$ rpki-client -vvf rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/246315A2AE5811EFAFE7FF84C4F9AE02.roa File: 246315A2AE5811EFAFE7FF84C4F9AE02.roa (raw, json) Hash identifier: hENFINj2b9wOIFxjK3nr2DrkTGbz4MTQ9pqxVPQHBxY= Subject key identifier: C8:79:F7:B1:F5:96:76:EB:A1:60:E8:36:63:19:18:11:46:28:11:77 Certificate issuer: /CN=A912B12A/serialNumber=ECFF32440C4EE1D27943CDB72A7D491063402DF1 Certificate serial: F8 Authority key identifier: EC:FF:32:44:0C:4E:E1:D2:79:43:CD:B7:2A:7D:49:10:63:40:2D:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/246315A2AE5811EFAFE7FF84C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:13:33 +0000 ROA not before: Wed 17 Dec 2025 06:24:24 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 17557 IP address blocks: 2401:db60::/34 maxlen: 34 2401:db60:4000::/34 maxlen: 34 2401:db60:8000::/34 maxlen: 34 2401:db60:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.crl rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:27:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B12A, serialNumber=ECFF32440C4EE1D27943CDB72A7D491063402DF1 Validity Not Before: Dec 17 06:24:24 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4579d-ea15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0d:3a:1a:e9:fb:dd:d6:f1:34:e3:2a:14:18: 6b:b8:b9:44:55:d5:96:dc:42:c3:51:98:3c:03:24: 4c:1a:fd:08:60:af:d2:fd:1a:b0:2b:59:d5:2f:61: 0b:ae:fa:a5:a2:e6:d8:1c:b8:34:7d:6b:10:1a:5c: 41:db:5e:61:55:79:4c:28:ea:27:61:d1:1e:a1:e6: b0:6c:84:48:cf:be:a4:c7:cf:e1:f6:ad:a3:17:5d: ed:06:00:05:59:be:81:3e:41:58:b9:5c:3c:0e:8c: 87:8c:2a:49:a1:31:c4:47:7a:f2:f2:06:a3:b6:6a: 1e:a1:0a:bb:f9:80:30:ca:e8:ab:c9:8c:86:b3:a9: dc:30:e4:8c:16:51:26:00:d1:93:1a:14:d1:f5:5d: bd:d3:dc:7b:a5:ce:cb:29:79:9f:81:56:38:8f:fb: b9:f9:a7:c9:da:85:ff:57:5f:7a:06:97:6d:9a:e7: a7:09:1d:40:13:97:ed:9c:60:52:42:00:44:ba:58: bf:2d:c6:fc:36:55:d7:f2:9b:70:1c:37:fe:5f:a4: cd:d2:ac:86:47:94:d4:d0:64:cd:50:4f:d9:80:92: c7:95:7b:c7:ae:9f:90:ae:7f:6d:1a:64:25:35:f4: 01:1a:01:d4:9c:bc:6e:61:2d:7d:49:e8:e6:f5:26: 38:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:79:F7:B1:F5:96:76:EB:A1:60:E8:36:63:19:18:11:46:28:11:77 X509v3 Authority Key Identifier: keyid:EC:FF:32:44:0C:4E:E1:D2:79:43:CD:B7:2A:7D:49:10:63:40:2D:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/246315A2AE5811EFAFE7FF84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:db60::/32 Signature Algorithm: