$ rpki-client -vvf rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/6198218AEB3311EEA75DE77DC4F9AE02.roa File: 6198218AEB3311EEA75DE77DC4F9AE02.roa (raw, json) Hash identifier: SJ1zAtwuUDoklbt6R8JhcX6A+HkMTpxPrsLu4rdoP7E= Subject key identifier: 48:D7:2A:8C:9E:8B:71:23:36:76:C3:EC:57:16:09:F1:FB:88:68:C0 Certificate issuer: /CN=A912BA82/serialNumber=AFB8FFE1E8686296B996C63AA902EA9C128F48FE Certificate serial: 01B1 Authority key identifier: AF:B8:FF:E1:E8:68:62:96:B9:96:C6:3A:A9:02:EA:9C:12:8F:48:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7j_4ehoYpa5lsY6qQLqnBKPSP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/6198218AEB3311EEA75DE77DC4F9AE02.roa Signing time: Fri 27 Mar 2026 04:38:48 +0000 ROA not before: Fri 27 Mar 2026 04:38:48 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 148968 IP address blocks: 2401:76e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/r7j_4ehoYpa5lsY6qQLqnBKPSP4.crl rsync://rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/r7j_4ehoYpa5lsY6qQLqnBKPSP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7j_4ehoYpa5lsY6qQLqnBKPSP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:51:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BA82, serialNumber=AFB8FFE1E8686296B996C63AA902EA9C128F48FE Validity Not Before: Mar 27 04:38:48 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69c609d8-142d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:fe:75:59:c6:fa:ca:27:a7:db:c5:8e:7c:45: 4e:59:0b:a7:73:88:41:70:e0:48:6d:f0:f7:01:4c: b5:f3:a1:b8:48:7a:ef:93:95:44:94:f6:97:05:e7: 0c:a9:ab:3f:ba:44:2f:30:f8:29:24:7d:75:f6:d1: da:c0:89:0c:9f:15:9b:a1:81:d4:6a:10:e8:52:0d: 62:da:aa:e3:6f:61:cb:e1:63:c3:68:9c:8e:14:18: 94:02:f1:b1:14:a8:39:f3:df:56:08:5f:2e:cb:88: 4c:e2:ba:8f:16:b9:e7:50:e6:6a:3d:77:73:63:b0: bc:1f:ab:1c:5c:a1:cc:12:24:b8:66:c5:8c:10:c7: 44:51:3c:07:0e:5f:5a:3c:19:e8:a1:e1:e8:bb:35: 95:39:2a:b3:16:bf:96:07:2d:fc:33:07:a1:b9:e7: 65:7e:00:aa:47:73:0e:e3:4c:d5:a6:00:94:23:01: 53:48:ee:d0:97:ba:54:b4:bc:36:84:2c:ca:1b:6e: 14:93:d5:39:99:b2:58:83:a1:a0:ba:92:75:0b:20: 48:c4:4f:4d:04:e1:1c:5d:a3:3f:7b:a6:b8:b0:9b: 9b:1d:96:d7:f0:b2:48:cb:6d:4e:01:bf:42:17:fa: 13:bb:5d:8e:42:31:5b:82:fd:35:1b:7a:ed:e3:a4: 57:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D7:2A:8C:9E:8B:71:23:36:76:C3:EC:57:16:09:F1:FB:88:68:C0 X509v3 Authority Key Identifier: keyid:AF:B8:FF:E1:E8:68:62:96:B9:96:C6:3A:A9:02:EA:9C:12:8F:48:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/r7j_4ehoYpa5lsY6qQLqnBKPSP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7j_4ehoYpa5lsY6qQLqnBKPSP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/6198218AEB3311EEA75DE77DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:76e0::/32 