$ rpki-client -vvf rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/23F9E186AE5811EFAFE7FF84C4F9AE02.roa File: 23F9E186AE5811EFAFE7FF84C4F9AE02.roa (raw, json) Hash identifier: WDWRrI/KRtPcAbR2bWOuMpgztLrYoQZ12yzCIYDgRAs= Subject key identifier: 6B:6A:F1:61:AD:CA:1A:59:24:87:1E:E1:AF:4D:4B:87:A0:12:FE:78 Certificate issuer: /CN=A912B12A/serialNumber=ECFF32440C4EE1D27943CDB72A7D491063402DF1 Certificate serial: F7 Authority key identifier: EC:FF:32:44:0C:4E:E1:D2:79:43:CD:B7:2A:7D:49:10:63:40:2D:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/23F9E186AE5811EFAFE7FF84C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:13:33 +0000 ROA not before: Wed 17 Dec 2025 06:24:23 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 153460 IP address blocks: 2401:db60::/34 maxlen: 34 2401:db60:4000::/34 maxlen: 34 2401:db60:8000::/34 maxlen: 34 2401:db60:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.crl rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:27:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B12A, serialNumber=ECFF32440C4EE1D27943CDB72A7D491063402DF1 Validity Not Before: Dec 17 06:24:23 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4579c-516a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:f2:aa:85:3d:1c:30:ae:8d:d4:84:ee:1d:0d: 43:5a:3b:5c:73:e9:a7:90:62:80:4a:5d:c0:14:48: 47:0a:1e:eb:77:49:37:6d:01:16:42:5c:11:d4:77: 05:38:c4:6b:71:4e:df:78:29:02:aa:fe:6c:f3:0d: ab:66:35:a5:39:3e:1c:cb:a7:30:b1:0d:cd:62:b1: 97:69:2c:13:bf:d0:c0:f1:5d:8b:33:3d:de:87:b9: ac:27:12:90:d0:96:64:93:b8:cf:2b:03:14:8d:51: 55:27:fa:f3:92:cd:5a:2a:ad:f6:16:07:1c:e7:48: 28:e7:11:13:ec:9a:64:70:62:7d:c2:28:b4:b3:ef: 92:7b:81:2e:20:62:2d:e2:7b:e0:b5:67:ee:6d:db: 2b:c1:43:db:1c:e6:e8:ce:6b:b1:53:48:94:4e:86: ab:90:94:26:e9:80:d7:ea:b1:68:d3:40:09:c0:bb: dc:88:7a:ee:02:41:35:dd:0f:47:56:0a:c1:c6:1e: 2d:d9:f6:41:88:96:d3:68:4b:c3:0d:ce:35:21:c4: ad:46:a1:58:9f:d5:45:4c:b2:bf:f9:f5:db:fb:b9: ca:22:23:91:08:40:48:8c:10:3e:c1:82:7c:76:a9: 85:60:77:d9:ef:4d:e2:cd:b4:8a:b5:cc:2f:87:07: fa:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:6A:F1:61:AD:CA:1A:59:24:87:1E:E1:AF:4D:4B:87:A0:12:FE:78 X509v3 Authority Key Identifier: keyid:EC:FF:32:44:0C:4E:E1:D2:79:43:CD:B7:2A:7D:49:10:63:40:2D:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/23F9E186AE5811EFAFE7FF84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:db60::/32 Signature Algorithm: