$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CACEAE268AD011EE9E1DAF84C4F9AE02.roa File: CACEAE268AD011EE9E1DAF84C4F9AE02.roa (raw, json) Hash identifier: Xe7jDVVY++JZPPRjc4bOzYcgcSwF8oIokoyCZNdVvdw= Subject key identifier: 4A:B2:03:62:DB:A4:B5:FA:1C:3B:F1:34:86:71:D7:24:71:8E:C6:78 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 1058 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CACEAE268AD011EE9E1DAF84C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:30:10 +0000 ROA not before: Thu 22 May 2025 20:07:24 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152118 IP address blocks: 2406:840:e880::/44 maxlen: 48 2406:840:fec4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4184 (0x1058) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:07:24 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493c1-6341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3c:66:09:70:42:39:22:7e:55:ba:26:b9:3a: 2b:9b:ba:b8:3b:53:07:41:bb:2b:9b:63:54:c3:62: 0f:91:b1:68:9a:f7:39:e1:46:de:30:45:0d:cb:22: 16:82:ba:4b:83:a2:4f:e7:3c:35:80:d6:f5:fb:70: 4c:b5:a3:39:0a:cd:38:5f:bb:d8:4c:75:2c:1b:54: bf:61:9a:69:6f:9f:3a:af:b3:33:92:dd:ad:10:89: 0c:8b:72:86:1c:25:a8:18:8f:69:9a:89:f4:11:ab: 43:41:a0:71:09:56:b2:a6:41:1c:8e:45:28:36:8a: 50:e7:01:74:e9:6f:0d:45:77:42:3e:16:9e:44:26: a2:78:3d:ea:90:63:d8:46:8e:b6:39:23:b6:48:41: dc:9b:13:b3:2a:47:8c:42:e7:f4:4b:b3:5b:b5:90: aa:70:99:70:e9:a7:c9:cf:06:73:de:b6:11:24:90: a7:47:64:73:0d:04:43:9f:3c:09:3f:6c:6e:12:f4: 5b:2a:26:67:04:77:56:69:ec:19:bd:ee:84:4c:9d: f4:c7:c7:1c:8f:92:91:49:8a:63:6a:d9:49:85:86: 79:a1:82:3f:5c:4c:65:41:97:56:20:8e:4f:3d:5e: 23:b9:05:5a:20:3d:b2:ef:85:64:0e:a0:66:77:f9: e4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B2:03:62:DB:A4:B5:FA:1C:3B:F1:34:86:71:D7:24:71:8E:C6:78 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CACEAE268AD011EE9E1DAF84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:e880::/44 2406:840:fec4::/48 Signature Algorithm: sha256WithRSAEncryption 10:8b:3c:f9:4b:3a:59:df:65:e5:ab:5c:b5:8f:dc:07:9b:e2: a7:61:25:ae:ba:1e:6f:a4:32:6f:d8:09:21:92:0d:27:aa:42: 9b:b3:4a:3b:be:23:e3:e9:df:c8:77:34:91:58:08:c9:fb:52: ce:26:b6:be:17:2a:be:5c:a0:9c:52:f9:a4:90:f8:ae:4b:5c: 59:60:28:11:48:06:39:5d:1d:cc:b1:d6:f2:0a:b8:99:6e:5e: 1e:d9:e6:ef:cd:7b:d0:0e:52:2b:eb:c4:65:6d:65:2d:94:48: 93:a8:15:87:1c:9c:dd:1b:e1:32:fb:75:c9:58:57:32:3a:00: 80:7b:e5:1d:82:db:ed:81:48:1b:b9:7f:3b:87:be:7f:a1:86: b9:aa:0f:0e:b1:08:95:4d:2d:06:7f:70:5f:b5:1d:7c:f5:30: f8:87:8d:64:d5:cb:64:7a:52:52:05:1b:a3:b2:fe:cf:bb:eb: ed:bd:62:6c:d7:0d:b9:74:8f:b4:2b:db:13:c1:9e:45:34:14: 1e:c1:cc:2d:4c:4b:28:1f:a2:64:e7:e8:05:4c:72:dd:c1:63: d5:91:24:cc:df:4b:01:21:12:db:2e:6e:a3:08:9e:44:73:0d: 65:c3:68:70:8e:5c:26:29:e6:74:53:76:a2:1d:d0:55:45:ad: 83:28:be:40 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNzI0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNjMS02MzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDxmCXBCOSJ+VbomuTorm7q4O1MHQbsrm2NUw2IPkbFomvc54UbeMEUNyyIW grpLg6JP5zw1gNb1+3BMtaM5Cs04X7vYTHUsG1S/YZppb586r7Mzkt2tEIkMi3KG HCWoGI9pmon0EatDQaBxCVaypkEcjkUoNopQ5wF06W8NRXdCPhaeRCaieD3qkGPY Ro62OSO2SEHcmxOzKkeMQuf0S7NbtZCqcJlw6afJzwZz3rYRJJCnR2RzDQRDnzwJ P2xuEvRbKiZnBHdWaewZve6ETJ30x8ccj5KRSYpjatlJhYZ5oYI/XExlQZdWII5P PV4juQVaID2y74VkDqBmd/nktwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFEqyA2Lb pLX6HDvxNIZx1yRxjsZ4MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQ0FDRUFFMjY4 QUQwMTFFRTlFMURBRjg0QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQOiAAwcAJAYIQP7EMA0GCSqGSIb3DQEBCwUAA4IBAQAQizz5 SzpZ32Xlq1y1j9wHm+KnYSWuuh5vpDJv2Akhkg0nqkKbs0o7viPj6d/IdzSRWAjJ +1LOJra+Fyq+XKCcUvmkkPiuS1xZYCgRSAY5XR3MsdbyCriZbl4e2ebvzXvQDlIr 68RlbWUtlEiTqBWHHJzdG+Ey+3XJWFcyOgCAe+UdgtvtgUgbuX87h75/oYa5qg8O sQiVTS0Gf3BftR189TD4h41k1ctkelJSBRujsv7Pu+vtvWJs1w25dI+0K9sTwZ5F NBQewcwtTEsoH6Jk5+gFTHLdwWPVkSTM30sBIRLbLm6jCJ5Ecw1lw2hwjlwmKeZ0 U3aiHdBVRa2DKL5A -----END CERTIFICATE-----Generated at Sat Mar 7 02:23:46 2026 by rpki-client