$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/F255CD0A5EC411ED810B8584C4F9AE02.roa File: F255CD0A5EC411ED810B8584C4F9AE02.roa (raw, json) Hash identifier: 47iFeZ3ErKvHzbiwS5iDjv+frLd/9sz/MxYRjxUDLlw= Subject key identifier: 4C:C7:77:9C:60:61:D8:97:4C:21:2C:96:2E:B6:CA:F8:AB:33:FC:4F Certificate issuer: /CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Certificate serial: 04B6 Authority key identifier: 80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/F255CD0A5EC411ED810B8584C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:09:35 +0000 ROA not before: Sat 05 Apr 2025 01:05:44 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 149500 IP address blocks: 2400:58a0:1000::/44 maxlen: 44 2400:58a0:1000::/48 maxlen: 48 2400:58a0:1001::/48 maxlen: 48 2400:58a0:1002::/48 maxlen: 48 2400:58a0:1003::/48 maxlen: 48 2400:58a0:1004::/48 maxlen: 48 2400:58a0:1005::/48 maxlen: 48 2400:58a0:1006::/48 maxlen: 48 2400:58a0:1007::/48 maxlen: 48 2400:58a0:1008::/48 maxlen: 48 2400:58a0:1009::/48 maxlen: 48 2400:58a0:100a::/48 maxlen: 48 2400:58a0:100b::/48 maxlen: 48 2400:58a0:100c::/48 maxlen: 48 2400:58a0:100d::/48 maxlen: 48 2400:58a0:100e::/48 maxlen: 48 2400:58a0:100f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1206 (0x4b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4BF, serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Validity Not Before: Apr 5 01:05:44 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a464bf-d70a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:88:7a:75:2a:d1:7b:45:6c:48:a1:6d:27:a8: 04:59:32:61:15:c9:04:39:3c:2c:00:b8:5b:b4:5b: fc:67:a7:2f:bb:86:ef:2a:51:05:59:26:e6:7e:d0: ea:30:63:f6:2f:22:8f:02:48:38:6d:bb:25:ee:13: bf:1b:ec:49:7f:fa:5d:cc:f8:ef:6f:4f:7d:b2:c3: 29:1e:94:d3:45:94:ff:3d:35:c3:e8:59:67:44:22: a5:c6:40:bb:7d:1d:d2:dd:82:da:68:96:ab:9b:eb: 45:ed:37:79:41:ff:4a:cd:37:b4:ec:8a:c9:f9:51: 80:8b:c9:58:be:2e:d3:f6:4e:e8:1b:7b:18:8c:89: 08:6f:bd:a7:68:79:9d:fd:3a:61:31:d8:f9:60:98: 58:3a:56:41:c3:af:dc:38:69:ab:a7:15:d2:8f:6c: 4a:48:80:22:fa:b7:6e:55:3e:60:40:47:09:bb:59: fd:ba:da:96:aa:09:5b:2d:36:4d:7f:a0:e9:a9:ef: 71:c7:f3:bb:e0:fd:40:30:1a:d3:99:ad:3f:6c:84: 29:b2:d6:9c:00:1e:00:12:51:f0:43:35:92:9c:aa: ae:96:06:e5:71:4a:7d:73:9b:78:b8:34:b6:b8:28: 83:e5:92:9f:45:68:61:cf:19:93:3a:5a:f1:57:17: eb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:C7:77:9C:60:61:D8:97:4C:21:2C:96:2E:B6:CA:F8:AB:33:FC:4F X509v3 Authority Key Identifier: keyid:80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/F255CD0A5EC411ED810B8584C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:58a0:1000::/44 