sha256WithRSAEncryption 53:41:87:48:25:4e:41:55:58:37:e2:1f:44:a4:6c:87:b6:32: 0e:bd:40:e3:26:2c:0c:ac:75:30:e4:f2:87:b3:f0:5e:31:2f: da:16:a7:00:ba:6a:ac:af:3b:38:a3:40:73:0a:9a:25:81:ad: 61:fa:8d:6f:55:e7:f5:59:bd:18:b1:39:e0:cc:51:97:82:19: dc:87:9b:3e:e5:a4:ab:19:3c:98:f2:89:16:0e:c2:1e:5c:e5: aa:86:1e:a1:e1:46:63:a0:95:56:d7:c2:47:9a:3d:03:f8:55: c6:e8:f0:22:94:88:bd:fc:a1:21:9f:37:57:39:a0:ad:b9:c9: e2:69:49:bf:59:b2:d6:a3:27:13:9b:a1:dd:90:3d:24:a3:ce: 5c:9c:e2:c9:66:4c:46:2c:66:43:17:ad:20:f3:2d:52:f3:55: 48:0c:04:83:23:93:48:cb:a1:89:03:05:c7:ca:01:c7:55:17: 70:24:9c:4c:b4:e0:b0:b4:7f:d5:42:d2:97:eb:c4:b0:3b:7d: 95:ac:a0:5b:71:3f:5e:a0:b4:3d:f9:b7:fb:11:d8:4d:e0:2a: b4:93:ab:29:ef:9c:0d:31:b2:48:85:54:13:49:19:e5:27:95: 3f:82:9d:32:0d:4b:8d:9a:e8:d5:48:0a:31:de:f4:9e:cd:72: cb:84:2b:87 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIxMkExMTAvBgNVBAUTKEVDRkYzMjQ0MEM0RUUxRDI3OTQzQ0RCNzJBN0Q0OTEw NjM0MDJERjEwHhcNMjUxMjE3MDYyNDIzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTc5Yy01MTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi/KqhT0cMK6N1ITuHQ1DWjtcc+mnkGKASl3AFEhHCh7rd0k3bQEWQlwR1HcF OMRrcU7feCkCqv5s8w2rZjWlOT4cy6cwsQ3NYrGXaSwTv9DA8V2LMz3eh7msJxKQ 0JZkk7jPKwMUjVFVJ/rzks1aKq32Fgcc50go5xET7JpkcGJ9wii0s++Se4EuIGIt 4nvgtWfubdsrwUPbHObozmuxU0iUToarkJQm6YDX6rFo00AJwLvciHruAkE13Q9H VgrBxh4t2fZBiJbTaEvDDc41IcStRqFYn9VFTLK/+fXb+7nKIiORCEBIjBA+wYJ8 dqmFYHfZ703izbSKtcwvhwf6IQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFGtq8WGt yhpZJIce4a9NS4egEv54MB8GA1UdIwQYMBaAFOz/MkQMTuHSeUPNtyp9SRBjQC3x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjEyQS9COUQ0Q0Y0MkFF M0QxMUVGOTZCNzZDNkFDNEY5QUUwMi83UDh5UkF4TzRkSjVRODIzS24xSkVHTkFM ZkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdQOHlSQXhPNGRKNVE4MjNLbjFKRUdOQUxmRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkIxMkEvQjlENENGNDJBRTNEMTFFRjk2Qjc2QzZBQzRGOUFFMDIvMjNGOUUxODZB RTU4MTFFRkFGRTdGRjg0QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAHbYDANBgkqhkiG9w0BAQsFAAOCAQEAU0GHSCVOQVVYN+IfRKRs h7YyDr1A4yYsDKx1MOTyh7PwXjEv2hanALpqrK87OKNAcwqaJYGtYfqNb1Xn9Vm9 GLE54MxRl4IZ3IebPuWkqxk8mPKJFg7CHlzlqoYeoeFGY6CVVtfCR5o9A/hVxujw IpSIvfyhIZ83VzmgrbnJ4mlJv1my1qMnE5uh3ZA9JKPOXJziyWZMRixmQxetIPMt UvNVSAwEgyOTSMuhiQMFx8oBx1UXcCScTLTgsLR/1ULSl+vEsDt9laygW3E/XqC0 Pfm3+xHYTeAqtJOrKe+cDTGySIVUE0kZ5SeVP4KdMg1LjZro1UgKMd70ns1yy4Qr hw== -----END CERTIFICATE-----Generated at Thu Mar 26 07:30:23 2026 by rpki-client