$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/EB3FE1C61B6411ECAAB1D328C4F9AE02.roa File: EB3FE1C61B6411ECAAB1D328C4F9AE02.roa (raw, json) Hash identifier: QN6urrq0/MRPBsyVwW06hj5Hgqfql2xPz8BmJ6v46LI= Subject key identifier: 65:E4:01:4C:2F:D9:77:83:D6:56:51:72:33:61:65:AA:23:DD:4B:FC Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 35FD Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/EB3FE1C61B6411ECAAB1D328C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:25:56 +0000 ROA not before: Thu 30 Oct 2025 15:31:19 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 142501 IP address blocks: 2405:8a00:ffff::/48 maxlen: 48 2409:e:e0::/48 maxlen: 48 2409:e:e1::/48 maxlen: 48 2409:e:e2::/48 maxlen: 48 2409:e:e4::/48 maxlen: 48 2409:e:e6::/48 maxlen: 48 2409:e:e8::/48 maxlen: 48 2409:e:ea::/48 maxlen: 48 2409:e:ec::/48 maxlen: 48 2409:e:ee::/48 maxlen: 48 2409:f::/32 maxlen: 32 2409:f:f1::/48 maxlen: 48 2409:f:f3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:25:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13821 (0x35fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Oct 30 15:31:19 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a484b4-03f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f5:e4:c1:b1:42:1f:8a:29:18:5c:8f:32:7b: bb:52:a2:76:31:fa:65:56:5c:20:08:8e:d1:89:76: d1:d0:62:f8:ad:a9:fc:4b:80:ce:10:50:28:8c:28: e4:a6:7c:45:83:8b:a3:46:07:78:96:2e:13:45:8d: e5:4d:ff:29:45:5a:38:61:76:7d:47:ba:3e:62:e8: 61:48:d1:75:9c:c8:db:ad:c7:48:2b:76:3b:a2:bb: 94:bb:47:cb:47:5e:e7:bf:11:d7:d5:47:c5:c0:67: 9d:3e:a9:37:3c:9d:ac:c4:2b:82:3d:2c:0f:a9:ab: 29:b8:d9:2c:49:b1:a2:7d:53:57:b8:1d:54:e7:25: 51:b3:c2:8a:68:a9:9e:43:59:06:b9:dc:b8:9c:0d: 15:b3:cf:29:35:08:7d:53:ea:35:92:5d:f5:07:97: f1:51:de:08:d3:a8:b4:f4:f6:a8:9e:62:ad:c6:c7: 8d:e6:3b:b6:ac:c9:e2:72:3a:bd:1d:74:2c:ed:ca: 05:6e:10:58:2c:15:2c:a8:68:05:23:f8:c4:a2:3d: b1:a0:29:c5:55:db:5b:38:b4:a9:8e:30:e1:ce:89: 8c:b8:bc:2a:a9:0a:20:39:d3:44:36:2b:f5:2a:fc: fd:91:a0:27:ce:30:f2:03:72:a7:9f:a8:a2:5d:73: 1f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:E4:01:4C:2F:D9:77:83:D6:56:51:72:33:61:65:AA:23:DD:4B:FC X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/EB3FE1C61B6411ECAAB1D328C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2405:8a00:ffff::/48 2409:e:e0::-2409:e:e2:ffff:ffff:ffff:ffff:ffff 