$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CDD3B6808E2511EF966A7D1CC4F9AE02.roa File: CDD3B6808E2511EF966A7D1CC4F9AE02.roa (raw, json) Hash identifier: OEntKpfxRgblQP8VtcZ7/k1cMSs+TUwixYJ+CeUyUko= Subject key identifier: F5:D5:C1:1E:7E:9B:D8:11:D8:AA:3E:8A:80:BE:D8:A1:5A:AD:9B:41 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 108C Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CDD3B6808E2511EF966A7D1CC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:30:58 +0000 ROA not before: Thu 22 May 2025 20:08:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 215304 IP address blocks: 2406:840:eab0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4236 (0x108c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493f2-66d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e0:8c:93:ae:2d:6f:05:2b:53:b0:aa:fb:e3: a3:75:63:7e:32:ac:db:80:82:3e:96:4d:e3:db:70: 91:b3:12:34:5f:59:08:5f:23:94:d8:76:10:d6:e6: f2:b6:72:61:ca:86:1c:90:0e:d2:e6:bb:b4:20:90: ae:0b:79:16:ed:3e:1c:d1:7a:d7:15:7a:76:27:f2: ad:43:be:25:ef:04:4f:b7:18:bc:73:26:91:d0:15: 0f:cf:92:a9:d7:8a:d2:8b:10:89:d8:18:8e:83:b1: b8:30:bf:8d:21:20:56:48:27:af:89:d7:ce:0d:24: 47:53:c3:2f:16:5a:bb:7b:90:ca:a8:6c:95:c0:a6: 5f:47:98:03:5c:d4:b5:d4:7d:2b:1b:02:b1:91:28: fe:e4:44:50:21:fa:8d:f1:af:29:74:c0:58:1b:86: 58:f6:82:86:f0:24:1b:57:66:e1:01:b6:5f:50:23: 75:52:e6:73:aa:24:8e:05:ac:eb:97:f2:7e:9d:90: df:7a:17:23:67:04:dc:ae:c3:c6:fc:ab:db:04:59: f3:1b:e0:53:16:af:6c:ad:e6:e6:0d:ef:fb:26:b8: a5:22:c7:64:76:30:89:01:9e:d1:47:2b:bb:de:d7: bb:cd:e0:10:67:50:e4:0b:86:2c:b5:0a:9c:76:47: e8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:D5:C1:1E:7E:9B:D8:11:D8:AA:3E:8A:80:BE:D8:A1:5A:AD:9B:41 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CDD3B6808E2511EF966A7D1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:eab0::/44 Signature Algorithm: sha256WithRSAEncryption 78:96:c2:ad:e7:31:9a:f9:2a:90:54:84:a7:e4:7b:f4:60:51: dd:ec:b4:14:96:07:d7:c2:00:a3:8a:ad:d3:3b:8b:7b:1a:b5: 64:24:ae:47:4a:b6:f1:c8:99:df:ad:40:21:db:ac:eb:e8:c9: b2:14:5b:af:4c:c5:07:ec:57:d7:ee:37:e7:5e:54:e0:4c:22: c2:d7:8d:97:74:c4:42:17:60:34:3e:7a:39:02:bc:aa:12:c9: 51:d9:37:d3:29:2a:17:a2:c4:cb:e0:37:88:74:37:aa:97:3a: bf:53:a3:ac:51:94:90:49:0e:18:64:42:0d:c7:82:db:35:ba: 1f:17:7a:40:53:7a:0d:60:82:15:ea:35:d2:d5:67:93:23:dc: 18:c9:53:40:0a:12:67:06:9d:46:fb:35:c9:14:7e:96:f2:f8: fb:b2:31:6b:d9:6a:09:15:36:d2:fe:c5:7d:8d:b7:1c:db:b3: 0e:07:29:a0:c4:72:8e:81:78:4e:0c:04:b0:03:6c:2a:c5:d1: 25:d2:7c:42:eb:63:97:c4:4a:09:0d:be:24:55:fc:53:f3:23: f5:39:57:1e:5a:fd:0b:25:aa:de:3a:c7:5b:fd:9d:54:5a:08: 50:7c:cb:5f:5a:36:85:5c:3b:67:64:ca:ed:e3:9c:2d:24:92: 4d:5b:57:24 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICEIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNmMi02NmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruCMk64tbwUrU7Cq++OjdWN+MqzbgII+lk3j23CRsxI0X1kIXyOU2HYQ1uby tnJhyoYckA7S5ru0IJCuC3kW7T4c0XrXFXp2J/KtQ74l7wRPtxi8cyaR0BUPz5Kp 14rSixCJ2BiOg7G4ML+NISBWSCevidfODSRHU8MvFlq7e5DKqGyVwKZfR5gDXNS1 1H0rGwKxkSj+5ERQIfqN8a8pdMBYG4ZY9oKG8CQbV2bhAbZfUCN1UuZzqiSOBazr l/J+nZDfehcjZwTcrsPG/KvbBFnzG+BTFq9srebmDe/7JrilIsdkdjCJAZ7RRyu7 3te7zeAQZ1DkC4YstQqcdkfoyQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFPXVwR5+ m9gR2Ko+ioC+2KFarZtBMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQ0REM0I2ODA4 RTI1MTFFRjk2NkE3RDFDQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAYIQOqwMA0GCSqGSIb3DQEBCwUAA4IBAQB4lsKt5zGa+SqQVISn 5Hv0YFHd7LQUlgfXwgCjiq3TO4t7GrVkJK5HSrbxyJnfrUAh26zr6MmyFFuvTMUH 7FfX7jfnXlTgTCLC142XdMRCF2A0Pno5AryqEslR2TfTKSoXosTL4DeIdDeqlzq/ U6OsUZSQSQ4YZEINx4LbNbofF3pAU3oNYIIV6jXS1WeTI9wYyVNAChJnBp1G+zXJ FH6W8vj7sjFr2WoJFTbS/sV9jbcc27MOBymgxHKOgXhODASwA2wqxdEl0nxC62OX xEoJDb4kVfxT8yP1OVceWv0LJareOsdb/Z1UWghQfMtfWjaFXDtnZMrt45wtJJJN W1ck -----END CERTIFICATE-----Generated at Sat Mar 7 02:26:56 2026 by rpki-client