$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/4D9E29A8305311EF9CFFF238C4F9AE02.roa File: 4D9E29A8305311EF9CFFF238C4F9AE02.roa (raw, json) Hash identifier: ZzFJx7kRcHLciqztyrnKNWjPdmDSokOkDks9L2Djtdk= Subject key identifier: 20:3B:86:64:60:8A:D2:99:3E:3F:D4:33:A4:B4:16:59:23:1F:CE:6B Certificate issuer: /CN=A917E1FE/serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53 Certificate serial: 07B7 Authority key identifier: ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/4D9E29A8305311EF9CFFF238C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:55:25 +0000 ROA not before: Fri 20 Jun 2025 22:11:24 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 147196 IP address blocks: 2400:8180:21::/48 maxlen: 48 2400:8180:22::/48 maxlen: 48 2400:8180:23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.crl rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Mar 2026 21:26:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1975 (0x7b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FE, serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53 Validity Not Before: Jun 20 22:11:24 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a47d8c-8818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:02:3a:64:43:23:a6:70:1b:4a:e0:9a:5d:b0: 58:33:40:b7:13:b6:ad:90:45:64:95:ab:fe:57:f0: c3:ee:40:14:c4:0d:8d:23:a9:ec:86:c7:3c:bc:d6: 91:e7:bf:25:59:9f:42:ab:ac:64:35:86:8c:a2:67: 4b:a7:ad:67:72:69:41:ed:92:05:16:22:33:42:e9: b2:e1:fe:d0:fd:d1:b1:42:b8:38:67:17:c2:3b:83: a3:0b:af:da:42:33:e9:38:47:50:aa:64:84:d0:d4: d5:b7:1e:1b:d5:31:8e:2b:11:ff:69:6d:75:a8:85: b2:a5:b5:8d:f0:22:a0:df:31:8c:43:2c:b1:ff:2f: 9c:62:e6:ea:4c:63:89:87:d6:e9:39:d5:50:3e:30: 7a:db:13:a4:15:2b:cb:68:53:94:ab:96:a3:74:cd: 4a:b4:a5:1b:3c:95:dd:1a:6c:89:3f:ae:8b:0d:cc: de:28:4d:60:e0:92:5c:6a:ce:c1:68:2a:1b:1a:52: 80:8c:c5:5d:43:0b:67:5e:a1:1e:6a:35:ec:1a:46: 67:b5:cc:a8:33:83:0e:ed:54:55:69:46:56:a1:a6: e7:61:df:94:14:c6:16:93:05:a1:50:58:97:c3:0b: 44:c8:82:09:1e:0c:a8:f2:0f:a4:63:4f:5d:f8:14: e6:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:3B:86:64:60:8A:D2:99:3E:3F:D4:33:A4:B4:16:59:23:1F:CE:6B X509v3 Authority Key Identifier: keyid:ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/4D9E29A8305311EF9CFFF238C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:8180:21::-2400:8180:23:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 8a:5e:a0:0e:20:53:ae:07:a2:bc:88:01:4a:e9:1b:86:34:14: 68:e3:6e:73:a5:91:c7:90:d4:c9:eb:4a:b3:a6:9e:ca:03:3b: 2f:ab:c2:1e:e6:7a:d9:1c:35:68:10:66:a6:6b:cd:8e:b2:67: 71:af:6f:6f:ff:87:70:91:46:8b:fe:7f:4e:b1:46:cf:a9:ff: dc:a9:0e:16:00:f0:fb:1f:72:15:df:7c:ef:28:24:e8:20:0f: ef:e1:b0:bb:90:47:4f:18:3f:83:09:a0:28:fb:06:70:06:27: c6:8c:60:38:1b:9d:af:0a:ab:ea:00:47:4b:b8:6c:44:13:a8: 48:26:0b:54:3d:0d:cd:b5:37:c6:c8:94:29:50:67:5f:13:49: 30:4c:5f:16:95:cd:25:65:c2:de:fa:60:6a:10:19:fc:da:e7: 04:3c:3c:27:0c:19:eb:5f:b7:e3:c8:fd:00:69:d0:f8:50:2e: 9a:45:b7:33:2d:ed:f4:52:9b:f8:02:6e:be:6e:e8:5d:89:49: 84:db:9a:ee:07:3f:6a:28:a2:e0:c4:c9:f5:58:db:bb:2d:3b: e9:5d:fe:61:48:75:4f:a9:91:72:fe:4f:e7:95:d8:b0:48:59: fd:37:93:d5:e8:e8:72:bf:93:d4:e2:a7:eb:c8:f3:2a:cb:07: 57:60:0f:46 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICB7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxRkUxMTAvBgNVBAUTKEVERUI5NkYwNEM4RDNFRENDQkVFQkE0MEM0MjQyOTIy QTgxMzZCNTMwHhcNMjUwNjIwMjIxMTI0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2Q4Yy04ODE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+wI6ZEMjpnAbSuCaXbBYM0C3E7atkEVklav+V/DD7kAUxA2NI6nshsc8vNaR 578lWZ9Cq6xkNYaMomdLp61ncmlB7ZIFFiIzQumy4f7Q/dGxQrg4ZxfCO4OjC6/a QjPpOEdQqmSE0NTVtx4b1TGOKxH/aW11qIWypbWN8CKg3zGMQyyx/y+cYubqTGOJ h9bpOdVQPjB62xOkFSvLaFOUq5ajdM1KtKUbPJXdGmyJP66LDczeKE1g4JJcas7B aCobGlKAjMVdQwtnXqEeajXsGkZntcyoM4MO7VRVaUZWoabnYd+UFMYWkwWhUFiX wwtEyIIJHgyo8g+kY09d+BTmcQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFCA7hmRg itKZPj/UM6S0FlkjH85rMB8GA1UdIwQYMBaAFO3rlvBMjT7cy+66QMQkKSKoE2tT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFGRS8zODYyMzVGMDZG ODgxMUVCQTg2QkY2NEFDNEY5QUUwMi83ZXVXOEV5TlB0ekw3cnBBeENRcElxZ1Rh MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdldVc4RXlOUHR6TDdycEF4Q1FwSXFnVGExTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UxRkUvMzg2MjM1RjA2Rjg4MTFFQkE4NkJGNjRBQzRGOUFFMDIvNEQ5RTI5QTgz MDUzMTFFRjlDRkZGMjM4QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAAjAUMBIDBwAkAIGAACEDBwIkAIGAACAwDQYJKoZIhvcNAQELBQADggEBAIpe oA4gU64HoryIAUrpG4Y0FGjjbnOlkceQ1MnrSrOmnsoDOy+rwh7metkcNWgQZqZr zY6yZ3Gvb2//h3CRRov+f06xRs+p/9ypDhYA8PsfchXffO8oJOggD+/hsLuQR08Y P4MJoCj7BnAGJ8aMYDgbna8Kq+oAR0u4bEQTqEgmC1Q9Dc21N8bIlClQZ18TSTBM XxaVzSVlwt76YGoQGfza5wQ8PCcMGetft+PI/QBp0PhQLppFtzMt7fRSm/gCbr5u 6F2JSYTbmu4HP2ooouDEyfVY27stO+ld/mFIdU+pkXL+T+eV2LBIWf03k9Xo6HK/ k9Tip+vI8yrLB1dgD0Y= -----END CERTIFICATE-----Generated at Thu Mar 19 22:42:25 2026 by rpki-client