Signature Algorithm: sha256WithRSAEncryption 8a:9b:ef:26:39:8b:eb:64:55:05:16:22:2c:4a:e0:d3:26:3f: 86:0b:2b:c3:4b:92:a4:c5:ef:63:9e:57:a7:bf:84:69:1e:2f: 80:0d:98:7f:61:6b:aa:00:05:84:89:0a:20:eb:90:23:c5:dd: 29:b3:4b:a5:85:9f:d8:f7:39:3b:bc:26:28:19:ab:52:ce:6a: fa:37:70:ef:1a:f5:8c:3f:db:ae:54:72:6d:c8:66:5c:2a:a3: 96:64:8d:35:01:ca:98:b6:77:4d:15:be:fc:b1:28:ac:40:31: e1:a5:29:29:c2:88:c3:8c:48:d8:4b:41:83:04:89:fd:d6:5a: a6:9b:81:30:6d:04:2d:98:d7:ea:3d:09:4f:f4:bd:4d:d8:b8: 48:14:28:c0:44:23:8f:f6:45:47:ff:49:54:a9:4e:1e:83:f1: 2f:bd:0f:a8:38:f4:63:f8:5e:3f:f4:90:9b:ef:36:ef:eb:00: 1f:0c:42:af:ed:46:2f:28:b6:01:3b:9e:ce:ae:49:e8:46:35: 5d:51:a4:c3:ff:d7:50:cc:b1:b0:cc:be:4c:24:aa:aa:0e:55: 60:cb:c6:b0:85:ab:77:73:0a:fc:33:18:c6:ea:8c:ff:c0:34: 70:11:47:10:75:57:75:4a:b7:23:68:d0:4e:87:f2:e9:8d:d6: 35:77:b2:08 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBODIxMTAvBgNVBAUTKEFGQjhGRkUxRTg2ODYyOTZCOTk2QzYzQUE5MDJFQTlD MTI4RjQ4RkUwHhcNMjYwMzI3MDQzODQ4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWM2MDlkOC0xNDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgv51Wcb6yien28WOfEVOWQunc4hBcOBIbfD3AUy186G4SHrvk5VElPaXBecM qas/ukQvMPgpJH119tHawIkMnxWboYHUahDoUg1i2qrjb2HL4WPDaJyOFBiUAvGx FKg5899WCF8uy4hM4rqPFrnnUOZqPXdzY7C8H6scXKHMEiS4ZsWMEMdEUTwHDl9a PBnooeHouzWVOSqzFr+WBy38MwehuedlfgCqR3MO40zVpgCUIwFTSO7Ql7pUtLw2 hCzKG24Uk9U5mbJYg6GgupJ1CyBIxE9NBOEcXaM/e6a4sJubHZbX8LJIy21OAb9C F/oTu12OQjFbgv01G3rt46RXtwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFEjXKoye i3EjNnbD7FcWCfH7iGjAMB8GA1UdIwQYMBaAFK+4/+HoaGKWuZbGOqkC6pwSj0j+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkE4Mi9GQkREQUMyNENF NUExMUVFOEMzQkQwM0FDNEY5QUUwMi9yN2pfNGVob1lwYTVsc1k2cVFMcW5CS1BT UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I3al80ZWhvWXBhNWxzWTZxUUxxbkJLUFNQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJBODIvRkJEREFDMjRDRTVBMTFFRThDM0JEMDNBQzRGOUFFMDIvNjE5ODIxOEFF QjMzMTFFRUE3NURFNzdEQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAF24DANBgkqhkiG9w0BAQsFAAOCAQEAipvvJjmL62RVBRYiLErg 0yY/hgsrw0uSpMXvY55Xp7+EaR4vgA2Yf2FrqgAFhIkKIOuQI8XdKbNLpYWf2Pc5 O7wmKBmrUs5q+jdw7xr1jD/brlRybchmXCqjlmSNNQHKmLZ3TRW+/LEorEAx4aUp KcKIw4xI2EtBgwSJ/dZappuBMG0ELZjX6j0JT/S9Tdi4SBQowEQjj/ZFR/9JVKlO HoPxL70PqDj0Y/heP/SQm+827+sAHwxCr+1GLyi2ATuezq5J6EY1XVGkw//XUMyx sMy+TCSqqg5VYMvGsIWrd3MK/DMYxuqM/8A0cBFHEHVXdUq3I2jQTofy6Y3WNXey CA== -----END CERTIFICATE-----Generated at Mon Apr 6 10:26:27 2026 by rpki-client