$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/20B02A7A2C6D11EF9E3D5230C4F9AE02.roa File: 20B02A7A2C6D11EF9E3D5230C4F9AE02.roa (raw, json) Hash identifier: x6xFUIUE0jovKV38ycCpVXijBuo7oYt/D6m67ezwclM= Subject key identifier: C4:85:3F:F8:35:A9:E5:5C:CB:41:8F:35:19:6A:CD:CF:E1:13:53:13 Certificate issuer: /CN=A913AE23/serialNumber=E8876B51AB2B177440CD4C4CD2E4F0A598E0381C Certificate serial: 015E Authority key identifier: E8:87:6B:51:AB:2B:17:74:40:CD:4C:4C:D2:E4:F0:A5:98:E0:38:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IdrUasrF3RAzUxM0uTwpZjgOBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/20B02A7A2C6D11EF9E3D5230C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:42:31 +0000 ROA not before: Tue 09 Sep 2025 05:42:20 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138933 IP address blocks: 2401:a820::/32 maxlen: 32 2401:a820:22::/48 maxlen: 48 2401:a820:100::/48 maxlen: 48 2401:a820:200::/48 maxlen: 48 2401:a820:300::/48 maxlen: 48 2401:a820:400::/48 maxlen: 48 2401:a820:500::/48 maxlen: 48 2401:a820:600::/48 maxlen: 48 2401:a820:700::/48 maxlen: 48 2401:a820:800::/48 maxlen: 48 2401:a820:900::/48 maxlen: 48 2401:a820:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.crl rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IdrUasrF3RAzUxM0uTwpZjgOBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=E8876B51AB2B177440CD4C4CD2E4F0A598E0381C Validity Not Before: Sep 9 05:42:20 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a5a1d7-adf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4e:00:9f:ba:b3:bf:09:62:43:6e:a4:41:6b: b0:64:93:e6:ec:97:a6:32:1e:99:f7:fb:ee:09:3b: 9a:36:50:bf:18:e4:8c:67:1d:8b:eb:45:33:7c:39: bf:94:c1:94:e3:e3:45:ae:e6:da:7e:3b:41:45:5d: cb:7e:1a:ed:ec:b1:87:db:52:ef:ad:75:1f:a5:12: db:aa:49:55:97:b1:8b:dd:e7:f9:8f:2f:bf:56:11: 9a:05:3a:e5:2e:a1:a1:3b:2f:cd:57:a2:de:63:1b: 73:56:9e:ba:aa:b5:49:b7:13:0a:fb:cc:9e:36:a4: 88:2e:d6:55:72:0a:76:a7:d5:64:4f:3e:78:3a:e9: 49:6b:49:40:77:c8:f9:8c:50:ad:5b:3b:5d:e5:83: 9a:dc:a2:bc:f9:64:79:7e:d6:98:06:9a:bb:b2:f1: da:56:f6:99:ee:31:ce:50:fc:4c:9c:0b:85:96:1a: aa:5c:01:a5:23:86:36:73:a1:3b:26:96:f2:7e:4d: d1:60:56:16:ac:d0:27:d3:06:5b:ad:e1:0d:b4:62: 52:41:7e:fc:fa:19:23:a8:12:b0:5e:08:7e:0c:87: ed:0c:94:04:8c:12:2b:d4:6b:0b:47:71:c1:2f:6f: 54:4c:62:45:ec:f5:13:f1:bc:9f:4d:10:14:dc:62: b8:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:85:3F:F8:35:A9:E5:5C:CB:41:8F:35:19:6A:CD:CF:E1:13:53:13 X509v3 Authority Key Identifier: