$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/21A658D2BA5311EEB6DF2E4BC4F9AE02.roa File: 21A658D2BA5311EEB6DF2E4BC4F9AE02.roa (raw, json) Hash identifier: 4YuHLbNNr89DFnzQc8jP99PEYi6RthL8lns8VYMsn7U= Subject key identifier: 8E:8A:63:08:F6:49:4E:A1:62:2B:32:7F:59:CD:A3:32:B2:B3:85:38 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 108E Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/21A658D2BA5311EEB6DF2E4BC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:31:00 +0000 ROA not before: Thu 22 May 2025 20:08:21 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 216056 IP address blocks: 2406:840:eef0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:34:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4238 (0x108e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:21 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a493f3-340a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:28:a4:4a:28:57:3c:2e:60:98:7e:c8:91:7e: 80:00:0c:60:93:3c:5c:6c:d7:3b:3c:71:5b:4a:37: af:d1:53:a2:c6:4d:fa:60:a0:78:7f:1c:c9:70:3a: c2:21:a2:73:ea:ad:eb:33:4e:86:43:d5:3a:cc:36: d5:8f:1b:bb:88:78:d5:a2:b6:71:ee:6a:d2:94:31: d3:32:f4:af:a5:33:33:a1:af:8a:ca:7b:e0:c9:d6: 57:ed:2d:8d:e8:e3:f6:5e:35:e5:6d:82:bb:b9:8d: b5:76:bb:b4:a6:de:94:06:2d:61:25:f1:50:9a:fc: 09:e7:82:18:0d:c9:4d:3e:f9:f3:1e:29:6b:64:b5: 41:a0:2b:80:f7:e0:af:30:64:c7:55:ac:0b:d7:59: 39:13:60:4b:85:21:fa:9a:93:fd:22:9a:33:b6:38: c5:63:98:40:31:c8:e3:bf:ff:89:f1:4e:e7:93:3a: c3:29:d4:25:74:2f:56:3a:80:3b:e6:fa:0a:a2:c6: af:b5:34:34:65:0c:29:01:eb:eb:ed:3a:54:e1:55: 71:49:17:b9:a7:2a:8c:19:d1:d3:69:0f:a6:7f:87: 96:ef:d0:f2:d9:8c:2f:36:3f:8e:4e:5c:f2:73:81: f1:47:4f:5d:31:bc:73:79:6e:4a:37:27:26:29:f1: e3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:8A:63:08:F6:49:4E:A1:62:2B:32:7F:59:CD:A3:32:B2:B3:85:38 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/21A658D2BA5311EEB6DF2E4BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:840:eef0::/44 Signature Algorithm: sha256WithRSAEncryption 40:6a:42:31:7c:12:9b:f5:c1:39:a2:94:fe:1c:bd:9f:cd:e4: 0d:fa:ee:8e:a9:f9:d1:2b:f7:f4:c4:1a:5e:09:f3:68:3d:c3: aa:1e:8f:2d:3a:2a:7e:ff:00:ff:84:7d:61:03:78:dc:9d:a2: d6:27:df:2d:b6:21:49:7e:d7:80:ce:0a:e3:4b:e8:13:9d:0c: 7c:0a:77:46:a1:d9:dd:77:d9:5b:99:f2:e9:d5:ab:98:21:03: ae:86:1c:51:96:73:00:55:c2:2d:3c:2c:5b:e0:8a:39:b4:f0: e9:04:2f:ba:13:d9:d4:08:54:8e:74:33:f2:7d:45:bb:47:ae: c1:ad:b4:64:70:b9:37:42:63:fa:15:e2:00:c6:f7:af:87:21: c4:02:1f:ef:2e:ae:3c:73:2c:d8:f4:94:3f:e3:c4:78:a5:18: f5:1c:27:2b:5d:25:f4:de:03:eb:0a:a0:af:5c:fc:82:54:f3: 11:d8:05:fd:7a:c0:b7:90:28:11:73:ed:f9:a0:24:9d:8c:cf: fc:0f:89:a5:e7:82:93:c9:7f:db:c1:eb:b4:2a:33:44:24:f5: 1c:de:68:f4:47:79:e8:73:01:64:c8:85:d4:1e:c2:59:d2:2f: 56:67:85:9e:4e:e7:66:ca:5d:9a:8b:7b:41:ff:59:cd:39:8b: 48:38:93:da -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICEI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODIxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTNmMy0zNDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iikSihXPC5gmH7IkX6AAAxgkzxcbNc7PHFbSjev0VOixk36YKB4fxzJcDrC IaJz6q3rM06GQ9U6zDbVjxu7iHjVorZx7mrSlDHTMvSvpTMzoa+KynvgydZX7S2N 6OP2XjXlbYK7uY21dru0pt6UBi1hJfFQmvwJ54IYDclNPvnzHilrZLVBoCuA9+Cv MGTHVawL11k5E2BLhSH6mpP9IpoztjjFY5hAMcjjv/+J8U7nkzrDKdQldC9WOoA7 5voKosavtTQ0ZQwpAevr7TpU4VVxSRe5pyqMGdHTaQ+mf4eW79Dy2YwvNj+OTlzy c4HxR09dMbxzeW5KNycmKfHj5wIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFI6KYwj2 SU6hYisyf1nNozKys4U4MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMjFBNjU4RDJC QTUzMTFFRUI2REYyRTRCQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAYIQO7wMA0GCSqGSIb3DQEBCwUAA4IBAQBAakIxfBKb9cE5opT+ HL2fzeQN+u6OqfnRK/f0xBpeCfNoPcOqHo8tOip+/wD/hH1hA3jcnaLWJ98ttiFJ fteAzgrjS+gTnQx8CndGodndd9lbmfLp1auYIQOuhhxRlnMAVcItPCxb4Io5tPDp BC+6E9nUCFSOdDPyfUW7R67BrbRkcLk3QmP6FeIAxvevhyHEAh/vLq48cyzY9JQ/ 48R4pRj1HCcrXSX03gPrCqCvXPyCVPMR2AX9esC3kCgRc+35oCSdjM/8D4ml54KT yX/bweu0KjNEJPUc3mj0R3nocwFkyIXUHsJZ0i9WZ4WeTudmyl2ai3tB/1nNOYtI OJPa -----END CERTIFICATE-----Generated at Sat Mar 28 10:35:18 2026 by rpki-client