$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/70E478D0C06D11F0ABA91C6CC4F9AE02.roa File: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (raw, json) Hash identifier: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw= Subject key identifier: CF:D3:6C:1C:27:7D:11:AD:AC:1B:70:2B:C9:C5:30:51:B8:BA:99:3E Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A7D Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/70E478D0C06D11F0ABA91C6CC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:26:07 +0000 ROA not before: Thu 13 Nov 2025 08:47:53 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 55990 IP address blocks: 2405:f080:e000::/40 maxlen: 40 2405:f080:e0fe::/48 maxlen: 48 2405:f080:e0ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:36:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6781 (0x1a7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Nov 13 08:47:53 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a492cf-c1ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f1:53:9f:36:83:e1:43:35:b0:e8:28:2a:f5: f4:64:b6:22:90:5a:3b:f6:ac:53:b3:66:1d:c7:d5: 4f:3b:03:96:df:7a:00:c2:41:6c:b7:37:9c:40:0f: 00:40:ff:0d:46:ea:16:3b:03:e7:ae:2f:0a:a4:b9: 6e:ed:1a:3c:b5:42:54:dd:3f:ae:dd:9c:0e:19:1e: 46:ee:0f:e5:7e:0e:6b:6a:71:99:d8:f5:10:b5:c0: a1:96:73:c0:87:88:c5:41:8b:74:6b:fa:e7:5e:79: 23:b7:65:64:9a:67:41:4f:c2:61:a3:66:ae:9a:36: cc:24:4b:af:c1:da:28:66:93:94:a6:da:49:04:db: ee:10:e7:34:90:0f:e3:93:50:77:6f:97:aa:c4:b4: 84:9b:1e:0d:96:c4:86:b4:9d:1b:6a:17:f8:81:b3: 13:4a:a1:d7:26:5b:5a:62:aa:96:72:7a:6a:fe:0e: c7:1f:8e:80:8c:b6:4c:28:9e:d3:83:3d:ce:f8:d4: a7:32:89:1f:5d:89:b0:82:74:03:1d:06:74:b3:af: ea:da:04:a5:4e:6e:b1:79:b3:7e:ac:8b:02:d1:76: ed:e8:01:85:f6:f4:62:92:25:24:2b:3b:b1:0e:4a: 6c:28:85:72:fe:cd:bf:76:c6:75:8a:19:2c:51:f5: db:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D3:6C:1C:27:7D:11:AD:AC:1B:70:2B:C9:C5:30:51:B8:BA:99:3E X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/70E478D0C06D11F0ABA91C6CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2405:f080:e000::/40 Signature Algorithm: sha256WithRSAEncryption 9d:41:e6:3c:68:1b:3b:7e:10:f2:2b:04:61:18:71:13:d8:33: 57:5f:e4:ed:c5:aa:d8:61:93:24:7d:fd:21:fe:0f:d2:2b:4c: 03:35:a1:e5:9d:9d:bd:7d:ea:dc:d7:ad:df:7b:12:b8:3e:bc: ab:2c:8d:a9:8c:f4:b5:7a:b1:32:fd:08:bb:a4:49:49:6b:d7: 12:c3:2a:aa:c2:9b:c5:a4:95:77:bf:04:ce:d4:58:6a:0e:89: 85:fb:25:e3:3c:9d:cb:9d:67:4f:7e:46:e0:f3:ee:f3:d5:6a: fd:75:52:0a:4e:2e:df:36:3f:35:a1:cc:a4:77:9d:33:cf:47: 1e:14:8e:f3:f1:88:9a:89:5c:da:ff:55:d3:37:b4:70:c1:38: 02:1f:89:95:42:7b:01:1c:f1:57:24:65:71:45:ce:f3:ba:b7: 08:2a:67:1a:9b:25:8b:23:91:45:20:f6:5b:d4:3c:b8:d4:e3: a4:01:0a:0a:1d:81:9b:fa:35:f7:77:c7:18:b3:4c:c5:0d:07: 7c:c8:58:79:1f:3e:43:a3:1b:72:80:31:82:11:8e:ed:f5:a7: 1c:74:c0:33:80:e8:fd:8d:01:80:e0:2e:83:19:2f:8b:11:0a: 76:1a:95:3f:af:f1:4f:82:8c:b4:5f:35:d2:e7:c8:88:b7:72: f6:44:f4:d3 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgICGn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjUxMTEzMDg0NzUzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTJjZi1jMWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlfFTnzaD4UM1sOgoKvX0ZLYikFo79qxTs2Ydx9VPOwOW33oAwkFstzecQA8A QP8NRuoWOwPnri8KpLlu7Ro8tUJU3T+u3ZwOGR5G7g/lfg5ranGZ2PUQtcChlnPA h4jFQYt0a/rnXnkjt2VkmmdBT8Jho2aumjbMJEuvwdooZpOUptpJBNvuEOc0kA/j k1B3b5eqxLSEmx4NlsSGtJ0bahf4gbMTSqHXJltaYqqWcnpq/g7HH46AjLZMKJ7T gz3O+NSnMokfXYmwgnQDHQZ0s6/q2gSlTm6xebN+rIsC0Xbt6AGF9vRikiUkKzux DkpsKIVy/s2/dsZ1ihksUfXbrQIDAQABo4ICYjCCAl4wHQYDVR0OBBYEFM/TbBwn fRGtrBtwK8nFMFG4upk+MB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U2NzgvNzI1ODNBRkE2OTU3MTFFOEE0MkJFNjgwQzRGOUFFMDIvNzBFNDc4RDBD MDZEMTFGMEFCQTkxQzZDQzRGOUFFMDIucm9hMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAXwgOAwDQYJKoZIhvcNAQELBQADggEBAJ1B5jxoGzt+EPIrBGEY cRPYM1df5O3FqthhkyR9/SH+D9IrTAM1oeWdnb196tzXrd97Erg+vKssjamM9LV6 sTL9CLukSUlr1xLDKqrCm8WklXe/BM7UWGoOiYX7JeM8ncudZ09+RuDz7vPVav11 UgpOLt82PzWhzKR3nTPPRx4UjvPxiJqJXNr/VdM3tHDBOAIfiZVCewEc8VckZXFF zvO6twgqZxqbJYsjkUUg9lvUPLjU46QBCgodgZv6Nfd3xxizTMUNB3zIWHkfPkOj G3KAMYIRju31pxx0wDOA6P2NAYDgLoMZL4sRCnYalT+v8U+CjLRfNdLnyIi3cvZE 9NM= -----END CERTIFICATE-----Generated at Mon Mar 2 09:09:29 2026 by rpki-client