$ rpki-client -vvf rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/C41B6A98396E11F1992DA1BA96833773.roa File: C41B6A98396E11F1992DA1BA96833773.roa (raw, json) Hash identifier: BPXuBuSemYn/E+9Uo6D+b9G7/Ig6Oc1u1YHeb89/AEQ= Subject key identifier: 70:D5:42:2A:8D:E2:A9:E9:46:B4:7D:FE:8C:AC:72:91:F8:B9:18:5B Certificate issuer: /CN=A912B12A/serialNumber=ECFF32440C4EE1D27943CDB72A7D491063402DF1 Certificate serial: 0112 Authority key identifier: EC:FF:32:44:0C:4E:E1:D2:79:43:CD:B7:2A:7D:49:10:63:40:2D:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/C41B6A98396E11F1992DA1BA96833773.roa Signing time: Thu 16 Apr 2026 08:32:12 +0000 ROA not before: Thu 16 Apr 2026 08:32:12 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 38193 IP address blocks: 2401:db60::/34 maxlen: 34 2401:db60:4000::/34 maxlen: 34 2401:db60:8000::/34 maxlen: 34 2401:db60:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.crl rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 08:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B12A, serialNumber=ECFF32440C4EE1D27943CDB72A7D491063402DF1 Validity Not Before: Apr 16 08:32:12 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69e09e8c-5c7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:15:91:2b:c6:e2:56:a2:aa:64:81:34:45:00: 81:80:11:ec:ca:1c:1e:ff:fb:81:d0:76:af:9a:72: 5d:68:d0:cd:55:be:37:a1:a1:29:bb:33:c0:30:4d: 2f:de:d8:45:cd:4f:93:04:84:8c:83:25:c7:ee:43: 9a:cf:6e:ea:d4:75:96:9d:f3:4e:e0:cc:e3:09:81: 3d:11:85:aa:20:c1:f9:e9:29:70:29:04:2f:5a:c2: 37:52:45:6e:74:20:ed:48:99:e9:0a:42:34:ba:90: 6d:42:1e:6e:92:a8:67:f2:1a:83:a6:1a:3c:1a:04: 98:6d:b5:5f:1b:87:a2:c0:b4:44:8c:1c:89:3d:09: 3a:96:55:a1:5a:3b:41:fc:03:2e:ae:88:4f:98:c3: a9:fe:67:e2:5e:8c:ab:ef:db:0a:c7:60:30:28:7d: 94:f8:1a:6f:6c:d1:ae:a9:78:1a:6d:e0:a0:74:93: a4:a9:b1:de:7d:5a:af:48:f1:e5:e8:d1:67:c4:37: d5:df:3b:ef:ac:1f:a2:aa:f3:3e:e5:d3:7a:e6:18: 33:75:60:73:33:36:48:58:6b:ab:f9:e3:82:cc:fe: 62:43:31:56:e8:68:7b:fb:1e:58:46:50:1c:47:b3: ab:ee:91:c1:c4:95:29:c3:ed:da:67:a2:2f:3c:8e: 4e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D5:42:2A:8D:E2:A9:E9:46:B4:7D:FE:8C:AC:72:91:F8:B9:18:5B X509v3 Authority Key Identifier: keyid:EC:FF:32:44:0C:4E:E1:D2:79:43:CD:B7:2A:7D:49:10:63:40:2D:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/C41B6A98396E11F1992DA1BA96833773.roa sbgp-ipAddrBlock: critical IPv6: 2401:db60::/32 Signature Algorithm: sha256WithRSAEncryption 