$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2BF73076743511EFA2B5387BC4F9AE02.roa File: 2BF73076743511EFA2B5387BC4F9AE02.roa (raw, json) Hash identifier: 5tY+FogqVMVSNpABh+qfpQ9ZXZjtbEZudBiiFRx+Zsk= Subject key identifier: 39:0A:AF:8C:3D:5B:A0:09:34:FE:4E:E3:9E:38:FC:71:A6:91:61:ED Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1057 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2BF73076743511EFA2B5387BC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:30:09 +0000 ROA not before: Thu 22 May 2025 20:07:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151814 IP address blocks: 2406:840:9400::/40 maxlen: 48 2406:840:c600::/40 maxlen: 48 2406:840:e400::/40 maxlen: 48 2406:840:f500::/40 maxlen: 48 2406:840:fec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4183 (0x1057) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493c1-8cf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f9:98:e7:6c:06:6f:70:e0:dc:f2:89:3b:e1: cc:52:c7:5e:52:d2:ea:1c:14:5b:9e:e0:08:60:e0: ab:d0:8a:0d:d1:d2:c6:61:c1:71:aa:15:dd:3a:e2: 78:1e:be:4d:a9:3d:3c:21:2d:6e:16:0e:12:76:d4: fd:46:8a:99:00:d6:6e:80:79:14:bd:75:7a:48:29: 3d:13:12:45:ee:29:c6:90:55:98:9e:e8:d3:49:30: 4b:48:18:c9:c0:36:15:c5:c7:60:02:b4:fd:be:ec: ca:95:2d:41:c4:31:61:46:2e:4d:c9:89:3f:ad:02: 5d:d6:b9:0a:5a:26:15:7b:c6:4e:bc:bb:ca:04:a7: 35:23:40:a3:4a:de:31:e6:d2:ca:f6:0c:de:9d:1d: e6:d2:52:cb:b3:6d:2a:16:e2:d0:f2:1b:56:2e:f2: ec:d4:0b:b2:2f:ba:9b:43:0d:7f:6e:7d:41:a2:90: 94:94:23:9b:65:df:eb:58:e6:f2:11:50:1e:de:73: 63:79:a8:01:bd:cf:53:44:81:52:93:4a:57:2c:91: 85:ee:8c:27:4a:09:2d:2d:e2:25:88:8a:f5:82:52: a9:f0:65:17:38:38:d2:2a:10:d1:66:96:34:fc:d0: bb:5f:32:59:0d:80:ca:74:af:c4:b7:f9:aa:68:0b: 70:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:0A:AF:8C:3D:5B:A0:09:34:FE:4E:E3:9E:38:FC:71:A6:91:61:ED X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2BF73076743511EFA2B5387BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:9400::/40 2406:840:c600::/40 2406:840:e400::/40 2406:840:f500::/40 2406:840:fec0::/48 Signature Algorithm: sha256WithRSAEncryption 8f:2c:85:94:3b:b7:44:8d:3f:0a:0e:e9:26:a6:fd:6f:fb:64: 8c:22:63:57:18:84:1e:c8:a2:aa:9b:60:4d:10:a9:fd:bf:84: a7:56:e2:d7:92:e3:cc:ac:a7:96:69:61:f3:4e:18:ba:d6:fe: 90:18:a2:bd:c5:10:ff:bf:c5:54:99:b9:68:c0:64:58:b1:d4: 10:b1:cb:4d:27:41:cf:b8:ed:57:96:f5:4c:d3:64:c2:3c:14: 5a:fa:80:6b:1d:fb:77:f4:e3:a0:ee:6b:83:5f:af:4a:7e:44: 84:58:fe:9e:a4:29:7b:d2:b4:d0:fe:c6:50:4f:df:f1:c9:49: c9:1b:22:b6:85:81:39:68:d6:e6:88:c9:10:e8:5a:a8:a0:a0: 61:40:d2:2e:d6:14:2e:36:13:d8:d5:d5:7d:48:ac:6d:af:14: 1b:72:fa:ec:43:e3:95:40:54:ba:91:22:18:38:fc:d2:fa:e1: 95:78:34:40:83:31:78:18:78:72:e7:26:ad:bb:48:2b:40:54: 1a:27:50:9f:0d:00:86:7b:8a:09:4f:df:2c:0c:9f:cb:f2:37: 56:81:5a:11:9b:86:f0:4c:57:46:70:76:df:81:5f:b9:ee:7c: 7c:c3:97:e4:cb:eb:99:c1:4e:7c:25:81:fc:9e:56:80:52:cd: 9a:94:69:e0 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICEFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNjMS04Y2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvmY52wGb3Dg3PKJO+HMUsdeUtLqHBRbnuAIYOCr0IoN0dLGYcFxqhXdOuJ4 Hr5NqT08IS1uFg4SdtT9RoqZANZugHkUvXV6SCk9ExJF7inGkFWYnujTSTBLSBjJ wDYVxcdgArT9vuzKlS1BxDFhRi5NyYk/rQJd1rkKWiYVe8ZOvLvKBKc1I0CjSt4x 5tLK9gzenR3m0lLLs20qFuLQ8htWLvLs1AuyL7qbQw1/bn1BopCUlCObZd/rWOby EVAe3nNjeagBvc9TRIFSk0pXLJGF7ownSgktLeIliIr1glKp8GUXODjSKhDRZpY0 /NC7XzJZDYDKdK/Et/mqaAtw2QIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFDkKr4w9 W6AJNP5O4544/HGmkWHtMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMkJGNzMwNzY3 NDM1MTFFRkEyQjUzODdCQzRGOUFFMDIucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAv BAIAAjApAwYAJAYIQJQDBgAkBghAxgMGACQGCEDkAwYAJAYIQPUDBwAkBghA/sAw DQYJKoZIhvcNAQELBQADggEBAI8shZQ7t0SNPwoO6Sam/W/7ZIwiY1cYhB7Ioqqb YE0Qqf2/hKdW4teS48ysp5ZpYfNOGLrW/pAYor3FEP+/xVSZuWjAZFix1BCxy00n Qc+47VeW9UzTZMI8FFr6gGsd+3f046Dua4Nfr0p+RIRY/p6kKXvStND+xlBP3/HJ SckbIraFgTlo1uaIyRDoWqigoGFA0i7WFC42E9jV1X1IrG2vFBty+uxD45VAVLqR Ihg4/NL64ZV4NECDMXgYeHLnJq27SCtAVBonUJ8NAIZ7iglP3ywMn8vyN1aBWhGb hvBMV0Zwdt+BX7nufHzDl+TL65nBTnwlgfyeVoBSzZqUaeA= -----END CERTIFICATE-----Generated at Sat Mar 7 02:26:20 2026 by rpki-client