$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/08D1870EF0B411EE962EE784C4F9AE02.roa File: 08D1870EF0B411EE962EE784C4F9AE02.roa (raw, json) Hash identifier: qQ2xP1GvsecEoNe5H6sf4MiSWLqhNRPkeVi4L/fs0d4= Subject key identifier: C7:55:71:E1:2B:FE:96:5A:C9:10:E1:BF:82:45:2A:A4:B1:E5:04:F3 Certificate issuer: /CN=A9171882/serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Certificate serial: 0167 Authority key identifier: 04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/08D1870EF0B411EE962EE784C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:05:42 +0000 ROA not before: Mon 17 Mar 2025 04:51:20 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152604 IP address blocks: 2401:84a0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Validity Not Before: Mar 17 04:51:20 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a59936-2934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:73:fd:1d:4e:24:e1:be:ba:98:48:0c:4f:cb: db:68:d3:76:d4:8f:e6:3f:16:ca:a5:ca:0f:48:2f: b2:65:b4:cc:fc:82:aa:ec:99:d3:f0:d3:42:e4:c9: 5d:73:d8:02:4a:3b:53:a5:5e:1f:68:6a:d9:66:45: fc:ae:6c:60:48:63:38:4b:31:f6:14:47:7f:19:7d: 5c:33:95:c5:8d:90:ea:4e:cc:d2:55:ae:07:05:f1: 10:22:51:4f:c1:d6:2e:f2:e7:2e:fa:24:3f:a6:31: 84:e7:37:2d:82:62:21:62:97:27:a5:82:cd:00:1e: dc:12:d4:d8:29:b1:86:d7:0e:22:55:49:ef:4a:b4: 6e:a8:fd:1f:2f:e4:1a:54:39:24:e1:48:c0:5d:c8: d3:2f:ef:0f:81:e9:66:9c:5f:ed:2f:33:8a:69:84: 70:42:e6:54:d0:80:ce:96:e9:78:00:4a:ea:21:66: e8:67:3a:f2:ae:ff:3a:b1:95:6d:7b:3b:ad:33:43: 94:77:b0:5f:9a:90:62:be:1b:04:c9:4f:64:a1:7c: da:2f:75:49:65:d9:b7:a4:76:b1:22:ca:5e:98:fa: 4b:85:02:51:53:78:82:71:20:ee:75:b0:08:cf:18: 3a:d4:b6:0e:19:be:a0:00:e0:93:59:6f:6a:dd:9c: fb:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:55:71:E1:2B:FE:96:5A:C9:10:E1:BF:82:45:2A:A4:B1:E5:04:F3 X509v3 Authority Key Identifier: keyid:04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/08D1870EF0B411EE962EE784C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:84a0::/32 Signature Algorithm: sha256WithRSAEncryption 1f:82:b1:b7:c6:60:b6:39:0f:96:4a:db:4b:03:6e:31:e7:3d: cf:b5:39:22:83:8c:aa:72:6d:be:8d:df:21:e3:29:5c:c2:88: b4:5f:5d:87:80:69:01:ad:30:b9:55:b2:96:89:85:e5:8e:df: 2a:a4:ae:24:5c:29:4e:d4:dd:53:59:40:2b:cd:10:1a:92:73: e7:39:04:f6:86:c4:66:f1:92:8b:35:e4:fd:1a:b7:9b:a6:77: 8c:c7:8b:3f:b9:df:25:b4:59:a5:bf:91:23:85:81:26:7e:29: 39:d3:0d:cc:17:92:af:25:b3:be:75:ce:20:f8:38:21:99:e2: ba:03:05:bf:48:01:4a:6f:14:b9:d9:3c:5a:76:ea:5a:36:5a: 00:9a:cd:c4:0a:6d:4a:8f:23:d0:8f:6d:01:6b:c3:30:4f:bf: 11:e7:a3:30:11:0a:e9:41:74:ac:7e:cb:09:52:56:ed:08:b5: fe:37:80:5e:7b:f6:63:36:a0:1e:8a:0c:1d:f0:30:4e:d5:96: 49:fd:21:c1:60:fe:9f:b2:53:a5:26:10:e1:fb:45:ca:db:2e: 48:a2:0e:96:b8:b9:bf:30:71:7a:9c:a1:09:ef:e1:1c:06:b0: 77:63:5b:b9:6b:98:59:7a:74:c7:27:b5:82:e1:0c:37:62:e0: 5d:8d:d5:2b -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDA0RjBEOEE5MzAyQjIyQjYwRTMwRjQ2NTFCODJBRTk5 OUZGNzRDOUIwHhcNMjUwMzE3MDQ1MTIwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTkzNi0yOTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XP9HU4k4b66mEgMT8vbaNN21I/mPxbKpcoPSC+yZbTM/IKq7JnT8NNC5Mld c9gCSjtTpV4faGrZZkX8rmxgSGM4SzH2FEd/GX1cM5XFjZDqTszSVa4HBfEQIlFP wdYu8ucu+iQ/pjGE5zctgmIhYpcnpYLNAB7cEtTYKbGG1w4iVUnvSrRuqP0fL+Qa VDkk4UjAXcjTL+8PgelmnF/tLzOKaYRwQuZU0IDOlul4AErqIWboZzryrv86sZVt ezutM0OUd7BfmpBivhsEyU9koXzaL3VJZdm3pHaxIspemPpLhQJRU3iCcSDudbAI zxg61LYOGb6gAOCTWW9q3Zz7iwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFMdVceEr /pZayRDhv4JFKqSx5QTzMB8GA1UdIwQYMBaAFATw2KkwKyK2DjD0ZRuCrpmf90yb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9CMjM4QTE4NEYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9CUERZcVRBcklyWU9NUFJsRzRLdW1aXzNU SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JQRFlxVEFySXJZT01QUmxHNEt1bVpfM1RKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE4ODIvQjIzOEExODRGMEIzMTFFRUE0QzcyRjg0QzRGOUFFMDIvMDhEMTg3MEVG MEI0MTFFRTk2MkVFNzg0QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAGEoDANBgkqhkiG9w0BAQsFAAOCAQEAH4Kxt8ZgtjkPlkrbSwNu Mec9z7U5IoOMqnJtvo3fIeMpXMKItF9dh4BpAa0wuVWylomF5Y7fKqSuJFwpTtTd U1lAK80QGpJz5zkE9obEZvGSizXk/Rq3m6Z3jMeLP7nfJbRZpb+RI4WBJn4pOdMN zBeSryWzvnXOIPg4IZniugMFv0gBSm8Uudk8WnbqWjZaAJrNxAptSo8j0I9tAWvD ME+/EeejMBEK6UF0rH7LCVJW7Qi1/jeAXnv2YzagHooMHfAwTtWWSf0hwWD+n7JT pSYQ4ftFytsuSKIOlri5vzBxepyhCe/hHAawd2NbuWuYWXp0xye1guEMN2LgXY3V Kw== -----END CERTIFICATE-----Generated at Thu Mar 26 11:29:39 2026 by rpki-client