$ rpki-client -vvf rpki.apnic.net/member_repository/A9116297/734C43B0C5CB11F09666BC58C4F9AE02/217645DAC5CC11F0B5963A5AC4F9AE02.roa File: 217645DAC5CC11F0B5963A5AC4F9AE02.roa (raw, json) Hash identifier: b9SLnnmjCzEPCkObeuo8/EHmdYFDq+wqAL43fh98qxw= Subject key identifier: 7F:53:56:B4:9E:2B:EC:9D:C0:73:BF:F6:55:87:20:F0:CB:29:35:79 Certificate issuer: /CN=A9116297/serialNumber=C3A9E32A1299F2C2C9203565DAC59991397232BD Certificate serial: 36 Authority key identifier: C3:A9:E3:2A:12:99:F2:C2:C9:20:35:65:DA:C5:99:91:39:72:32:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w6njKhKZ8sLJIDVl2sWZkTlyMr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116297/734C43B0C5CB11F09666BC58C4F9AE02/217645DAC5CC11F0B5963A5AC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:00:30 +0000 ROA not before: Thu 20 Nov 2025 04:48:17 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 46559 IP address blocks: 2001:df6:4e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116297/734C43B0C5CB11F09666BC58C4F9AE02/w6njKhKZ8sLJIDVl2sWZkTlyMr0.crl rsync://rpki.apnic.net/member_repository/A9116297/734C43B0C5CB11F09666BC58C4F9AE02/w6njKhKZ8sLJIDVl2sWZkTlyMr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w6njKhKZ8sLJIDVl2sWZkTlyMr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116297, serialNumber=C3A9E32A1299F2C2C9203565DAC59991397232BD Validity Not Before: Nov 20 04:48:17 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a3d5fe-074c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:da:09:9c:5a:2a:ab:31:29:f9:84:fc:ee:eb: b9:66:a8:40:a2:e0:50:89:e6:9c:af:06:bc:de:98: c7:07:14:3c:56:cf:fc:a2:24:fb:06:c5:32:cb:37: 90:97:3d:ae:ca:da:3b:3d:6e:10:d7:19:e3:c8:64: 68:5e:d3:9e:5f:aa:89:55:30:76:b4:16:d1:e0:53: c0:24:6c:4b:91:08:6c:37:b0:da:c1:bc:7d:ff:82: a1:9a:50:4a:1a:13:23:91:cb:81:61:3c:81:b7:8c: 4f:8d:4d:eb:86:77:66:c6:57:6d:50:5a:b3:65:42: e8:37:9a:6e:7d:bc:a0:b7:63:f6:5f:cb:e2:0e:54: f0:1e:34:93:a8:a8:97:70:27:22:93:91:b2:f5:82: 07:d1:96:a3:49:44:3c:ee:ab:50:fc:9f:61:c8:de: e9:4e:b8:a5:7b:f4:c8:66:88:6c:ff:b1:45:84:05: 4d:47:ef:85:4f:68:8d:44:e3:fb:c8:9c:e7:04:4b: 3b:c6:fd:f3:95:c6:e0:15:bd:77:02:20:b8:7c:89: da:a4:bb:d6:cc:c5:1c:c6:6c:77:d9:65:79:ac:a6: 7e:b4:96:70:8c:26:17:b8:05:4e:b5:17:aa:37:70: 35:f3:4a:82:03:8a:e8:06:7a:86:62:b4:b2:37:9b: f9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:53:56:B4:9E:2B:EC:9D:C0:73:BF:F6:55:87:20:F0:CB:29:35:79 X509v3 Authority Key Identifier: keyid:C3:A9:E3:2A:12:99:F2:C2:C9:20:35:65:DA:C5:99:91:39:72:32:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116297/734C43B0C5CB11F09666BC58C4F9AE02/w6njKhKZ8sLJIDVl2sWZkTlyMr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w6njKhKZ8sLJIDVl2sWZkTlyMr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116297/734C43B0C5CB11F09666BC58C4F9AE02/217645DAC5CC11F0B5963A5AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:4e40::/48 