$ rpki-client -vvf rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/1A8324E28DF311E7B616ED66C4F9AE02.roa File: 1A8324E28DF311E7B616ED66C4F9AE02.roa (raw, json) Hash identifier: xPiIQYGhCGnM669LTO7uPzCNucP7Qj7zT3MtzGxRzjA= Subject key identifier: EA:41:50:8E:6C:05:B4:8A:D3:0F:29:ED:18:E5:46:8C:33:57:42:75 Certificate issuer: /CN=A916B6AA/serialNumber=70B0F046D2F3A74396E82C79E8E3DACF260B39EE Certificate serial: 2530 Authority key identifier: 70:B0:F0:46:D2:F3:A7:43:96:E8:2C:79:E8:E3:DA:CF:26:0B:39:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/1A8324E28DF311E7B616ED66C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:53:31 +0000 ROA not before: Fri 02 May 2025 16:23:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 4690 IP address blocks: 2001:200:e00::/40 maxlen: 40 2001:200:8000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.crl rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:10:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9520 (0x2530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B6AA, serialNumber=70B0F046D2F3A74396E82C79E8E3DACF260B39EE Validity Not Before: May 2 16:23:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a460fb-f667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b6:59:ef:92:26:a2:7b:16:ef:fc:48:d7:8f: 81:63:d1:54:4d:59:9b:88:21:10:df:44:43:2a:92: 84:c0:d7:21:bb:97:03:cb:18:ea:6e:75:26:90:e8: a3:06:e0:e1:b9:45:e4:f9:a6:c2:c4:31:cd:92:60: ac:9c:58:f7:4a:2c:8a:66:2f:0d:85:b1:06:ae:55: c7:7d:54:ce:84:ba:9b:70:10:0d:c7:b5:43:4a:d4: 97:7f:ed:d6:80:67:25:ff:e4:01:40:d7:7a:9f:8d: e4:c8:ae:10:22:61:7f:df:58:79:5a:9c:84:41:68: f3:1b:86:f2:df:94:72:21:6f:89:37:92:c2:fe:da: 53:82:63:13:9a:e3:6c:16:dc:ab:91:51:35:b5:1a: 71:3e:91:b5:69:96:31:05:cf:83:f7:23:d7:32:90: 7c:32:15:ed:86:e7:19:dd:18:71:27:ae:53:93:70: d2:92:4f:be:02:09:a6:9b:99:d8:31:f9:7c:81:a3: 14:5d:78:d0:8e:c5:4a:e3:5f:ae:90:90:63:94:47: b8:93:1a:81:c9:61:23:50:e3:44:6c:15:53:a0:8e: fd:79:ea:28:4c:29:73:3a:20:e2:b7:b3:7f:c5:09: 2e:f4:ce:24:d8:f5:3e:dc:e2:64:98:5e:34:77:10: 87:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:41:50:8E:6C:05:B4:8A:D3:0F:29:ED:18:E5:46:8C:33:57:42:75 X509v3 Authority Key Identifier: keyid:70:B0:F0:46:D2:F3:A7:43:96:E8:2C:79:E8:E3:DA:CF:26:0B:39:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/1A8324E28DF311E7B616ED66C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:200:e00::/40 2001:200:8000::/35 Signature Algorithm: sha256WithRSAEncryption 