45:4e:8c:e9:15:48:cf:93:74:ac:eb:bb:31:88:57:3a:04:02: 9d:66:9b:32:20:31:22:c4:c7:7b:55:04:57:6e:73:7b:a8:f0: 50:c1:e6:61:3b:42:da:b6:5c:02:28:78:3d:2f:25:05:20:6e: 78:f8:bb:58:bf:f8:99:ba:7a:6e:d7:ca:e5:90:f3:dc:ad:52: 9b:c0:0c:f7:d7:2e:b0:8a:1e:c5:fb:ca:43:db:b9:d8:29:96: 2f:ff:85:ff:fd:32:fe:64:cb:da:3a:15:a8:1c:5c:93:ec:f9: f4:56:e3:42:f5:a0:a9:e2:db:14:d6:1c:98:8f:1c:26:11:67: 24:05:94:24:27:8e:04:4f:a9:6e:2a:26:df:d7:ab:4a:e1:6e: 0e:e5:ce:c9:25:5b:37:ad:1d:2d:8e:33:4c:30:4f:b9:1e:a6: 55:38:01:72:a6:ab:a2:03:47:6e:58:7d:91:89:29:7d:0c:5a: 9b:39:46:07:b8:55:cb:1c:49:93:98:87:eb:30:51:26:bf:0f: 8d:ea:0c:41:19:fe:2d:44:27:af:7b:b7:cb:5b:03:f6:b4:8b: 9a:6e:e2:77:75:46:44:f4:85:3e:48:33:d3:c4:ae:ee:ca:05: 0f:96:9d:1c:52:e9:3c:b1:ab:6d:5c:95:0a:81:a4:6c:8f:9b: 30:e0:4a:14 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICARIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIxMkExMTAvBgNVBAUTKEVDRkYzMjQ0MEM0RUUxRDI3OTQzQ0RCNzJBN0Q0OTEw NjM0MDJERjEwHhcNMjYwNDE2MDgzMjEyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUwOWU4Yy01YzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRWRK8biVqKqZIE0RQCBgBHsyhwe//uB0HavmnJdaNDNVb43oaEpuzPAME0v 3thFzU+TBISMgyXH7kOaz27q1HWWnfNO4MzjCYE9EYWqIMH56SlwKQQvWsI3UkVu dCDtSJnpCkI0upBtQh5ukqhn8hqDpho8GgSYbbVfG4eiwLREjByJPQk6llWhWjtB /AMurohPmMOp/mfiXoyr79sKx2AwKH2U+BpvbNGuqXgabeCgdJOkqbHefVqvSPHl 6NFnxDfV3zvvrB+iqvM+5dN65hgzdWBzMzZIWGur+eOCzP5iQzFW6Gh7+x5YRlAc R7Or7pHBxJUpw+3aZ6IvPI5OEQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFHDVQiqN 4qnpRrR9/oyscpH4uRhbMB8GA1UdIwQYMBaAFOz/MkQMTuHSeUPNtyp9SRBjQC3x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjEyQS9COUQ0Q0Y0MkFF M0QxMUVGOTZCNzZDNkFDNEY5QUUwMi83UDh5UkF4TzRkSjVRODIzS24xSkVHTkFM ZkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdQOHlSQXhPNGRKNVE4MjNLbjFKRUdOQUxmRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkIxMkEvQjlENENGNDJBRTNEMTFFRjk2Qjc2QzZBQzRGOUFFMDIvQzQxQjZBOTgz OTZFMTFGMTk5MkRBMUJBOTY4MzM3NzMucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAHbYDANBgkqhkiG9w0BAQsFAAOCAQEARU6M6RVIz5N0rOu7MYhX OgQCnWabMiAxIsTHe1UEV25ze6jwUMHmYTtC2rZcAih4PS8lBSBuePi7WL/4mbp6 btfK5ZDz3K1Sm8AM99cusIoexfvKQ9u52CmWL/+F//0y/mTL2joVqBxck+z59Fbj QvWgqeLbFNYcmI8cJhFnJAWUJCeOBE+pbiom39erSuFuDuXOySVbN60dLY4zTDBP uR6mVTgBcqarogNHblh9kYkpfQxamzlGB7hVyxxJk5iH6zBRJr8PjeoMQRn+LUQn r3u3y1sD9rSLmm7id3VGRPSFPkgz08Su7soFD5adHFLpPLGrbVyVCoGkbI+bMOBK FA== -----END CERTIFICATE-----Generated at Fri Apr 17 05:26:26 2026 by rpki-client