$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/445DBF2E1B9C11EEB9C23D62C4F9AE02.roa File: 445DBF2E1B9C11EEB9C23D62C4F9AE02.roa (raw, json) Hash identifier: x1nApAGJGmLvfMxwpZDQeV05Glgyyo9oZwSqn9vnD8g= Subject key identifier: CE:EB:3B:72:32:72:35:03:0D:3B:A7:EE:10:9A:DB:F3:85:DD:E9:7E Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1053 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/445DBF2E1B9C11EEB9C23D62C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:30:05 +0000 ROA not before: Thu 22 May 2025 20:07:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151494 IP address blocks: 2406:840:9150::/44 maxlen: 48 2406:840:feda::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4179 (0x1053) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493bd-688d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9f:cd:2d:78:f2:d7:11:ef:c9:59:93:7f:a8: 7c:12:b9:2d:ac:66:8c:49:d4:86:28:6d:9c:29:ce: aa:1e:7c:78:d0:6f:4b:80:fd:b1:cf:4d:8f:c5:16: fc:b9:93:99:b6:dc:a3:fc:f8:da:e9:ff:a2:91:d6: 60:13:ff:4a:11:c9:0f:f4:23:b3:ae:c5:3f:ad:9b: 26:04:3f:7f:ec:2b:f7:a7:0d:86:75:42:75:cd:8d: b0:82:fe:c2:59:0a:30:29:77:0f:c6:df:71:97:64: fa:32:df:25:89:58:f3:28:ac:81:43:24:6f:77:1d: 24:e8:e3:36:ea:7a:c7:72:27:e6:87:ef:e3:de:c2: d6:3e:97:37:32:49:81:d7:7e:81:59:b7:ce:8c:33: d3:e7:c7:e9:86:8f:13:df:7a:7c:71:14:1d:4b:60: 64:9d:31:5c:ff:03:23:7c:80:13:52:18:8b:d1:dd: fe:a1:d1:26:95:b1:c3:42:62:d0:31:6c:16:11:8c: 9d:71:04:f4:d3:96:1d:99:3b:78:28:61:f8:cc:0d: e0:da:b4:ce:25:11:42:49:96:4a:96:4d:80:31:e1: 09:19:b7:02:75:72:07:ed:a3:93:ef:b1:4d:e2:54: 51:b9:21:22:73:ac:ce:e6:be:8b:41:7b:ae:e3:76: d1:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:EB:3B:72:32:72:35:03:0D:3B:A7:EE:10:9A:DB:F3:85:DD:E9:7E X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/445DBF2E1B9C11EEB9C23D62C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:9150::/44 2406:840:feda::/48 Signature Algorithm: sha256WithRSAEncryption 3c:8c:34:0d:42:93:2b:54:fc:e5:fc:9a:55:6f:d1:72:04:e3: 1b:8b:01:9d:cf:76:f3:f1:fa:c1:34:6f:45:ce:20:53:2d:c5: 82:8a:8f:89:41:c5:61:71:a9:85:eb:6c:03:2c:c5:05:37:ff: 63:51:80:e2:ad:e0:9f:89:cf:b2:00:4a:fa:36:64:8b:a3:b6: 9e:36:2e:57:bd:e7:4a:6a:c9:e7:3a:9c:f3:da:bd:b5:80:38: a7:0c:02:f2:62:80:19:f8:29:62:f6:2a:71:29:49:4e:a0:2a: da:3a:f2:92:00:fc:bc:52:c1:cd:0b:97:5a:95:b2:4a:3c:7e: 04:10:fb:a8:b9:4d:65:21:aa:ea:94:fa:86:d9:6c:6c:dd:f2: 95:7c:24:e6:2c:5b:94:46:c7:19:9e:7c:da:a5:99:c8:de:b0: d2:8a:9a:77:6b:01:88:b8:43:0c:81:db:8c:4a:a5:eb:5d:38: 5b:e8:fb:bc:df:b3:bd:fb:9d:6a:28:87:e1:13:8d:ac:33:69: de:01:cb:38:7f:f2:3b:d6:e5:31:25:ff:b1:bc:5c:da:7f:e7: aa:04:63:72:80:e8:62:11:4c:5c:24:bd:a1:86:3c:10:79:ac: e4:a0:4d:d8:b7:1a:50:02:0a:46:09:87:ea:fb:f1:21:3e:f9: d3:f7:04:1c -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzE5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNiZC02ODhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsp/NLXjy1xHvyVmTf6h8ErktrGaMSdSGKG2cKc6qHnx40G9LgP2xz02PxRb8 uZOZttyj/Pja6f+ikdZgE/9KEckP9COzrsU/rZsmBD9/7Cv3pw2GdUJ1zY2wgv7C WQowKXcPxt9xl2T6Mt8liVjzKKyBQyRvdx0k6OM26nrHcifmh+/j3sLWPpc3MkmB 136BWbfOjDPT58fpho8T33p8cRQdS2BknTFc/wMjfIATUhiL0d3+odEmlbHDQmLQ MWwWEYydcQT005YdmTt4KGH4zA3g2rTOJRFCSZZKlk2AMeEJGbcCdXIH7aOT77FN 4lRRuSEic6zO5r6LQXuu43bRIwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFM7rO3Iy cjUDDTun7hCa2/OF3el+MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNDQ1REJGMkUx QjlDMTFFRUI5QzIzRDYyQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQJFQAwcAJAYIQP7aMA0GCSqGSIb3DQEBCwUAA4IBAQA8jDQN QpMrVPzl/JpVb9FyBOMbiwGdz3bz8frBNG9FziBTLcWCio+JQcVhcamF62wDLMUF N/9jUYDireCfic+yAEr6NmSLo7aeNi5XvedKasnnOpzz2r21gDinDALyYoAZ+Cli 9ipxKUlOoCraOvKSAPy8UsHNC5dalbJKPH4EEPuouU1lIarqlPqG2Wxs3fKVfCTm LFuURscZnnzapZnI3rDSipp3awGIuEMMgduMSqXrXThb6Pu837O9+51qKIfhE42s M2neAcs4f/I71uUxJf+xvFzaf+eqBGNygOhiEUxcJL2hhjwQeazkoE3YtxpQAgpG CYfq+/EhPvnT9wQc -----END CERTIFICATE-----Generated at Sat Mar 7 02:24:06 2026 by rpki-client