$ rpki-client -vvf rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/3EE95EC801B211F19B62C4E66C6F56BC.roa File: 3EE95EC801B211F19B62C4E66C6F56BC.roa (raw, json) Hash identifier: B0jnDdaxg9Qc3b+l9St8mXLfihlNO3bYzJFFHiKIOSU= Subject key identifier: 7C:02:A6:87:43:27:1B:A2:76:7B:24:7F:58:4A:D9:E2:57:76:73:55 Certificate issuer: /CN=A918E3C0/serialNumber=A5D4E188AB25D86941E06BC5F0D2BE98D0A50A2D Certificate serial: 1C Authority key identifier: A5:D4:E1:88:AB:25:D8:69:41:E0:6B:C5:F0:D2:BE:98:D0:A5:0A:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/3EE95EC801B211F19B62C4E66C6F56BC.roa Signing time: Mon 02 Mar 2026 13:49:58 +0000 ROA not before: Wed 04 Feb 2026 10:14:10 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 138233 IP address blocks: 2001:df6:ad40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.crl rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:07:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E3C0, serialNumber=A5D4E188AB25D86941E06BC5F0D2BE98D0A50A2D Validity Not Before: Feb 4 10:14:10 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a59586-75be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:b0:a6:89:03:5d:f4:50:45:5b:71:f2:f5:98: 0e:7a:1d:df:c5:c6:69:c2:bf:01:4d:54:a9:b9:db: bb:bf:f7:ed:f8:af:8b:99:d5:db:3a:07:75:e2:ad: 4b:2c:3f:6b:8b:c8:28:11:52:1d:14:2f:0d:c3:e1: 58:af:36:a2:c2:a1:6d:bb:0e:c3:7a:58:35:8d:e6: e6:d8:31:97:16:32:71:fc:98:f8:c0:64:0e:24:dc: 00:bb:6e:72:e0:25:76:f1:a1:04:6a:68:2e:2f:53: 87:ed:4b:25:25:0e:99:b7:58:77:bb:67:84:d8:12: 11:7b:80:07:2d:2a:eb:28:cb:9c:f8:bc:80:49:71: 37:58:56:7f:09:8e:0f:40:32:51:8d:c8:f6:b4:08: da:0c:2c:7d:5e:83:34:a7:e2:ef:98:7e:b8:d1:09: e7:66:e6:01:61:63:03:1b:d6:dc:08:d1:d8:f5:1f: 6f:29:01:64:de:c8:9f:59:1e:d2:d3:1f:ad:d0:ef: 7b:98:6a:5a:cb:d5:04:eb:8a:16:fd:4b:f7:72:a1: fa:5c:40:cc:9e:21:69:e4:b0:01:c9:f0:05:26:26: ae:03:90:21:9d:64:18:bc:ad:cb:b8:96:40:eb:83: 24:0d:70:c1:b8:56:4d:a8:88:10:40:04:d9:cb:3d: 74:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:02:A6:87:43:27:1B:A2:76:7B:24:7F:58:4A:D9:E2:57:76:73:55 X509v3 Authority Key Identifier: keyid:A5:D4:E1:88:AB:25:D8:69:41:E0:6B:C5:F0:D2:BE:98:D0:A5:0A:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/3EE95EC801B211F19B62C4E66C6F56BC.