2409:e:e4::/48 2409:e:e6::/48 2409:e:e8::/48 2409:e:ea::/48 2409:e:ec::/48 2409:e:ee::/48 2409:f::/32 Signature Algorithm: sha256WithRSAEncryption 5f:bc:2c:35:36:16:88:e6:45:07:45:4a:4a:60:62:fe:e9:cd: 57:e8:43:d0:7c:9c:88:33:be:41:29:c5:fc:7f:b2:d5:76:26: 11:1c:51:27:db:25:a4:da:b1:71:8b:8b:25:bf:f6:7c:c9:1e: a2:67:8b:3b:4b:98:3f:03:94:f0:57:e1:86:79:d9:97:ec:b8: 9c:db:90:5f:38:b6:d4:f3:55:d4:d8:4f:65:73:da:6c:20:51: 60:be:1a:d3:9e:b9:0d:ab:9b:a2:55:19:1e:c0:14:f6:80:1e: 0a:dc:cc:04:12:04:3c:ff:30:24:78:02:97:5c:74:3f:f3:d4: b6:df:d6:e3:f6:98:5e:be:37:33:07:2b:d5:f5:b7:09:30:25: c5:7c:04:0a:f0:20:aa:b4:e5:6f:1a:09:ef:54:33:78:f6:12: 48:5b:85:9c:71:8a:44:2c:d4:dc:af:5a:c6:51:6a:f5:50:45: f9:7d:23:5b:ac:43:17:51:66:48:5b:3a:8b:69:7b:08:d6:f2: 9c:1f:f2:93:47:11:5b:8d:24:01:7d:8b:35:81:fd:73:54:d8: b8:dd:a6:12:c1:9b:c1:d0:b1:0e:b1:e0:ce:37:c8:91:d6:17: 2f:93:c2:d8:fe:89:fa:ce:6f:bc:17:9c:4f:29:df:69:79:2e: 78:33:ab:11 -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgICNf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUxMDMwMTUzMTE5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODRiNC0wM2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/XkwbFCH4opGFyPMnu7UqJ2MfplVlwgCI7RiXbR0GL4ran8S4DOEFAojCjk pnxFg4ujRgd4li4TRY3lTf8pRVo4YXZ9R7o+YuhhSNF1nMjbrcdIK3Y7oruUu0fL R17nvxHX1UfFwGedPqk3PJ2sxCuCPSwPqaspuNksSbGifVNXuB1U5yVRs8KKaKme Q1kGudy4nA0Vs88pNQh9U+o1kl31B5fxUd4I06i09PaonmKtxseN5ju2rMnicjq9 HXQs7coFbhBYLBUsqGgFI/jEoj2xoCnFVdtbOLSpjjDhzomMuLwqqQogOdNENiv1 Kvz9kaAnzjDyA3Knn6iiXXMfKwIDAQABo4ICtDCCArAwHQYDVR0OBBYEFGXkAUwv 2XeD1lZRcjNhZaoj3Uv8MB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvRUIzRkUxQzYx QjY0MTFFQ0FBQjFEMzI4QzRGOUFFMDIucm9hMHMGCCsGAQUFBwEHAQH/BGQwYjBg BAIAAjBaAwcAJAWKAP//MBIDBwUkCQAOAOADBwAkCQAOAOIDBwAkCQAOAOQDBwAk CQAOAOYDBwAkCQAOAOgDBwAkCQAOAOoDBwAkCQAOAOwDBwAkCQAOAO4DBQAkCQAP MA0GCSqGSIb3DQEBCwUAA4IBAQBfvCw1NhaI5kUHRUpKYGL+6c1X6EPQfJyIM75B KcX8f7LVdiYRHFEn2yWk2rFxi4slv/Z8yR6iZ4s7S5g/A5TwV+GGedmX7Lic25Bf OLbU81XU2E9lc9psIFFgvhrTnrkNq5uiVRkewBT2gB4K3MwEEgQ8/zAkeAKXXHQ/ 89S239bj9phevjczByvV9bcJMCXFfAQK8CCqtOVvGgnvVDN49hJIW4WccYpELNTc r1rGUWr1UEX5fSNbrEMXUWZIWzqLaXsI1vKcH/KTRxFbjSQBfYs1gf1zVNi43aYS wZvB0LEOseDON8iR1hcvk8LY/on6zm+8F5xPKd9peS54M6sR -----END CERTIFICATE-----Generated at Mon Mar 2 21:13:31 2026 by rpki-client