$ rpki-client -vvf rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/3CBCF5BED6D911F0B064CD5C85D3641D.roa File: 3CBCF5BED6D911F0B064CD5C85D3641D.roa (raw, json) Hash identifier: IXLvInf2Y0MEbEfDAQVICvkTqoIWfV2KIzIJmKaveIA= Subject key identifier: 06:1F:E0:50:D2:E5:11:12:DA:BC:5C:13:03:0B:4D:54:7B:6D:64:8C Certificate issuer: /CN=A9172989/serialNumber=AB69C74025489AFD61747FF9335B147E20BB25D4 Certificate serial: 2E Authority key identifier: AB:69:C7:40:25:48:9A:FD:61:74:7F:F9:33:5B:14:7E:20:BB:25:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/3CBCF5BED6D911F0B064CD5C85D3641D.roa Signing time: Sun 01 Mar 2026 05:54:06 +0000 ROA not before: Thu 11 Dec 2025 21:34:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 174 IP address blocks: 2402:4480::/33 maxlen: 33 2402:4480:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.crl rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:10:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172989, serialNumber=AB69C74025489AFD61747FF9335B147E20BB25D4 Validity Not Before: Dec 11 21:34:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3d47e-3596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:75:42:6d:4f:6a:e9:e4:51:d1:e0:67:25:96: 20:bb:46:25:11:0e:4a:63:5e:0b:56:af:4b:46:e2: 22:1e:6a:b8:a9:86:f1:d2:c8:42:b5:1b:d3:7b:9f: 8d:14:a3:dc:d2:0f:07:dc:45:a5:66:7e:97:6e:e0: 7f:7f:e2:28:c2:31:b0:2b:f3:63:21:76:36:0f:8e: a1:fc:89:51:44:25:fb:43:5f:1f:b7:20:6d:42:f2: 02:00:a9:38:8b:fd:64:d4:f6:27:72:ff:f1:21:36: 63:3a:c1:9e:49:55:de:3e:d0:31:ea:96:b8:40:c8: 52:80:55:82:a6:f2:b0:e8:52:eb:dd:e5:89:7a:eb: 10:d8:38:2e:b6:b0:5c:ee:df:89:88:9d:e6:72:d0: cf:07:c2:e2:2e:4e:1d:2a:a9:59:ca:bf:87:87:4d: 90:9f:ff:b9:08:3d:68:5b:8a:f8:be:ed:d8:6d:ed: ad:79:a8:98:33:f4:0a:42:1f:75:cf:ce:f1:81:05: dc:0a:0c:ff:d9:93:f9:b9:37:f0:c9:89:1e:ba:4c: fe:37:02:f3:5e:ed:50:7b:9d:bc:c6:42:5b:0b:fd: 69:24:f4:f6:b9:ad:94:d5:e7:9c:99:b9:e3:6b:c9: b1:9e:13:ed:f0:29:d3:de:da:b1:13:04:12:f2:6e: 06:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:1F:E0:50:D2:E5:11:12:DA:BC:5C:13:03:0B:4D:54:7B:6D:64:8C X509v3 Authority Key Identifier: keyid:AB:69:C7:40:25:48:9A:FD:61:74:7F:F9:33:5B:14:7E:20:BB:25:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/3CBCF5BED6D911F0B064CD5C85D3641D.roa sbgp-ipAddrBlock: critical IPv6: 2402:4480::/32 Signature Algorithm: sha256WithRSAEncryption 