$ rpki-client -vvf rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/417DA2566D5E11EE831C802AC4F9AE02.roa File: 417DA2566D5E11EE831C802AC4F9AE02.roa (raw, json) Hash identifier: PDnEhXpybcfU5TbW/vsPqy6UwZtYUKAhQ/oRyYe81/U= Subject key identifier: B7:B3:EF:E2:FD:65:00:38:88:A7:0E:B3:18:94:08:CA:89:84:1F:00 Certificate issuer: /CN=A911BE38/serialNumber=B18C43743466921DB0425E7367D55C28EE4AF1CD Certificate serial: 0283 Authority key identifier: B1:8C:43:74:34:66:92:1D:B0:42:5E:73:67:D5:5C:28:EE:4A:F1:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/417DA2566D5E11EE831C802AC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:19:01 +0000 ROA not before: Wed 03 Dec 2025 00:30:43 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 132857 IP address blocks: 2001:df3:7c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.crl rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:44:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 643 (0x283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BE38, serialNumber=B18C43743466921DB0425E7367D55C28EE4AF1CD Validity Not Before: Dec 3 00:30:43 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a43cc5-501f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:31:6f:03:fb:25:bb:bb:16:ea:03:3e:c3:86: f3:15:28:4d:68:cb:ab:66:82:6a:6b:23:56:aa:0e: 85:2a:20:78:da:8f:4e:25:e4:c0:e9:2a:4f:08:fe: 34:ee:ff:61:4b:ca:2b:5e:2e:4f:6a:f8:f7:b3:5a: 51:c5:57:37:b3:3f:e9:cc:42:72:f0:c6:8f:8d:aa: f4:6d:70:35:41:b8:30:07:8f:30:ea:80:d4:08:8d: 22:da:db:b9:28:6d:c2:67:62:48:5e:14:c3:eb:60: 16:b2:7a:a7:bb:3f:66:b1:99:6c:24:47:f5:3b:8b: 52:df:1c:eb:a1:06:55:06:3b:f3:03:ee:13:b1:53: b6:5c:14:e6:8e:2c:22:48:33:58:e1:f6:3d:47:c7: 7e:b8:c6:e7:2f:87:ac:32:b3:96:7b:2c:a7:ec:0f: 6a:52:02:bc:c9:c3:41:e1:81:d5:df:ea:f7:72:0f: 77:ae:31:8e:87:1b:04:d5:5f:a6:98:59:d1:d8:bc: c4:38:06:ca:49:85:dd:9d:4b:bc:06:74:8e:74:a5: d8:d7:64:42:b5:99:98:d1:f0:7d:2a:79:4d:d4:73: 69:6b:a6:2f:ad:50:33:ec:b8:f9:8e:e9:3a:04:90: c1:09:1d:a1:25:12:b9:63:e4:96:e5:07:7f:e6:40: e4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B3:EF:E2:FD:65:00:38:88:A7:0E:B3:18:94:08:CA:89:84:1F:00 X509v3 Authority Key Identifier: keyid:B1:8C:43:74:34:66:92:1D:B0:42:5E:73:67:D5:5C:28:EE:4A:F1:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/417DA2566D5E11EE831C802AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:7c0::/48 Signature Algorithm: sha256WithRSAEncryption