$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/3404E194C47711EB9BD0E327C4F9AE02.roa File: 3404E194C47711EB9BD0E327C4F9AE02.roa (raw, json) Hash identifier: PxFVviosW3UG3IGtw+SpLYiS9VZVb2yiv+rm8evHIGI= Subject key identifier: B4:D9:79:07:BC:17:16:16:1F:18:E9:71:07:96:0D:DA:B0:11:D9:45 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 296D Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/3404E194C47711EB9BD0E327C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:10:09 +0000 ROA not before: Sat 26 Jul 2025 15:54:19 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 6921 IP address blocks: 2402:e380:e000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10605 (0x296d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D, serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 26 15:54:19 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48f11-ba9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6f:18:22:e0:48:68:89:dc:76:45:27:58:08: a5:69:49:6f:8e:3d:a4:c4:30:1e:a1:92:ba:7a:b8: 2e:fb:b0:c5:77:d0:09:9a:c1:40:00:7a:3f:b8:0b: 37:1b:ab:1f:d9:60:89:02:97:40:2d:f4:c9:2e:fa: 01:ce:d1:d5:99:da:7c:4d:38:09:1c:4e:c6:3a:db: 09:57:9d:b7:dd:c7:17:78:0b:5c:37:c8:e3:fd:5b: 01:23:19:03:d3:8f:a9:61:94:d3:35:e5:67:03:ab: 31:ce:94:4e:c1:ae:b0:3b:1d:b7:eb:02:76:fc:26: 59:d9:71:e3:5d:69:b1:ed:88:4b:e2:9d:ea:83:a9: e2:30:34:d3:d6:19:9f:5a:80:a0:41:0f:75:13:bd: 7b:e5:1b:25:21:58:cd:20:c4:0b:dc:07:8c:f4:22: 7b:4c:17:5d:4b:42:03:fd:6e:31:bc:d3:b2:27:59: 58:f9:f5:89:89:53:9a:40:c3:b7:3c:70:a8:af:0b: 1e:f9:59:42:63:4f:69:08:8f:31:75:89:5f:d8:b7: cd:65:e1:e9:49:05:0e:3d:59:fe:6d:45:f2:3f:bc: 7d:3e:e5:fa:01:fc:d8:53:af:0a:a8:da:d3:b7:05: fb:f8:f3:3f:e1:2e:e6:99:23:f5:f9:cd:00:5b:c1: eb:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:D9:79:07:BC:17:16:16:1F:18:E9:71:07:96:0D:DA:B0:11:D9:45 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/3404E194C47711EB9BD0E327C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2402:e380:e000::/35 Signature Algorithm: sha256WithRSAEncryption 03:25:6b:67:03:09:8a:97:ac:4c:ac:40:f9:1d:1e:6f:0b:31: a4:61:0e:7b:66:06:27:42:af:91:d5:27:19:06:9d:bf:50:93: 95:33:c4:c2:cd:95:df:26:ab:42:ae:57:1e:98:05:1f:23:5a: 7e:00:16:f4:12:2e:ed:c7:ff:29:8d:0c:be:bb:2f:7e:be:eb: 7c:44:8c:dd:a4:a1:88:27:0f:b8:54:c9:a6:f8:16:a7:6a:c0: f9:56:0d:7c:47:0c:13:05:3b:7d:49:48:f8:03:83:6a:76:55: 98:e7:8a:a1:bd:43:34:22:5d:80:f4:61:13:cb:ae:97:e6:15: 10:00:45:5b:ae:fa:44:59:f9:40:73:1b:59:4e:29:99:76:b8: 6d:8b:23:9d:08:3d:f0:08:5f:f2:05:6f:17:bc:26:a0:07:c8: 94:2e:8d:01:83:83:19:8d:7e:ec:6c:49:d7:b1:1b:41:ba:b6: c7:ef:aa:ee:a3:25:70:5c:52:ff:1b:1e:d5:97:2f:3e:e1:94: 30:b9:fc:f0:46:f9:c1:d2:d2:9c:89:9c:3f:42:8c:0b:2b:66: ec:57:3c:51:d8:f4:7b:45:3e:5e:27:61:f6:9a:b2:79:7c:3b: bf:00:6b:31:e4:fc:98:79:7d:1d:fc:1b:36:1f:6f:f2:12:1d: 56:84:75:ba -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgICKW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjUwNzI2MTU1NDE5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGYxMS1iYTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtW8YIuBIaIncdkUnWAilaUlvjj2kxDAeoZK6ergu+7DFd9AJmsFAAHo/uAs3 G6sf2WCJApdALfTJLvoBztHVmdp8TTgJHE7GOtsJV5233ccXeAtcN8jj/VsBIxkD 04+pYZTTNeVnA6sxzpROwa6wOx236wJ2/CZZ2XHjXWmx7YhL4p3qg6niMDTT1hmf WoCgQQ91E7175RslIVjNIMQL3AeM9CJ7TBddS0ID/W4xvNOyJ1lY+fWJiVOaQMO3 PHCorwse+VlCY09pCI8xdYlf2LfNZeHpSQUOPVn+bUXyP7x9PuX6AfzYU68KqNrT twX7+PM/4S7mmSP1+c0AW8HrEQIDAQABo4ICYjCCAl4wHQYDVR0OBBYEFLTZeQe8 FxYWHxjpcQeWDdqwEdlFMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvMzQwNEUxOTRD NDc3MTFFQjlCRDBFMzI3QzRGOUFFMDIucm9hMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYFJALjgOAwDQYJKoZIhvcNAQELBQADggEBAAMla2cDCYqXrEysQPkd Hm8LMaRhDntmBidCr5HVJxkGnb9Qk5UzxMLNld8mq0KuVx6YBR8jWn4AFvQSLu3H /ymNDL67L36+63xEjN2koYgnD7hUyab4FqdqwPlWDXxHDBMFO31JSPgDg2p2VZjn iqG9QzQiXYD0YRPLrpfmFRAARVuu+kRZ+UBzG1lOKZl2uG2LI50IPfAIX/IFbxe8 JqAHyJQujQGDgxmNfuxsSdexG0G6tsfvqu6jJXBcUv8bHtWXLz7hlDC5/PBG+cHS 0pyJnD9CjAsrZuxXPFHY9HtFPl4nYfaasnl8O78AazHk/Jh5fR38GzYfb/ISHVaE dbo= -----END CERTIFICATE-----Generated at Mon Mar 2 09:49:09 2026 by rpki-client