$ rpki-client -vvf rpki.apnic.net/member_repository/A917D488/8D733ACAC11E11F08DDE8787C4F9AE02/038304DEC11F11F0A9F08209C4F9AE02.roa File: 038304DEC11F11F0A9F08209C4F9AE02.roa (raw, json) Hash identifier: Y37EvjA3svHQwyGXd0a+TXPBLOFhRYmTcbPi/KdjSGw= Subject key identifier: B8:C2:19:71:56:0C:24:70:03:4E:57:08:A5:EE:6E:EF:0C:C1:48:A3 Certificate issuer: /CN=A917D488/serialNumber=C43C8FEDA45510592298B5B953E279FBACE45A64 Certificate serial: 39 Authority key identifier: C4:3C:8F:ED:A4:55:10:59:22:98:B5:B9:53:E2:79:FB:AC:E4:5A:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDyP7aRVEFkimLW5U-J5-6zkWmQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D488/8D733ACAC11E11F08DDE8787C4F9AE02/038304DEC11F11F0A9F08209C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:02:36 +0000 ROA not before: Fri 14 Nov 2025 05:59:00 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 154362 IP address blocks: 2001:df6:4ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D488/8D733ACAC11E11F08DDE8787C4F9AE02/xDyP7aRVEFkimLW5U-J5-6zkWmQ.crl rsync://rpki.apnic.net/member_repository/A917D488/8D733ACAC11E11F08DDE8787C4F9AE02/xDyP7aRVEFkimLW5U-J5-6zkWmQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDyP7aRVEFkimLW5U-J5-6zkWmQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:55:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D488, serialNumber=C43C8FEDA45510592298B5B953E279FBACE45A64 Validity Not Before: Nov 14 05:59:00 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a3d67c-b345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:16:24:47:47:ae:ec:08:e8:33:8b:cb:49:3a: 68:6a:f4:58:26:9b:07:ce:6e:92:0b:89:cd:0b:d5: 8d:bd:04:d0:b0:5c:58:04:85:9c:3e:5c:b8:97:57: b7:3e:82:c0:a7:a7:29:b3:56:2f:4d:fe:8f:ea:f4: a6:97:73:ab:4d:a5:83:c1:cb:c9:da:a9:63:39:1d: 19:64:a5:07:81:f5:61:ae:fa:bc:31:5c:1a:37:b4: 4e:7c:a3:7f:03:0d:d9:e3:c0:72:39:1d:e7:a8:1c: 17:36:4f:fc:17:8d:b0:81:07:8a:7c:12:b8:e1:1b: e8:f2:1f:63:75:dc:67:b3:aa:60:52:42:e3:30:91: 95:78:10:0d:43:b5:96:b5:77:ab:20:7b:ff:2b:07: 41:3d:b5:44:58:f7:41:b6:8f:6a:cc:b3:40:79:c7: 99:6f:a4:4e:28:89:cd:a9:5f:d4:a5:11:19:69:23: c8:9e:68:6e:bc:41:e3:4e:68:0c:2c:d3:ee:23:31: f4:d2:ba:39:9b:42:db:c6:0d:0d:4f:d0:12:80:dc: 2b:93:df:6b:d4:70:9a:d8:c8:1d:1d:2e:5d:e1:73: 5a:d4:38:b0:49:2f:c2:b0:75:f7:d5:b5:43:09:ed: 6e:b8:0b:8a:d2:b6:22:01:c0:af:14:e2:f3:3a:73: 8e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C2:19:71:56:0C:24:70:03:4E:57:08:A5:EE:6E:EF:0C:C1:48:A3 X509v3 Authority Key Identifier: keyid:C4:3C:8F:ED:A4:55:10:59:22:98:B5:B9:53:E2:79:FB:AC:E4:5A:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D488/8D733ACAC11E11F08DDE8787C4F9AE02/xDyP7aRVEFkimLW5U-J5-6zkWmQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDyP7aRVEFkimLW5U-J5-6zkWmQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D488/8D733ACAC11E11F08DDE8787C4F9AE02/038304DEC11F11F0A9F08209C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:4ec0::/48 Signature Algorithm: sha256WithRSAEncryption 70:ce:f9:9f:32:11:a6:00:f4:3f:df:7a:89:ae:d4:63:f8:cb: 40:a5:94:88:d2:a9:4f:57:b5:5d:3b:94:06:0d:e8:91:9d:39: bd:bf:97:42:ed:4f:46:5b:08:09:ac:87:02:31:5f:3c:8f:28: b1:11:3f:15:20:62:fb:6e:35:f1:2d:d5:c7:4c:03:6c:3f:52: 87:f5:36:28:49:07:9a:16:cb:96:09:54:ac:e5:26:3d:15:0b: e8:b5:ec:9d:eb:3e:f3:d3:8d:54:93:36:02:9a:38:61:4f:24: b5:e5:84:e0:1a:72:41:70:e9:2b:e1:cc:fc:ac:53:09:62:3c: 29:81:03:df:ab:c8:96:f6:ed:3d:1b:b2:3f:30:b6:ca:60:bc: 8c:f5:77:bc:28:85:d0:f6:21:05:87:33:0e:35:b7:80:27:9b: ba:e0:94:6a:e3:ca:92:38:7d:38:05:1d:62:3c:7e:96:ca:26: 3d:65:33:0d:75:3e:34:44:f5:75:7f:62:68:3e:b8:3e:1e:6e: 85:c3:9d:60:c1:f2:57:3c:e8:50:e3:7d:3f:6f:4a:26:7e:ec: a8:5d:c6:7c:5d:0d:e5:1b:9b:c9:39:bb:ab:d2:95:05:e0:34: 1f:cc:88:da:20:be:75:ce:00:8d:d0:7b:53:07:68:e0:ad:1a: 28:63:70:21 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDQ4ODExMC8GA1UEBRMoQzQzQzhGRURBNDU1MTA1OTIyOThCNUI5NTNFMjc5RkJB Q0U0NUE2NDAeFw0yNTExMTQwNTU5MDBaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNjdjLWIzNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiFiRHR67sCOgzi8tJOmhq9FgmmwfObpILic0L1Y29BNCwXFgEhZw+XLiXV7c+ gsCnpymzVi9N/o/q9KaXc6tNpYPBy8naqWM5HRlkpQeB9WGu+rwxXBo3tE58o38D DdnjwHI5HeeoHBc2T/wXjbCBB4p8ErjhG+jyH2N13GezqmBSQuMwkZV4EA1DtZa1 d6sge/8rB0E9tURY90G2j2rMs0B5x5lvpE4oic2pX9SlERlpI8ieaG68QeNOaAws 0+4jMfTSujmbQtvGDQ1P0BKA3CuT32vUcJrYyB0dLl3hc1rUOLBJL8KwdffVtUMJ 7W64C4rStiIBwK8U4vM6c463AgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUuMIZcVYM JHADTlcIpe5u7wzBSKMwHwYDVR0jBBgwFoAUxDyP7aRVEFkimLW5U+J5+6zkWmQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdENDg4LzhENzMzQUNBQzEx RTExRjA4RERFODc4N0M0RjlBRTAyL3hEeVA3YVJWRUZraW1MVzVVLUo1LTZ6a1dt US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveER5UDdhUlZFRmtpbUxXNVUtSjUtNnprV21RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDQ4OC84RDczM0FDQUMxMUUxMUYwOERERTg3ODdDNEY5QUUwMi8wMzgzMDRERUMx MUYxMUYwQTlGMDgyMDlDNEY5QUUwMi5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ32TsAwDQYJKoZIhvcNAQELBQADggEBAHDO+Z8yEaYA9D/feomu 1GP4y0CllIjSqU9XtV07lAYN6JGdOb2/l0LtT0ZbCAmshwIxXzyPKLERPxUgYvtu NfEt1cdMA2w/Uof1NihJB5oWy5YJVKzlJj0VC+i17J3rPvPTjVSTNgKaOGFPJLXl hOAackFw6SvhzPysUwliPCmBA9+ryJb27T0bsj8wtspgvIz1d7wohdD2IQWHMw41 t4Anm7rglGrjypI4fTgFHWI8fpbKJj1lMw11PjRE9XV/Ymg+uD4eboXDnWDB8lc8 6FDjfT9vSiZ+7KhdxnxdDeUbm8k5u6vSlQXgNB/MiNogvnXOAI3Qe1MHaOCtGihj cCE= -----END CERTIFICATE-----Generated at Mon Mar 2 13:00:58 2026 by rpki-client