$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AC42AB8EDF5011F0B41BBDC26F6F56BC.roa File: AC42AB8EDF5011F0B41BBDC26F6F56BC.roa (raw, json) Hash identifier: 41N2hWwlgHbbBFYQjefQHIiEMVOa4eXoLC4SIcdgVW0= Subject key identifier: 19:8A:24:35:D1:77:C1:FB:66:06:D8:5B:DF:BC:1B:84:9D:C2:4F:05 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 10AD Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AC42AB8EDF5011F0B41BBDC26F6F56BC.roa Signing time: Tue 03 Mar 2026 14:30:04 +0000 ROA not before: Tue 03 Mar 2026 14:30:04 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 213903 IP address blocks: 2406:840:fdea::/48 maxlen: 48 2406:840:fdeb::/48 maxlen: 48 2406:840:fdec::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4269 (0x10ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Mar 3 14:30:04 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a6f06c-4f2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ec:e2:f5:c3:fe:fe:72:05:e2:db:91:da:b8: 11:6e:40:10:f1:a2:06:7e:d5:5c:18:de:7a:a9:00: 61:77:57:d5:84:37:54:1e:ab:5b:64:b4:ab:44:81: 77:49:5b:f9:4f:f6:af:3d:2b:b9:4d:f8:59:e2:0f: 75:3b:18:2e:f6:82:71:70:7b:1c:f1:e3:08:08:eb: cf:17:0e:f4:67:9c:01:64:63:70:8c:30:9f:37:01: 4d:42:94:26:a9:d5:ea:c8:ee:c0:b0:f2:69:fe:7c: d2:8c:e5:cf:02:16:5a:e6:19:6e:20:d1:ff:71:cf: 3d:d2:6c:0f:1e:85:19:0c:e0:33:ac:48:64:ce:03: 70:65:d3:6d:18:0a:f5:48:28:82:23:3e:dd:ea:f1: 30:5b:e3:0f:83:34:17:81:e3:3b:51:a5:df:11:28: 01:7a:8c:32:54:da:52:29:86:c1:d7:ce:30:e5:7f: df:c0:06:28:e5:16:6e:5a:48:25:8c:b4:ad:72:ac: 51:17:a7:e8:4c:e7:d7:86:05:e1:89:43:27:e9:f5: ba:30:d1:d3:e7:44:a5:1a:c0:16:d1:6b:ba:61:5a: 4d:3e:b4:59:30:64:64:bb:7d:d8:69:b6:25:51:34: e9:1d:41:b8:3b:30:c6:5d:fb:9b:9b:c1:cd:d3:78: 7b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:8A:24:35:D1:77:C1:FB:66:06:D8:5B:DF:BC:1B:84:9D:C2:4F:05 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AC42AB8EDF5011F0B41BBDC26F6F56BC.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:fdea::-2406:840:fdec:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 36:0d:f8:29:e5:3e:76:7c:bf:f3:a2:77:4e:19:40:85:62:73: 44:81:9c:cf:a1:ec:06:ed:c4:a1:1f:98:cd:f2:be:e9:6e:26: 0f:7b:d1:13:af:e3:5f:ce:c2:f6:06:08:3c:51:82:b6:98:3d: 46:25:35:e8:26:f7:4f:ac:aa:93:8b:0b:19:0f:d5:27:9c:a3: f0:fa:e2:ba:b4:bc:73:ae:80:d9:06:aa:b9:b2:29:63:d6:a3: 1b:53:54:43:c4:23:60:40:d0:ec:60:7e:26:38:bb:af:d8:48: 06:59:02:ba:98:16:9f:34:79:41:70:d8:28:cd:7c:ad:18:8e: cc:d2:c2:8a:3c:db:bf:d0:c4:4d:5b:91:9b:5a:ad:3c:eb:8c: 05:a8:c3:ae:16:3b:91:4d:a2:e3:4f:43:b7:30:f6:0e:b6:1e: a8:c5:9a:a4:34:a7:d8:59:51:01:ee:0b:2e:a6:82:99:5e:cf: 7f:0d:fd:77:7a:49:10:c8:fa:c3:cf:a7:6a:35:23:e8:57:50: 31:50:2c:2f:8a:ab:64:61:91:1f:b2:68:71:7b:88:d8:13:3f: c4:5b:20:15:76:40:32:b4:09:78:0a:ca:5b:ea:88:39:05:08: 3f:5b:57:52:4b:c6:dd:1f:d6:43:13:d8:62:9c:1d:6b:a6:49: e3:19:ea:8c -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICEK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjYwMzAzMTQzMDA0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2ZjA2Yy00ZjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+zi9cP+/nIF4tuR2rgRbkAQ8aIGftVcGN56qQBhd1fVhDdUHqtbZLSrRIF3 SVv5T/avPSu5TfhZ4g91Oxgu9oJxcHsc8eMICOvPFw70Z5wBZGNwjDCfNwFNQpQm qdXqyO7AsPJp/nzSjOXPAhZa5hluINH/cc890mwPHoUZDOAzrEhkzgNwZdNtGAr1 SCiCIz7d6vEwW+MPgzQXgeM7UaXfESgBeowyVNpSKYbB184w5X/fwAYo5RZuWkgl jLStcqxRF6foTOfXhgXhiUMn6fW6MNHT50SlGsAW0Wu6YVpNPrRZMGRku33YabYl UTTpHUG4OzDGXfubm8HN03h74wIDAQABo4ICbjCCAmowHQYDVR0OBBYEFBmKJDXR d8H7ZgbYW9+8G4Sdwk8FMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQUM0MkFCOEVE RjUwMTFGMEI0MUJCREMyNkY2RjU2QkMucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAAjAUMBIDBwEkBghA/eoDBwAkBghA/ewwDQYJKoZIhvcNAQELBQADggEBADYN +CnlPnZ8v/Oid04ZQIVic0SBnM+h7AbtxKEfmM3yvuluJg970ROv41/OwvYGCDxR graYPUYlNegm90+sqpOLCxkP1Seco/D64rq0vHOugNkGqrmyKWPWoxtTVEPEI2BA 0OxgfiY4u6/YSAZZArqYFp80eUFw2CjNfK0YjszSwoo827/QxE1bkZtarTzrjAWo w64WO5FNouNPQ7cw9g62HqjFmqQ0p9hZUQHuCy6mgplez38N/Xd6SRDI+sPPp2o1 I+hXUDFQLC+Kq2RhkR+yaHF7iNgTP8RbIBV2QDK0CXgKylvqiDkFCD9bV1JLxt0f 1kMT2GKcHWumSeMZ6ow= -----END CERTIFICATE-----Generated at Sat Mar 7 02:25:28 2026 by rpki-client