$ rpki-client -vvf rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/3A0E0B1CD47511EF91EA0832C4F9AE02.roa File: 3A0E0B1CD47511EF91EA0832C4F9AE02.roa (raw, json) Hash identifier: 0BVnD6r3tZ7DStdvZgFUaLeeD92BhqnIAudMZzjzfMk= Subject key identifier: FD:55:A8:37:90:D7:E2:53:81:73:14:25:AD:54:BA:78:D6:37:0A:64 Certificate issuer: /CN=A917C909/serialNumber=AA0B782DB9932E22FDDEF0C3F75596EE0945E12D Certificate serial: DA Authority key identifier: AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/3A0E0B1CD47511EF91EA0832C4F9AE02.roa Signing time: Sat 31 Jan 2026 06:24:39 +0000 ROA not before: Sat 31 Jan 2026 06:24:39 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 133458 IP address blocks: 2401:e260::/40 maxlen: 48 2401:e260:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.crl rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Feb 2026 05:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C909, serialNumber=AA0B782DB9932E22FDDEF0C3F75596EE0945E12D Validity Not Before: Jan 31 06:24:39 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697da027-f9ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d0:15:6a:26:19:ee:7a:ad:41:8d:34:ac:44: f9:7b:65:c0:ae:0e:4a:ac:d4:f4:8a:75:46:8c:df: 2a:75:46:e9:9b:d0:f7:89:8e:f3:09:f7:23:3b:c9: bb:fc:c9:40:0c:99:e5:5a:18:25:7d:c7:42:8a:5c: 0e:f8:97:ba:56:88:5e:77:a1:56:d0:3f:95:f7:94: 82:6f:b8:d7:ad:d6:7c:7a:16:40:ed:c5:0c:6d:82: 67:54:69:b8:1a:aa:44:d4:a2:c9:53:a0:38:75:1d: bb:33:1f:ee:16:43:e3:fa:b3:f2:86:91:24:8b:96: d8:ec:35:a1:20:a7:7e:70:0b:21:93:56:e9:0b:a2: e8:1b:7f:57:cd:b5:ac:9a:29:33:56:fb:17:56:8a: 52:2d:a2:5a:f2:a1:48:77:dd:78:62:35:67:aa:5d: 50:62:5b:c2:0d:3b:79:16:a6:bd:1a:a5:f4:e4:ea: 01:98:65:21:65:7b:2a:af:06:4a:55:44:d0:62:50: ff:17:59:24:d4:75:65:4d:18:b4:aa:63:cd:91:fe: a7:92:42:21:89:7c:30:f2:4b:e7:b0:e4:c5:73:11: 1a:f5:b2:5d:ad:b1:0a:e0:fc:6c:f8:35:c7:fd:60: 48:e7:f9:a1:50:68:6f:00:3f:01:b8:ff:6d:35:36: c6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:55:A8:37:90:D7:E2:53:81:73:14:25:AD:54:BA:78:D6:37:0A:64 X509v3 Authority Key Identifier: keyid:AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/3A0E0B1CD47511EF91EA0832C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e260::/39 Signature Algorithm: sha256WithRSAEncryption 0a:8b:f6:32:f6:48:92:76:ca:dc:08:6c:e7:b5:89:77:2a:09: ea:c5:43:a1:7a:ec:36:62:2f:36:8b:22:9b:68:c1:27:38:38: 88:ea:51:73:01:ad:e9:0f:d8:15:ea:63:fc:49:ea:c6:93:22: eb:7c:3e:a8:8d:f8:23:54:da:f0:6f:7d:cd:3b:fd:55:b1:a1: dd:0a:2a:fe:b1:5b:fe:44:97:11:a4:82:53:52:12:38:a2:c6: b2:b3:36:5b:cb:9b:dd:dc:18:62:77:17:52:44:57:91:0f:1b: ac:63:53:42:73:7e:52:67:f5:92:79:8c:83:4f:e9:69:50:6c: 63:81:2d:02:1f:18:6a:81:50:cf:ea:19:d4:8d:e5:cf:3d:7b: 01:f2:77:e0:a2:95:02:bc:41:e5:0f:57:34:4a:77:4b:1f:bb: af:65:e6:2d:54:d3:2a:e0:ab:0d:a7:32:96:65:88:e3:fc:db: 75:35:82:5c:a8:61:e5:44:62:88:df:9e:57:82:f7:7c:cb:c7: 64:4a:1f:f2:17:42:dc:02:a4:0c:4c:65:48:08:e3:18:15:53: 40:46:c4:fa:27:35:6d:53:07:6a:bb:1c:41:6c:d9:11:28:7b: 8f:09:ba:96:6a:e5:6d:0e:92:78:07:72:ea:a4:4c:a0:33:a1: bf:20:d3:b3 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx N0M5MDkxMTAvBgNVBAUTKEFBMEI3ODJEQjk5MzJFMjJGRERFRjBDM0Y3NTU5NkVF MDk0NUUxMkQwHhcNMjYwMTMxMDYyNDM5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdkYTAyNy1mOWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9AVaiYZ7nqtQY00rET5e2XArg5KrNT0inVGjN8qdUbpm9D3iY7zCfcjO8m7 /MlADJnlWhglfcdCilwO+Je6Vohed6FW0D+V95SCb7jXrdZ8ehZA7cUMbYJnVGm4 GqpE1KLJU6A4dR27Mx/uFkPj+rPyhpEki5bY7DWhIKd+cAshk1bpC6LoG39XzbWs mikzVvsXVopSLaJa8qFId914YjVnql1QYlvCDTt5Fqa9GqX05OoBmGUhZXsqrwZK VUTQYlD/F1kk1HVlTRi0qmPNkf6nkkIhiXww8kvnsOTFcxEa9bJdrbEK4Pxs+DXH /WBI5/mhUGhvAD8BuP9tNTbGLwIDAQABo4IClzCCApMwHQYDVR0OBBYEFP1VqDeQ 1+JTgXMUJa1UunjWNwpkMB8GA1UdIwQYMBaAFKoLeC25ky4i/d7ww/dVlu4JReEt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkwOS8wNzc5N0ZFNEMw REMxMUVGOUU4NzE4NDRDNEY5QUUwMi9xZ3Q0TGJtVExpTDkzdkREOTFXVzdnbEY0 UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FndDRMYm1UTGlMOTN2REQ5MVdXN2dsRjRTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M5MDkvMDc3OTdGRTRDMERDMTFFRjlFODcxODQ0QzRGOUFFMDIvM0EwRTBCMUNE NDc1MTFFRjkxRUEwODMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgEkAeJgADANBgkqhkiG9w0BAQsFAAOCAQEACov2MvZIknbK 3Ahs57WJdyoJ6sVDoXrsNmIvNosim2jBJzg4iOpRcwGt6Q/YFepj/EnqxpMi63w+ qI34I1Ta8G99zTv9VbGh3Qoq/rFb/kSXEaSCU1ISOKLGsrM2W8ub3dwYYncXUkRX kQ8brGNTQnN+Umf1knmMg0/paVBsY4EtAh8YaoFQz+oZ1I3lzz17AfJ34KKVArxB 5Q9XNEp3Sx+7r2XmLVTTKuCrDacylmWI4/zbdTWCXKhh5URiiN+eV4L3fMvHZEof 8hdC3AKkDExlSAjjGBVTQEbE+ic1bVMHarscQWzZESh7jwm6lmrlbQ6SeAdy6qRM oDOhvyDTsw== -----END CERTIFICATE-----Generated at Thu Feb 19 21:55:29 2026 by rpki-client