$ rpki-client -vvf rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/D756DF180BF411ECB17CCF3AC4F9AE02.roa File: D756DF180BF411ECB17CCF3AC4F9AE02.roa (raw, json) Hash identifier: y2SnfxEi58D0PUlHFRCgP8HkpNi6RCfX061Zf6HOU64= Subject key identifier: 84:4F:01:EC:D1:F2:01:C2:FA:1A:C9:BB:74:97:BD:DA:79:D1:B6:C0 Certificate issuer: /CN=A912C72C/serialNumber=58B4DF8E4757CAFDE5462F4A1AF870FE2144DC5B Certificate serial: 067C Authority key identifier: 58:B4:DF:8E:47:57:CA:FD:E5:46:2F:4A:1A:F8:70:FE:21:44:DC:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/D756DF180BF411ECB17CCF3AC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:49:01 +0000 ROA not before: Thu 04 Dec 2025 21:35:56 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 12189 IP address blocks: 2401:bc40::/32 maxlen: 32 2401:bc40::/35 maxlen: 35 2401:bc40:100::/40 maxlen: 40 2401:bc40:300::/40 maxlen: 40 2401:bc40:500::/40 maxlen: 40 2401:bc40:6000::/35 maxlen: 35 2401:bc40:a000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.crl rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1660 (0x67c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C72C, serialNumber=58B4DF8E4757CAFDE5462F4A1AF870FE2144DC5B Validity Not Before: Dec 4 21:35:56 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46dfd-ad6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:d8:c1:4e:b6:a5:4f:35:ea:a9:22:b1:2d:11: 2f:6f:f5:c9:5e:35:1a:ff:49:3a:c3:ed:e2:9b:93: ef:af:38:c9:5b:83:e5:39:a5:4a:39:df:90:75:65: 8d:22:0a:3e:88:63:12:76:6a:70:d3:61:b8:ef:59: a3:16:79:11:cf:83:02:1f:55:c9:43:ab:60:37:c3: 9d:93:8c:72:b4:fa:46:35:de:02:ec:51:02:4b:a6: 96:23:f3:f3:a4:c8:44:c5:47:5d:17:43:44:84:fa: 51:a5:34:89:46:95:4a:53:68:dd:09:58:75:c4:dc: d2:85:8a:d6:db:b1:47:35:24:60:8b:88:fe:9f:9f: 66:09:44:8c:0d:54:54:1c:f3:b8:48:93:3b:05:50: 64:69:99:ce:d3:70:5d:56:10:50:1a:7c:e7:6e:08: be:b5:62:24:23:4a:df:e1:75:34:26:9c:15:c9:49: 00:c4:fd:d2:e6:23:6a:24:ad:54:b7:c6:d8:1e:8f: af:73:2a:d6:d9:04:55:f3:e0:1a:a1:8c:8f:17:04: 8c:8f:88:d0:fc:70:18:60:e2:4b:c7:8f:24:b2:77: 28:8d:93:d2:f0:18:28:59:44:a9:49:87:6d:17:07: eb:c1:95:8f:85:b4:77:ea:21:9a:70:e7:78:d5:45: 7a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:4F:01:EC:D1:F2:01:C2:FA:1A:C9:BB:74:97:BD:DA:79:D1:B6:C0 X509v3 Authority Key Identifier: keyid:58:B4:DF:8E:47:57:CA:FD:E5:46:2F:4A:1A:F8:70:FE:21:44:DC:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/D756DF180BF411ECB17CCF3AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:bc40::/32 Signature