$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/46C3344E346611F0AF16091DC4F9AE02.roa File: 46C3344E346611F0AF16091DC4F9AE02.roa (raw, json) Hash identifier: G3atXAKqq6oFKBpr32HyeNbKvnZw8JFgcP/o+eZXrQQ= Subject key identifier: B0:F9:0E:45:89:6D:B1:A7:3C:EB:7B:AD:C3:F2:FD:64:25:64:2F:ED Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 02A6 Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/46C3344E346611F0AF16091DC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:21:50 +0000 ROA not before: Fri 27 Feb 2026 15:17:16 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 26337 IP address blocks: 65.254.64.0/19 maxlen: 24 66.116.128.0/18 maxlen: 24 66.116.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 01:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 678 (0x2a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Feb 27 15:17:16 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a483be-c8ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f1:a6:b7:9e:08:78:c4:70:62:ad:8c:3b:a7: b7:98:07:ea:fd:84:6f:15:0e:c4:f9:fe:7f:26:59: 68:9d:36:e6:25:f7:bf:dc:63:9e:2d:c2:a5:8e:80: b9:80:0c:1d:bf:99:c0:21:46:1b:ed:af:ab:bc:3f: 4b:93:48:70:f5:f8:9c:50:57:25:a3:4e:f8:ee:ac: 8b:2d:f4:c6:90:17:3c:d7:38:5a:8f:ed:ff:e6:73: 9e:9c:80:46:87:c0:d5:79:17:e7:3b:3b:a4:41:3e: 25:0a:7e:21:02:3e:b7:a0:df:35:47:63:6b:4e:11: a4:55:91:20:79:b1:82:83:9e:cd:ac:c7:fc:70:fc: 86:12:d9:5b:42:c1:0b:0c:42:5f:f6:07:d7:a9:d5: 9f:c5:77:74:51:6d:62:cd:9b:4c:4b:4c:7d:08:21: 76:8d:64:f1:82:5c:22:dc:aa:f8:1f:78:05:3f:67: 67:ae:ff:7c:9a:74:4a:a2:88:a6:6d:e9:16:bc:ba: 2a:ad:2c:e8:be:cd:2f:a6:7e:cd:b3:bd:76:d4:cc: e8:52:0a:36:ef:57:98:73:5f:65:b7:05:fe:6b:bf: f1:1f:c4:ed:76:4b:a1:e6:47:e9:d1:a7:8d:fb:27: f1:da:24:19:cd:51:70:f7:c9:7e:14:4a:f6:15:20: 4e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:F9:0E:45:89:6D:B1:A7:3C:EB:7B:AD:C3:F2:FD:64:25:64:2F:ED X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/46C3344E346611F0AF16091DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 65.254.64.0/19 66.116.128.0/17 Signature Algorithm: sha256WithRSAEncryption 01:8e:ca:5e:1d:f2:df:51:96:5f:10:4e:45:e1:86:a7:1b:02: 23:0d:ef:b3:d7:93:a3:45:0c:69:7a:db:8b:9b:f1:4f:e1:a8: d2:f1:69:d2:0b:8e:00:ff:a9:ce:44:6c:21:c2:ab:34:17:1f: 31:a3:d6:5b:19:1c:55:90:5a:96:ac:5d:7e:6c:8f:93:dd:7e: 23:6b:bc:2f:e9:2f:94:04:4e:a2:42:38:3e:67:09:0b:82:ae: 2a:51:4f:1e:bb:85:71:05:2b:54:72:fb:b0:4d:47:af:43:6b: 97:9a:58:00:5c:0d:f1:a6:a2:f2:04:c3:d6:ce:55:79:c7:2f: a0:e3:58:33:99:2c:49:c4:5c:2c:08:1e:e8:a4:f1:40:f2:42: 10:ed:88:90:b0:aa:ff:dd:f2:b9:fa:4c:e5:d5:86:52:ac:b1: 3e:4d:6f:07:21:d2:3b:6f:3c:77:e6:43:a2:3b:b2:0a:a1:c3: 21:9f:1d:14:32:9f:28:9a:eb:eb:fa:3c:d0:86:2b:4e:28:3b: d8:e0:8a:54:25:a6:f7:7d:62:78:69:1e:01:56:05:86:df:59: b1:cd:81:90:1a:95:95:68:11:a6:c8:a1:fb:62:2f:10:5a:13: b2:ea:02:e8:76:fc:c9:fd:2e:8c:ef:2a:48:91:f7:cd:ae:31: 3f:84:72:30 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjYwMjI3MTUxNzE2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODNiZS1jOGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvGmt54IeMRwYq2MO6e3mAfq/YRvFQ7E+f5/JllonTbmJfe/3GOeLcKljoC5 gAwdv5nAIUYb7a+rvD9Lk0hw9ficUFclo0747qyLLfTGkBc81zhaj+3/5nOenIBG h8DVeRfnOzukQT4lCn4hAj63oN81R2NrThGkVZEgebGCg57NrMf8cPyGEtlbQsEL DEJf9gfXqdWfxXd0UW1izZtMS0x9CCF2jWTxglwi3Kr4H3gFP2dnrv98mnRKooim bekWvLoqrSzovs0vpn7Ns7121MzoUgo271eYc19ltwX+a7/xH8Ttdkuh5kfp0aeN +yfx2iQZzVFw98l+FEr2FSBOmwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFLD5DkWJ bbGnPOt7rcPy/WQlZC/tMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzc0OEUvNEQ3ODkyNkE0RkE5MTFFREFERTUxNTdDQzRGOUFFMDIvNDZDMzM0NEUz NDY2MTFGMEFGMTYwOTFEQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQFQf5AAwQHQnSAMA0GCSqGSIb3DQEBCwUAA4IBAQABjspeHfLfUZZf EE5F4YanGwIjDe+z15OjRQxpetuLm/FP4ajS8WnSC44A/6nORGwhwqs0Fx8xo9Zb GRxVkFqWrF1+bI+T3X4ja7wv6S+UBE6iQjg+ZwkLgq4qUU8eu4VxBStUcvuwTUev Q2uXmlgAXA3xpqLyBMPWzlV5xy+g41gzmSxJxFwsCB7opPFA8kIQ7YiQsKr/3fK5 +kzl1YZSrLE+TW8HIdI7bzx35kOiO7IKocMhnx0UMp8omuvr+jzQhitOKDvY4IpU Jab3fWJ4aR4BVgWG31mxzYGQGpWVaBGmyKH7Yi8QWhOy6gLodvzJ/S6M7ypIkffN rjE/hHIw -----END CERTIFICATE-----Generated at Sun Mar 22 12:12:52 2026 by rpki-client