$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A21B6A3E71DC11EFB72B3835C4F9AE02.roa File: A21B6A3E71DC11EFB72B3835C4F9AE02.roa (raw, json) Hash identifier: dfOJttBRh2dJnmAAaMKNhhhetdPz6p2o/I5csm4SxiY= Subject key identifier: AD:21:96:AE:02:D5:85:53:4B:3C:18:E4:A9:36:B9:E2:E3:FE:E6:6A Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1073 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A21B6A3E71DC11EFB72B3835C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:30:34 +0000 ROA not before: Thu 22 May 2025 20:07:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153332 IP address blocks: 2406:840:9b00::/40 maxlen: 48 2406:840:cb00::/40 maxlen: 48 2406:840:cd00::/40 maxlen: 48 2406:840:f700::/40 maxlen: 48 2406:840:fea3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4211 (0x1073) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493da-f011 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1b:6c:36:69:74:57:6d:7e:0a:57:8d:71:38: 30:5e:5b:ee:77:2c:1f:fe:56:00:1e:a8:3f:94:2e: 13:6a:f5:3c:44:5c:1a:4c:de:20:bb:e2:37:f1:fb: 90:97:dc:54:68:0b:25:62:a2:0c:88:6e:fc:7c:7d: a0:d2:bc:2a:62:f4:03:98:86:c1:28:45:41:7a:f2: 51:48:e0:34:90:8e:a2:91:d4:ed:08:28:94:32:b6: f8:cb:12:b9:ed:bc:cc:bd:0f:a8:7f:a0:4a:85:fb: 44:c6:6a:4c:b5:51:11:8b:26:1b:53:65:5c:1b:95: 0c:71:3b:26:87:16:42:6a:11:af:68:b7:57:41:b1: 13:41:09:48:5a:03:cf:7c:9c:d3:5d:e0:6a:85:35: 1e:4a:dc:e1:47:26:68:d9:fc:80:e4:d6:05:a0:fe: 0f:c9:93:e6:06:19:c0:ea:ff:68:21:ea:70:f1:44: 08:4d:93:59:e1:c7:20:e5:49:59:e9:86:e5:cf:5a: e6:1c:6f:06:99:2f:7f:2e:f8:2f:28:37:c9:7c:d7: c6:c9:eb:82:d6:02:9e:ff:44:5a:43:08:58:2a:25: c8:91:65:49:de:30:30:f4:d9:b7:10:7b:a0:2d:25: 05:6a:d0:c6:57:0e:bd:4a:cf:d7:5f:d7:94:39:32: 36:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:21:96:AE:02:D5:85:53:4B:3C:18:E4:A9:36:B9:E2:E3:FE:E6:6A X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A21B6A3E71DC11EFB72B3835C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:9b00::/40 2406:840:cb00::/40 2406:840:cd00::/40 2406:840:f700::/40 2406:840:fea3::/48 Signature Algorithm: sha256WithRSAEncryption 6c:37:3a:b2:a9:bc:78:61:74:dd:57:70:1f:14:92:63:77:26: 9a:1e:de:b7:1c:0c:60:46:76:6a:3b:c1:b0:70:01:40:e3:9e: ab:a2:7f:0f:d0:3b:9e:7d:04:34:fb:9f:f6:37:74:fb:cf:b6: b6:51:ec:78:98:29:80:a7:72:bc:0a:27:46:29:a3:42:04:5e: 1b:b9:48:69:ff:a7:fd:d4:51:8e:8c:05:5e:c8:6f:0d:e2:f7: c3:91:c6:eb:eb:de:c8:27:d1:8a:eb:fc:e7:7f:67:75:28:02: 9c:98:1a:01:6f:fb:ea:d9:97:1f:8e:bc:0c:15:ba:df:c3:dd: c5:b9:d3:89:c3:02:19:3b:38:7b:f8:44:32:56:3f:38:5d:a1: 11:11:0f:ec:a1:5c:77:cc:65:ba:85:2f:07:32:cb:55:2c:66: 06:a3:d4:c2:6d:ac:98:ec:c2:a3:30:73:cb:11:da:ec:b6:a0: 9d:4a:f6:57:05:07:1e:f5:d1:ed:2d:d6:cc:29:a1:21:5b:9b: 68:6f:c0:39:8a:c2:87:18:9e:d2:37:dd:22:0c:00:89:a6:54: c0:c4:dc:6b:45:50:c2:d0:de:ad:d2:0e:d0:a2:f7:67:f8:6a: fa:70:ea:06:53:67:d9:b3:bb:12:09:de:6f:10:4d:ad:57:29: be:9f:d0:cb -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICEHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNkYS1mMDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthtsNml0V21+CleNcTgwXlvudywf/lYAHqg/lC4TavU8RFwaTN4gu+I38fuQ l9xUaAslYqIMiG78fH2g0rwqYvQDmIbBKEVBevJRSOA0kI6ikdTtCCiUMrb4yxK5 7bzMvQ+of6BKhftExmpMtVERiyYbU2VcG5UMcTsmhxZCahGvaLdXQbETQQlIWgPP fJzTXeBqhTUeStzhRyZo2fyA5NYFoP4PyZPmBhnA6v9oIepw8UQITZNZ4ccg5UlZ 6Yblz1rmHG8GmS9/LvgvKDfJfNfGyeuC1gKe/0RaQwhYKiXIkWVJ3jAw9Nm3EHug LSUFatDGVw69Ss/XX9eUOTI2/QIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFK0hlq4C 1YVTSzwY5Kk2ueLj/uZqMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQTIxQjZBM0U3 MURDMTFFRkI3MkIzODM1QzRGOUFFMDIucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAv BAIAAjApAwYAJAYIQJsDBgAkBghAywMGACQGCEDNAwYAJAYIQPcDBwAkBghA/qMw DQYJKoZIhvcNAQELBQADggEBAGw3OrKpvHhhdN1XcB8UkmN3Jpoe3rccDGBGdmo7 wbBwAUDjnquifw/QO559BDT7n/Y3dPvPtrZR7HiYKYCncrwKJ0Ypo0IEXhu5SGn/ p/3UUY6MBV7Ibw3i98ORxuvr3sgn0Yrr/Od/Z3UoApyYGgFv++rZlx+OvAwVut/D 3cW504nDAhk7OHv4RDJWPzhdoRERD+yhXHfMZbqFLwcyy1UsZgaj1MJtrJjswqMw c8sR2uy2oJ1K9lcFBx710e0t1swpoSFbm2hvwDmKwocYntI33SIMAImmVMDE3GtF UMLQ3q3SDtCi92f4avpw6gZTZ9mzuxIJ3m8QTa1XKb6f0Ms= -----END CERTIFICATE-----Generated at Sat Mar 7 02:26:20 2026 by rpki-client