$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa File: 98F3E1F44BDA11ED90671B29C4F9AE02.roa (raw, json) Hash identifier: KMbQIXO91eDAqFlhCZC+8Zt4Ce0GJF2nVlicEWaMoD4= Subject key identifier: 40:0C:B7:84:00:04:6C:88:AC:E3:3A:20:1C:04:72:17:74:39:FC:C9 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 104B Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:29:58 +0000 ROA not before: Thu 22 May 2025 20:07:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150373 IP address blocks: 2406:840:e340::/44 maxlen: 48 2406:840:fed4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4171 (0x104b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:11 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493b6-a481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:46:af:cd:2d:f0:7a:e4:fa:43:50:4b:11:44: 84:17:da:b3:20:74:88:f3:e0:b5:55:3c:1e:63:dd: db:fc:45:f6:be:bf:89:75:fd:ab:93:24:c2:9c:fe: 9d:b9:41:53:66:b0:65:f6:de:32:ed:c4:ce:ad:b7: 15:5d:ab:7d:bb:0e:ac:58:47:1d:ad:61:ff:90:4e: c9:1a:41:d2:a8:49:3a:c0:63:b2:aa:02:17:d2:07: e1:1f:50:14:98:b4:3e:15:51:83:57:d1:69:1e:af: 73:10:d2:c0:27:ba:87:d7:45:fb:be:71:0c:0d:dc: f6:6a:eb:5b:44:aa:45:83:de:96:2a:b1:4f:53:7a: 98:7c:3f:eb:55:87:0d:9f:36:d3:b7:6d:2b:53:37: be:46:70:c9:c1:af:de:12:1e:90:07:3a:09:e4:de: fe:1f:b6:9b:41:49:7f:8d:75:81:cc:d9:e9:6c:89: 4c:44:62:81:8d:6c:d8:91:18:ff:d9:74:2f:93:31: ee:8a:8a:e2:8d:9b:99:60:6d:f2:57:9f:a2:06:ca: 8d:88:6a:8b:b1:72:30:c7:a1:25:3f:ad:8c:52:9d: aa:56:0f:43:ff:5b:ff:c0:37:3a:54:69:d5:5b:5c: 5d:94:0f:76:9e:b1:e5:c5:af:17:c2:21:77:3b:d4: fe:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:0C:B7:84:00:04:6C:88:AC:E3:3A:20:1C:04:72:17:74:39:FC:C9 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:e340::/44 2406:840:fed4::/48 Signature Algorithm: sha256WithRSAEncryption 99:44:3f:ac:98:4e:10:88:c3:9d:67:76:9e:2f:eb:9c:c4:a6: 71:32:66:c5:74:93:7b:53:e0:9a:c8:a6:5b:f5:41:e8:46:72: 08:8e:21:6c:ef:43:26:40:62:04:c2:42:c1:2b:77:1b:a5:25: fc:51:9e:be:c5:08:f7:b3:1c:79:b0:78:99:46:2c:be:bd:4b: d0:3a:6e:cc:b6:88:08:6d:77:7c:35:1c:8c:ff:f3:ad:75:4b: b8:c7:c6:1f:73:c3:52:4b:b0:6a:9b:b8:12:71:a2:82:57:1e: d4:bb:aa:db:83:63:2b:68:27:ea:53:4b:6b:7d:79:ca:68:0b: 3d:ce:a8:19:8d:b0:28:78:b0:ee:26:e2:33:89:c2:42:0c:61: 2b:7d:38:00:ea:73:79:45:0b:98:e7:7e:5a:4b:ab:ed:13:5a: 23:4f:18:d6:1f:2f:fe:af:f4:d3:50:7b:52:90:5c:8e:b7:e9: 02:1e:52:14:64:5d:b6:1a:f7:50:24:1e:ca:89:bf:12:e8:2a: 4c:43:59:8c:28:7a:6a:cd:4e:35:06:ba:7a:ee:0e:95:0a:cf: af:10:4e:ae:60:a7:4d:64:10:53:ba:fa:f5:c6:dd:c5:d6:f4: c4:ac:2e:28:1c:ee:b4:29:ea:62:87:66:33:98:4e:78:0c:6a: c6:fa:53:b1 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzExWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNiNi1hNDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUavzS3weuT6Q1BLEUSEF9qzIHSI8+C1VTweY93b/EX2vr+Jdf2rkyTCnP6d uUFTZrBl9t4y7cTOrbcVXat9uw6sWEcdrWH/kE7JGkHSqEk6wGOyqgIX0gfhH1AU mLQ+FVGDV9FpHq9zENLAJ7qH10X7vnEMDdz2autbRKpFg96WKrFPU3qYfD/rVYcN nzbTt20rUze+RnDJwa/eEh6QBzoJ5N7+H7abQUl/jXWBzNnpbIlMRGKBjWzYkRj/ 2XQvkzHuiorijZuZYG3yV5+iBsqNiGqLsXIwx6ElP62MUp2qVg9D/1v/wDc6VGnV W1xdlA92nrHlxa8XwiF3O9T+jQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFEAMt4QA BGyIrOM6IBwEchd0OfzJMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOThGM0UxRjQ0 QkRBMTFFRDkwNjcxQjI5QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQONAAwcAJAYIQP7UMA0GCSqGSIb3DQEBCwUAA4IBAQCZRD+s mE4QiMOdZ3aeL+ucxKZxMmbFdJN7U+CayKZb9UHoRnIIjiFs70MmQGIEwkLBK3cb pSX8UZ6+xQj3sxx5sHiZRiy+vUvQOm7MtogIbXd8NRyM//OtdUu4x8Yfc8NSS7Bq m7gScaKCVx7Uu6rbg2MraCfqU0trfXnKaAs9zqgZjbAoeLDuJuIzicJCDGErfTgA 6nN5RQuY535aS6vtE1ojTxjWHy/+r/TTUHtSkFyOt+kCHlIUZF22GvdQJB7Kib8S 6CpMQ1mMKHpqzU41Brp67g6VCs+vEE6uYKdNZBBTuvr1xt3F1vTErC4oHO60Kepi h2YzmE54DGrG+lOx -----END CERTIFICATE-----Generated at Sat Mar 7 02:24:44 2026 by rpki-client