$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/8D6973CE77C311EE90D4BD46C4F9AE02.roa File: 8D6973CE77C311EE90D4BD46C4F9AE02.roa (raw, json) Hash identifier: kH5XvLgwYNGVU4SNZtJIVKDH6abpZgZgif4ntA/Uq98= Subject key identifier: 79:F6:6B:C7:CA:77:EC:60:21:42:0B:9C:A7:DE:A2:6F:DF:86:0F:59 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 35FE Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/8D6973CE77C311EE90D4BD46C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:25:57 +0000 ROA not before: Thu 30 Oct 2025 15:31:20 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 142502 IP address blocks: 2405:8a00:ffff::/48 maxlen: 48 2409:e:e1::/48 maxlen: 48 2409:e:e2::/48 maxlen: 48 2409:e:e3::/48 maxlen: 48 2409:e:e5::/48 maxlen: 48 2409:e:e7::/48 maxlen: 48 2409:e:e9::/48 maxlen: 48 2409:e:ef::/48 maxlen: 48 2409:f:f2::/48 maxlen: 48 2409:f:f4::/48 maxlen: 48 240a:eabc:abce::/48 maxlen: 48 240a:eabc:abcf::/48 maxlen: 48 240a:eabc:dabc::/48 maxlen: 48 240a:eabc:dabd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:25:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13822 (0x35fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Oct 30 15:31:20 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a484b5-c0d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:56:28:75:75:5a:5b:fd:e5:9b:40:36:33:c5: 9c:96:07:ea:57:db:4a:37:53:3d:b9:ae:d3:84:90: 8f:b6:f8:c0:62:c2:f5:65:a9:2e:fc:00:9e:cd:66: b1:28:a9:d3:83:49:fd:1f:c7:b7:a6:6c:8a:bf:10: 58:12:b4:91:da:f0:22:39:a7:81:5a:42:38:35:f2: 72:a8:5d:b8:82:b4:80:d4:08:04:41:c3:75:3e:e6: 06:f0:07:48:dd:b9:98:8a:d0:f0:07:94:50:df:0a: 30:ff:79:ed:95:f6:30:a0:dd:22:7e:00:1f:4b:81: ab:99:14:fe:8c:0c:69:de:a0:4a:f9:ff:cb:5a:d7: ec:08:bd:65:a9:9b:71:78:48:44:65:24:d3:38:0c: 5a:1f:a1:a7:a8:5d:46:74:42:64:57:6b:a5:42:35: b6:00:47:5d:c1:60:b7:ad:43:45:f7:52:7d:90:db: bd:a2:53:0b:89:6f:e4:63:ba:c9:31:9c:2b:38:67: 64:23:01:cb:8f:58:7e:b8:4f:08:fa:c3:be:3a:39: ac:4f:f5:40:b4:b6:78:db:da:12:15:8e:ae:02:d8: 03:9b:77:7f:48:e6:b5:d4:58:8f:47:a7:8e:66:f2: 0b:ab:8e:96:c3:49:16:c8:4b:d2:f8:7d:57:d2:7d: e4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F6:6B:C7:CA:77:EC:60:21:42:0B:9C:A7:DE:A2:6F:DF:86:0F:59 X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/8D6973CE77C311EE90D4BD46C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2405:8a00:ffff::/48 