keyid:E8:87:6B:51:AB:2B:17:74:40:CD:4C:4C:D2:E4:F0:A5:98:E0:38:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IdrUasrF3RAzUxM0uTwpZjgOBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/20B02A7A2C6D11EF9E3D5230C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:a820::/32 Signature Algorithm: sha256WithRSAEncryption 47:64:ce:72:fd:d4:64:37:d1:28:cb:1a:b7:32:a3:67:87:fa: b9:b9:7f:97:e8:45:ea:eb:18:27:17:be:ef:50:39:1b:48:a7: d1:4a:3e:03:a1:12:01:e1:a9:f6:63:7d:0b:dd:85:0a:05:6b: 98:e1:d7:31:67:49:f0:b6:1e:e4:92:7a:d9:ec:42:37:fd:76: 2f:07:ea:ef:f8:bf:43:a6:ef:07:d1:a6:75:3e:d8:64:41:fc: ce:89:a1:91:80:6b:10:6b:7f:de:fe:d8:8c:49:34:2e:6b:8c: f4:2a:ba:3b:ff:29:d5:fb:32:fe:b0:7a:d4:57:7d:91:e2:bb: aa:71:34:9f:95:89:1b:7c:bf:99:ad:1d:47:5c:03:39:6f:1b: 48:3c:30:34:ea:08:aa:74:04:18:cd:90:f4:5c:b4:0f:81:be: cc:40:56:b7:29:40:33:a0:54:13:f6:74:a3:6d:37:03:d2:17: 9a:34:a7:e8:77:13:df:89:c8:c6:72:80:f2:74:1e:2f:e6:37: 94:ae:10:24:d5:74:94:89:92:6f:40:06:98:19:c7:4e:22:bc: 73:0f:34:34:a4:c4:8e:85:9f:64:f8:1f:d1:ff:91:c7:02:40: b9:4d:d8:ee:4a:47:c5:fc:12:52:55:0e:73:69:79:2a:78:6a: 08:de:b0:88 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKEU4ODc2QjUxQUIyQjE3NzQ0MENENEM0Q0QyRTRGMEE1 OThFMDM4MUMwHhcNMjUwOTA5MDU0MjIwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTFkNy1hZGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArk4An7qzvwliQ26kQWuwZJPm7JemMh6Z9/vuCTuaNlC/GOSMZx2L60UzfDm/ lMGU4+NFrubafjtBRV3Lfhrt7LGH21LvrXUfpRLbqklVl7GL3ef5jy+/VhGaBTrl LqGhOy/NV6LeYxtzVp66qrVJtxMK+8yeNqSILtZVcgp2p9VkTz54OulJa0lAd8j5 jFCtWztd5YOa3KK8+WR5ftaYBpq7svHaVvaZ7jHOUPxMnAuFlhqqXAGlI4Y2c6E7 Jpbyfk3RYFYWrNAn0wZbreENtGJSQX78+hkjqBKwXgh+DIftDJQEjBIr1GsLR3HB L29UTGJF7PUT8byfTRAU3GK4IwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFMSFP/g1 qeVcy0GPNRlqzc/hE1MTMB8GA1UdIwQYMBaAFOiHa1GrKxd0QM1MTNLk8KWY4Dgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zQTcyQUJGQTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi82SWRyVWFzckYzUkF6VXhNMHVUd3BaamdP QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZJZHJVYXNyRjNSQXpVeE0wdVR3cFpqZ09Cdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0FFMjMvM0E3MkFCRkEyQzZDMTFFRkEzNDY5NDJEQzRGOUFFMDIvMjBCMDJBN0Ey QzZEMTFFRjlFM0Q1MjMwQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAGoIDANBgkqhkiG9w0BAQsFAAOCAQEAR2TOcv3UZDfRKMsatzKj Z4f6ubl/l+hF6usYJxe+71A5G0in0Uo+A6ESAeGp9mN9C92FCgVrmOHXMWdJ8LYe 5JJ62exCN/12Lwfq7/i/Q6bvB9GmdT7YZEH8zomhkYBrEGt/3v7YjEk0LmuM9Cq6 O/8p1fsy/rB61Fd9keK7qnE0n5WJG3y/ma0dR1wDOW8bSDwwNOoIqnQEGM2Q9Fy0 D4G+zEBWtylAM6BUE/Z0o203A9IXmjSn6HcT34nIxnKA8nQeL+Y3lK4QJNV0lImS b0AGmBnHTiK8cw80NKTEjoWfZPgf0f+RxwJAuU3Y7kpHxfwSUlUOc2l5KnhqCN6w iA== -----END CERTIFICATE-----Generated at Wed Mar 4 13:00:20 2026 by rpki-client