$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/189A3E5816C811EFAA6A4727C4F9AE02.roa File: 189A3E5816C811EFAA6A4727C4F9AE02.roa (raw, json) Hash identifier: dfapDgs5l2g6g3WnXIAja/2S4OUmyLlc1cuD4RKZSyk= Subject key identifier: 58:BD:DF:45:6C:8A:FB:5B:4A:82:0D:9C:DC:D0:14:26:36:7E:97:94 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 101F Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/189A3E5816C811EFAA6A4727C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:29:20 +0000 ROA not before: Thu 22 May 2025 20:06:27 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132479 IP address blocks: 2406:840:fdd0::/44 maxlen: 48 2406:840:fecf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4127 (0x101f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:06:27 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a49390-03ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0d:b2:6c:4c:6d:e8:b3:d5:33:46:29:aa:32: 58:44:30:c1:38:91:d6:63:92:a7:2c:fb:5d:34:48: 86:bc:8b:33:81:e8:39:71:32:97:b3:84:2b:31:b6: 1c:df:ef:13:e0:0c:ca:e9:d8:4e:ef:04:ac:fb:9b: 28:51:8b:87:8e:96:f9:51:d0:00:e2:4d:4b:55:ee: b5:dc:85:02:c4:8a:a1:4f:46:0c:5f:20:08:ba:5a: 5a:d0:02:44:9b:2c:f9:01:ab:d4:20:1e:26:7d:7d: aa:1e:33:16:e3:c6:06:17:8f:e7:8b:b9:88:cd:7c: 74:d2:d2:db:90:b8:c5:98:5d:dc:c1:de:eb:cc:76: 7e:89:d3:59:b5:fc:87:a3:80:16:15:4b:57:f2:5e: b8:89:77:9c:f4:a4:23:74:c1:59:eb:e1:80:33:ff: 5f:3d:d9:8b:14:bc:3d:5d:75:25:a2:38:38:11:f1: 50:19:fe:3c:10:6a:a7:de:2a:44:15:f9:d4:f7:47: 21:bb:d8:cf:71:a4:27:ae:e6:58:f6:bb:b7:cb:4e: 97:e1:e8:77:a9:59:79:f4:49:bf:a5:0b:50:dd:d7: ce:0c:24:f5:1e:e3:a2:67:8c:c9:5f:b6:be:76:5c: 2c:14:35:2f:ed:d8:88:42:2c:39:bb:f7:f4:cf:3c: c3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:BD:DF:45:6C:8A:FB:5B:4A:82:0D:9C:DC:D0:14:26:36:7E:97:94 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/189A3E5816C811EFAA6A4727C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:fdd0::/44 2406:840:fecf::/48 Signature Algorithm: sha256WithRSAEncryption 2f:d8:ff:59:46:4b:ea:63:56:14:96:d2:98:5f:0a:c4:88:b5: a1:4b:20:ab:33:b5:67:37:92:bf:d8:51:53:7c:82:60:59:50: 0e:a5:94:1a:13:b9:35:a2:e1:67:39:3b:45:98:3e:6a:c8:2e: d9:bf:ee:2d:a6:e7:16:07:ba:3c:62:21:75:56:f8:99:48:2d: e7:15:09:11:cd:4e:d4:b1:23:06:7c:f0:00:d0:0a:fe:2d:3d: 55:4b:06:32:40:c8:e6:4f:b6:0b:d0:40:4f:7f:61:fc:fd:2b: 4e:82:a8:4b:7b:aa:fb:42:88:90:5e:7d:c0:1e:64:0a:2f:14: 21:11:ca:f0:94:31:b7:48:4b:9c:62:80:2a:85:dd:71:70:c0: cb:da:61:68:30:aa:ed:9a:e4:03:fd:ac:53:5e:9d:b0:42:b1: b3:b8:bd:69:86:42:c1:a4:97:55:93:7b:2e:cf:13:7d:b7:5f: f0:17:e3:62:b9:30:7b:83:f7:d7:5d:37:36:19:c3:ef:b5:74: 3a:1e:af:dc:fa:5a:df:2e:a6:26:fe:8d:02:7d:48:48:5f:1e: c5:68:ab:24:59:8f:69:2c:c0:33:32:e0:6a:a8:10:26:96:21: a9:f0:96:62:6a:7f:39:df:a9:91:97:d2:ad:99:e4:bf:cb:de: 3a:af:32:17 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwNjI3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTM5MC0wM2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtA2ybExt6LPVM0YpqjJYRDDBOJHWY5KnLPtdNEiGvIszgeg5cTKXs4QrMbYc 3+8T4AzK6dhO7wSs+5soUYuHjpb5UdAA4k1LVe613IUCxIqhT0YMXyAIulpa0AJE myz5AavUIB4mfX2qHjMW48YGF4/ni7mIzXx00tLbkLjFmF3cwd7rzHZ+idNZtfyH o4AWFUtX8l64iXec9KQjdMFZ6+GAM/9fPdmLFLw9XXUlojg4EfFQGf48EGqn3ipE FfnU90chu9jPcaQnruZY9ru3y06X4eh3qVl59Em/pQtQ3dfODCT1HuOiZ4zJX7a+ dlwsFDUv7diIQiw5u/f0zzzDZwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFFi930Vs ivtbSoINnNzQFCY2fpeUMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMTg5QTNFNTgx NkM4MTFFRkFBNkE0NzI3QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAYIQP3QAwcAJAYIQP7PMA0GCSqGSIb3DQEBCwUAA4IBAQAv2P9Z RkvqY1YUltKYXwrEiLWhSyCrM7VnN5K/2FFTfIJgWVAOpZQaE7k1ouFnOTtFmD5q yC7Zv+4tpucWB7o8YiF1VviZSC3nFQkRzU7UsSMGfPAA0Ar+LT1VSwYyQMjmT7YL 0EBPf2H8/StOgqhLe6r7QoiQXn3AHmQKLxQhEcrwlDG3SEucYoAqhd1xcMDL2mFo MKrtmuQD/axTXp2wQrGzuL1phkLBpJdVk3suzxN9t1/wF+NiuTB7g/fXXTc2GcPv tXQ6Hq/c+lrfLqYm/o0CfUhIXx7FaKskWY9pLMAzMuBqqBAmliGp8JZian8536mR l9KtmeS/y946rzIX -----END CERTIFICATE-----Generated at Mon Mar 2 11:24:39 2026 by rpki-client