$ rpki-client -vvf rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/BFF3C17CD23A11EB8E7BA35DC4F9AE02.roa File: BFF3C17CD23A11EB8E7BA35DC4F9AE02.roa (raw, json) Hash identifier: 5Fsc41uF0Rk/lmtPY3W1pGuwIZpGYocCqX/4FDCWPmc= Subject key identifier: C3:5F:76:CD:6E:2F:6B:8A:BD:2F:17:8E:78:FB:D5:AF:88:58:EE:7E Certificate issuer: /CN=A918036A/serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Certificate serial: 1080 Authority key identifier: 57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/BFF3C17CD23A11EB8E7BA35DC4F9AE02.roa Signing time: Wed 08 Oct 2025 17:47:37 +0000 ROA not before: Wed 08 Oct 2025 17:47:37 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134707 IP address blocks: 2406:a240::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4224 (0x1080) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918036A, serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Validity Not Before: Oct 8 17:47:37 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6a3b8-f1d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:82:d9:66:d7:41:09:53:72:a7:84:f8:73:0e: f9:59:85:67:40:cd:54:06:8d:b7:17:10:dd:de:27: 55:b8:5b:f0:b9:99:4e:13:db:d2:84:1c:12:06:03: d8:01:7a:da:09:97:38:6b:1b:b7:ce:a9:f4:4b:b5: 5c:65:d0:12:a2:65:73:fa:f7:47:58:93:f4:f0:04: 5e:17:9b:74:34:ca:52:70:1d:b6:65:a3:c4:0b:98: df:53:b4:d0:20:47:a0:42:04:2b:e6:c0:e9:b3:ef: ac:f6:f1:f3:45:9e:e2:31:54:f4:86:2b:93:aa:0a: e6:27:ee:c8:81:f3:55:b6:97:15:b5:1d:de:6a:2a: dc:4d:c2:01:cd:d7:8f:8a:8d:7d:e8:7d:77:89:3d: 74:36:28:cd:83:24:25:f8:e3:d0:d1:a5:30:6e:f9: 97:d4:49:e6:8c:16:78:fb:de:16:62:ca:e0:90:d4: 69:e3:f5:10:64:2e:a6:c4:1f:33:41:fa:ad:70:52: b3:97:fc:2c:be:82:42:87:11:62:86:e4:d6:e5:3e: 1d:6c:d6:9c:73:00:f9:ab:55:c1:e6:15:da:b7:b8: cc:ba:78:ac:98:bd:31:b0:76:77:aa:ea:29:5f:0b: 27:18:27:89:f9:fd:d7:d9:ea:a0:d7:d8:7f:02:4b: f3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:5F:76:CD:6E:2F:6B:8A:BD:2F:17:8E:78:FB:D5:AF:88:58:EE:7E X509v3 Authority Key Identifier: keyid:57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/BFF3C17CD23A11EB8E7BA35DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:a240::/32 Signature Algorithm: sha256WithRSAEncryption 22:89:55:11:a1:3a:2f:7d:57:f0:0d:fc:62:8d:d6:4c:9d:36: 31:99:84:23:6f:97:91:69:f5:1c:32:23:32:ec:01:57:5f:2f: 57:22:08:e7:4f:7f:65:42:63:bf:ec:0c:2e:5f:bd:a8:ac:bf: b9:70:71:ab:0c:3f:7b:97:c7:16:6d:ea:f6:c8:ba:8f:bf:78: c9:20:ac:74:3e:f0:1c:2b:01:55:89:bf:88:e3:4a:38:1e:81: c1:05:69:fa:61:9c:65:96:75:02:15:a8:6a:39:b5:ba:ed:01: c2:59:da:43:ef:f9:25:3b:cb:65:30:ed:a1:77:ce:f7:37:a9: be:e1:56:49:b6:8d:7c:d6:b5:2f:53:a6:d7:3b:b5:84:93:a8: 2e:ae:fc:19:1f:31:eb:ad:69:f5:c5:cb:8a:3d:ad:18:a7:0d: 1d:01:87:f3:71:56:6a:c7:bb:4b:79:2c:82:0b:1d:c2:f8:fb: bb:a5:40:f0:ee:13:81:87:42:c8:d2:ed:1c:6b:c1:24:49:2e: ab:1f:e5:6a:cc:12:c2:8b:6b:63:e5:d3:59:75:14:c2:19:9c: 98:db:ea:10:13:08:93:48:9a:87:8c:b6:01:4d:30:67:3e:65: d7:31:3f:7f:e0:8a:4b:85:db:2d:16:8b:ef:b1:39:21:f6:b9: 7c:82:66:0c -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICEIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzNkExMTAvBgNVBAUTKDU3ODQwRkI0NDFEMkIzNEM4RUU2OTlEMjY0NzEyQjRB NUUwRkVEOEQwHhcNMjUxMDA4MTc0NzM3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2YTNiOC1mMWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14LZZtdBCVNyp4T4cw75WYVnQM1UBo23FxDd3idVuFvwuZlOE9vShBwSBgPY AXraCZc4axu3zqn0S7VcZdASomVz+vdHWJP08AReF5t0NMpScB22ZaPEC5jfU7TQ IEegQgQr5sDps++s9vHzRZ7iMVT0hiuTqgrmJ+7IgfNVtpcVtR3eaircTcIBzdeP io196H13iT10NijNgyQl+OPQ0aUwbvmX1EnmjBZ4+94WYsrgkNRp4/UQZC6mxB8z QfqtcFKzl/wsvoJChxFihuTW5T4dbNaccwD5q1XB5hXat7jMunismL0xsHZ3quop XwsnGCeJ+f3X2eqg19h/AkvzlQIDAQABo4ICljCCApIwHQYDVR0OBBYEFMNfds1u L2uKvS8Xjnj71a+IWO5+MB8GA1UdIwQYMBaAFFeED7RB0rNMjuaZ0mRxK0peD+2N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDM2QS80MzNBRjc4QzQ2 QzcxMUU5QURFOUQ0MjRDNEY5QUUwMi9WNFFQdEVIU3MweU81cG5TWkhFclNsNFA3 WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y0UVB0RUhTczB5TzVwblNaSEVyU2w0UDdZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzNkEvNDMzQUY3OEM0NkM3MTFFOUFERTlENDI0QzRGOUFFMDIvQkZGM0MxN0NE MjNBMTFFQjhFN0JBMzVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBqJAMA0GCSqGSIb3DQEBCwUAA4IBAQAiiVURoTovfVfw DfxijdZMnTYxmYQjb5eRafUcMiMy7AFXXy9XIgjnT39lQmO/7AwuX72orL+5cHGr DD97l8cWber2yLqPv3jJIKx0PvAcKwFVib+I40o4HoHBBWn6YZxllnUCFahqObW6 7QHCWdpD7/klO8tlMO2hd873N6m+4VZJto181rUvU6bXO7WEk6gurvwZHzHrrWn1 xcuKPa0Ypw0dAYfzcVZqx7tLeSyCCx3C+Pu7pUDw7hOBh0LI0u0ca8EkSS6rH+Vq zBLCi2tj5dNZdRTCGZyY2+oQEwiTSJqHjLYBTTBnPmXXMT9/4IpLhdstFovvsTkh 9rl8gmYM -----END CERTIFICATE-----Generated at Mon Oct 20 10:14:11 2025 by rpki-client