Algorithm: sha256WithRSAEncryption 3b:3d:7d:95:91:db:a7:53:30:d1:d3:7d:29:04:50:1d:8c:98: 61:85:40:98:e4:af:08:f4:41:55:3f:b9:17:1f:40:23:75:8d: 93:d9:7a:ce:4b:d1:ce:bd:90:44:2f:50:20:59:48:19:9b:71: 14:be:2f:1d:65:35:64:ca:7d:7d:b6:17:30:15:dd:3a:02:a1: e8:b4:06:b4:7c:45:49:fc:78:a1:12:f2:0d:45:b6:bb:44:fb: 42:fa:5c:6a:a6:9f:ba:41:15:88:e5:24:63:5d:26:26:a2:64: 10:e3:61:b8:d6:f0:d5:79:e9:03:e1:86:e9:1e:1b:27:85:ed: f7:43:c7:a7:8d:1b:b1:0b:03:7a:f0:d2:41:78:da:55:54:4e: cd:b9:cc:68:49:96:f6:4e:8c:66:90:40:e5:20:b1:02:50:38: 8e:93:80:9d:be:09:35:e1:18:e9:4f:ca:17:db:ec:cf:ce:1a: 4d:10:56:c6:30:43:d9:09:31:77:51:03:14:14:36:4f:22:e8: 5c:7b:bf:26:41:f4:57:9d:d4:e3:a5:69:4d:c2:fa:1c:13:54: 2a:10:98:40:36:07:4e:bd:a7:01:f0:af:06:ec:4e:83:9f:e9: f3:1d:a3:0c:02:a9:8e:8d:1d:63:74:b5:e0:c6:e2:50:a0:8a: 8e:27:f9:23 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICBnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM3MkMxMTAvBgNVBAUTKDU4QjRERjhFNDc1N0NBRkRFNTQ2MkY0QTFBRjg3MEZF MjE0NERDNUIwHhcNMjUxMjA0MjEzNTU2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmRmZC1hZDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj9jBTralTzXqqSKxLREvb/XJXjUa/0k6w+3im5PvrzjJW4PlOaVKOd+QdWWN Igo+iGMSdmpw02G471mjFnkRz4MCH1XJQ6tgN8Odk4xytPpGNd4C7FECS6aWI/Pz pMhExUddF0NEhPpRpTSJRpVKU2jdCVh1xNzShYrW27FHNSRgi4j+n59mCUSMDVRU HPO4SJM7BVBkaZnO03BdVhBQGnznbgi+tWIkI0rf4XU0JpwVyUkAxP3S5iNqJK1U t8bYHo+vcyrW2QRV8+AaoYyPFwSMj4jQ/HAYYOJLx48ksncojZPS8BgoWUSpSYdt FwfrwZWPhbR36iGacOd41UV6XwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFIRPAezR 8gHC+hrJu3SXvdp50bbAMB8GA1UdIwQYMBaAFFi0345HV8r95UYvShr4cP4hRNxb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzcyQy84RUM2MTQwRUMz QUExMUVCODcwRUE5MUNDNEY5QUUwMi9XTFRmamtkWHl2M2xSaTlLR3Zod19pRkUz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dMVGZqa2RYeXYzbFJpOUtHdmh3X2lGRTNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM3MkMvOEVDNjE0MEVDM0FBMTFFQjg3MEVBOTFDQzRGOUFFMDIvRDc1NkRGMTgw QkY0MTFFQ0IxN0NDRjNBQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAG8QDANBgkqhkiG9w0BAQsFAAOCAQEAOz19lZHbp1Mw0dN9KQRQ HYyYYYVAmOSvCPRBVT+5Fx9AI3WNk9l6zkvRzr2QRC9QIFlIGZtxFL4vHWU1ZMp9 fbYXMBXdOgKh6LQGtHxFSfx4oRLyDUW2u0T7QvpcaqafukEViOUkY10mJqJkEONh uNbw1XnpA+GG6R4bJ4Xt90PHp40bsQsDevDSQXjaVVROzbnMaEmW9k6MZpBA5SCx AlA4jpOAnb4JNeEY6U/KF9vsz84aTRBWxjBD2Qkxd1EDFBQ2TyLoXHu/JkH0V53U 46VpTcL6HBNUKhCYQDYHTr2nAfCvBuxOg5/p8x2jDAKpjo0dY3S14MbiUKCKjif5 Iw== -----END CERTIFICATE-----Generated at Mon Mar 2 03:44:17 2026 by rpki-client