82:aa:0e:47:5e:be:2d:c5:be:f7:11:7c:e9:98:24:cd:95:4e: fd:e9:77:f8:7e:13:72:46:3f:6b:2e:d5:8a:fc:a9:98:e7:f9: 33:38:a5:e6:4a:b4:c9:97:a0:90:0a:93:3e:f9:d6:40:06:15: 9a:06:4a:7a:e9:66:45:b0:8d:e5:f5:a7:5c:19:31:79:89:4f: 36:db:15:56:85:5e:ec:aa:f9:46:7c:dc:ee:14:5d:be:a1:52: 11:47:5b:17:31:6b:79:2b:3e:ce:cc:87:15:9d:5a:2e:ec:95: 5b:fb:49:ce:f8:2b:2d:4f:2f:1d:2f:82:b8:18:39:ac:e6:8d: fe:d1:dd:a8:1e:29:3e:87:46:57:5f:06:db:38:ae:d1:57:a4: f0:d9:1e:94:d7:c7:ba:86:4a:4f:58:31:04:28:b5:df:3d:eb: ff:2c:84:e6:1b:36:1f:f8:52:c5:c5:eb:66:39:c3:a3:bb:f2: 00:76:5a:b2:a1:cb:e1:a5:56:b0:cf:8b:0b:dd:b3:dd:fc:c7: 87:72:d2:8a:60:25:ef:65:f7:c8:18:37:42:52:a8:82:d2:3a: d3:95:15:c3:0c:b7:b5:7a:12:53:9e:66:7f:fc:02:ae:85:f7: c9:9b:0a:50:9f:a7:07:5b:2e:a5:30:6b:24:4c:dc:96:9c:1d: 92:62:6c:95 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 Mjk4OTExMC8GA1UEBRMoQUI2OUM3NDAyNTQ4OUFGRDYxNzQ3RkY5MzM1QjE0N0Uy MEJCMjVENDAeFw0yNTEyMTEyMTM0NTZaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNDdlLTM1OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLdUJtT2rp5FHR4GclliC7RiURDkpjXgtWr0tG4iIeariphvHSyEK1G9N7n40U o9zSDwfcRaVmfpdu4H9/4ijCMbAr82MhdjYPjqH8iVFEJftDXx+3IG1C8gIAqTiL /WTU9idy//EhNmM6wZ5JVd4+0DHqlrhAyFKAVYKm8rDoUuvd5Yl66xDYOC62sFzu 34mIneZy0M8HwuIuTh0qqVnKv4eHTZCf/7kIPWhbivi+7dht7a15qJgz9ApCH3XP zvGBBdwKDP/Zk/m5N/DJiR66TP43AvNe7VB7nbzGQlsL/Wkk9Pa5rZTV55yZueNr ybGeE+3wKdPe2rETBBLybganAgMBAAGjggJhMIICXTAdBgNVHQ4EFgQUBh/gUNLl ERLavFwTAwtNVHttZIwwHwYDVR0jBBgwFoAUq2nHQCVImv1hdH/5M1sUfiC7JdQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyOTg5L0VGRkRENzE0RDZE NTExRjBCMDYzODRCNTgxRDM2NDFEL3EybkhRQ1ZJbXYxaGRIXzVNMXNVZmlDN0pk US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcTJuSFFDVkltdjFoZEhfNU0xc1VmaUM3SmRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Mjk4OS9FRkZERDcxNEQ2RDUxMUYwQjA2Mzg0QjU4MUQzNjQxRC8zQ0JDRjVCRUQ2 RDkxMUYwQjA2NENENUM4NUQzNjQxRC5yb2EwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAkSAMA0GCSqGSIb3DQEBCwUAA4IBAQCCqg5HXr4txb73EXzpmCTN lU796Xf4fhNyRj9rLtWK/KmY5/kzOKXmSrTJl6CQCpM++dZABhWaBkp66WZFsI3l 9adcGTF5iU822xVWhV7sqvlGfNzuFF2+oVIRR1sXMWt5Kz7OzIcVnVou7JVb+0nO +CstTy8dL4K4GDms5o3+0d2oHik+h0ZXXwbbOK7RV6Tw2R6U18e6hkpPWDEEKLXf Pev/LITmGzYf+FLFxetmOcOju/IAdlqyocvhpVawz4sL3bPd/MeHctKKYCXvZffI GDdCUqiC0jrTlRXDDLe1ehJTnmZ//AKuhffJmwpQn6cHWy6lMGskTNyWnB2SYmyV -----END CERTIFICATE-----Generated at Sun Mar 1 23:22:14 2026 by rpki-client