$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa File: C8FB88AEFAC411EDBFE0012DC4F9AE02.roa (raw, json) Hash identifier: IeT5XaHWqIIIRVxGHb+RkX5s+j0JhbOVOqsAaIaiN0Y= Subject key identifier: 8F:68:C1:4C:B7:14:4D:4B:6B:42:BA:60:45:86:57:9B:D8:55:BE:4C Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1025 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:29:25 +0000 ROA not before: Thu 22 May 2025 20:06:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136535 IP address blocks: 2406:840:fe27::/48 maxlen: 48 2406:840:fe74::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4133 (0x1025) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a49395-03ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:76:0b:b7:00:a2:79:5d:67:bd:4e:7a:e6:6f: f7:c3:af:37:a7:75:d1:97:a8:28:a9:ef:66:b6:a4: 15:11:50:c0:c0:cf:18:a3:5b:3c:80:88:f0:4e:b5: fe:de:94:74:70:ee:94:bd:1d:02:9d:d3:e8:9f:2c: c6:7d:8d:eb:c7:6f:a4:da:f1:b3:30:34:a0:0d:7c: 2f:39:f8:ed:60:0a:60:31:35:62:7e:29:34:94:0a: df:ef:bf:01:fd:bb:d3:8b:e2:5c:45:d5:3c:a7:63: a4:74:7b:cc:13:bf:0a:6d:92:a6:64:81:97:31:70: 6c:18:03:b4:04:59:43:81:69:e8:de:52:d5:e4:30: 65:43:c8:fd:34:78:70:aa:8a:01:6b:5b:aa:53:70: 54:de:d1:52:b1:25:2d:e4:ce:23:47:9d:8c:8a:d0: 0b:15:f7:45:0d:29:38:99:19:b2:ff:ea:ae:a1:57: a5:52:c5:67:ab:ad:93:85:81:b7:58:26:c6:92:da: b5:eb:e3:f2:e8:ef:e4:b0:c0:17:ec:d7:d6:31:e9: f3:52:a6:10:7c:35:b2:a9:1b:29:1e:5e:2e:28:56: d6:fb:32:2c:50:8d:c7:c6:b1:b5:e6:f7:3f:fc:3b: 7f:ff:18:34:ed:04:dc:d8:dc:5e:80:ca:59:3f:e1: 80:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:68:C1:4C:B7:14:4D:4B:6B:42:BA:60:45:86:57:9B:D8:55:BE:4C X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:fe27::/48 2406:840:fe74::/48 Signature Algorithm: sha256WithRSAEncryption 8b:7f:b4:2d:2d:7d:74:ae:71:88:03:f5:a4:26:ce:f6:9e:cf: ad:d2:c1:2f:3e:a7:c4:e6:d4:be:aa:f8:09:7c:25:4d:90:31: 06:84:27:26:f9:df:9b:fa:6c:2d:c9:94:45:97:36:c0:a0:54: 94:8d:14:19:48:8f:6a:47:df:ee:23:06:73:c1:ad:3c:68:5f: a1:c1:17:d3:d4:e0:7f:d4:1b:c4:04:9c:f8:5a:f5:3f:45:70: f3:4d:c0:2a:28:50:f3:de:38:70:86:ce:af:fb:c7:9e:ad:13: a2:e9:bf:1d:df:a5:06:d4:f8:2b:85:6b:86:f8:82:ee:35:f9: 56:db:5f:bd:bb:53:91:25:50:64:23:70:ef:a6:6b:be:f2:99: 8a:0d:b7:dd:d1:43:7a:73:3d:80:ec:2f:1f:1e:eb:65:cd:5c: a6:65:37:5b:e5:65:ad:c7:cb:bd:b9:25:80:37:4b:fd:bc:17: 30:3f:94:cf:9a:ee:6d:d6:71:8b:dc:72:db:99:b1:33:ea:9f: c4:e6:55:0b:36:dc:88:b0:34:5e:ec:4c:a8:72:8f:2f:e0:34: 98:9b:60:b4:c7:dd:7c:3f:b2:9d:74:43:e5:54:70:8b:89:f3: 0e:57:24:16:bb:4f:a0:39:21:85:8f:0b:c2:a4:b3:2f:c5:3a: 40:1f:96:d1 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICECUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjMzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTM5NS0wM2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5HYLtwCieV1nvU565m/3w683p3XRl6goqe9mtqQVEVDAwM8Yo1s8gIjwTrX+ 3pR0cO6UvR0CndPonyzGfY3rx2+k2vGzMDSgDXwvOfjtYApgMTVifik0lArf778B /bvTi+JcRdU8p2OkdHvME78KbZKmZIGXMXBsGAO0BFlDgWno3lLV5DBlQ8j9NHhw qooBa1uqU3BU3tFSsSUt5M4jR52MitALFfdFDSk4mRmy/+quoVelUsVnq62ThYG3 WCbGktq16+Py6O/ksMAX7NfWMenzUqYQfDWyqRspHl4uKFbW+zIsUI3HxrG15vc/ /Dt//xg07QTc2NxegMpZP+GAAQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFI9owUy3 FE1La0K6YEWGV5vYVb5MMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQzhGQjg4QUVG QUM0MTFFREJGRTAwMTJEQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcAJAYIQP4nAwcAJAYIQP50MA0GCSqGSIb3DQEBCwUAA4IBAQCLf7Qt LX10rnGIA/WkJs72ns+t0sEvPqfE5tS+qvgJfCVNkDEGhCcm+d+b+mwtyZRFlzbA oFSUjRQZSI9qR9/uIwZzwa08aF+hwRfT1OB/1BvEBJz4WvU/RXDzTcAqKFDz3jhw hs6v+8eerROi6b8d36UG1PgrhWuG+ILuNflW21+9u1ORJVBkI3Dvpmu+8pmKDbfd 0UN6cz2A7C8fHutlzVymZTdb5WWtx8u9uSWAN0v9vBcwP5TPmu5t1nGL3HLbmbEz 6p/E5lULNtyIsDRe7Eyoco8v4DSYm2C0x918P7KddEPlVHCLifMOVyQWu0+gOSGF jwvCpLMvxTpAH5bR -----END CERTIFICATE-----Generated at Sat Mar 7 02:24:43 2026 by rpki-client