$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/065A717E9B6E11EFBCAB692BC4F9AE02.roa File: 065A717E9B6E11EFBCAB692BC4F9AE02.roa (raw, json) Hash identifier: RupCODMCVn7fipZVaU8cDxGLwLhz8c3cckM5d5QL83Q= Subject key identifier: FE:94:4F:30:95:83:0E:39:99:73:C1:EA:17:AE:60:60:0D:BC:F8:99 Certificate issuer: /CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Certificate serial: 0CBB Authority key identifier: 7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/065A717E9B6E11EFBCAB692BC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:27:44 +0000 ROA not before: Sat 16 Aug 2025 19:30:07 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24121 IP address blocks: 2407:b001:1000::/40 maxlen: 40 2407:b001:3000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3259 (0xcbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E3F, serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Validity Not Before: Aug 16 19:30:07 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a59050-bfe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f4:4c:d2:53:68:e3:d3:21:55:a3:cc:a0:5c: 9f:b0:98:56:c8:d9:c0:1f:f7:de:59:15:7e:8e:35: c1:6b:4f:19:0f:41:86:42:15:c8:95:28:40:d1:f9: 93:ff:6d:78:0e:f8:ba:40:7b:f9:3a:b1:b2:22:8b: 99:d8:cf:a0:4f:17:28:7c:2f:96:3d:3e:b8:56:a4: 51:c4:cd:93:0d:c4:ff:b3:66:77:8c:36:79:28:07: de:37:92:e3:c2:4d:55:fb:2b:2e:f2:42:e8:33:32: 21:db:43:6b:6b:0c:4a:61:db:f5:95:cd:6d:41:35: 19:5b:ac:aa:01:b4:a7:5c:a9:b4:7a:c7:53:c1:ff: 4b:69:13:32:6b:e6:0e:c1:3e:b3:40:18:69:55:e9: 38:a7:54:40:27:d4:da:e2:f6:8d:26:84:2a:55:33: df:30:4e:9b:de:89:b3:a8:43:d9:39:fd:4a:dd:36: cd:29:82:70:53:8c:90:76:14:86:3a:b4:ee:21:3d: d5:1b:3e:8f:57:22:87:87:00:8b:cf:54:e7:ef:1d: 5e:25:43:ed:65:b6:1c:b2:75:6e:a2:6c:35:0b:c1: 50:f8:08:cf:f7:8a:2c:b3:6c:13:4e:e5:f6:05:81: 73:d2:25:a8:3f:19:33:26:82:79:93:48:23:27:04: 15:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:94:4F:30:95:83:0E:39:99:73:C1:EA:17:AE:60:60:0D:BC:F8:99 X509v3 Authority Key Identifier: keyid:7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/065A717E9B6E11EFBCAB692BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2407:b001:1000::/40 2407:b001:3000::/40 Signature Algorithm: sha256WithRSAEncryption 9b:1c:c0:fa:a4:44:4b:39:6b:cb:54:15:a9:ec:36:e0:1e:69: 2e:52:96:5e:e9:16:9c:4f:28:d7:ab:60:37:ac:96:ee:c1:48: fb:0d:c0:91:a5:83:ed:59:b1:bd:dd:ff:e7:f6:48:2b:5b:35: 2c:c7:e7:a8:94:4b:f7:15:e8:26:e8:59:95:c2:36:93:a0:0c: 8f:8c:91:45:a3:4d:69:84:6b:9c:b8:6f:8c:50:18:b2:7d:21: 3c:84:79:ee:20:4c:ef:45:e5:90:4e:a8:75:cb:c7:6c:b6:04: b1:bb:c0:72:8c:36:f6:62:e3:9a:aa:81:75:45:ec:10:a6:78: 5f:28:c8:1c:5d:4e:75:81:81:4f:05:65:f2:96:67:25:77:c8: 0f:75:22:94:83:09:0a:4c:27:62:14:e5:e9:82:f7:ce:e6:15: d1:c3:20:6d:74:eb:d4:95:26:66:83:d1:ab:50:8e:88:99:ef: 5e:34:dc:3b:54:b9:2b:e9:22:1f:83:b7:83:0a:b6:62:e2:65: 7b:7d:80:3f:b5:f4:35:ca:72:87:8b:4a:93:d4:47:64:d0:a7: 81:e5:42:8f:af:ef:46:fd:88:b0:7f:3b:40:1d:92:f3:44:90: 07:d3:0e:24:2e:35:9e:39:8b:bb:51:48:a9:34:30:78:05:9c: 72:43:7b:86 -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgICDLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFM0YxMTAvBgNVBAUTKDdFMzEzQUI3RkYyNkU3ODNFMDNDMDc4NTE2MTI3NTE4 ODFBRTQ5MTgwHhcNMjUwODE2MTkzMDA3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTA1MC1iZmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvRM0lNo49MhVaPMoFyfsJhWyNnAH/feWRV+jjXBa08ZD0GGQhXIlShA0fmT /214Dvi6QHv5OrGyIouZ2M+gTxcofC+WPT64VqRRxM2TDcT/s2Z3jDZ5KAfeN5Lj wk1V+ysu8kLoMzIh20NrawxKYdv1lc1tQTUZW6yqAbSnXKm0esdTwf9LaRMya+YO wT6zQBhpVek4p1RAJ9Ta4vaNJoQqVTPfME6b3omzqEPZOf1K3TbNKYJwU4yQdhSG OrTuIT3VGz6PVyKHhwCLz1Tn7x1eJUPtZbYcsnVuomw1C8FQ+AjP94oss2wTTuX2 BYFz0iWoPxkzJoJ5k0gjJwQVKwIDAQABo4ICajCCAmYwHQYDVR0OBBYEFP6UTzCV gw45mXPB6heuYGANvPiZMB8GA1UdIwQYMBaAFH4xOrf/JueD4DwHhRYSdRiBrkkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEUzRi9DMjQzMjJCQTU0 NDYxMUVBOEMwNTY1MURDNEY5QUUwMi9makU2dF84bTU0UGdQQWVGRmhKMUdJR3VT UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZqRTZ0XzhtNTRQZ1BBZUZGaEoxR0lHdVNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThFM0YvQzI0MzIyQkE1NDQ2MTFFQThDMDU2NTFEQzRGOUFFMDIvMDY1QTcxN0U5 QjZFMTFFRkJDQUI2OTJCQzRGOUFFMDIucm9hMCkGCCsGAQUFBwEHAQH/BBowGDAW BAIAAjAQAwYAJAewARADBgAkB7ABMDANBgkqhkiG9w0BAQsFAAOCAQEAmxzA+qRE Szlry1QVqew24B5pLlKWXukWnE8o16tgN6yW7sFI+w3AkaWD7Vmxvd3/5/ZIK1s1 LMfnqJRL9xXoJuhZlcI2k6AMj4yRRaNNaYRrnLhvjFAYsn0hPIR57iBM70XlkE6o dcvHbLYEsbvAcow29mLjmqqBdUXsEKZ4XyjIHF1OdYGBTwVl8pZnJXfID3UilIMJ CkwnYhTl6YL3zuYV0cMgbXTr1JUmZoPRq1COiJnvXjTcO1S5K+kiH4O3gwq2YuJl e32AP7X0Ncpyh4tKk9RHZNCngeVCj6/vRv2IsH87QB2S80SQB9MOJC41njmLu1FI qTQweAWcckN7hg== -----END CERTIFICATE-----Generated at Mon Mar 2 17:07:18 2026 by rpki-client