$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa File: BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa (raw, json) Hash identifier: E+6YUNf1arizb24KnR6En+7Cbcgu06oEtkgp1ESYA/Q= Subject key identifier: 04:D5:A4:8C:A5:6E:BA:CE:A9:3A:74:87:FE:ED:F6:C8:2F:80:39:00 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1089 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:30:55 +0000 ROA not before: Thu 22 May 2025 20:08:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 212034 IP address blocks: 2406:840:f890::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4233 (0x1089) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493ef-7eae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f7:86:e6:bf:86:10:69:a2:63:fc:01:36:91: ee:f9:0e:6e:04:bd:96:f6:30:4d:42:03:f6:3e:ab: 7c:ad:bb:d6:be:10:a3:97:f3:73:a1:c0:37:09:2a: b9:b1:76:92:cf:18:b8:1a:28:93:a0:bf:58:0e:6b: 49:83:cb:f5:96:3a:44:39:13:34:c8:c4:ce:ef:ef: ff:f9:b6:67:ec:5f:39:58:24:48:9b:85:b1:37:c6: 95:53:5b:e1:e4:aa:22:84:f4:ff:bc:bd:e7:35:67: 36:71:e3:72:b3:2f:7a:93:b8:fd:fb:b8:e1:d7:20: 6b:48:c6:b0:ca:8b:51:16:16:24:9e:8d:e4:6e:27: 22:1b:fc:67:8c:1c:bf:16:c2:e2:6c:ab:03:d1:5e: ee:e5:78:d6:f0:55:a5:f6:7b:16:28:37:d3:dd:2f: 64:96:5a:4f:6c:c6:ee:7b:aa:ba:b4:2c:eb:e2:85: 97:c0:e9:d3:be:d8:07:74:9e:70:57:ed:1f:e1:62: 32:f7:94:02:dd:7f:90:18:25:98:ea:7f:6d:b8:b5: 86:a9:2e:ff:2a:d5:04:7e:59:d3:37:2e:ae:f8:ed: 87:22:01:40:e7:38:db:8a:a1:10:6d:e9:f7:0a:30: 3d:8c:70:35:97:43:95:6b:23:29:af:59:dd:78:6f: 34:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:D5:A4:8C:A5:6E:BA:CE:A9:3A:74:87:FE:ED:F6:C8:2F:80:39:00 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:f890::/44 Signature Algorithm: sha256WithRSAEncryption 87:6d:bd:f6:af:85:8d:bf:d4:17:51:cf:95:3a:6f:eb:e1:c8: 57:7c:96:5d:5b:b5:c4:80:d2:e4:60:1f:47:00:8e:e0:64:73: 61:39:01:ca:a2:a0:5e:95:c3:07:ba:8a:f3:8f:3b:c3:33:29: e9:a4:4e:dd:ba:27:47:3a:39:1d:b0:db:31:38:17:e9:ca:a5: 0d:3c:ee:8e:12:74:39:62:ce:9e:30:3c:54:ea:99:32:48:26: ff:dc:50:ac:f5:4e:64:a2:d8:66:49:d5:b6:32:fa:c8:b4:a4: 36:3c:2e:fd:c0:48:87:89:4f:0c:a9:0d:46:c0:30:b7:1d:26: 33:88:43:dc:b0:d1:f9:03:99:1c:f8:41:a0:3e:70:1a:8b:ff: 9c:ed:fd:6a:4d:b3:4f:fc:89:c5:3f:eb:95:62:8e:d9:93:7c: 86:6a:b1:03:0d:06:0f:c9:a9:0c:b0:06:08:55:80:f1:82:fe: 09:a3:cd:5c:8d:dc:a7:60:61:e6:03:eb:9d:57:0e:4f:78:c2: 74:bb:c7:bf:6f:08:80:f6:6c:ff:f3:7e:32:77:c4:44:78:9c: b6:85:13:c1:d3:bc:c5:a0:d8:f4:29:55:92:e4:e9:35:89:fe: 94:a3:f9:8b:e9:ec:bd:9d:b3:e0:b0:c4:db:32:01:3b:47:36: 83:a4:55:c2 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICEIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODE0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNlZi03ZWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfeG5r+GEGmiY/wBNpHu+Q5uBL2W9jBNQgP2Pqt8rbvWvhCjl/NzocA3CSq5 sXaSzxi4GiiToL9YDmtJg8v1ljpEORM0yMTO7+//+bZn7F85WCRIm4WxN8aVU1vh 5KoihPT/vL3nNWc2ceNysy96k7j9+7jh1yBrSMawyotRFhYkno3kbiciG/xnjBy/ FsLibKsD0V7u5XjW8FWl9nsWKDfT3S9kllpPbMbue6q6tCzr4oWXwOnTvtgHdJ5w V+0f4WIy95QC3X+QGCWY6n9tuLWGqS7/KtUEflnTNy6u+O2HIgFA5zjbiqEQben3 CjA9jHA1l0OVayMpr1ndeG80hQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFATVpIyl brrOqTp0h/7t9sgvgDkAMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQkJDOEQ3QkE5 RTgwMTFFQkE3QzNGQzZDQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAYIQPiQMA0GCSqGSIb3DQEBCwUAA4IBAQCHbb32r4WNv9QXUc+V Om/r4chXfJZdW7XEgNLkYB9HAI7gZHNhOQHKoqBelcMHuorzjzvDMynppE7duidH OjkdsNsxOBfpyqUNPO6OEnQ5Ys6eMDxU6pkySCb/3FCs9U5kothmSdW2MvrItKQ2 PC79wEiHiU8MqQ1GwDC3HSYziEPcsNH5A5kc+EGgPnAai/+c7f1qTbNP/InFP+uV Yo7Zk3yGarEDDQYPyakMsAYIVYDxgv4Jo81cjdynYGHmA+udVw5PeMJ0u8e/bwiA 9mz/834yd8REeJy2hRPB07zFoNj0KVWS5Ok1if6Uo/mL6ey9nbPgsMTbMgE7RzaD pFXC -----END CERTIFICATE-----Generated at Sat Mar 7 02:23:45 2026 by rpki-client