2a:73:f4:f6:a9:cf:c0:5e:14:e0:af:8f:56:52:42:69:bc:db: 97:6d:78:21:64:a9:cd:5c:f0:8d:24:e1:15:93:9a:82:48:94: 46:66:fa:ab:d4:8d:00:cf:37:f1:72:07:32:2c:e5:62:0e:d3: d2:dc:0a:d3:c5:ee:85:33:e4:fd:b3:ce:43:69:4c:2a:ce:f1: 50:b0:10:78:90:a5:47:63:2f:e7:ba:9a:b9:0a:5c:74:53:2b: ae:3e:91:cf:79:57:8c:dd:b4:24:40:db:27:90:b6:78:c6:65: 62:56:98:3b:bb:87:d9:5e:ee:ef:fc:b3:dc:e6:76:16:05:99: bd:f4:81:0d:05:45:2d:32:1e:66:fd:54:6f:7e:52:43:90:25: 1e:05:92:eb:e5:28:e8:da:10:6b:2f:0c:35:33:4f:4f:20:74: d9:2f:c5:65:ac:22:e1:ca:db:c5:6e:5d:92:e5:da:7b:b5:21: e0:b5:d2:8f:a7:61:83:0b:ea:e4:f0:ab:e5:62:02:a7:6d:d2: e8:e1:a2:ae:49:4f:79:b9:4b:23:83:c9:dd:bf:14:31:b3:62: 42:89:8f:fc:e4:bf:31:db:c8:75:45:ce:f8:ce:bf:cf:10:d6: e4:6c:5b:ea:63:d6:a4:02:1e:81:85:fd:c8:c8:83:67:df:b6: 89:9c:82:43 -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgICJTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI2QUExMTAvBgNVBAUTKDcwQjBGMDQ2RDJGM0E3NDM5NkU4MkM3OUU4RTNEQUNG MjYwQjM5RUUwHhcNMjUwNTAyMTYyMzIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjBmYi1mNjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA57ZZ75ImonsW7/xI14+BY9FUTVmbiCEQ30RDKpKEwNchu5cDyxjqbnUmkOij BuDhuUXk+abCxDHNkmCsnFj3SiyKZi8NhbEGrlXHfVTOhLqbcBANx7VDStSXf+3W gGcl/+QBQNd6n43kyK4QImF/31h5WpyEQWjzG4by35RyIW+JN5LC/tpTgmMTmuNs FtyrkVE1tRpxPpG1aZYxBc+D9yPXMpB8MhXthucZ3RhxJ65Tk3DSkk++Agmmm5nY Mfl8gaMUXXjQjsVK41+ukJBjlEe4kxqByWEjUONEbBVToI79eeooTClzOiDit7N/ xQku9M4k2PU+3OJkmF40dxCHYQIDAQABo4ICajCCAmYwHQYDVR0OBBYEFOpBUI5s BbSK0w8p7RjlRowzV0J1MB8GA1UdIwQYMBaAFHCw8EbS86dDlugseejj2s8mCznu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjZBQS80NkM3RjE3MjRG MTYxMUU1OEQyQTMzMjdDNEY5QUUwMi9jTER3UnRMenAwT1c2Q3g1Nk9QYXp5WUxP ZTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMRHdSdEx6cDBPVzZDeDU2T1BhenlZTE9lNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI2QUEvNDZDN0YxNzI0RjE2MTFFNThEMkEzMzI3QzRGOUFFMDIvMUE4MzI0RTI4 REYzMTFFN0I2MTZFRDY2QzRGOUFFMDIucm9hMCkGCCsGAQUFBwEHAQH/BBowGDAW BAIAAjAQAwYAIAECAA4DBgUgAQIAgDANBgkqhkiG9w0BAQsFAAOCAQEAKnP09qnP wF4U4K+PVlJCabzbl214IWSpzVzwjSThFZOagkiURmb6q9SNAM838XIHMizlYg7T 0twK08XuhTPk/bPOQ2lMKs7xULAQeJClR2Mv57qauQpcdFMrrj6Rz3lXjN20JEDb J5C2eMZlYlaYO7uH2V7u7/yz3OZ2FgWZvfSBDQVFLTIeZv1Ub35SQ5AlHgWS6+Uo 6NoQay8MNTNPTyB02S/FZawi4crbxW5dkuXae7Uh4LXSj6dhgwvq5PCr5WICp23S 6OGirklPeblLI4PJ3b8UMbNiQomP/OS/MdvIdUXO+M6/zxDW5Gxb6mPWpAIegYX9 yMiDZ9+2iZyCQw== -----END CERTIFICATE-----Generated at Mon Mar 2 07:51:11 2026 by rpki-client