$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A16CFB8E71DC11EFB72B3835C4F9AE02.roa File: A16CFB8E71DC11EFB72B3835C4F9AE02.roa (raw, json) Hash identifier: Y/s+Ip5nVT6hRVS6YCmV+jfIvXDHPA3xHZreXt/D6p0= Subject key identifier: 86:CC:CD:C0:9F:48:CA:01:81:50:6D:4D:06:6D:89:1B:13:A0:49:0C Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1071 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A16CFB8E71DC11EFB72B3835C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:30:32 +0000 ROA not before: Thu 22 May 2025 20:07:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153330 IP address blocks: 2406:840:9a00::/40 maxlen: 48 2406:840:ca00::/40 maxlen: 48 2406:840:cc00::/40 maxlen: 48 2406:840:cf00::/40 maxlen: 48 2406:840:fea2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4209 (0x1071) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493d8-901d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ea:03:62:da:99:d4:df:b0:4b:f5:0f:c4:3a: a8:f3:74:01:f6:e7:77:25:41:6b:95:93:02:9d:41: 28:5d:60:80:bc:c3:fa:f2:fc:4d:b5:b9:95:b3:50: ba:10:17:73:55:ca:db:69:4a:d9:24:b5:aa:8f:8c: 38:55:2c:97:7f:69:6b:68:19:e2:38:61:09:ec:ff: 77:c5:5a:0a:56:5f:8b:74:bf:8f:2a:ff:3e:b7:58: 4a:08:e0:1d:ec:cf:de:f3:20:5b:26:30:91:9b:65: ce:8c:12:20:ab:73:1d:49:d6:ff:85:03:4a:d4:a5: df:32:27:09:a9:bb:19:8f:be:cd:e0:ef:55:1d:e8: 2a:cd:37:e4:bc:bf:19:73:0e:f8:85:50:ff:93:56: 71:6d:b1:cc:cb:ad:be:a0:5f:6b:9a:07:bf:d2:ac: 3b:7a:38:c2:48:09:e4:2a:2b:33:21:ae:d7:6f:fa: e4:e7:56:0f:b1:75:d8:e0:07:a3:68:c8:53:a1:ad: 22:d2:45:51:4d:bb:1b:69:1b:ba:d3:67:73:fa:93: f5:af:4c:28:8e:04:3c:dc:d1:d7:4b:e1:74:e1:34: 4a:37:50:a8:3d:67:98:f6:d4:34:74:22:2b:2c:4d: 73:86:7b:92:b0:8f:8f:3d:51:22:d1:01:5e:b9:b1: 35:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:CC:CD:C0:9F:48:CA:01:81:50:6D:4D:06:6D:89:1B:13:A0:49:0C X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A16CFB8E71DC11EFB72B3835C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:9a00::/40 2406:840:ca00::/40 2406:840:cc00::/40 2406:840:cf00::/40 2406:840:fea2::/48 Signature Algorithm: sha256WithRSAEncryption 2a:43:31:08:8f:26:d3:ec:c9:53:89:af:56:bb:dd:b8:82:9b: 92:5e:59:41:c5:dc:df:93:e4:a0:61:8d:61:be:98:e6:f5:04: 8d:69:aa:26:f2:db:8d:f5:7f:8b:3c:dd:8f:27:b4:6d:ba:62: 52:f3:71:92:5e:38:fe:c6:88:d7:a7:d5:7b:e5:b5:17:e5:51: 3e:c7:94:3f:48:5e:bc:6b:95:85:5b:cd:28:2a:45:18:75:8a: 3d:3b:a4:49:90:ec:03:ac:8a:f8:29:3c:1f:c9:eb:4d:a6:ec: 73:bc:5a:71:43:21:66:7e:bd:37:5d:76:94:e0:f6:9b:26:ec: 76:5d:9d:e7:04:c0:95:f1:dd:5d:e9:ef:6d:95:5c:34:2f:45: d1:73:3e:24:2d:31:30:63:b9:85:7b:f7:14:0c:9f:97:c1:b6: 44:2e:dd:5d:ca:c2:49:1f:e6:7f:4c:75:1a:e7:31:56:de:68: 4a:c5:f4:e3:88:22:21:3c:92:f3:01:97:b7:f9:f4:c1:c3:61: 2d:51:c5:09:42:a6:9f:26:b0:aa:57:0d:34:53:b0:a4:3c:38: 68:8f:7f:a9:eb:54:c0:4f:3b:40:75:03:76:06:d7:d0:dc:3f: 9b:c9:0c:ec:82:9d:42:ac:0e:a3:ae:dc:fa:35:8a:13:00:ea: 44:2d:a2:39 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICEHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzQ2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNkOC05MDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2uoDYtqZ1N+wS/UPxDqo83QB9ud3JUFrlZMCnUEoXWCAvMP68vxNtbmVs1C6 EBdzVcrbaUrZJLWqj4w4VSyXf2lraBniOGEJ7P93xVoKVl+LdL+PKv8+t1hKCOAd 7M/e8yBbJjCRm2XOjBIgq3MdSdb/hQNK1KXfMicJqbsZj77N4O9VHegqzTfkvL8Z cw74hVD/k1ZxbbHMy62+oF9rmge/0qw7ejjCSAnkKiszIa7Xb/rk51YPsXXY4Aej aMhToa0i0kVRTbsbaRu602dz+pP1r0wojgQ83NHXS+F04TRKN1CoPWeY9tQ0dCIr LE1zhnuSsI+PPVEi0QFeubE1NwIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFIbMzcCf SMoBgVBtTQZtiRsToEkMMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQTE2Q0ZCOEU3 MURDMTFFRkI3MkIzODM1QzRGOUFFMDIucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAv BAIAAjApAwYAJAYIQJoDBgAkBghAygMGACQGCEDMAwYAJAYIQM8DBwAkBghA/qIw DQYJKoZIhvcNAQELBQADggEBACpDMQiPJtPsyVOJr1a73biCm5JeWUHF3N+T5KBh jWG+mOb1BI1pqiby2431f4s83Y8ntG26YlLzcZJeOP7GiNen1XvltRflUT7HlD9I XrxrlYVbzSgqRRh1ij07pEmQ7AOsivgpPB/J602m7HO8WnFDIWZ+vTdddpTg9psm 7HZdnecEwJXx3V3p722VXDQvRdFzPiQtMTBjuYV79xQMn5fBtkQu3V3Kwkkf5n9M dRrnMVbeaErF9OOIIiE8kvMBl7f59MHDYS1RxQlCpp8msKpXDTRTsKQ8OGiPf6nr VMBPO0B1A3YG19DcP5vJDOyCnUKsDqOu3Po1ihMA6kQtojk= -----END CERTIFICATE-----Generated at Sat Mar 7 02:26:15 2026 by rpki-client