$ rpki-client -vvf rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/F43185921DF211F18E2EA673173D8C67.roa File: F43185921DF211F18E2EA673173D8C67.roa (raw, json) Hash identifier: srrIw1L1shwtn6ty4ggxa65JRJwKoEkJgFL5J1FGVi8= Subject key identifier: 6B:2B:F8:8E:65:A6:3A:CC:B8:95:81:64:4E:52:61:F5:07:BC:A4:0B Certificate issuer: /CN=A917DB52/serialNumber=693B71A5B5DA6054DF7F9C0D379CF520C1C8F291 Certificate serial: 087D Authority key identifier: 69:3B:71:A5:B5:DA:60:54:DF:7F:9C:0D:37:9C:F5:20:C1:C8:F2:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/F43185921DF211F18E2EA673173D8C67.roa Signing time: Thu 12 Mar 2026 09:07:54 +0000 ROA not before: Thu 12 Mar 2026 09:07:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136481 IP address blocks: 2400:ab20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.crl rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:33:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2173 (0x87d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DB52, serialNumber=693B71A5B5DA6054DF7F9C0D379CF520C1C8F291 Validity Not Before: Mar 12 09:07:54 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69b2826a-0ec1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:01:d6:6a:86:ec:30:e5:82:ae:3c:9f:1a:bf: 76:41:eb:be:4a:04:a7:e2:bd:83:48:90:e8:14:58: 6e:8c:e6:32:78:3f:3f:8e:b3:b8:48:93:f4:77:b8: 36:6e:fb:75:11:6d:7f:4a:46:37:42:7d:9c:8d:10: 2a:d2:09:d9:9c:c3:f5:4a:d6:5c:2a:6f:01:01:96: e0:fb:c5:a9:46:a2:54:48:93:48:4d:43:39:e2:03: 2d:db:c3:9f:a7:09:95:84:25:3d:79:af:b3:c9:c3: 96:80:c6:a7:38:31:56:f9:c5:e8:c0:3f:2a:12:78: d7:73:cc:f4:cd:76:e7:46:9d:80:08:e4:20:7a:26: b3:8a:a1:57:7b:d8:3f:ef:89:5e:06:4b:8b:75:56: 69:99:04:66:3f:e7:e9:c8:27:b8:7d:f1:1b:82:ec: 89:76:b2:ce:ca:87:d2:a9:ca:71:a4:f0:f0:46:9e: 0c:f8:bc:7c:71:52:50:a2:dd:72:67:46:de:32:a6: 06:69:09:f7:c4:2a:b4:cb:2f:60:77:a6:c9:aa:72: 29:a5:69:24:ab:df:83:af:a7:39:94:5c:90:9c:b6: 43:04:4d:d5:e8:f8:ce:5a:9a:1d:12:96:05:ff:b6: 8d:f0:b5:c3:a0:97:fd:40:dd:26:52:62:d1:ef:96: 19:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2B:F8:8E:65:A6:3A:CC:B8:95:81:64:4E:52:61:F5:07:BC:A4:0B X509v3 Authority Key Identifier: keyid:69:3B:71:A5:B5:DA:60:54:DF:7F:9C:0D:37:9C:F5:20:C1:C8:F2:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/F43185921DF211F18E2EA673173D8C67.roa sbgp-ipAddrBlock: critical IPv6: 2400:ab20::/32 Signature Algorithm: sha256WithRSAEncryption 0c:79:aa:69:cb:f9:b8:61:57:87:d5:87:70:0f:20:b9:91:ef: 