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:ad40::/48 Signature Algorithm: sha256WithRSAEncryption a0:60:96:51:79:14:4d:3b:20:a4:86:a8:04:61:7e:b1:ff:61: b5:d0:02:e9:bb:9e:98:b7:a9:b5:f4:b8:52:b2:7c:5e:2a:94: d3:ba:9d:46:4d:9f:32:4f:5c:25:53:f7:20:11:01:77:67:fe: a3:04:90:a5:01:8e:6c:c6:bb:f2:ad:7c:67:95:a0:fe:38:01: b3:9a:b7:d4:21:30:4a:82:9d:33:48:0c:79:60:dc:3f:04:d2: 67:5f:80:68:51:b2:78:83:f9:17:ca:72:8e:a9:c2:10:2e:68: 13:1d:9e:d1:b1:49:b4:5e:6f:0e:89:1d:91:a3:56:eb:93:6c: 3f:50:ed:66:72:0f:59:94:61:21:26:02:a3:6b:6f:e7:b7:7a: d5:26:58:29:69:ad:e1:b0:a0:d2:75:f6:0e:8d:45:16:ea:cc: a9:d9:0b:37:96:16:7e:a4:89:4a:bf:48:ab:b3:06:b6:58:b5: 3e:93:e7:93:0a:e7:f7:d7:d6:f2:d7:c1:e5:89:62:a1:e5:56: 1e:9d:da:4f:cc:df:75:e5:bb:10:09:1d:62:57:b8:4b:2f:0e: a9:95:2b:7c:11:41:a5:ab:d1:b4:bc:b3:17:8e:e8:41:0e:56: 06:c5:fb:70:41:e1:aa:dc:94:8b:4d:dc:79:b4:fd:80:c5:fb: ea:12:9c:c5 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTNDMDExMC8GA1UEBRMoQTVENEUxODhBQjI1RDg2OTQxRTA2QkM1RjBEMkJFOThE MEE1MEEyRDAeFw0yNjAyMDQxMDE0MTBaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU5NTg2LTc1YmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDssKaJA130UEVbcfL1mA56Hd/FxmnCvwFNVKm527u/9+34r4uZ1ds6B3XirUss P2uLyCgRUh0ULw3D4VivNqLCoW27DsN6WDWN5ubYMZcWMnH8mPjAZA4k3AC7bnLg JXbxoQRqaC4vU4ftSyUlDpm3WHe7Z4TYEhF7gActKusoy5z4vIBJcTdYVn8Jjg9A MlGNyPa0CNoMLH1egzSn4u+YfrjRCedm5gFhYwMb1twI0dj1H28pAWTeyJ9ZHtLT H63Q73uYalrL1QTrihb9S/dyofpcQMyeIWnksAHJ8AUmJq4DkCGdZBi8rcu4lkDr gyQNcMG4Vk2oiBBABNnLPXRzAgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUfAKmh0Mn G6J2eyR/WErZ4ld2c1UwHwYDVR0jBBgwFoAUpdThiKsl2GlB4GvF8NK+mNClCi0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFM0MwLzlBOEFEODUyMDFC MTExRjE5QzFFNDJDMTZCNkY1NkJDL3BkVGhpS3NsMkdsQjRHdkY4TkstbU5DbENp MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGRUaGlLc2wyR2xCNEd2RjhOSy1tTkNsQ2kwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTNDMC85QThBRDg1MjAxQjExMUYxOUMxRTQyQzE2QjZGNTZCQy8zRUU5NUVDODAx QjIxMUYxOUI2MkM0RTY2QzZGNTZCQy5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ32rUAwDQYJKoZIhvcNAQELBQADggEBAKBgllF5FE07IKSGqARh frH/YbXQAum7npi3qbX0uFKyfF4qlNO6nUZNnzJPXCVT9yARAXdn/qMEkKUBjmzG u/KtfGeVoP44AbOat9QhMEqCnTNIDHlg3D8E0mdfgGhRsniD+RfKco6pwhAuaBMd ntGxSbRebw6JHZGjVuuTbD9Q7WZyD1mUYSEmAqNrb+e3etUmWClpreGwoNJ19g6N RRbqzKnZCzeWFn6kiUq/SKuzBrZYtT6T55MK5/fX1vLXweWJYqHlVh6d2k/M33Xl uxAJHWJXuEsvDqmVK3wRQaWr0bS8sxeO6EEOVgbF+3BB4arclItN3Hm0/YDF++oS nMU= -----END CERTIFICATE-----Generated at Thu Mar 26 09:49:39 2026 by rpki-client