$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1A54BE6216C811EFAA6A4727C4F9AE02.roa File: 1A54BE6216C811EFAA6A4727C4F9AE02.roa (raw, json) Hash identifier: XV+8bkGnKjrLxoZypWrg4uihWpKayVs69qQgI0osG4c= Subject key identifier: 22:E1:ED:E9:36:65:60:8F:19:A8:7F:76:20:72:26:71:0C:3B:46:7D Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 10A1 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1A54BE6216C811EFAA6A4727C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:31:18 +0000 ROA not before: Mon 27 Oct 2025 14:29:28 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 2406:840:e0e0::/44 maxlen: 48 2406:840:e666::/47 maxlen: 48 2406:840:fcf0::/44 maxlen: 48 2406:840:fd9f::/48 maxlen: 48 2406:840:fdd0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4257 (0x10a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Oct 27 14:29:28 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a49405-5c36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:30:05:e2:a2:91:1a:44:db:de:22:e4:7d:06: b2:ec:cc:38:5b:55:d6:b3:6d:db:34:0c:3d:66:0c: 61:93:56:4c:af:f1:48:e5:a2:b1:ef:bb:62:37:a5: 23:40:b5:b9:11:6c:20:eb:87:dc:09:17:3e:03:cc: 25:2f:f6:5e:ad:e7:69:7f:30:af:60:08:75:3d:e0: 0d:d0:21:8d:07:1c:4b:9d:9d:f7:85:ec:cb:c9:f6: 1a:af:e5:e8:26:75:a1:ad:81:5d:ef:41:04:b3:90: b0:f8:de:9e:81:87:4c:6c:38:35:43:ee:cb:69:20: da:5a:3a:09:49:21:59:8d:2c:6d:27:67:24:26:10: b6:c9:6c:b5:11:b3:a0:27:44:73:e3:74:98:d0:73: 31:69:b1:6c:18:46:0b:ed:e0:d2:3e:1b:b6:e7:82: 5e:3f:cf:01:25:79:a4:cd:dd:3d:ca:c7:9b:77:b5: e1:88:4a:ce:c5:a7:24:f0:25:59:81:a0:37:0f:6a: c5:e1:3a:c4:18:5f:5b:f5:d1:85:90:50:e1:1e:22: 21:13:74:fa:88:43:ac:46:21:85:40:80:24:1e:4b: fc:40:bb:c9:5f:b3:e3:4c:e2:56:db:b2:57:48:da: 98:84:f3:66:c4:01:f2:ee:81:3a:5b:7c:a8:74:4c: 6b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:E1:ED:E9:36:65:60:8F:19:A8:7F:76:20:72:26:71:0C:3B:46:7D X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1A54BE6216C811EFAA6A4727C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:e0e0::/44 2406:840:e666::/47 2406:840:fcf0::/44 2406:840:fd9f::/48 2406:840:fdd0::/44 Signature Algorithm: sha256WithRSAEncryption 2b:50:2e:00:76:ed:97:ba:88:52:b6:ed:d4:2d:f3:47:30:0e: 9e:a8:85:25:0a:f7:95:a0:36:54:05:02:dd:9d:00:b8:55:38: 04:15:48:b3:b3:78:e1:54:3f:3b:7b:36:c7:1b:91:24:dc:33: c1:60:fd:39:92:37:21:6b:cb:b6:9a:ef:00:ff:56:20:fa:40: c9:23:96:bf:89:95:66:71:f9:5c:6f:a7:e0:c4:c1:af:a0:4c: d4:5b:44:86:14:a6:44:10:83:5b:c7:f3:79:1b:63:b0:ea:ba: 8a:19:b1:fb:0f:7b:df:69:17:82:1f:4f:48:2a:a6:f1:b1:dd: 25:6f:7e:f4:6a:e0:f5:6d:5d:8c:8a:da:ae:55:f9:05:3f:79: df:ce:75:46:91:1c:c7:eb:d9:1d:c9:43:45:70:a6:33:ad:f3: b3:9a:0d:c1:04:6a:76:96:0a:9c:a2:53:59:b8:19:1d:ef:0c: e3:ed:b2:bd:75:3c:1f:bc:ee:28:62:d0:1b:9c:da:97:37:c2: 3b:fd:00:ce:5d:46:0a:7d:4d:6b:d4:97:61:36:2d:35:d4:b0: d5:2d:ac:db:04:d4:30:a5:21:d3:1e:d8:5e:24:87:ec:34:76: 60:e5:c0:74:ce:a1:24:30:ab:d2:7b:3c:e4:1e:47:70:74:af: 6d:ba:5f:5b -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICEKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUxMDI3MTQyOTI4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTQwNS01YzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jAF4qKRGkTb3iLkfQay7Mw4W1XWs23bNAw9Zgxhk1ZMr/FI5aKx77tiN6Uj QLW5EWwg64fcCRc+A8wlL/ZeredpfzCvYAh1PeAN0CGNBxxLnZ33hezLyfYar+Xo JnWhrYFd70EEs5Cw+N6egYdMbDg1Q+7LaSDaWjoJSSFZjSxtJ2ckJhC2yWy1EbOg J0Rz43SY0HMxabFsGEYL7eDSPhu254JeP88BJXmkzd09ysebd7XhiErOxack8CVZ gaA3D2rF4TrEGF9b9dGFkFDhHiIhE3T6iEOsRiGFQIAkHkv8QLvJX7PjTOJW27JX SNqYhPNmxAHy7oE6W3yodExrqQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFCLh7ek2 ZWCPGah/diByJnEMO0Z9MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMUE1NEJFNjIx NkM4MTFFRkFBNkE0NzI3QzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAz BAIAAjAtAwcEJAYIQODgAwcBJAYIQOZmAwcEJAYIQPzwAwcAJAYIQP2fAwcEJAYI QP3QMA0GCSqGSIb3DQEBCwUAA4IBAQArUC4Adu2XuohStu3ULfNHMA6eqIUlCveV oDZUBQLdnQC4VTgEFUizs3jhVD87ezbHG5Ek3DPBYP05kjcha8u2mu8A/1Yg+kDJ I5a/iZVmcflcb6fgxMGvoEzUW0SGFKZEEINbx/N5G2Ow6rqKGbH7D3vfaReCH09I Kqbxsd0lb370auD1bV2MitquVfkFP3nfznVGkRzH69kdyUNFcKYzrfOzmg3BBGp2 lgqcolNZuBkd7wzj7bK9dTwfvO4oYtAbnNqXN8I7/QDOXUYKfU1r1JdhNi011LDV LazbBNQwpSHTHtheJIfsNHZg5cB0zqEkMKvSezzkHkdwdK9tul9b -----END CERTIFICATE-----Generated at Mon Mar 2 15:14:17 2026 by rpki-client