$ rpki-client -vvf rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/8C3BBD78F0D611EDAF996E15C4F9AE02.roa File: 8C3BBD78F0D611EDAF996E15C4F9AE02.roa (raw, json) Hash identifier: awYe5rrh007RCSjsVd7jO0qaN9guB6y5rbMfa7rSYvk= Subject key identifier: 36:5F:A8:74:2D:50:9C:2D:13:F7:FC:8E:28:9D:3F:09:EC:38:2F:3D Certificate issuer: /CN=A916D36A/serialNumber=FEA4B96F3983F769C73397456C12B90F64246C7C Certificate serial: 18F9 Authority key identifier: FE:A4:B9:6F:39:83:F7:69:C7:33:97:45:6C:12:B9:0F:64:24:6C:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/8C3BBD78F0D611EDAF996E15C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:25:14 +0000 ROA not before: Tue 26 Aug 2025 16:55:12 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38910 IP address blocks: 2407:e500:40::/43 maxlen: 43 2407:e500:40::/47 maxlen: 47 2407:e500:50::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.crl rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6393 (0x18f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D36A, serialNumber=FEA4B96F3983F769C73397456C12B90F64246C7C Validity Not Before: Aug 26 16:55:12 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a46869-fe6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:44:fe:30:ec:4d:68:f2:85:5d:c2:61:cc:f0: 81:84:50:57:ad:23:be:fc:03:00:b8:48:83:e2:e0: 36:45:b5:af:e9:2f:be:c1:47:3d:28:55:0e:5b:0f: 72:eb:44:88:2c:3c:cb:23:5d:46:73:5d:60:4e:97: e7:5a:2f:c5:96:53:c8:f7:42:b5:3b:38:5d:ff:b8: e3:f9:41:b8:c6:30:55:68:f3:53:87:25:31:94:4f: 04:1c:84:b3:4a:bb:17:00:05:08:b4:05:78:9e:bf: 0a:94:8b:1c:f4:07:b4:86:62:4e:a7:af:a4:99:59: d3:a2:9d:b0:64:a6:8b:99:f8:56:01:19:09:e8:be: 29:7b:b9:a9:ef:b3:aa:37:4b:3e:21:f0:08:52:14: ba:27:a7:f1:36:c0:bb:89:c1:48:dc:a6:f2:69:27: 89:8b:e9:da:ad:e2:d5:4d:00:24:05:50:c3:98:bb: 60:f8:ee:f4:9a:46:6f:b0:dc:37:4a:b0:fa:58:40: 33:6a:c6:37:7e:0a:dc:62:13:85:9a:a0:d1:f4:68: 79:3b:45:ab:b0:0b:75:bf:f2:9d:2c:de:32:90:12: 67:fc:25:7c:e9:40:0e:2f:07:11:fd:1a:3e:67:c4: 49:6f:6d:ff:7c:12:9d:32:2e:a0:2d:20:30:3a:3a: ee:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:5F:A8:74:2D:50:9C:2D:13:F7:FC:8E:28:9D:3F:09:EC:38:2F:3D X509v3 Authority Key Identifier: keyid:FE:A4:B9:6F:39:83:F7:69:C7:33:97:45:6C:12:B9:0F:64:24:6C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/8C3BBD78F0D611EDAF996E15C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2407:e500:40::/43 Signature Algorithm: sha256WithRSAEncryption 