$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/AF14F7EC516411F08E03714FC4F9AE02.roa File: AF14F7EC516411F08E03714FC4F9AE02.roa (raw, json) Hash identifier: 96q0yHBSk/Rmlo0qmQ4XhZWgKPNkJp4u/4iyHTCtNz4= Subject key identifier: A1:0A:0E:6C:1E:76:32:E8:CC:C6:02:61:F2:F2:78:45:81:7C:88:A6 Certificate issuer: /CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Certificate serial: 13B6 Authority key identifier: 89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/AF14F7EC516411F08E03714FC4F9AE02.roa Signing time: Sat 04 Oct 2025 17:16:00 +0000 ROA not before: Sat 04 Oct 2025 17:15:59 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139074 IP address blocks: 2403:b4c0:ae00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:30:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5046 (0x13b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E, serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Validity Not Before: Oct 4 17:15:59 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e1564f-97d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a4:e3:67:20:9d:e6:13:4a:07:48:4d:11:58: 56:6f:49:64:61:4e:0b:67:cf:de:99:c0:c8:91:7c: 4d:14:0c:d9:59:98:2a:50:68:08:70:fa:e9:bd:03: 39:7c:9f:c1:d4:ed:a0:46:a6:10:92:c5:7b:06:e8: fe:87:04:80:e1:36:37:bf:e3:d5:85:f3:aa:13:32: e5:4f:d5:b3:78:e4:e7:a5:49:86:c2:7a:53:be:19: fb:d4:20:04:61:e4:2c:4b:75:55:7a:5a:d9:73:67: 02:fe:f5:e8:bd:29:e0:d3:37:25:b6:9a:fd:16:d1: d5:0a:7f:29:a9:a4:37:50:de:0a:ec:09:12:2c:31: be:40:7f:9b:09:fd:c7:51:08:37:c2:e5:c4:d9:cb: 02:16:c4:71:c0:f2:9b:da:f6:f0:cc:b2:37:ac:36: 00:70:78:32:03:4d:09:64:a0:41:9a:d7:b0:4b:d4: 89:b5:c8:f5:91:49:8d:64:b1:76:bf:c1:64:c4:24: e0:5e:4c:93:c3:ab:94:bb:35:a2:ea:5a:97:b8:b7: 93:d2:ac:be:04:cb:26:9f:2c:64:0c:66:58:19:d3: 20:20:4f:50:cf:e1:82:3b:83:44:64:5c:10:27:3c: 59:89:b6:fe:cd:b3:4d:cb:c5:93:88:87:ee:1b:20: 3e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:0A:0E:6C:1E:76:32:E8:CC:C6:02:61:F2:F2:78:45:81:7C:88:A6 X509v3 Authority Key Identifier: keyid:89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/AF14F7EC516411F08E03714FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:b4c0:ae00::/40 Signature Algorithm: sha256WithRSAEncryption 67:73:13:0e:b2:30:a4:8f:0e:6f:e4:07:d0:88:58:6b:2d:d6: ee:60:c9:21:9d:a1:be:1a:ff:7c:a5:71:a9:6e:a2:cf:fd:ae: 92:cf:e5:eb:e8:aa:1c:1f:9d:07:40:84:da:ae:fd:ac:83:84: 0d:f2:bf:30:d2:43:0b:59:b2:e9:1a:9e:fe:20:61:c5:17:e5: cc:82:8e:3e:41:6c:8c:a3:aa:47:04:27:cc:7e:dc:66:ad:78: 33:d2:e7:15:97:7c:b4:f1:9e:b2:c3:e6:57:68:ac:1e:f0:8c: 77:dc:7d:fc:d4:6d:89:21:73:b0:26:fe:3e:65:90:a2:fc:da: fe:67:11:e7:0a:f5:85:d0:d7:fd:9e:b7:03:86:e9:65:0d:62: 99:d7:2c:44:1e:ee:80:96:85:5a:3d:94:e3:30:5b:2c:13:7a: da:80:4d:eb:a0:c6:78:75:13:2f:d2:61:91:e2:52:f2:28:ed: 75:10:64:38:3d:ba:3d:6f:a6:fa:13:f8:43:e8:c5:7f:35:5b: 1e:85:47:4b:3f:ac:41:2b:87:3b:df:0f:04:0c:f1:17:75:a7: 06:6c:36:e1:de:58:45:78:27:13:b9:7a:32:86:6c:35:51:d6: 23:dd:34:09:c4:74:0b:a6:f4:81:c1:df:9c:19:c6:f6:49:66: 3f:1e:31:82 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICE7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKDg5NEZFMTEzOThCNjc5QUVCMUIxMThCMUJERTY3M0Ux OENGNkU5MzQwHhcNMjUxMDA0MTcxNTU5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxNTY0Zi05N2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6TjZyCd5hNKB0hNEVhWb0lkYU4LZ8/emcDIkXxNFAzZWZgqUGgIcPrpvQM5 fJ/B1O2gRqYQksV7Buj+hwSA4TY3v+PVhfOqEzLlT9WzeOTnpUmGwnpTvhn71CAE YeQsS3VVelrZc2cC/vXovSng0zcltpr9FtHVCn8pqaQ3UN4K7AkSLDG+QH+bCf3H UQg3wuXE2csCFsRxwPKb2vbwzLI3rDYAcHgyA00JZKBBmtewS9SJtcj1kUmNZLF2 v8FkxCTgXkyTw6uUuzWi6lqXuLeT0qy+BMsmnyxkDGZYGdMgIE9Qz+GCO4NEZFwQ JzxZibb+zbNNy8WTiIfuGyA+2wIDAQABo4IClzCCApMwHQYDVR0OBBYEFKEKDmwe djLozMYCYfLyeEWBfIimMB8GA1UdIwQYMBaAFIlP4ROYtnmusbEYsb3mc+GM9uk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS9CQ0VERjQ0MkIw QkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVhNnhzUml4dmVaejRZejI2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVX2hFNWkyZWE2eHNSaXh2ZVp6NFl6MjZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM0N0UvQkNFREY0NDJCMEJGMTFFODg2MzkyMjM3QzRGOUFFMDIvQUYxNEY3RUM1 MTY0MTFGMDhFMDM3MTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkA7TArjANBgkqhkiG9w0BAQsFAAOCAQEAZ3MTDrIwpI8O b+QH0IhYay3W7mDJIZ2hvhr/fKVxqW6iz/2uks/l6+iqHB+dB0CE2q79rIOEDfK/ MNJDC1my6Rqe/iBhxRflzIKOPkFsjKOqRwQnzH7cZq14M9LnFZd8tPGessPmV2is HvCMd9x9/NRtiSFzsCb+PmWQovza/mcR5wr1hdDX/Z63A4bpZQ1imdcsRB7ugJaF Wj2U4zBbLBN62oBN66DGeHUTL9JhkeJS8ijtdRBkOD26PW+m+hP4Q+jFfzVbHoVH Sz+sQSuHO98PBAzxF3WnBmw24d5YRXgnE7l6MoZsNVHWI900CcR0C6b0gcHfnBnG 9klmPx4xgg== -----END CERTIFICATE-----Generated at Mon Oct 20 11:28:02 2025 by rpki-client