$ rpki-client -vvf rpki.apnic.net/member_repository/A911725F/7A9BF3CAFB2E11F0AFDE71893B6F56BC/0680FAB6FFBC11F0B48A1C476B6F56BC.roa File: 0680FAB6FFBC11F0B48A1C476B6F56BC.roa (raw, json) Hash identifier: JTg/wxnjXgQG78NKNMvzjkUcxRTYs52fNHEXF1Hjz1g= Subject key identifier: 92:CB:0C:19:59:C7:21:62:30:37:18:9E:1F:73:B6:0C:E5:E7:E1:C1 Certificate issuer: /CN=A911725F/serialNumber=EC6DF2ECD18F285F97B88F8441FD297A9EDBB94C Certificate serial: 1C Authority key identifier: EC:6D:F2:EC:D1:8F:28:5F:97:B8:8F:84:41:FD:29:7A:9E:DB:B9:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7G3y7NGPKF-XuI-EQf0pep7buUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911725F/7A9BF3CAFB2E11F0AFDE71893B6F56BC/0680FAB6FFBC11F0B48A1C476B6F56BC.roa Signing time: Sun 01 Mar 2026 05:44:11 +0000 ROA not before: Sun 01 Feb 2026 22:19:08 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 132387 IP address blocks: 2402:4b20::/32 maxlen: 32 2402:4b20:1000::/36 maxlen: 36 2402:4b20:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911725F/7A9BF3CAFB2E11F0AFDE71893B6F56BC/7G3y7NGPKF-XuI-EQf0pep7buUw.crl rsync://rpki.apnic.net/member_repository/A911725F/7A9BF3CAFB2E11F0AFDE71893B6F56BC/7G3y7NGPKF-XuI-EQf0pep7buUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7G3y7NGPKF-XuI-EQf0pep7buUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:29:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911725F, serialNumber=EC6DF2ECD18F285F97B88F8441FD297A9EDBB94C Validity Not Before: Feb 1 22:19:08 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a3d22b-b33f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:63:50:7b:20:9a:66:a4:b3:69:7a:e8:04:fc: f1:74:0a:ba:f7:d6:8b:45:7f:18:00:0e:49:bc:94: 4a:69:48:df:44:f4:83:e0:6d:ad:af:9d:16:4d:d8: 67:a1:e0:f5:92:06:b7:66:fc:64:df:06:62:cc:ed: 18:bc:cc:9c:3f:31:4e:9a:39:4a:42:dd:93:87:12: 12:57:34:22:89:61:ea:6b:61:d0:1e:4a:07:1e:34: bc:1c:8a:e0:1f:43:a2:73:63:c6:f4:f5:33:bd:4c: 2c:d8:ec:54:42:a0:ff:8b:9e:dd:42:2e:99:d4:b4: ee:72:34:31:fd:61:d8:80:fc:8c:0f:e6:5f:f3:14: 74:66:74:fd:66:87:a9:70:3e:82:f5:0f:a0:2f:97: cb:0b:3b:90:8f:ed:67:89:20:0e:ee:7e:27:a6:6a: 28:1f:a9:0a:d9:16:31:f8:d8:44:f4:1d:4b:fd:16: 1f:d1:43:63:80:a4:17:dc:d8:a3:88:3d:99:b4:c4: 2e:1b:42:9e:15:e6:74:5a:6d:f0:85:5e:8d:f9:a8: 1e:f6:e9:39:9a:97:ff:1e:bf:3f:1e:0a:89:e9:2d: a3:a8:1c:8d:48:1e:a9:c6:07:bf:a1:f1:b3:97:8f: f9:8a:82:06:be:a3:ce:d5:b3:9e:fc:08:e6:15:06: 4f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:CB:0C:19:59:C7:21:62:30:37:18:9E:1F:73:B6:0C:E5:E7:E1:C1 X509v3 Authority Key Identifier: