$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/624BB126331A11EFAB575211C4F9AE02.roa File: 624BB126331A11EFAB575211C4F9AE02.roa (raw, json) Hash identifier: aza2quWqjU8VVfp7IbXefg7qRXb9zpPqXTw3kuu5KZg= Subject key identifier: 05:FA:AA:E7:C4:24:A2:9F:52:D9:36:8A:AF:9E:A7:6E:3D:49:E4:2D Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1064 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/624BB126331A11EFAB575211C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:30:21 +0000 ROA not before: Thu 22 May 2025 20:07:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153033 IP address blocks: 2406:840:fdb0::/44 maxlen: 48 2406:840:fe93::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4196 (0x1064) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493cd-2720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:67:4c:5c:86:aa:86:59:24:b3:29:00:ce:bc: f5:cc:7d:98:94:90:29:5b:e3:b5:07:7c:40:59:22: 47:99:f5:25:35:16:44:cf:a4:94:79:55:27:18:f3: eb:c3:52:9c:cb:d3:3e:1f:93:e1:83:20:41:6d:b6: 41:8a:bd:0a:e5:e3:90:62:f9:28:64:f9:7a:19:bb: 46:3c:dc:03:2a:0b:eb:44:18:0e:bb:8b:73:86:9d: 36:84:89:60:9a:53:18:b1:ec:e9:85:83:09:bb:50: a2:e4:31:08:c5:8a:b0:cd:45:b9:60:6d:88:e1:ef: 79:57:84:31:f0:93:b8:76:96:0d:0d:03:79:f3:1f: 3d:2d:24:a1:39:df:0f:74:b8:18:b8:f7:1e:05:c9: c6:20:1c:ea:9d:62:b4:9f:d2:9d:1f:5c:11:b4:f8: fe:fe:8d:86:97:da:e3:8e:c8:14:f9:1d:aa:8e:2b: 89:94:73:26:88:0a:c6:56:c4:9c:65:bf:a3:3a:63: e4:ad:9e:6c:c5:f1:ad:7c:b5:dc:02:9c:59:94:a5: d0:b1:fb:a8:12:0d:a6:75:70:77:d8:85:ba:95:c2: ce:94:d2:20:3b:32:03:58:7e:af:c7:c2:96:3e:a1: 7c:8f:49:fe:a8:52:a1:42:2a:96:05:80:72:ce:5a: aa:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:FA:AA:E7:C4:24:A2:9F:52:D9:36:8A:AF:9E:A7:6E:3D:49:E4:2D X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/624BB126331A11EFAB575211C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:fdb0::/44 2406:840:fe93::/48 Signature Algorithm: sha256WithRSAEncryption 0f:10:db:29:ab:d6:79:55:03:d1:ec:32:f7:8e:05:15:6c:5f: 9c:ed:b4:a1:d3:39:f3:3d:d2:f8:69:57:8b:aa:fd:ff:bb:e5: 26:85:dd:6d:8e:3d:ff:f0:85:8b:d1:f0:4e:11:07:54:72:8f: 69:52:98:2b:e3:86:aa:06:ab:cd:87:18:67:9f:e4:b0:aa:8a: 3f:0c:f4:7e:a6:68:0a:7e:6e:ae:88:ad:c1:bb:0f:4f:e4:f4: 30:61:a0:a7:83:79:53:44:68:d2:5d:00:84:51:07:97:a2:86: 96:0b:f5:80:e7:c4:be:94:f7:48:a7:7a:16:0e:57:76:f9:34: 4a:9c:cd:a3:23:b6:5a:aa:16:5b:34:0a:a6:99:b9:26:f4:20: bd:7b:22:a8:73:43:de:45:8f:d8:73:e6:93:c9:43:bb:9e:25: 6f:da:c5:a3:6d:c3:95:2e:02:ed:fc:b2:b0:c0:fc:34:20:53: 67:bf:89:ed:3b:cf:17:31:bc:9c:a4:57:81:ac:9c:8d:8f:90: 3d:43:88:9c:14:28:ab:46:fb:29:a8:2a:ae:7e:6e:88:81:31: 36:69:5f:bb:02:26:4c:ae:02:e3:d8:b4:a8:d8:fd:ce:83:f6: 1e:65:18:cf:0e:4b:fc:54:98:7e:1a:4b:91:1f:f2:46:58:17: b3:c0:d8:d8 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzM0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNjZC0yNzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWdMXIaqhlkksykAzrz1zH2YlJApW+O1B3xAWSJHmfUlNRZEz6SUeVUnGPPr w1Kcy9M+H5PhgyBBbbZBir0K5eOQYvkoZPl6GbtGPNwDKgvrRBgOu4tzhp02hIlg mlMYsezphYMJu1Ci5DEIxYqwzUW5YG2I4e95V4Qx8JO4dpYNDQN58x89LSShOd8P dLgYuPceBcnGIBzqnWK0n9KdH1wRtPj+/o2Gl9rjjsgU+R2qjiuJlHMmiArGVsSc Zb+jOmPkrZ5sxfGtfLXcApxZlKXQsfuoEg2mdXB32IW6lcLOlNIgOzIDWH6vx8KW PqF8j0n+qFKhQiqWBYByzlqq/wIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFAX6qufE JKKfUtk2iq+ep249SeQtMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNjI0QkIxMjYz MzFBMTFFRkFCNTc1MjExQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQP2wAwcAJAYIQP6TMA0GCSqGSIb3DQEBCwUAA4IBAQAPENsp q9Z5VQPR7DL3jgUVbF+c7bSh0znzPdL4aVeLqv3/u+Umhd1tjj3/8IWL0fBOEQdU co9pUpgr44aqBqvNhxhnn+Swqoo/DPR+pmgKfm6uiK3Buw9P5PQwYaCng3lTRGjS XQCEUQeXooaWC/WA58S+lPdIp3oWDld2+TRKnM2jI7ZaqhZbNAqmmbkm9CC9eyKo c0PeRY/Yc+aTyUO7niVv2sWjbcOVLgLt/LKwwPw0IFNnv4ntO88XMbycpFeBrJyN j5A9Q4icFCirRvspqCqufm6IgTE2aV+7AiZMrgLj2LSo2P3Og/YeZRjPDkv8VJh+ GkuRH/JGWBezwNjY -----END CERTIFICATE-----Generated at Sat Mar 7 02:26:56 2026 by rpki-client