$ rpki-client -vvf rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/3219F778803B11F0BAF8A92DC4F9AE02.roa File: 3219F778803B11F0BAF8A92DC4F9AE02.roa (raw, json) Hash identifier: Pw3ZpzwkDkcgCL+3fi/F1AEnVJy3AaqJ7h1NuQZbu9w= Subject key identifier: 02:64:2C:37:F5:0C:02:35:0A:19:D5:82:93:56:06:68:17:56:DE:C5 Certificate issuer: /CN=A9127B24/serialNumber=F53BCFB8C72C1A3AB65E0EA88E3A1A21D28CD161 Certificate serial: BC Authority key identifier: F5:3B:CF:B8:C7:2C:1A:3A:B6:5E:0E:A8:8E:3A:1A:21:D2:8C:D1:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/3219F778803B11F0BAF8A92DC4F9AE02.roa Signing time: Wed 15 Oct 2025 10:02:49 +0000 ROA not before: Wed 15 Oct 2025 10:02:49 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153336 IP address blocks: 2401:c5e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.crl rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127B24, serialNumber=F53BCFB8C72C1A3AB65E0EA88E3A1A21D28CD161 Validity Not Before: Oct 15 10:02:49 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ef7148-17ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:4d:a9:8a:52:f0:c9:88:59:1b:8f:7c:82:55: 55:d9:77:8b:25:b0:d7:bf:4c:6f:72:7d:34:e0:a5: ba:82:e2:a5:21:e7:3e:ea:9b:c5:13:3f:7f:6d:da: cd:67:de:6f:ab:13:a6:ee:4b:69:9a:27:77:98:c1: 52:09:ca:99:5f:8c:74:ad:ea:f2:5c:29:90:d8:2c: 79:09:5b:f2:9d:c2:77:65:7b:14:8f:4f:2e:7e:17: 7f:0e:c7:6d:0b:4a:51:4e:85:b4:57:65:97:05:cc: 64:dc:b6:0a:71:2c:2b:3d:d4:53:9d:58:d0:56:34: 2e:f9:c0:54:6d:93:81:af:9f:9b:fc:93:9e:8a:2e: 74:40:6a:b1:d7:87:2e:12:cc:ee:73:cf:9d:20:68: 34:c5:f5:27:f5:2a:9e:93:39:37:b0:be:cb:16:77: fb:22:e6:47:3e:de:3f:a9:7f:a2:8b:c5:11:62:5f: ce:80:c2:85:58:59:03:53:68:e2:8e:b5:9d:00:39: c9:de:37:55:9c:79:3f:8d:99:ce:a5:27:8f:44:a9: f2:60:6b:92:b9:11:88:e3:22:c9:7f:05:a5:f4:2f: c4:b8:2c:9a:8e:f4:24:e7:5c:90:e5:70:96:7a:e5: 96:a1:a6:14:3d:e2:e6:09:49:3b:4b:74:15:32:e0: af:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:64:2C:37:F5:0C:02:35:0A:19:D5:82:93:56:06:68:17:56:DE:C5 X509v3 Authority Key Identifier: keyid:F5:3B:CF:B8:C7:2C:1A:3A:B6:5E:0E:A8:8E:3A:1A:21:D2:8C:D1:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/3219F778803B11F0BAF8A92DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:c5e0::/32 Signature Algorithm: sha256WithRSAEncryption 61:2a:47:15:b5:d8:35:1a:bb:64:d5:50:9b:13:65:b8:9c:57: