$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/C1ECF984D07411F0B0B35C27C4F9AE02.roa File: C1ECF984D07411F0B0B35C27C4F9AE02.roa (raw, json) Hash identifier: 4b1qRgjlNRcZ+iubckIse8edU98Q81NltkHwnBtFg58= Subject key identifier: BF:DE:99:0D:05:86:16:EF:94:5B:B7:F2:FD:E7:C3:47:6A:6B:7E:97 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 02A7 Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/C1ECF984D07411F0B0B35C27C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:21:51 +0000 ROA not before: Fri 27 Feb 2026 15:17:17 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 46606 IP address blocks: 65.254.64.0/19 maxlen: 24 66.116.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 01:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 679 (0x2a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Feb 27 15:17:17 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a483bf-0891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0d:7a:85:03:1a:cb:4d:c8:e6:b1:c8:94:b2: 61:3b:65:a5:a9:f8:63:22:a8:ab:bf:95:d6:a9:83: 86:c3:16:10:05:3f:4f:d7:bd:b1:2f:62:0c:b0:86: de:7a:52:da:2b:cd:87:9f:3d:8a:0f:80:4f:c8:60: 62:cc:87:a4:5b:87:48:5d:71:c7:1b:48:20:19:21: 58:c7:ad:d0:db:da:7c:69:53:33:d8:a1:08:72:0e: ab:50:66:13:b2:76:f8:f2:66:e6:b4:ec:4e:5a:6e: a5:85:43:d8:c3:24:41:22:b7:fd:6a:df:f0:37:8a: 22:d1:57:f6:bb:f1:33:ec:bc:c0:29:1d:6d:72:d1: 85:bd:93:8a:cb:c9:b2:65:8a:c9:8a:78:78:e7:15: e5:43:cd:d1:4c:b2:7d:5d:c7:ca:21:da:9a:f9:8a: f2:e7:09:ad:ed:ad:26:2e:d6:ff:94:2d:68:2f:5a: 79:e2:d6:90:cc:eb:57:79:bd:23:6c:26:14:a4:23: e3:6f:bb:36:c1:d5:ec:c5:83:a2:c0:bf:00:58:61: 83:f0:00:09:29:f4:96:c0:3a:fd:e7:ab:eb:c6:0d: 7b:5a:fb:32:1b:ad:9d:48:49:e6:50:92:40:56:c9: 49:91:e6:6c:f2:55:94:51:25:77:1a:09:e6:51:86: f4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:DE:99:0D:05:86:16:EF:94:5B:B7:F2:FD:E7:C3:47:6A:6B:7E:97 X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/C1ECF984D07411F0B0B35C27C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 65.254.64.0/19 66.116.128.0/18 Signature Algorithm: sha256WithRSAEncryption 9b:5e:fb:e3:18:c2:b8:f4:ed:02:a4:bb:e1:81:17:12:20:ef: 05:43:4d:68:d9:ec:9a:60:58:76:12:ad:8f:d4:b2:c0:a9:ac: 9f:8f:7a:27:49:c1:48:a4:8c:00:c7:b1:d3:2a:7e:a6:6f:c2: e2:3f:c1:34:1b:ae:4f:ac:75:e2:34:75:5e:8f:49:be:6d:3c: bf:ad:21:94:17:60:98:65:f2:d8:79:1e:4b:75:4c:7e:42:9d: 32:fe:0d:bf:50:64:fc:24:f6:1f:b5:2f:fd:08:99:77:af:34: 59:88:c0:b6:d1:7d:8f:06:ee:fd:e0:6c:0b:28:17:2d:47:6f: 5c:44:24:0a:56:e7:af:c7:9e:9c:a2:63:97:f5:8f:e1:f7:43: 1a:c5:d8:3c:75:a3:f9:cd:a3:ac:68:79:7b:98:36:22:f5:52: 20:cc:fe:33:c7:2f:dd:56:9f:c5:4e:ab:a4:e8:32:56:a8:82: de:be:29:08:dc:6b:04:b8:73:c5:e0:e4:da:2e:70:78:a2:7f: c0:6e:ac:44:4c:d8:5e:4a:ec:35:c7:61:f0:bc:d4:fc:d4:50: 52:ae:33:1f:fb:3e:f8:35:78:f0:63:cb:cc:57:2c:6c:0d:f5: 1b:36:bf:59:bc:ae:1b:d0:c3:5f:6c:49:74:95:7a:b9:bc:88: 71:0e:ac:77 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjYwMjI3MTUxNzE3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODNiZi0wODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxA16hQMay03I5rHIlLJhO2WlqfhjIqirv5XWqYOGwxYQBT9P172xL2IMsIbe elLaK82Hnz2KD4BPyGBizIekW4dIXXHHG0ggGSFYx63Q29p8aVMz2KEIcg6rUGYT snb48mbmtOxOWm6lhUPYwyRBIrf9at/wN4oi0Vf2u/Ez7LzAKR1tctGFvZOKy8my ZYrJinh45xXlQ83RTLJ9XcfKIdqa+Yry5wmt7a0mLtb/lC1oL1p54taQzOtXeb0j bCYUpCPjb7s2wdXsxYOiwL8AWGGD8AAJKfSWwDr956vrxg17WvsyG62dSEnmUJJA VslJkeZs8lWUUSV3GgnmUYb0eQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFL/emQ0F hhbvlFu38v3nw0dqa36XMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzc0OEUvNEQ3ODkyNkE0RkE5MTFFREFERTUxNTdDQzRGOUFFMDIvQzFFQ0Y5ODRE MDc0MTFGMEIwQjM1QzI3QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQFQf5AAwQGQnSAMA0GCSqGSIb3DQEBCwUAA4IBAQCbXvvjGMK49O0C pLvhgRcSIO8FQ01o2eyaYFh2Eq2P1LLAqayfj3onScFIpIwAx7HTKn6mb8LiP8E0 G65PrHXiNHVej0m+bTy/rSGUF2CYZfLYeR5LdUx+Qp0y/g2/UGT8JPYftS/9CJl3 rzRZiMC20X2PBu794GwLKBctR29cRCQKVuevx56comOX9Y/h90Maxdg8daP5zaOs aHl7mDYi9VIgzP4zxy/dVp/FTquk6DJWqILevikI3GsEuHPF4OTaLnB4on/AbqxE TNheSuw1x2HwvNT81FBSrjMf+z74NXjwY8vMVyxsDfUbNr9ZvK4b0MNfbEl0lXq5 vIhxDqx3 -----END CERTIFICATE-----Generated at Sun Mar 22 12:12:53 2026 by rpki-client