Signature Algorithm: sha256WithRSAEncryption 98:3b:00:c8:49:d7:82:93:ba:5b:3d:45:4b:bb:37:69:d1:c2: b0:08:64:44:ce:33:c0:ac:26:b6:0f:c0:d4:a3:2b:93:39:2c: 9c:eb:20:25:a3:78:d4:5b:4b:fe:1a:7b:aa:0f:fd:5c:30:10: 23:86:fc:ad:40:80:2a:e2:cf:e7:7f:ca:17:54:24:c4:02:41: 97:39:81:e6:df:06:94:f7:9c:ac:2e:db:85:a1:fa:62:87:b7: f4:d0:ee:3f:4a:81:4d:2b:cf:ce:94:51:02:55:a5:39:db:85: 3d:0b:32:5f:8a:1b:d0:a4:af:f0:55:44:1e:c9:51:05:4c:bb: 7d:d0:a6:61:c3:b9:45:04:df:9f:56:bf:ce:bc:ec:c3:bf:95: a2:3d:f0:e4:c6:e0:b4:d5:96:38:24:a8:4e:3a:9e:cc:b6:97: ec:c6:9a:4e:91:f9:78:1f:f4:73:68:91:34:99:e9:2f:41:bb: 3d:ca:71:fd:44:ad:0a:36:e7:14:a0:57:3d:5a:a0:c9:f9:2f: ef:03:e1:84:3a:42:a3:fb:5f:f0:ca:95:29:b3:9c:1e:77:46: 61:56:d3:2e:ab:ab:a6:13:5f:99:b8:d9:67:0d:d9:bf:d6:e1: a0:fa:0f:2d:f6:05:10:44:df:19:87:a1:b2:5e:25:15:97:08: 20:04:46:cb -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICBLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QkYxMTAvBgNVBAUTKDgwMzUwOTBBMDU3MzI3RTEyMDA1OTNDMjBDODhDNTE5 QTQ1QzlFQ0IwHhcNMjUwNDA1MDEwNTQ0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjRiZi1kNzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApoh6dSrRe0VsSKFtJ6gEWTJhFckEOTwsALhbtFv8Z6cvu4bvKlEFWSbmftDq MGP2LyKPAkg4bbsl7hO/G+xJf/pdzPjvb099ssMpHpTTRZT/PTXD6FlnRCKlxkC7 fR3S3YLaaJarm+tF7Td5Qf9KzTe07IrJ+VGAi8lYvi7T9k7oG3sYjIkIb72naHmd /TphMdj5YJhYOlZBw6/cOGmrpxXSj2xKSIAi+rduVT5gQEcJu1n9utqWqglbLTZN f6Dpqe9xx/O74P1AMBrTma0/bIQpstacAB4AElHwQzWSnKqulgblcUp9c5t4uDS2 uCiD5ZKfRWhhzxmTOlrxVxfrgQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFEzHd5xg YdiXTCEsli62yvirM/xPMB8GA1UdIwQYMBaAFIA1CQoFcyfhIAWTwgyIxRmkXJ7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRCRi9COENDNjkzQzg1 NUMxMUVDOEUzQ0JCNTFDNEY5QUUwMi9nRFVKQ2dWekotRWdCWlBDRElqRkdhUmNu c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEVUpDZ1Z6Si1FZ0JaUENESWpGR2FSY25zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QkYvQjhDQzY5M0M4NTVDMTFFQzhFM0NCQjUxQzRGOUFFMDIvRjI1NUNEMEE1 RUM0MTFFRDgxMEI4NTg0QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJABYoBAAMA0GCSqGSIb3DQEBCwUAA4IBAQCYOwDISdeCk7pbPUVL uzdp0cKwCGREzjPArCa2D8DUoyuTOSyc6yAlo3jUW0v+GnuqD/1cMBAjhvytQIAq 4s/nf8oXVCTEAkGXOYHm3waU95ysLtuFofpih7f00O4/SoFNK8/OlFECVaU524U9 CzJfihvQpK/wVUQeyVEFTLt90KZhw7lFBN+fVr/OvOzDv5WiPfDkxuC01ZY4JKhO Op7MtpfsxppOkfl4H/RzaJE0mekvQbs9ynH9RK0KNucUoFc9WqDJ+S/vA+GEOkKj +1/wypUps5wed0ZhVtMuq6umE1+ZuNlnDdm/1uGg+g8t9gUQRN8Zh6GyXiUVlwgg BEbL -----END CERTIFICATE-----Generated at Mon Mar 2 04:10:36 2026 by rpki-client