keyid:EC:6D:F2:EC:D1:8F:28:5F:97:B8:8F:84:41:FD:29:7A:9E:DB:B9:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911725F/7A9BF3CAFB2E11F0AFDE71893B6F56BC/7G3y7NGPKF-XuI-EQf0pep7buUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7G3y7NGPKF-XuI-EQf0pep7buUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911725F/7A9BF3CAFB2E11F0AFDE71893B6F56BC/0680FAB6FFBC11F0B48A1C476B6F56BC.roa sbgp-ipAddrBlock: critical IPv6: 2402:4b20::/32 Signature Algorithm: sha256WithRSAEncryption 29:2d:51:0a:d2:10:87:03:89:e5:f9:e7:e6:4b:09:b3:96:06: 11:6c:87:dd:27:31:e5:a9:67:dc:e1:29:b0:c6:5d:f5:d7:12: 06:e3:e1:44:28:e5:af:f1:84:20:30:00:84:fa:bb:a2:bb:9f: cc:ac:b3:09:63:34:dd:43:b4:59:0b:20:f4:e4:12:e1:b4:2d: ba:78:81:4a:75:e1:a7:81:4e:67:49:25:52:b6:3b:c0:e0:10: d6:19:c6:5d:c2:43:68:65:1c:79:c5:5f:96:0f:1d:fb:f4:54: 6a:0c:18:99:3a:0f:f3:17:ab:69:3f:68:b0:8c:c6:12:a5:82: cb:a1:08:ba:29:11:91:03:d6:5b:a5:fa:60:71:d1:2f:af:81: b8:d7:a1:db:a9:37:89:22:ae:47:b7:9c:03:a8:c0:a2:82:af: a2:9f:c4:33:49:36:e9:e0:84:a6:2e:a1:0d:97:4e:67:c7:a6: 67:49:55:bf:93:a4:e7:67:a3:b8:53:69:bc:e2:75:4c:60:4f: 54:55:f1:8f:37:56:c3:b7:8b:40:67:b5:2d:f0:3c:68:20:1c: ed:7b:70:50:90:27:89:60:55:45:7e:5e:3d:46:4e:92:cc:cf: ed:4c:cd:d1:7d:4c:dc:f7:59:e0:41:0a:f0:f3:b0:ce:c6:b0: 5b:34:ae:9a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzI1RjExMC8GA1UEBRMoRUM2REYyRUNEMThGMjg1Rjk3Qjg4Rjg0NDFGRDI5N0E5 RURCQjk0QzAeFw0yNjAyMDEyMjE5MDhaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkMjJiLWIzM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChY1B7IJpmpLNpeugE/PF0Crr31otFfxgADkm8lEppSN9E9IPgba2vnRZN2Geh 4PWSBrdm/GTfBmLM7Ri8zJw/MU6aOUpC3ZOHEhJXNCKJYeprYdAeSgceNLwciuAf Q6JzY8b09TO9TCzY7FRCoP+Lnt1CLpnUtO5yNDH9YdiA/IwP5l/zFHRmdP1mh6lw PoL1D6Avl8sLO5CP7WeJIA7ufiemaigfqQrZFjH42ET0HUv9Fh/RQ2OApBfc2KOI PZm0xC4bQp4V5nRabfCFXo35qB726Tmal/8evz8eConpLaOoHI1IHqnGB7+h8bOX j/mKgga+o87Vs578COYVBk/zAgMBAAGjggJhMIICXTAdBgNVHQ4EFgQUkssMGVnH IWIwNxieH3O2DOXn4cEwHwYDVR0jBBgwFoAU7G3y7NGPKF+XuI+EQf0pep7buUww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3MjVGLzdBOUJGM0NBRkIy RTExRjBBRkRFNzE4OTNCNkY1NkJDLzdHM3k3TkdQS0YtWHVJLUVRZjBwZXA3YnVV dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN0czeTdOR1BLRi1YdUktRVFmMHBlcDdidVV3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzI1Ri83QTlCRjNDQUZCMkUxMUYwQUZERTcxODkzQjZGNTZCQy8wNjgwRkFCNkZG QkMxMUYwQjQ4QTFDNDc2QjZGNTZCQy5yb2EwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAksgMA0GCSqGSIb3DQEBCwUAA4IBAQApLVEK0hCHA4nl+efmSwmz lgYRbIfdJzHlqWfc4Smwxl311xIG4+FEKOWv8YQgMACE+ruiu5/MrLMJYzTdQ7RZ CyD05BLhtC26eIFKdeGngU5nSSVStjvA4BDWGcZdwkNoZRx5xV+WDx379FRqDBiZ Og/zF6tpP2iwjMYSpYLLoQi6KRGRA9ZbpfpgcdEvr4G416HbqTeJIq5Ht5wDqMCi gq+in8QzSTbp4ISmLqENl05nx6ZnSVW/k6TnZ6O4U2m84nVMYE9UVfGPN1bDt4tA Z7Ut8DxoIBzte3BQkCeJYFVFfl49Rk6SzM/tTM3RfUzc91ngQQrw87DOxrBbNK6a -----END CERTIFICATE-----Generated at Mon Mar 2 08:36:41 2026 by rpki-client