d5:07:cc:e5:a5:a7:31:53:27:05:50:62:8a:13:c3:cc:80:a3: f6:10:88:9b:a6:3a:2c:65:5f:f0:47:a0:31:99:ba:e4:08:ed: 65:4c:8a:8b:65:75:dc:de:0d:53:e7:69:c3:ec:2e:c2:6f:77: 35:dc:fc:b1:ed:7d:d7:50:65:a8:23:ec:b9:c1:8e:23:a3:29: 80:d5:cd:6d:46:a8:7a:62:31:e6:90:89:89:1d:5a:bc:b2:e7: ba:3c:dc:64:c6:2a:34:3a:08:23:7d:d3:c8:ed:09:db:35:c9: e1:dd:08:72:5f:d5:c3:22:a4:b7:a0:5b:76:2d:78:b2:d5:7e: 54:94:d5:6d:a4:4e:4a:54:db:f7:2b:76:8f:fc:f3:57:5d:7e: 93:73:1c:5e:23:9e:ee:9c:1a:d5:f9:a5:d4:2e:b6:67:ca:6a: 5c:14:23:aa:cf:82:cc:c3:ad:34:0f:49:14:1d:3b:a2:5d:93: e3:e5:94:00:d3:d4:52:07:7b:ab:3c:d9:5f:77:af:68:e7:ab: 43:ce:60:26:0b:22:24:fe:53:9f:6c:5c:a4:45:51:60:2a:6e: b5:ed:45:2c:52:e5:76:31:46:34:56:7c:1e:87:f2:ef:38:21: 5e:82:ee:32 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdCMjQxMTAvBgNVBAUTKEY1M0JDRkI4QzcyQzFBM0FCNjVFMEVBODhFM0ExQTIx RDI4Q0QxNjEwHhcNMjUxMDE1MTAwMjQ5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVmNzE0OC0xN2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA502pilLwyYhZG498glVV2XeLJbDXv0xvcn004KW6guKlIec+6pvFEz9/bdrN Z95vqxOm7ktpmid3mMFSCcqZX4x0reryXCmQ2Cx5CVvyncJ3ZXsUj08ufhd/Dsdt C0pRToW0V2WXBcxk3LYKcSwrPdRTnVjQVjQu+cBUbZOBr5+b/JOeii50QGqx14cu Eszuc8+dIGg0xfUn9Sqekzk3sL7LFnf7IuZHPt4/qX+ii8URYl/OgMKFWFkDU2ji jrWdADnJ3jdVnHk/jZnOpSePRKnyYGuSuRGI4yLJfwWl9C/EuCyajvQk51yQ5XCW euWWoaYUPeLmCUk7S3QVMuCvqwIDAQABo4ICljCCApIwHQYDVR0OBBYEFAJkLDf1 DAI1ChnVgpNWBmgXVt7FMB8GA1UdIwQYMBaAFPU7z7jHLBo6tl4OqI46GiHSjNFh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0IyNC8xRTRGM0E1QzhG NzYxMUVGODRFQzc3MTVDNEY5QUUwMi85VHZQdU1jc0dqcTJYZzZvampvYUlkS00w V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlUdlB1TWNzR2pxMlhnNm9qam9hSWRLTTBXRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjdCMjQvMUU0RjNBNUM4Rjc2MTFFRjg0RUM3NzE1QzRGOUFFMDIvMzIxOUY3Nzg4 MDNCMTFGMEJBRjhBOTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAcXgMA0GCSqGSIb3DQEBCwUAA4IBAQBhKkcVtdg1Grtk 1VCbE2W4nFfVB8zlpacxUycFUGKKE8PMgKP2EIibpjosZV/wR6AxmbrkCO1lTIqL ZXXc3g1T52nD7C7Cb3c13Pyx7X3XUGWoI+y5wY4joymA1c1tRqh6YjHmkImJHVq8 sue6PNxkxio0OggjfdPI7QnbNcnh3QhyX9XDIqS3oFt2LXiy1X5UlNVtpE5KVNv3 K3aP/PNXXX6TcxxeI57unBrV+aXULrZnympcFCOqz4LMw600D0kUHTuiXZPj5ZQA 09RSB3urPNlfd69o56tDzmAmCyIk/lOfbFykRVFgKm617UUsUuV2MUY0Vnweh/Lv OCFegu4y -----END CERTIFICATE-----Generated at Mon Oct 20 18:26:01 2025 by rpki-client