d0:6b:31:71:c0:e3:50:13:eb:cc:51:4d:c9:48:00:36:2a:25: 20:45:31:85:e0:36:6f:3d:38:1b:a9:b5:7d:ba:cd:86:c0:56: b0:42:79:ec:83:bf:a5:58:cb:6e:08:28:90:6b:b2:5b:ce:b0: ca:66:1b:b5:e3:f2:d7:9d:36:3f:c4:6a:a0:bd:06:3e:89:84: 4d:0b:4d:7b:d8:e8:b0:b0:87:1b:ba:de:4e:3e:58:d5:5d:14: fd:a6:5a:61:40:ec:b4:fa:80:0c:60:32:c5:36:3b:41:f0:cb: 6a:3a:95:20:d7:fd:df:c5:d1:ef:ab:9b:d5:cb:96:c6:9f:d2: d3:9c:7f:e7:7d:2b:81:f1:92:d2:d2:fc:39:d7:9b:bd:2d:27: 93:73:61:07:f1:12:d7:8a:5e:dc:bc:96:58:ef:e2:79:a0:26: e1:7d:a6:04:78:37:60:6d:3e:0f:65:9a:26:26:66:5b:f9:89: e1:46:34:ad:75:0a:46:0b:81:37:43:3b:13:9f:72:67:ca:a6: dd:2e:55:95:16:eb:e3:58:2e:2b:b7:05:fc:14:b7:08:66:e1: 39:27:20:7e:68:cd:95:dd:05:e6:45:a8:e3:1f:ae:cb:43:09: c9:d2:51:b9:6c:f3:af:f5:3a:33:df:5e:1b:aa:8e:3d:1a:29: 45:e2:de:e1 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJFMzgxMTAvBgNVBAUTKEIxOEM0Mzc0MzQ2NjkyMURCMDQyNUU3MzY3RDU1QzI4 RUU0QUYxQ0QwHhcNMjUxMjAzMDAzMDQzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2NjNS01MDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjFvA/slu7sW6gM+w4bzFShNaMurZoJqayNWqg6FKiB42o9OJeTA6SpPCP40 7v9hS8orXi5Pavj3s1pRxVc3sz/pzEJy8MaPjar0bXA1QbgwB48w6oDUCI0i2tu5 KG3CZ2JIXhTD62AWsnqnuz9msZlsJEf1O4tS3xzroQZVBjvzA+4TsVO2XBTmjiwi SDNY4fY9R8d+uMbnL4esMrOWeyyn7A9qUgK8ycNB4YHV3+r3cg93rjGOhxsE1V+m mFnR2LzEOAbKSYXdnUu8BnSOdKXY12RCtZmY0fB9KnlN1HNpa6YvrVAz7Lj5juk6 BJDBCR2hJRK5Y+SW5Qd/5kDkKQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFLez7+L9 ZQA4iKcOsxiUCMqJhB8AMB8GA1UdIwQYMBaAFLGMQ3Q0ZpIdsEJec2fVXCjuSvHN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkUzOC82REEyRDlCMjU0 MUIxMUVEQkVCQTRBNTBDNEY5QUUwMi9zWXhEZERSbWtoMndRbDV6WjlWY0tPNUs4 YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NZeERkRFJta2gyd1FsNXpaOVZjS081SzhjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJFMzgvNkRBMkQ5QjI1NDFCMTFFREJFQkE0QTUwQzRGOUFFMDIvNDE3REEyNTY2 RDVFMTFFRTgzMUM4MDJBQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN8wfAMA0GCSqGSIb3DQEBCwUAA4IBAQDQazFxwONQE+vMUU3J SAA2KiUgRTGF4DZvPTgbqbV9us2GwFawQnnsg7+lWMtuCCiQa7JbzrDKZhu14/LX nTY/xGqgvQY+iYRNC0172OiwsIcbut5OPljVXRT9plphQOy0+oAMYDLFNjtB8Mtq OpUg1/3fxdHvq5vVy5bGn9LTnH/nfSuB8ZLS0vw515u9LSeTc2EH8RLXil7cvJZY 7+J5oCbhfaYEeDdgbT4PZZomJmZb+YnhRjStdQpGC4E3QzsTn3JnyqbdLlWVFuvj WC4rtwX8FLcIZuE5JyB+aM2V3QXmRajjH67LQwnJ0lG5bPOv9Toz314bqo49GilF 4t7h -----END CERTIFICATE-----Generated at Mon Mar 2 14:01:33 2026 by rpki-client