$ rpki-client -vvf rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/A04B3184595A11EA8C79B30FC4F9AE02.roa File: A04B3184595A11EA8C79B30FC4F9AE02.roa (raw, json) Hash identifier: lFd0f/s6tWl8ssWZElmWFK2IFMinINueCRCwnr4LqZQ= Subject key identifier: 97:C1:2E:8F:43:91:17:30:63:89:32:AF:F8:BA:F0:F1:97:BF:5C:9D Certificate issuer: /CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Certificate serial: 0BCA Authority key identifier: D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/A04B3184595A11EA8C79B30FC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:58:37 +0000 ROA not before: Fri 02 May 2025 20:00:14 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9268 IP address blocks: 2403:5f40::/44 maxlen: 44 2403:5f40:4::/48 maxlen: 48 2403:5f40:5::/48 maxlen: 48 2403:5f40:6::/48 maxlen: 48 2403:5f40:7::/48 maxlen: 48 2403:5f40:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3018 (0xbca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DD78, serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Validity Not Before: May 2 20:00:14 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4460d-58a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:83:a3:67:1e:ae:57:4c:a5:8e:27:8b:1c:0f: a4:d7:ef:60:4e:8a:aa:b4:36:7c:17:e5:13:c7:0f: 74:ce:79:7e:0e:be:c4:85:87:53:d4:88:0a:7e:92: ff:1d:bb:82:b5:5f:69:6e:ce:25:72:31:78:fa:93: 5e:e8:07:76:5f:22:68:b0:14:fe:54:41:b1:ff:1d: 56:f3:c7:9d:82:43:25:83:bc:e2:71:34:1a:ae:50: 80:3d:f5:36:90:a8:1a:e1:df:ef:e9:6d:f6:44:55: 7e:a0:d5:e5:d0:9c:b1:f4:cf:5c:cf:92:26:1a:bc: 74:13:71:bb:ae:95:e1:be:c4:41:f3:fa:7f:2d:8c: 7c:74:fb:61:44:a7:fb:de:75:12:e1:12:46:24:1b: 35:ab:4b:42:3a:32:65:cb:73:5f:67:07:9a:04:2a: 06:19:59:bf:19:96:46:1e:9e:8a:88:db:b6:57:33: 3d:e6:6b:ee:66:f6:14:7f:1c:b2:a8:a5:46:11:83: 97:92:b1:21:dd:78:72:90:9e:7b:c4:cd:f7:7c:80: a2:46:26:c5:22:b8:39:43:d2:80:ed:06:15:14:18: 5b:f8:45:ff:a3:3e:4c:3c:d8:0e:b0:7a:3c:55:70: 7c:5f:16:ac:e6:7a:42:30:a5:48:4a:80:9d:4b:ac: 4f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:C1:2E:8F:43:91:17:30:63:89:32:AF:F8:BA:F0:F1:97:BF:5C:9D X509v3 Authority Key Identifier: keyid:D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/A04B3184595A11EA8C79B30FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2403:5f40::/44 Signature Algorithm: sha256WithRSAEncryption 4b:ff:18:e5:a5:87:33:be:28:5b:10:6c:82:bf:b1:d4:ec:f9: 3c:50:e1:a5:03:9d:0c:37:78:ed:64:4b:98:3c:c3:0d:4a:9e: 13:dd:c8:11:a2:dd:2d:9c:5a:5e:92:1a:66:7b:f0:3d:88:8b: 6c:6e:54:61:5d:ca:49:8d:ee:87:a7:d1:77:90:99:10:89:98: b9:9f:fa:49:fa:5c:5f:9a:dc:86:25:90:f7:da:29:79:61:33: f3:bd:09:2a:9f:ed:cf:d9:a7:c1:01:65:b7:e3:8c:e1:55:35: ef:01:79:7e:d1:2a:dd:56:e4:2d:a5:77:eb:a0:74:05:1f:3b: 9b:2a:b7:98:a2:55:82:b4:bc:a3:e6:54:d8:a3:d1:dc:0a:07: e1:69:44:b5:f1:6d:c1:88:c4:22:e7:d3:be:c0:d4:f5:24:b0: 35:c9:73:8d:f3:0b:a1:9c:58:42:bc:52:d8:fd:49:8f:9e:74: 52:a9:aa:72:7b:05:72:c4:8b:56:58:43:c8:71:3b:fa:8c:a9: ec:eb:30:b6:1f:d7:92:41:25:1b:38:39:c9:af:a3:18:ee:a4: 33:df:7e:7e:2f:23:db:09:26:c4:86:9c:9f:75:93:8e:67:08: df:12:05:4f:fa:76:99:0a:6b:d4:4a:92:aa:ab:70:c0:4f:1a: 99:8e:86:cc -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICC8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERENzgxMTAvBgNVBAUTKEQzQzY2QzI2QTlGRDFCOUU3QzQ1NUJEREIzNTE1OTY4 OEQwMTQwRkUwHhcNMjUwNTAyMjAwMDE0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDYwZC01OGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk4OjZx6uV0yljieLHA+k1+9gToqqtDZ8F+UTxw90znl+Dr7EhYdT1IgKfpL/ HbuCtV9pbs4lcjF4+pNe6Ad2XyJosBT+VEGx/x1W88edgkMlg7zicTQarlCAPfU2 kKga4d/v6W32RFV+oNXl0Jyx9M9cz5ImGrx0E3G7rpXhvsRB8/p/LYx8dPthRKf7 3nUS4RJGJBs1q0tCOjJly3NfZweaBCoGGVm/GZZGHp6KiNu2VzM95mvuZvYUfxyy qKVGEYOXkrEh3XhykJ57xM33fICiRibFIrg5Q9KA7QYVFBhb+EX/oz5MPNgOsHo8 VXB8Xxas5npCMKVISoCdS6xPZQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFJfBLo9D kRcwY4kyr/i68PGXv1ydMB8GA1UdIwQYMBaAFNPGbCap/RuefEVb3bNRWWiNAUD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REQ3OC9ENEU5NjQ5QzQy RjgxMUVBQjQ2MEU5M0ZDNEY5QUUwMi8wOFpzSnFuOUc1NThSVnZkczFGWmFJMEJR UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WnNKcW45RzU1OFJWdmRzMUZaYUkwQlFQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERENzgvRDRFOTY0OUM0MkY4MTFFQUI0NjBFOTNGQzRGOUFFMDIvQTA0QjMxODQ1 OTVBMTFFQThDNzlCMzBGQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJANfQAAAMA0GCSqGSIb3DQEBCwUAA4IBAQBL/xjlpYczvihbEGyC v7HU7Pk8UOGlA50MN3jtZEuYPMMNSp4T3cgRot0tnFpekhpme/A9iItsblRhXcpJ je6Hp9F3kJkQiZi5n/pJ+lxfmtyGJZD32il5YTPzvQkqn+3P2afBAWW344zhVTXv AXl+0SrdVuQtpXfroHQFHzubKreYolWCtLyj5lTYo9HcCgfhaUS18W3BiMQi59O+ wNT1JLA1yXON8wuhnFhCvFLY/UmPnnRSqapyewVyxItWWEPIcTv6jKns6zC2H9eS QSUbODnJr6MY7qQz335+LyPbCSbEhpyfdZOOZwjfEgVP+naZCmvUSpKqq3DATxqZ jobM -----END CERTIFICATE-----Generated at Mon Mar 2 06:52:34 2026 by rpki-client