT96PRqWmbFjQy4xmVpTUsj+B2aFKfG +ch670uquCDV3VtQRcQn62IRE0Zp4l7C43iTeYS1ZASoNgMPh+u7xf0JOOqg8NSm d/EugA2bXXUgpe3mXiaF3ODwUWtSSh7OfNWPejbPBg/flN1a1A7XGFu+7M9a65bS sWNJS8zDjFrMGgyEWZhNWPBXda3htdPI4gQVDOYDRXJIiLMH0ZJSaOtPUu7pvJOz RE8iKEsphe8= -----END CERTIFICATE-----Generated at Wed Oct 8 14:04:35 2025 by rpki-client