$ rpki-client -vvf rpki.apnic.net/member_repository/A917C876/E4C0C416109011F180BBBFFF333D8C67/AA5A77DE109211F1ADAE0457353D8C67.roa File: AA5A77DE109211F1ADAE0457353D8C67.roa (raw, json) Hash identifier: jc5OClYgMksYJNVDPr4GTz5NxRC+DAHLWpkP7eRJs/c= Subject key identifier: C6:CA:20:AC:99:45:D6:40:67:1F:87:72:7E:3D:19:CA:7F:AD:5C:04 Certificate issuer: /CN=A917C876/serialNumber=AC7C00D79C4FA1C23D39E265E543D625AFB17191 Certificate serial: 0A Authority key identifier: AC:7C:00:D7:9C:4F:A1:C2:3D:39:E2:65:E5:43:D6:25:AF:B1:71:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHwA15xPocI9OeJl5UPWJa-xcZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C876/E4C0C416109011F180BBBFFF333D8C67/AA5A77DE109211F1ADAE0457353D8C67.roa Signing time: Sun 01 Mar 2026 05:32:24 +0000 ROA not before: Mon 23 Feb 2026 08:35:53 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 154420 IP address blocks: 2001:df6:6ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C876/E4C0C416109011F180BBBFFF333D8C67/rHwA15xPocI9OeJl5UPWJa-xcZE.crl rsync://rpki.apnic.net/member_repository/A917C876/E4C0C416109011F180BBBFFF333D8C67/rHwA15xPocI9OeJl5UPWJa-xcZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHwA15xPocI9OeJl5UPWJa-xcZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C876, serialNumber=AC7C00D79C4FA1C23D39E265E543D625AFB17191 Validity Not Before: Feb 23 08:35:53 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a3cf68-12b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:26:b9:26:5e:15:4b:d9:87:77:61:86:7c:58: 9b:fc:ef:38:cb:d6:87:2c:81:ac:22:42:3e:f6:92: 7d:95:74:28:2f:a5:5b:e5:5e:c1:bb:35:18:90:2e: 34:9c:42:e7:85:66:d7:3c:70:56:93:e5:a9:49:11: 6d:0c:4f:6b:a1:2f:27:96:c8:23:9e:96:1e:49:df: 64:9a:8b:8b:26:19:ee:a8:47:7e:ef:fa:59:af:6a: e3:a5:49:34:11:4b:42:d3:63:86:5f:f7:63:e7:78: 44:d9:cd:17:fc:67:4f:06:71:7d:48:24:d8:11:0d: 0a:e6:66:bf:25:e4:18:1b:1c:87:2d:ac:2d:1e:29: 14:9f:82:16:44:bc:c0:84:2a:71:79:28:c4:6f:f7: 68:85:c2:1b:ce:9e:a1:04:e7:8b:75:85:dc:8f:cb: 26:45:a4:1b:72:12:1f:12:52:4a:63:f9:cb:44:89: 7d:66:11:83:8f:3c:b1:30:de:df:4c:fb:6d:4d:ce: 6f:69:29:36:7f:47:d4:86:ec:72:55:a5:d9:0a:4d: a4:45:cd:00:85:e3:42:f3:36:28:45:ea:8d:5e:8f: 33:34:32:84:b2:be:fe:6a:a5:62:bc:fd:12:3a:d8: 6d:18:be:fb:ec:38:37:51:49:51:2d:06:e7:21:9c: 60:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:CA:20:AC:99:45:D6:40:67:1F:87:72:7E:3D:19:CA:7F:AD:5C:04 X509v3 Authority Key Identifier: keyid:AC:7C:00:D7:9C:4F:A1:C2:3D:39:E2:65:E5:43:D6:25:AF:B1:71:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C876/E4C0C416109011F180BBBFFF333D8C67/rHwA15xPocI9OeJl5UPWJa-xcZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHwA15xPocI9OeJl5UPWJa-xcZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C876/E4C0C416109011F180BBBFFF333D8C67/AA5A77DE109211F1ADAE0457353D8C67.