9d:6f:75:f4:c3:10:d7:a2:fa:d4:d6:c0:fb:c8:fb:e2:eb:fe: 64:f8:77:56:54:07:47:b2:0e:12:b4:33:e7:b8:2e:01:1b:7c: 3b:57:2f:8a:2f:25:0d:da:36:ff:cd:bd:53:f4:3d:39:df:86: 0f:4c:5f:16:5a:fe:db:7d:03:54:33:9a:38:7d:ef:5c:76:ee: 09:cf:55:a0:82:b1:7c:c9:62:d0:71:5f:8d:4a:a1:c4:fc:dc: 7c:07:2d:b7:58:e0:8f:66:53:b0:71:08:31:cc:9c:c3:b3:24: 6d:65:69:62:7b:55:01:70:88:5d:70:0b:6e:31:a2:1c:ee:7f: 45:35:56:6d:ee:e8:1d:3b:ba:40:8e:f7:05:d3:34:e6:41:55: b6:2f:21:b0:d7:ed:f3:fe:ba:ad:0a:be:6a:f4:33:20:f3:43: 7a:6d:ae:ca:b9:fb:06:9b:3b:88:2a:a2:b2:ae:2a:4a:9d:94: 26:fc:d7:59:49:e2:be:60:db:31:77:b1:f7:b7:cf:93:13:ef: 88:ac:8e:35:4e:35:43:1e:7b:9c:33:3f:4a:b4:2a:e0:eb:ed: 5d:c3:7a:05:bf:d9:4f:73:71:65:cb:2d:9b:3b:3c:ea:39:93: 32:fc:12:be -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICCH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCNTIxMTAvBgNVBAUTKDY5M0I3MUE1QjVEQTYwNTRERjdGOUMwRDM3OUNGNTIw QzFDOEYyOTEwHhcNMjYwMzEyMDkwNzU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIyODI2YS0wZWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkAHWaobsMOWCrjyfGr92Qeu+SgSn4r2DSJDoFFhujOYyeD8/jrO4SJP0d7g2 bvt1EW1/SkY3Qn2cjRAq0gnZnMP1StZcKm8BAZbg+8WpRqJUSJNITUM54gMt28Of pwmVhCU9ea+zycOWgManODFW+cXowD8qEnjXc8z0zXbnRp2ACOQgeiaziqFXe9g/ 74leBkuLdVZpmQRmP+fpyCe4ffEbguyJdrLOyofSqcpxpPDwRp4M+Lx8cVJQot1y Z0beMqYGaQn3xCq0yy9gd6bJqnIppWkkq9+Dr6c5lFyQnLZDBE3V6PjOWpodEpYF /7aN8LXDoJf9QN0mUmLR75YZrQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFGsr+I5l pjrMuJWBZE5SYfUHvKQLMB8GA1UdIwQYMBaAFGk7caW12mBU33+cDTec9SDByPKR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REI1Mi80NUY1NTZCRUYy ODAxMUVBODcxQkFENkFDNEY5QUUwMi9hVHR4cGJYYVlGVGZmNXdOTjV6MUlNSEk4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUdHhwYlhhWUZUZmY1d05ONXoxSU1ISThwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RCNTIvNDVGNTU2QkVGMjgwMTFFQTg3MUJBRDZBQzRGOUFFMDIvRjQzMTg1OTIx REYyMTFGMThFMkVBNjczMTczRDhDNjcucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJACrIDANBgkqhkiG9w0BAQsFAAOCAQEADHmqacv5uGFXh9WHcA8g uZHvnW919MMQ16L61NbA+8j74uv+ZPh3VlQHR7IOErQz57guARt8O1cvii8lDdo2 /829U/Q9Od+GD0xfFlr+230DVDOaOH3vXHbuCc9VoIKxfMli0HFfjUqhxPzcfAct t1jgj2ZTsHEIMcycw7MkbWVpYntVAXCIXXALbjGiHO5/RTVWbe7oHTu6QI73BdM0 5kFVti8hsNft8/66rQq+avQzIPNDem2uyrn7Bps7iCqisq4qSp2UJvzXWUnivmDb MXex97fPkxPviKyONU41Qx57nDM/SrQq4OvtXcN6Bb/ZT3NxZcstmzs86jmTMvwS vg== -----END CERTIFICATE-----Generated at Sat Mar 28 12:11:23 2026 by rpki-client