$ rpki-client -vvf rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/2C7BB8BAB92411EC8E787A55C4F9AE02.roa File: 2C7BB8BAB92411EC8E787A55C4F9AE02.roa (raw, json) Hash identifier: NbtGj9VX66Z/q14wLFr80IvVPTzt6u9+KSXlI9rhNls= Subject key identifier: 59:3B:0F:3A:EC:81:D8:4F:F2:43:F3:2E:78:7C:57:63:22:8A:11:9A Certificate issuer: /CN=A917ECB0/serialNumber=2FDDBB45F34F261933AC2B7D67AC73D393A9D164 Certificate serial: 03E2 Authority key identifier: 2F:DD:BB:45:F3:4F:26:19:33:AC:2B:7D:67:AC:73:D3:93:A9:D1:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L927RfNPJhkzrCt9Z6xz05Op0WQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/2C7BB8BAB92411EC8E787A55C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:01:03 +0000 ROA not before: Wed 05 Nov 2025 01:15:16 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 133145 IP address blocks: 2001:df4:d080::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/L927RfNPJhkzrCt9Z6xz05Op0WQ.crl rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/L927RfNPJhkzrCt9Z6xz05Op0WQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L927RfNPJhkzrCt9Z6xz05Op0WQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:40:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 994 (0x3e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ECB0, serialNumber=2FDDBB45F34F261933AC2B7D67AC73D393A9D164 Validity Not Before: Nov 5 01:15:16 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a42a7f-c9ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2d:7c:81:1e:47:76:25:06:44:94:8a:93:93: e9:91:83:94:2b:4a:c0:92:11:ff:d3:c0:da:24:61: f8:7e:e2:9e:3e:25:63:c9:39:df:a7:ec:5a:92:05: ce:50:d4:9d:75:a8:7b:7a:20:18:3b:8f:c6:4f:ab: 4f:18:41:b2:2c:ca:d3:e6:a2:b8:46:8f:aa:f2:15: b1:9e:22:e2:0a:42:2c:54:80:c6:72:68:42:7b:3e: 7d:44:98:75:94:10:f6:8a:14:de:a0:d7:49:34:85: dd:56:fd:2d:3b:f4:6e:dd:34:13:77:97:75:4b:93: 93:8b:91:a1:cb:72:fa:70:fd:a1:11:60:59:c6:84: 20:70:07:7a:f6:b0:90:ae:0e:97:13:32:d9:be:02: fc:9c:f7:70:e2:42:f9:57:e8:4e:51:e7:ad:23:d2: 8c:0b:0d:9b:d4:bd:d6:ab:70:1f:77:44:40:9a:af: 0a:32:7c:2b:3d:cf:36:24:95:66:dd:d1:27:22:72: 99:e6:0a:8d:90:9f:ea:be:79:a1:77:30:8c:f6:b3: 5e:8a:50:5d:2b:3d:57:4e:41:91:21:92:3d:c1:bb: 65:26:b0:ae:13:b8:c8:73:27:26:b7:db:0c:4e:d0: 2a:bc:1a:58:99:9d:e1:35:27:86:50:cf:40:f0:58: 2f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:3B:0F:3A:EC:81:D8:4F:F2:43:F3:2E:78:7C:57:63:22:8A:11:9A X509v3 Authority Key Identifier: keyid:2F:DD:BB:45:F3:4F:26:19:33:AC:2B:7D:67:AC:73:D3:93:A9:D1:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/L927RfNPJhkzrCt9Z6xz05Op0WQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L927RfNPJhkzrCt9Z6xz05Op0WQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/2C7BB8BAB92411EC8E787A55C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df4:d080::/47 