42:bd:25:07:e2:fd:22:ed:c3:fd:7e:a2:86:b4:58:01:e1:79: 66:56:97:dd:90:c8:86:81:cc:aa:e7:5c:22:1f:ca:0c:5f:11: 2a:e3:da:51:9a:f1:7f:73:ab:59:2d:7d:00:6e:63:25:8e:e2: 6c:1c:81:c7:9c:85:86:a8:4b:8e:e3:6f:b2:6e:82:54:d5:ae: 40:db:b3:0f:14:c6:5b:2d:77:fd:5f:72:48:05:72:5b:eb:c1: 89:e0:3a:9a:ec:d8:8c:2d:13:ef:40:77:03:2c:7c:13:69:fd: bd:4f:a1:0c:cd:ea:72:c5:2b:77:04:07:ad:83:7c:63:1c:27: 2a:7a:5b:45:e5:31:29:b9:cd:49:0d:9c:c9:3d:41:69:70:99: 80:3c:3f:e2:0a:ef:40:3a:26:97:b0:5d:f0:37:da:ab:cd:f1: 1b:35:43:b5:d1:cd:00:36:f7:2f:33:14:c2:c2:a5:0a:fd:d2: 9b:17:be:83:50:45:43:97:01:b4:29:ab:8f:1f:bb:5a:09:d3: 34:f7:15:6c:8e:19:74:af:2c:e0:19:17:12:3f:91:16:84:f9: 09:8d:68:21:db:7d:72:3d:e8:80:1f:df:0e:22:90:c4:d8:a2: 65:9e:cb:cb:fc:30:5a:5d:58:8b:1d:6a:0b:8b:21:82:65:70: e5:09:63:40 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICGPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQzNkExMTAvBgNVBAUTKEZFQTRCOTZGMzk4M0Y3NjlDNzMzOTc0NTZDMTJCOTBG NjQyNDZDN0MwHhcNMjUwODI2MTY1NTEyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Njg2OS1mZTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0T+MOxNaPKFXcJhzPCBhFBXrSO+/AMAuEiD4uA2RbWv6S++wUc9KFUOWw9y 60SILDzLI11Gc11gTpfnWi/FllPI90K1Ozhd/7jj+UG4xjBVaPNThyUxlE8EHISz SrsXAAUItAV4nr8KlIsc9Ae0hmJOp6+kmVnTop2wZKaLmfhWARkJ6L4pe7mp77Oq N0s+IfAIUhS6J6fxNsC7icFI3KbyaSeJi+nareLVTQAkBVDDmLtg+O70mkZvsNw3 SrD6WEAzasY3fgrcYhOFmqDR9Gh5O0WrsAt1v/KdLN4ykBJn/CV86UAOLwcR/Ro+ Z8RJb23/fBKdMi6gLSAwOjru1wIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFDZfqHQt UJwtE/f8jiidPwnsOC89MB8GA1UdIwQYMBaAFP6kuW85g/dpxzOXRWwSuQ9kJGx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDM2QS8zN0FCRDcwOEFB OUExMUU3QkFDNDEyNTJDNEY5QUUwMi9fcVM1YnptRDkybkhNNWRGYkJLNUQyUWti SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19xUzViem1EOTJuSE01ZEZiQks1RDJRa2JIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQzNkEvMzdBQkQ3MDhBQTlBMTFFN0JBQzQxMjUyQzRGOUFFMDIvOEMzQkJENzhG MEQ2MTFFREFGOTk2RTE1QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcFJAflAABAMA0GCSqGSIb3DQEBCwUAA4IBAQBCvSUH4v0i7cP9fqKG tFgB4XlmVpfdkMiGgcyq51wiH8oMXxEq49pRmvF/c6tZLX0AbmMljuJsHIHHnIWG qEuO42+yboJU1a5A27MPFMZbLXf9X3JIBXJb68GJ4Dqa7NiMLRPvQHcDLHwTaf29 T6EMzepyxSt3BAetg3xjHCcqeltF5TEpuc1JDZzJPUFpcJmAPD/iCu9AOiaXsF3w N9qrzfEbNUO10c0ANvcvMxTCwqUK/dKbF76DUEVDlwG0KauPH7taCdM09xVsjhl0 ryzgGRcSP5EWhPkJjWgh231yPeiAH98OIpDE2KJlnsvL/DBaXViLHWoLiyGCZXDl CWNA -----END CERTIFICATE-----Generated at Mon Mar 2 02:26:01 2026 by rpki-client