$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F4717D0D89B11E9AB8A5F14C4F9AE02.roa File: 3F4717D0D89B11E9AB8A5F14C4F9AE02.roa (raw, json) Hash identifier: IRCCM9xE2w5uFi2nv+xdxiaqJD7xcGBb66lok/O3uo0= Subject key identifier: A6:D3:50:DF:F3:01:09:AF:B3:78:1C:09:DE:31:98:9C:0D:5F:47:83 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3A6C Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F4717D0D89B11E9AB8A5F14C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:22:33 +0000 ROA not before: Fri 16 Jan 2026 16:13:41 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 46047 IP address blocks: 2405:1dc0::/32 maxlen: 32 2405:1dc0::/36 maxlen: 36 2405:1dc0:1000::/36 maxlen: 36 2405:1dc0:2000::/36 maxlen: 36 2405:1dc0:3000::/36 maxlen: 36 2405:1dc0:4000::/36 maxlen: 36 2405:1dc0:5000::/36 maxlen: 36 2405:1dc0:6000::/36 maxlen: 36 2405:1dc0:7000::/36 maxlen: 36 2405:1dc0:8000::/36 maxlen: 36 2405:1dc0:9000::/36 maxlen: 36 2405:1dc0:a000::/36 maxlen: 36 2405:1dc0:b000::/36 maxlen: 36 2405:1dc0:c000::/36 maxlen: 36 2405:1dc0:d000::/36 maxlen: 36 2405:1dc0:e000::/36 maxlen: 36 2405:1dc0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14956 (0x3a6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 16 16:13:41 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4ae19-678d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2c:e9:43:21:ee:90:49:cc:01:53:08:f7:3c: 79:65:8c:71:a0:b6:14:d6:8d:5b:52:c5:bf:d8:f5: 2f:60:22:f2:82:e9:39:be:a8:4a:db:38:60:62:36: 1d:08:67:0e:38:e8:55:c1:43:80:8a:63:9e:16:b0: db:7f:53:a1:b5:c2:d5:b8:fe:cf:ad:76:e9:26:cd: 53:fd:0e:fe:22:63:e5:05:26:1c:1e:ba:7d:c4:ce: 7c:4f:c0:3a:65:3d:2d:7f:6e:a3:ed:92:fe:5e:34: 3e:a2:16:9e:ce:dd:24:c1:87:c0:c3:f4:dc:df:db: b1:60:86:4a:db:bd:92:f5:38:a9:60:f1:28:2b:a9: 69:0e:b0:a4:09:66:86:e6:4d:a2:fc:40:8e:4b:62: 8d:c9:e9:04:cb:86:7b:be:b3:78:c4:37:a1:00:7a: b2:2e:93:87:63:54:55:f3:02:93:72:41:57:98:8d: c9:2c:fb:69:a1:c7:2f:c3:42:37:c2:21:61:cd:f5: 4b:d2:ad:40:fa:ee:9c:a4:cd:7b:1e:a4:21:87:67: dd:f5:c7:a8:54:e6:8d:14:63:cc:82:50:68:2d:eb: 02:c0:f4:cc:c4:2b:9d:6b:9f:18:40:f7:84:40:6c: cd:3f:e2:e0:d3:34:8d:87:33:bb:96:8c:a0:bf:4d: 6f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:D3:50:DF:F3:01:09:AF:B3:78:1C:09:DE:31:98:9C:0D:5F:47:83 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F4717D0D89B11E9AB8A5F14C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2405:1dc0::/32 Signature Algorithm: sha256WithRSAEncryption 53:d4:c9:df:83:7f:05:ca:dc:a8:18:8e:d8:0a:22:18:79:fa: 77:5e:e3:7e:45:d8:df:92:16:e2:96:f1:3b:2f:c6:91:35:15: ef:a6:fc:c8:49:44:03:9a:5a:9f:f1:30:90:08:72:ae:8d:76: 3b:83:56:1b:76:02:3f:0d:cb:5c:a5:d6:97:22:8c:e9:7d:b5: 00:b1:31:ff:b5:d5:6e:c6:85:59:87:7c:29:c2:06:b2:41:de: f5:be:1e:09:be:1a:e7:cf:d7:b2:bf:4f:57:14:2b:bb:6a:3a: 92:77:3f:79:d6:ec:26:70:71:3d:92:f8:a7:ba:27:c8:a9:7e: 6d:74:47:5f:5d:bc:54:7d:59:fd:c0:f0:4c:34:f9:a0:8d:1e: 35:59:b2:70:5c:cd:12:78:e5:4b:fb:fc:83:18:ca:92:89:7e: a1:33:f4:47:66:28:4d:57:2d:5d:e1:94:51:86:ad:5d:9f:50: 46:3a:38:fb:e5:ee:d9:d9:c7:84:29:69:32:89:0c:34:f3:c9: 7e:43:69:ad:32:52:86:1c:60:0d:67:82:b4:3c:1a:fc:88:f0: 2d:86:66:4d:4a:cd:8b:35:27:e5:e7:30:b9:b1:1c:88:8f:86: 86:b0:3f:e5:8b:e1:0e:6b:65:26:7d:90:13:e2:fb:72:11:35: 4f:0b:fa:34 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICOmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjYwMTE2MTYxMzQxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWUxOS02NzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SzpQyHukEnMAVMI9zx5ZYxxoLYU1o1bUsW/2PUvYCLyguk5vqhK2zhgYjYd CGcOOOhVwUOAimOeFrDbf1OhtcLVuP7PrXbpJs1T/Q7+ImPlBSYcHrp9xM58T8A6 ZT0tf26j7ZL+XjQ+ohaezt0kwYfAw/Tc39uxYIZK272S9TipYPEoK6lpDrCkCWaG 5k2i/ECOS2KNyekEy4Z7vrN4xDehAHqyLpOHY1RV8wKTckFXmI3JLPtpoccvw0I3 wiFhzfVL0q1A+u6cpM17HqQhh2fd9ceoVOaNFGPMglBoLesCwPTMxCuda58YQPeE QGzNP+Lg0zSNhzO7loygv01vHwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFKbTUN/z AQmvs3gcCd4xmJwNX0eDMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvM0Y0NzE3RDBE ODlCMTFFOUFCOEE1RjE0QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAUdwDANBgkqhkiG9w0BAQsFAAOCAQEAU9TJ34N/BcrcqBiO2Aoi GHn6d17jfkXY35IW4pbxOy/GkTUV76b8yElEA5pan/EwkAhyro12O4NWG3YCPw3L XKXWlyKM6X21ALEx/7XVbsaFWYd8KcIGskHe9b4eCb4a58/Xsr9PVxQru2o6knc/ edbsJnBxPZL4p7onyKl+bXRHX128VH1Z/cDwTDT5oI0eNVmycFzNEnjlS/v8gxjK kol+oTP0R2YoTVctXeGUUYatXZ9QRjo4++Xu2dnHhClpMokMNPPJfkNprTJShhxg DWeCtDwa/IjwLYZmTUrNizUn5ecwubEciI+GhrA/5YvhDmtlJn2QE+L7chE1Twv6 NA== -----END CERTIFICATE-----Generated at Mon Mar 2 09:13:43 2026 by rpki-client