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:6ec0::/48 Signature Algorithm: sha256WithRSAEncryption 0d:a1:d8:dd:1d:2d:c0:99:b4:95:ce:0a:6e:50:f1:36:44:d7: f0:6d:9a:8c:b6:70:a2:98:71:64:05:08:d0:b5:2c:de:65:be: 29:a0:5b:88:0a:a2:69:52:8d:7e:6d:e7:18:96:10:85:58:16: 17:80:4d:54:35:e7:3d:e7:70:61:bc:2b:0c:27:4e:8b:e9:5a: df:d1:75:dc:ff:13:11:8e:d5:42:ab:dc:92:a2:e0:d8:93:bb: 31:09:29:06:0a:ac:9d:6f:f8:43:a2:74:1c:ff:4b:8b:b9:25: 5b:e5:35:68:d1:ae:27:d5:f7:d9:75:80:09:8b:df:d1:69:df: b0:e3:1c:74:be:3e:76:03:13:fa:34:75:82:b5:25:8c:15:08: df:a7:8c:a6:6d:b7:25:33:a0:d9:a7:09:ec:82:24:09:38:87: 37:7c:b3:76:48:c0:c9:e3:c7:22:d1:b1:fd:72:b1:07:ae:53: 35:5b:79:a9:c9:f5:78:d1:e3:40:66:2c:78:dd:b5:78:8a:25: 6f:0b:4e:a1:e3:46:05:44:d7:a0:62:dd:8c:6e:43:42:db:0f: af:60:30:22:a1:07:a7:16:e1:ec:f7:e0:8d:e7:db:5d:d7:1a: cd:eb:9f:34:b2:a2:f6:2d:ec:ad:c0:00:bc:7f:2d:b0:af:28: 3a:b9:6c:ff -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 Qzg3NjExMC8GA1UEBRMoQUM3QzAwRDc5QzRGQTFDMjNEMzlFMjY1RTU0M0Q2MjVB RkIxNzE5MTAeFw0yNjAyMjMwODM1NTNaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNjZjY4LTEyYjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgJrkmXhVL2Yd3YYZ8WJv87zjL1ocsgawiQj72kn2VdCgvpVvlXsG7NRiQLjSc QueFZtc8cFaT5alJEW0MT2uhLyeWyCOelh5J32Sai4smGe6oR37v+lmvauOlSTQR S0LTY4Zf92PneETZzRf8Z08GcX1IJNgRDQrmZr8l5BgbHIctrC0eKRSfghZEvMCE KnF5KMRv92iFwhvOnqEE54t1hdyPyyZFpBtyEh8SUkpj+ctEiX1mEYOPPLEw3t9M +21Nzm9pKTZ/R9SG7HJVpdkKTaRFzQCF40LzNihF6o1ejzM0MoSyvv5qpWK8/RI6 2G0YvvvsODdRSVEtBuchnGD9AgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUxsogrJlF 1kBnH4dyfj0Zyn+tXAQwHwYDVR0jBBgwFoAUrHwA15xPocI9OeJl5UPWJa+xcZEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDODc2L0U0QzBDNDE2MTA5 MDExRjE4MEJCQkZGRjMzM0Q4QzY3L3JId0ExNXhQb2NJOU9lSmw1VVBXSmEteGNa RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvckh3QTE1eFBvY0k5T2VKbDVVUFdKYS14Y1pFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Qzg3Ni9FNEMwQzQxNjEwOTAxMUYxODBCQkJGRkYzMzNEOEM2Ny9BQTVBNzdERTEw OTIxMUYxQURBRTA0NTczNTNEOEM2Ny5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ32bsAwDQYJKoZIhvcNAQELBQADggEBAA2h2N0dLcCZtJXOCm5Q 8TZE1/Btmoy2cKKYcWQFCNC1LN5lvimgW4gKomlSjX5t5xiWEIVYFheATVQ15z3n cGG8KwwnTovpWt/Rddz/ExGO1UKr3JKi4NiTuzEJKQYKrJ1v+EOidBz/S4u5JVvl NWjRrifV99l1gAmL39Fp37DjHHS+PnYDE/o0dYK1JYwVCN+njKZttyUzoNmnCeyC JAk4hzd8s3ZIwMnjxyLRsf1ysQeuUzVbeanJ9XjR40BmLHjdtXiKJW8LTqHjRgVE 16Bi3YxuQ0LbD69gMCKhB6cW4ez34I3n213XGs3rnzSyovYt7K3AALx/LbCvKDq5 bP8= -----END CERTIFICATE-----Generated at Mon Mar 2 20:34:12 2026 by rpki-client