Signature Algorithm: sha256WithRSAEncryption 5f:b7:a3:f2:16:a1:a5:02:2b:1f:be:57:bd:34:f0:34:1b:1b: 87:da:8c:e4:ae:20:2f:98:6a:87:ae:eb:87:39:e9:1b:79:29: ab:26:ba:ed:54:1b:21:24:65:cb:0b:5f:15:5f:63:b7:68:1a: ba:ff:a0:c6:56:1d:95:3d:63:4c:49:80:80:05:e9:c5:f7:70: 95:b9:9a:03:66:d3:1b:4f:1e:f0:98:ad:d0:aa:7f:e2:72:40: 85:a6:8f:a1:4f:ba:42:42:22:14:b0:3e:b2:1d:31:47:0b:b7: 6f:b3:0d:a9:9a:77:d7:8c:63:4e:b7:31:db:23:7d:73:d0:03: b0:a1:81:3b:8e:fb:77:f5:08:60:0f:99:36:23:92:70:7c:9f: 77:cd:b2:60:e2:83:8c:9a:fb:c5:cf:68:7c:29:b5:42:df:69: 31:08:a9:92:0d:a4:ed:40:05:a8:83:89:d9:ce:a8:ec:24:57: b6:bf:3e:3d:61:82:6b:b9:ab:c1:b3:ae:48:a4:6c:01:5b:41: f4:e5:39:81:6f:36:6f:85:fd:a2:6a:4b:23:8d:76:87:ea:cf: 8d:b7:f1:b1:b1:e3:8b:48:b1:77:39:2d:55:78:b4:b1:c9:42: 1f:7f:17:45:9b:f7:5e:7b:53:71:9f:c7:20:a4:00:f0:40:24: ab:6b:c5:2c -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NjI5NzExMC8GA1UEBRMoQzNBOUUzMkExMjk5RjJDMkM5MjAzNTY1REFDNTk5OTEz OTcyMzJCRDAeFw0yNTExMjAwNDQ4MTdaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNWZlLTA3NGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC12gmcWiqrMSn5hPzu67lmqECi4FCJ5pyvBrzemMcHFDxWz/yiJPsGxTLLN5CX Pa7K2js9bhDXGePIZGhe055fqolVMHa0FtHgU8AkbEuRCGw3sNrBvH3/gqGaUEoa EyORy4FhPIG3jE+NTeuGd2bGV21QWrNlQug3mm59vKC3Y/Zfy+IOVPAeNJOoqJdw JyKTkbL1ggfRlqNJRDzuq1D8n2HI3ulOuKV79MhmiGz/sUWEBU1H74VPaI1E4/vI nOcESzvG/fOVxuAVvXcCILh8idqku9bMxRzGbHfZZXmspn60lnCMJhe4BU61F6o3 cDXzSoIDiugGeoZitLI3m/ljAgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUf1NWtJ4r 7J3Ac7/2VYcg8MspNXkwHwYDVR0jBBgwFoAUw6njKhKZ8sLJIDVl2sWZkTlyMr0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2Mjk3LzczNEM0M0IwQzVD QjExRjA5NjY2QkM1OEM0RjlBRTAyL3c2bmpLaEtaOHNMSklEVmwyc1daa1RseU1y MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdzZuaktoS1o4c0xKSURWbDJzV1prVGx5TXIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjI5Ny83MzRDNDNCMEM1Q0IxMUYwOTY2NkJDNThDNEY5QUUwMi8yMTc2NDVEQUM1 Q0MxMUYwQjU5NjNBNUFDNEY5QUUwMi5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ32TkAwDQYJKoZIhvcNAQELBQADggEBAF+3o/IWoaUCKx++V700 8DQbG4fajOSuIC+Yaoeu64c56Rt5Kasmuu1UGyEkZcsLXxVfY7doGrr/oMZWHZU9 Y0xJgIAF6cX3cJW5mgNm0xtPHvCYrdCqf+JyQIWmj6FPukJCIhSwPrIdMUcLt2+z Damad9eMY063MdsjfXPQA7ChgTuO+3f1CGAPmTYjknB8n3fNsmDig4ya+8XPaHwp tULfaTEIqZINpO1ABaiDidnOqOwkV7a/Pj1hgmu5q8GzrkikbAFbQfTlOYFvNm+F /aJqSyONdofqz4238bGx44tIsXc5LVV4tLHJQh9/F0Wb9157U3GfxyCkAPBAJKtr xSw= -----END CERTIFICATE-----Generated at Mon Mar 2 07:40:35 2026 by rpki-client