$ rpki-client -vvf rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/BFF3C17CD23A11EB8E7BA35DC4F9AE02.roa File: BFF3C17CD23A11EB8E7BA35DC4F9AE02.roa (raw, json) Hash identifier: 2vo/K47ayP0wYGBbWhk5TpjDKUxqcmP0LJrQ46qNZc8= Subject key identifier: 1B:D4:6E:66:8C:4F:40:A1:E2:4B:9A:FB:6D:BC:C8:18:59:3B:D6:40 Certificate issuer: /CN=A918036A/serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Certificate serial: 10CF Authority key identifier: 57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/BFF3C17CD23A11EB8E7BA35DC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:32:16 +0000 ROA not before: Wed 08 Oct 2025 17:47:37 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134707 IP address blocks: 2406:a240::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:34:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4303 (0x10cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918036A, serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Validity Not Before: Oct 8 17:47:37 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a45c00-fbd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3d:bb:27:57:55:15:f8:4a:4a:65:e3:08:c8: e9:fe:99:69:60:54:25:c4:df:e9:5f:18:70:9d:da: 13:ed:fc:6d:cb:39:68:94:fd:b7:3a:7b:b7:8a:71: 6b:af:11:f4:0f:87:34:83:2d:81:d3:b1:ce:b5:47: 46:fa:d1:d7:ba:12:f6:f1:4b:eb:c8:dc:2d:da:45: d1:87:da:3e:3a:59:a6:f4:eb:17:75:eb:f5:e2:4c: f6:ef:56:0b:fd:80:26:26:f1:04:c7:81:0d:4c:6d: 46:32:27:94:ef:9d:f9:e6:48:b3:f9:22:ef:3e:ca: c3:d5:9c:65:0c:5e:a6:f1:93:a1:14:c7:b3:54:0f: 01:62:95:6a:96:c8:a6:95:4a:ea:ca:24:20:10:a6: 16:27:0a:16:0c:e3:53:68:6d:2b:80:92:0e:d7:c7: af:fd:7f:35:ca:6c:05:1b:e7:d7:0e:a2:c4:63:3e: 09:ac:80:b1:ba:eb:c0:b0:76:2e:91:eb:34:00:03: 91:9a:1c:69:51:ac:ed:db:01:82:92:3b:a2:93:1c: 04:6c:6c:4a:8e:7b:92:25:dc:65:6f:e1:2d:da:e7: 40:a7:10:00:79:e3:83:14:b8:e5:46:d2:53:d7:bc: ea:6c:29:df:c8:54:34:b0:23:bc:67:90:4d:d4:df: 14:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:D4:6E:66:8C:4F:40:A1:E2:4B:9A:FB:6D:BC:C8:18:59:3B:D6:40 X509v3 Authority Key Identifier: keyid:57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/BFF3C17CD23A11EB8E7BA35DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:a240::/32 Signature Algorithm: sha256WithRSAEncryption 76:39:fd:b7:85:58:77:1b:35:2c:be:b9:1a:7c:fa:d2:f1:b7: 6e:d4:6d:d5:ce:24:ed:19:0f:14:36:80:f6:ab:e4:44:ad:7c: fe:a6:ef:4c:10:48:b3:40:fd:77:b7:c4:57:e5:4f:30:0e:ae: 3f:ad:85:8f:ac:2a:2f:fa:79:21:e1:9c:73:24:5b:fb:d4:0c: 8a:c1:15:82:67:0d:a8:78:0b:64:45:df:8a:d9:27:d2:66:fd: 1b:22:a3:2e:0e:c3:d0:64:ce:3f:d3:61:cc:84:7b:6a:52:98: e1:b2:8a:b1:bd:1b:f6:bd:6a:ba:30:98:69:03:35:27:e2:55: d8:3e:5c:32:ee:d2:67:fe:80:e2:cd:10:6a:21:ce:25:bb:09: 2c:64:09:25:c4:c4:24:f7:b8:32:64:75:66:ba:af:28:2f:e2: 6e:79:12:44:03:85:1e:a7:b7:b8:8f:a7:c0:8d:bc:af:aa:78: 72:4d:3b:0f:88:d0:2e:60:01:cc:f4:d7:76:ea:ca:5f:00:fc: c8:06:40:e7:f5:d5:81:a7:2b:1e:8e:2d:22:9a:21:fc:fa:90: f1:9c:71:88:6d:40:41:cc:59:6a:d7:f5:22:69:a2:b4:a2:ed: c0:c9:fb:10:7f:74:cc:51:5c:b3:66:2a:15:a0:da:9d:eb:24: ee:12:af:12 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICEM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzNkExMTAvBgNVBAUTKDU3ODQwRkI0NDFEMkIzNEM4RUU2OTlEMjY0NzEyQjRB NUUwRkVEOEQwHhcNMjUxMDA4MTc0NzM3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWMwMC1mYmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApD27J1dVFfhKSmXjCMjp/plpYFQlxN/pXxhwndoT7fxtyzlolP23Onu3inFr rxH0D4c0gy2B07HOtUdG+tHXuhL28UvryNwt2kXRh9o+Olmm9OsXdev14kz271YL /YAmJvEEx4ENTG1GMieU75355kiz+SLvPsrD1ZxlDF6m8ZOhFMezVA8BYpVqlsim lUrqyiQgEKYWJwoWDONTaG0rgJIO18ev/X81ymwFG+fXDqLEYz4JrICxuuvAsHYu kes0AAORmhxpUazt2wGCkjuikxwEbGxKjnuSJdxlb+Et2udApxAAeeODFLjlRtJT 17zqbCnfyFQ0sCO8Z5BN1N8UUwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFBvUbmaM T0Ch4kua+228yBhZO9ZAMB8GA1UdIwQYMBaAFFeED7RB0rNMjuaZ0mRxK0peD+2N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDM2QS80MzNBRjc4QzQ2 QzcxMUU5QURFOUQ0MjRDNEY5QUUwMi9WNFFQdEVIU3MweU81cG5TWkhFclNsNFA3 WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y0UVB0RUhTczB5TzVwblNaSEVyU2w0UDdZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzNkEvNDMzQUY3OEM0NkM3MTFFOUFERTlENDI0QzRGOUFFMDIvQkZGM0MxN0NE MjNBMTFFQjhFN0JBMzVEQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAaiQDANBgkqhkiG9w0BAQsFAAOCAQEAdjn9t4VYdxs1LL65Gnz6 0vG3btRt1c4k7RkPFDaA9qvkRK18/qbvTBBIs0D9d7fEV+VPMA6uP62Fj6wqL/p5 IeGccyRb+9QMisEVgmcNqHgLZEXfitkn0mb9GyKjLg7D0GTOP9NhzIR7alKY4bKK sb0b9r1qujCYaQM1J+JV2D5cMu7SZ/6A4s0QaiHOJbsJLGQJJcTEJPe4MmR1Zrqv KC/ibnkSRAOFHqe3uI+nwI28r6p4ck07D4jQLmABzPTXdurKXwD8yAZA5/XVgacr Ho4tIpoh/PqQ8ZxxiG1AQcxZatf1ImmitKLtwMn7EH90zFFcs2YqFaDanesk7hKv Eg== -----END CERTIFICATE-----Generated at Mon Mar 2 12:40:03 2026 by rpki-client