$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/672D5E3EDAFE11EE986FFF5BC4F9AE02.roa File: 672D5E3EDAFE11EE986FFF5BC4F9AE02.roa (raw, json) Hash identifier: Xz3sTJfylaAm8NRuy0GjxnNin1yVBnP9W4bV2aplYr0= Subject key identifier: B0:05:25:59:AA:35:81:F5:20:56:18:10:5A:A6:27:7D:56:B1:80:1A Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 105C Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/672D5E3EDAFE11EE986FFF5BC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:30:13 +0000 ROA not before: Thu 22 May 2025 20:07:27 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152631 IP address blocks: 2406:840:9c00::/40 maxlen: 48 2406:840:c800::/40 maxlen: 48 2406:840:ce00::/40 maxlen: 48 2406:840:fb00::/40 maxlen: 48 2406:840:fecb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4188 (0x105c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:27 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493c5-e5e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5c:02:a6:1b:cc:21:8d:ed:79:37:1b:d3:80: 7c:01:e5:bb:e6:60:a6:e7:e0:b2:88:6c:c8:b0:0b: 51:46:3e:4b:74:c1:94:9d:7f:ed:fa:4b:2b:39:89: a1:f9:2d:d5:31:a6:6c:62:28:ef:6c:c6:84:58:52: 0c:1c:0d:16:f6:80:05:e1:57:07:bd:32:0b:22:c2: fd:a2:93:7d:21:ba:f9:10:71:f5:24:f6:c9:9a:22: e0:b0:12:40:ae:3c:d7:f7:60:07:3e:2a:a2:1b:ab: 09:7d:d9:a5:a8:10:8e:70:3a:80:39:f5:16:f6:b7: df:71:b9:81:ba:b5:44:4b:cf:ec:55:4b:cf:13:aa: d0:9c:80:aa:da:60:27:14:04:27:42:88:08:3f:80: 0c:e1:e3:ad:cc:9c:d4:f9:a1:80:d5:bf:7a:60:46: eb:80:ed:4f:2c:90:a9:96:06:0e:ca:f7:e5:67:ed: fc:5d:26:48:92:83:f8:14:29:55:9e:7d:17:95:c6: 7a:35:75:52:f4:02:65:90:fd:3d:95:53:64:00:83: cd:cb:be:7a:ca:3c:fb:ef:df:34:b8:8e:12:4c:53: 37:a8:61:f3:37:7f:11:57:ea:62:8a:50:4f:d8:29: 42:f6:f2:7b:d4:47:3f:16:a1:57:fc:e4:eb:7a:77: 0a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:05:25:59:AA:35:81:F5:20:56:18:10:5A:A6:27:7D:56:B1:80:1A X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/672D5E3EDAFE11EE986FFF5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:9c00::/40 2406:840:c800::/40 2406:840:ce00::/40 2406:840:fb00::/40 2406:840:fecb::/48 Signature Algorithm: sha256WithRSAEncryption 0a:55:0b:22:a6:27:73:59:e6:23:c4:30:08:82:47:dd:ec:26: ed:05:1e:8b:99:ed:ab:3d:f2:02:4d:de:10:49:4a:1c:4d:e2: c2:85:3d:21:a1:31:82:ef:1e:75:fd:ad:9e:c2:61:69:1a:aa: 7f:3d:4c:0a:f7:57:df:fe:21:4b:5e:29:19:f9:fa:03:37:06: d0:2b:e9:c0:2c:45:fd:13:49:2b:2b:5b:b3:5c:4f:38:73:9e: 1e:2f:58:52:15:d3:29:17:27:80:17:1d:1b:e1:ed:d0:77:df: ad:75:d1:56:4a:d2:01:0d:5d:e4:7f:b4:4d:d7:5e:0c:78:bf: f8:89:41:41:ce:a5:a0:e9:de:32:7f:86:4e:c8:66:4a:4f:f5: be:32:6e:0a:c1:d9:b1:28:43:f3:40:d4:e5:22:f7:7e:fe:b7: c1:0f:45:d4:35:28:32:97:ae:97:93:45:b0:9d:b0:dc:35:9e: 06:85:19:3f:19:25:4b:b7:53:51:01:31:8e:42:a6:af:c1:cf: 8d:7d:cf:79:d3:a6:d0:eb:65:19:19:2f:51:73:ca:84:0c:dc: c1:d1:45:c0:c4:31:5e:2c:b1:90:7a:2b:76:35:3d:06:9c:e5: f2:73:bf:a9:ab:c3:e3:7d:fd:39:9a:be:e1:fa:aa:1b:cb:fb: 3c:f0:1f:5b -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICEFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzI3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNjNS1lNWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FwCphvMIY3teTcb04B8AeW75mCm5+CyiGzIsAtRRj5LdMGUnX/t+ksrOYmh +S3VMaZsYijvbMaEWFIMHA0W9oAF4VcHvTILIsL9opN9Ibr5EHH1JPbJmiLgsBJA rjzX92AHPiqiG6sJfdmlqBCOcDqAOfUW9rffcbmBurVES8/sVUvPE6rQnICq2mAn FAQnQogIP4AM4eOtzJzU+aGA1b96YEbrgO1PLJCplgYOyvflZ+38XSZIkoP4FClV nn0XlcZ6NXVS9AJlkP09lVNkAIPNy756yjz77980uI4STFM3qGHzN38RV+piilBP 2ClC9vJ71Ec/FqFX/OTrencKRQIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFLAFJVmq NYH1IFYYEFqmJ31WsYAaMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNjcyRDVFM0VE QUZFMTFFRTk4NkZGRjVCQzRGOUFFMDIucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAv BAIAAjApAwYAJAYIQJwDBgAkBghAyAMGACQGCEDOAwYAJAYIQPsDBwAkBghA/ssw DQYJKoZIhvcNAQELBQADggEBAApVCyKmJ3NZ5iPEMAiCR93sJu0FHouZ7as98gJN 3hBJShxN4sKFPSGhMYLvHnX9rZ7CYWkaqn89TAr3V9/+IUteKRn5+gM3BtAr6cAs Rf0TSSsrW7NcTzhznh4vWFIV0ykXJ4AXHRvh7dB336110VZK0gENXeR/tE3XXgx4 v/iJQUHOpaDp3jJ/hk7IZkpP9b4ybgrB2bEoQ/NA1OUi937+t8EPRdQ1KDKXrpeT RbCdsNw1ngaFGT8ZJUu3U1EBMY5Cpq/Bz419z3nTptDrZRkZL1FzyoQM3MHRRcDE MV4ssZB6K3Y1PQac5fJzv6mrw+N9/TmavuH6qhvL+zzwH1s= -----END CERTIFICATE-----Generated at Sat Mar 7 02:24:07 2026 by rpki-client