$ rpki-client -vvf rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa File: 8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa (raw, json) Hash identifier: zpgkPkDvpxrkSLXBoEJusQVoT2JeDQ/RaiKoNpwaUvg= Subject key identifier: FB:AD:0B:58:63:AF:FC:65:2E:F9:8E:F6:90:7B:92:44:1D:1C:52:65 Certificate issuer: /CN=A917092C/serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Certificate serial: 0149 Authority key identifier: 81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:40:44 +0000 ROA not before: Wed 09 Jul 2025 07:43:16 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 3949 IP address blocks: 2405:a280:ff00::/44 maxlen: 44 2405:a280:ff80::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 04:49:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917092C, serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Validity Not Before: Jul 9 07:43:16 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a5a16c-9c71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f2:77:3f:5f:0d:15:9b:9d:c0:dd:7c:f5:00: f2:cc:f2:ea:9f:27:33:f6:2a:89:ea:28:54:56:95: 4c:51:c4:a1:7e:f1:5f:c0:91:51:81:6b:45:e8:96: ae:e4:dd:92:d5:eb:36:fa:69:0e:ec:45:62:94:e3: ba:85:f9:74:3d:c3:35:e4:e9:3b:a5:fb:a8:44:4a: 14:6b:2f:28:2b:0b:c8:07:54:ba:c3:53:9f:86:d0: 7d:55:90:b9:a0:8f:e5:ee:28:eb:29:b2:56:b8:76: 5e:54:4e:d2:14:a8:e2:ac:9c:ca:7e:43:a7:9a:fa: 61:4d:5a:38:60:d0:b6:3e:54:e3:77:30:ae:d6:65: 14:79:56:18:a7:76:9f:cd:b9:28:b0:d9:25:76:52: 6e:4e:82:75:06:12:cb:9d:ad:7a:c5:01:72:03:9f: f7:70:c8:32:ff:0b:a4:e5:5d:d7:bf:22:96:91:3f: 3c:70:56:98:b8:34:19:74:ad:cb:1d:92:72:07:4e: f8:ba:81:b5:8a:af:f9:f3:46:45:f4:1e:69:2c:5d: 03:3c:f1:f8:02:53:3c:90:01:b3:84:46:c3:3c:b4: 30:3b:9c:8e:9f:47:e7:c0:26:bd:d3:c5:77:88:df: 9b:4a:ed:ab:35:55:58:ce:70:70:05:8f:c1:28:ce: cf:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:AD:0B:58:63:AF:FC:65:2E:F9:8E:F6:90:7B:92:44:1D:1C:52:65 X509v3 Authority Key Identifier: keyid:81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2405:a280:ff00::/44 2405:a280:ff80::/44 Signature Algorithm: sha256WithRSAEncryption 89:2d:2a:9d:64:1a:d6:66:66:1c:ea:e3:9c:96:80:ea:4b:0c: eb:56:65:ba:11:52:b7:07:e6:3d:6a:33:41:ce:da:07:a6:75: 20:f5:0c:63:7d:1d:ad:80:85:7e:d7:bd:84:9b:51:85:ac:ef: 4c:80:61:d4:d7:be:a1:75:a6:ec:7a:a1:c1:ac:12:b5:66:56: 52:b8:4e:8e:bc:10:55:70:67:eb:6e:82:1d:3c:dc:18:d5:75: 6f:fe:b9:e7:c4:92:a8:62:f3:e9:32:a9:b8:89:61:67:99:fb: 3f:93:b7:89:d0:23:51:cd:56:43:4d:fb:c9:d8:ad:fc:c1:e3: 6d:af:15:7e:9c:85:66:37:e2:6e:bd:ae:87:f4:ba:26:18:2e: 7b:bc:93:1c:7c:93:78:d4:ee:b1:11:af:a5:d7:9f:40:ba:07: 39:72:31:f8:09:d5:42:6a:4d:57:a2:de:ca:49:31:bf:6c:26: 65:80:f9:4c:fe:a9:90:61:0f:3f:d3:8a:42:e4:ce:1f:ab:1e: 90:7f:c9:1c:d2:6a:20:eb:34:45:d7:3b:4f:5d:81:67:94:99: 4b:1f:42:91:a6:48:4d:0b:57:4e:e0:ff:0c:53:f4:31:f0:ae: 9e:06:b5:9b:3c:0d:49:bd:aa:79:5c:40:52:13:df:8c:08:e8: 0b:d5:44:45 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5MkMxMTAvBgNVBAUTKDgxN0REMzgwMkYyNkU1N0VDRTgyNjVDRTg2MjZGQ0JC OUM2NEU5RDQwHhcNMjUwNzA5MDc0MzE2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTE2Yy05YzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PJ3P18NFZudwN189QDyzPLqnycz9iqJ6ihUVpVMUcShfvFfwJFRgWtF6Jau 5N2S1es2+mkO7EVilOO6hfl0PcM15Ok7pfuoREoUay8oKwvIB1S6w1OfhtB9VZC5 oI/l7ijrKbJWuHZeVE7SFKjirJzKfkOnmvphTVo4YNC2PlTjdzCu1mUUeVYYp3af zbkosNkldlJuToJ1BhLLna16xQFyA5/3cMgy/wuk5V3XvyKWkT88cFaYuDQZdK3L HZJyB074uoG1iq/580ZF9B5pLF0DPPH4AlM8kAGzhEbDPLQwO5yOn0fnwCa908V3 iN+bSu2rNVVYznBwBY/BKM7PUwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFPutC1hj r/xlLvmO9pB7kkQdHFJlMB8GA1UdIwQYMBaAFIF904AvJuV+zoJlzoYm/LucZOnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDkyQy9FMkMwNzdERTc3 NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi9nWDNUZ0M4bTVYN09nbVhPaGliOHU1eGs2 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dYM1RnQzhtNVg3T2dtWE9oaWI4dTV4azZkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5MkMvRTJDMDc3REU3NzY2MTFFRkI1NUVEMjc5QzRGOUFFMDIvOEUwMEZCRjI3 NzdFMTFFRjhEMEVDQzRFQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAWigP8AAwcEJAWigP+AMA0GCSqGSIb3DQEBCwUAA4IBAQCJLSqd ZBrWZmYc6uOcloDqSwzrVmW6EVK3B+Y9ajNBztoHpnUg9QxjfR2tgIV+172Em1GF rO9MgGHU176hdabseqHBrBK1ZlZSuE6OvBBVcGfrboIdPNwY1XVv/rnnxJKoYvPp Mqm4iWFnmfs/k7eJ0CNRzVZDTfvJ2K38weNtrxV+nIVmN+Juva6H9LomGC57vJMc fJN41O6xEa+l159Augc5cjH4CdVCak1Xot7KSTG/bCZlgPlM/qmQYQ8/04pC5M4f qx6Qf8kc0mog6zRF1ztPXYFnlJlLH0KRpkhNC1dO4P8MU/Qx8K6eBrWbPA1Jvap5 XEBSE9+MCOgL1URF -----END CERTIFICATE-----Generated at Fri Mar 13 16:00:26 2026 by rpki-client