Signature Algorithm: sha256WithRSAEncryption b9:61:5a:45:1d:6b:91:af:86:88:42:b4:49:6e:40:18:38:74: 04:75:4b:ec:ab:78:5e:23:d8:cb:e1:55:cb:92:4a:bb:dd:40: 04:62:45:d1:2d:53:4b:02:0c:8e:63:7e:ba:06:d6:e4:3a:b2: 90:b6:f3:ac:5b:73:0e:54:cc:7a:7c:13:2c:51:55:a7:30:d3: 16:09:28:a6:0f:3a:bd:db:d9:3f:6c:5e:5f:c9:81:8d:6c:55: ef:0a:cc:77:d2:a6:84:30:c2:cc:06:bd:63:61:37:03:ba:dc: 78:5f:ad:59:74:00:39:b3:5d:21:a9:47:b2:0a:62:00:4d:da: a5:78:df:6a:4b:74:eb:a2:c4:99:9d:3c:dd:76:ce:a0:87:a2: 5c:f3:3c:dc:c8:d5:f1:07:fb:65:5f:6c:d9:0c:a1:c7:3a:f6: b1:38:be:76:81:67:34:ef:a2:36:50:06:d8:df:e6:eb:65:b0: 23:cf:96:b9:99:47:a7:7e:c9:b8:7d:8b:12:8c:b8:20:e6:c1: b1:22:3a:3c:b0:a3:54:a9:d5:27:e0:23:65:4e:c4:1e:b3:e1: 90:1e:5e:13:86:59:92:06:b6:ec:aa:f8:89:c0:2e:48:4e:1b: 86:f3:d9:fe:25:51:6c:5a:c9:09:86:71:b8:39:02:11:03:8d: 23:b5:25:c4 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICA+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VDQjAxMTAvBgNVBAUTKDJGRERCQjQ1RjM0RjI2MTkzM0FDMkI3RDY3QUM3M0Qz OTNBOUQxNjQwHhcNMjUxMTA1MDExNTE2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmE3Zi1jOWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqy18gR5HdiUGRJSKk5PpkYOUK0rAkhH/08DaJGH4fuKePiVjyTnfp+xakgXO UNSddah7eiAYO4/GT6tPGEGyLMrT5qK4Ro+q8hWxniLiCkIsVIDGcmhCez59RJh1 lBD2ihTeoNdJNIXdVv0tO/Ru3TQTd5d1S5OTi5Ghy3L6cP2hEWBZxoQgcAd69rCQ rg6XEzLZvgL8nPdw4kL5V+hOUeetI9KMCw2b1L3Wq3Afd0RAmq8KMnwrPc82JJVm 3dEnInKZ5gqNkJ/qvnmhdzCM9rNeilBdKz1XTkGRIZI9wbtlJrCuE7jIcycmt9sM TtAqvBpYmZ3hNSeGUM9A8FgvswIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFFk7Dzrs gdhP8kPzLnh8V2MiihGaMB8GA1UdIwQYMBaAFC/du0XzTyYZM6wrfWesc9OTqdFk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUNCMC82MTg2NzMyQ0I5 MjExMUVDQkRGRkY2NTNDNEY5QUUwMi9MOTI3UmZOUEpoa3pyQ3Q5WjZ4ejA1T3Aw V1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w5MjdSZk5QSmhrenJDdDlaNnh6MDVPcDBXUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VDQjAvNjE4NjczMkNCOTIxMTFFQ0JERkZGNjUzQzRGOUFFMDIvMkM3QkI4QkFC OTI0MTFFQzhFNzg3QTU1QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcBIAEN9NCAMA0GCSqGSIb3DQEBCwUAA4IBAQC5YVpFHWuRr4aIQrRJ bkAYOHQEdUvsq3heI9jL4VXLkkq73UAEYkXRLVNLAgyOY366BtbkOrKQtvOsW3MO VMx6fBMsUVWnMNMWCSimDzq929k/bF5fyYGNbFXvCsx30qaEMMLMBr1jYTcDutx4 X61ZdAA5s10hqUeyCmIATdqleN9qS3TrosSZnTzdds6gh6Jc8zzcyNXxB/tlX2zZ DKHHOvaxOL52gWc076I2UAbY3+brZbAjz5a5mUenfsm4fYsSjLgg5sGxIjo8sKNU qdUn4CNlTsQes+GQHl4ThlmSBrbsqviJwC5IThuG89n+JVFsWskJhnG4OQIRA40j tSXE -----END CERTIFICATE-----Generated at Mon Mar 2 07:11:39 2026 by rpki-client