2409:e:e1::-2409:e:e3:ffff:ffff:ffff:ffff:ffff 2409:e:e5::/48 2409:e:e7::/48 2409:e:e9::/48 2409:e:ef::/48 2409:f:f2::/48 2409:f:f4::/48 240a:eabc:abce::/47 240a:eabc:dabc::/47 Signature Algorithm: sha256WithRSAEncryption 20:1e:e0:8e:8f:00:87:e5:34:44:de:7b:f9:65:43:8f:14:eb: 57:13:2a:c3:45:9e:47:44:5c:f6:ae:52:a4:04:dc:2d:e0:71: 36:67:ed:88:4f:0c:51:4c:69:1a:aa:69:91:0e:62:1e:56:55: bd:6e:aa:cb:91:05:58:fd:e7:c2:82:49:e4:42:e0:bc:7d:e7: 78:e7:c9:02:98:88:03:11:4e:b5:5d:78:0c:0c:e6:07:43:3b: 96:32:ff:43:96:b7:c9:9f:13:22:c4:e1:d4:3a:1d:ba:ee:fa: 05:dd:db:a5:8b:c3:6a:eb:7a:7f:55:9b:8e:d4:4f:5b:7e:b8: 44:6c:e6:d7:8f:95:6f:ab:f0:65:00:dd:d6:8d:8b:a9:34:1d: ba:46:72:6e:7a:0e:1a:ab:31:43:a3:75:f4:4d:1b:c2:bb:0a: cb:79:dc:9a:07:a7:85:43:ea:02:8c:5a:81:55:5c:12:79:c2: 2b:a7:aa:0e:14:96:af:96:52:9b:b5:e3:5e:9a:27:63:10:74: c5:10:b8:ce:2e:bb:3d:e0:d3:a8:c1:bf:62:65:7b:dc:64:1d: c3:5c:1a:e4:1a:7f:80:d6:66:f6:08:2b:bb:7a:c9:4b:fe:89: 5b:f6:25:8b:6c:8f:64:a6:b3:5b:ae:92:c3:32:11:20:4e:cc: ce:02:ff:7b -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICNf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUxMDMwMTUzMTIwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODRiNS1jMGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFYodXVaW/3lm0A2M8WclgfqV9tKN1M9ua7ThJCPtvjAYsL1Zaku/ACezWax KKnTg0n9H8e3pmyKvxBYErSR2vAiOaeBWkI4NfJyqF24grSA1AgEQcN1PuYG8AdI 3bmYitDwB5RQ3wow/3ntlfYwoN0ifgAfS4GrmRT+jAxp3qBK+f/LWtfsCL1lqZtx eEhEZSTTOAxaH6GnqF1GdEJkV2ulQjW2AEddwWC3rUNF91J9kNu9olMLiW/kY7rJ MZwrOGdkIwHLj1h+uE8I+sO+OjmsT/VAtLZ429oSFY6uAtgDm3d/SOa11FiPR6eO ZvILq46Ww0kWyEvS+H1X0n3k2QIDAQABo4ICvzCCArswHQYDVR0OBBYEFHn2a8fK d+xgIUILnKfeom/fhg9ZMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvOEQ2OTczQ0U3 N0MzMTFFRTkwRDRCRDQ2QzRGOUFFMDIucm9hMH4GCCsGAQUFBwEHAQH/BG8wbTBr BAIAAjBlAwcAJAWKAP//MBIDBwAkCQAOAOEDBwIkCQAOAOADBwAkCQAOAOUDBwAk CQAOAOcDBwAkCQAOAOkDBwAkCQAOAO8DBwAkCQAPAPIDBwAkCQAPAPQDBwEkCuq8 q84DBwEkCuq82rwwDQYJKoZIhvcNAQELBQADggEBACAe4I6PAIflNETee/llQ48U 61cTKsNFnkdEXPauUqQE3C3gcTZn7YhPDFFMaRqqaZEOYh5WVb1uqsuRBVj958KC SeRC4Lx953jnyQKYiAMRTrVdeAwM5gdDO5Yy/0OWt8mfEyLE4dQ6Hbru+gXd26WL w2rren9Vm47UT1t+uERs5tePlW+r8GUA3daNi6k0HbpGcm56DhqrMUOjdfRNG8K7 Cst53JoHp4VD6gKMWoFVXBJ5wiunqg4Ulq+WUpu1416aJ2MQdMUQuM4uuz3g06jB v2Jle9xkHcNcGuQaf4DWZvYIK7t6yUv+iVv2JYtsj2Sms1uuksMyESBOzM4C/3s= -----END CERTIFICATE-----Generated at Mon Mar 2 21:12:26 2026 by rpki-client