sha256WithRSAEncryption 89:72:27:55:bd:09:f3:fb:37:85:a8:7b:ff:65:0a:27:81:b3: 0b:08:20:ce:f7:d7:2c:8b:e5:04:3d:3f:b9:c5:33:c2:03:a0: a1:88:3e:ae:2c:79:aa:7d:53:44:8f:cd:78:c4:0d:1d:cf:a3: fe:0c:77:a3:87:72:39:f3:8a:dc:de:57:c0:6f:98:d3:f9:3c: 5f:71:fa:1a:53:1f:43:1a:87:3a:b2:19:f4:95:e0:36:78:da: f4:b5:28:2d:fd:01:f0:0e:30:f5:8e:d8:9e:84:4b:54:4f:34: 6b:e1:57:55:bb:51:02:be:14:34:82:72:b1:70:49:58:1a:73: a7:7b:38:a3:56:70:e8:7e:30:24:54:23:1d:56:6c:aa:95:a5: 4a:16:5f:91:59:a6:31:50:46:91:8b:a4:16:b3:87:f5:b2:06: a2:db:9c:97:e5:8b:14:49:b7:8f:ea:c8:37:8e:a4:6f:21:92: 71:fd:a7:d4:a1:b3:15:5e:c3:16:2f:1e:41:68:a5:99:b9:6b: a1:f4:8c:f6:db:1a:f0:98:b6:0b:2a:8b:d7:4a:78:f4:b0:84: 2d:8e:a8:df:78:37:a4:d1:6f:f7:d5:1a:ab:78:bf:6f:21:ac: 15:66:33:bf:6b:57:57:e8:8a:76:dd:85:17:60:fe:20:01:5f: 4d:fd:a0:13 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIxMkExMTAvBgNVBAUTKEVDRkYzMjQ0MEM0RUUxRDI3OTQzQ0RCNzJBN0Q0OTEw NjM0MDJERjEwHhcNMjUxMjE3MDYyNDI0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTc5ZC1lYTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1g06Gun73dbxNOMqFBhruLlEVdWW3ELDUZg8AyRMGv0IYK/S/RqwK1nVL2EL rvqloubYHLg0fWsQGlxB215hVXlMKOonYdEeoeawbIRIz76kx8/h9q2jF13tBgAF Wb6BPkFYuVw8DoyHjCpJoTHER3ry8gajtmoeoQq7+YAwyuiryYyGs6ncMOSMFlEm ANGTGhTR9V2909x7pc7LKXmfgVY4j/u5+afJ2oX/V196BpdtmuenCR1AE5ftnGBS QgBEuli/Lcb8NlXX8ptwHDf+X6TN0qyGR5TU0GTNUE/ZgJLHlXvHrp+Qrn9tGmQl NfQBGgHUnLxuYS19Sejm9SY4sQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFMh597H1 lnbroWDoNmMZGBFGKBF3MB8GA1UdIwQYMBaAFOz/MkQMTuHSeUPNtyp9SRBjQC3x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjEyQS9COUQ0Q0Y0MkFF M0QxMUVGOTZCNzZDNkFDNEY5QUUwMi83UDh5UkF4TzRkSjVRODIzS24xSkVHTkFM ZkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdQOHlSQXhPNGRKNVE4MjNLbjFKRUdOQUxmRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkIxMkEvQjlENENGNDJBRTNEMTFFRjk2Qjc2QzZBQzRGOUFFMDIvMjQ2MzE1QTJB RTU4MTFFRkFGRTdGRjg0QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAHbYDANBgkqhkiG9w0BAQsFAAOCAQEAiXInVb0J8/s3hah7/2UK J4GzCwggzvfXLIvlBD0/ucUzwgOgoYg+rix5qn1TRI/NeMQNHc+j/gx3o4dyOfOK 3N5XwG+Y0/k8X3H6GlMfQxqHOrIZ9JXgNnja9LUoLf0B8A4w9Y7YnoRLVE80a+FX VbtRAr4UNIJysXBJWBpzp3s4o1Zw6H4wJFQjHVZsqpWlShZfkVmmMVBGkYukFrOH 9bIGotucl+WLFEm3j+rIN46kbyGScf2n1KGzFV7DFi8eQWilmblrofSM9tsa8Ji2 CyqL10p49LCELY6o33g3pNFv99Uaq3i/byGsFWYzv2tXV+iKdt2FF2D+IAFfTf2g Ew== -----END CERTIFICATE-----Generated at Thu Mar 26 05:40:19 2026 by rpki-client