$ rpki-client -vvf rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/A20C3500BE6811EEBFF35870C4F9AE02.roa File: A20C3500BE6811EEBFF35870C4F9AE02.roa (raw, json) Hash identifier: ZnZ838yb1Lnlhy/ggGN6w4nIsswXCTJ1iI4zj1SyX/Q= Subject key identifier: 32:FB:5F:5A:3D:32:EA:01:77:55:78:0F:FE:DB:EA:7B:A5:83:5F:6D Certificate issuer: /CN=A913C07A/serialNumber=30F0DB82D58F583E8488379BA00D35ACB3526110 Certificate serial: 01A9 Authority key identifier: 30:F0:DB:82:D5:8F:58:3E:84:88:37:9B:A0:0D:35:AC:B3:52:61:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPDbgtWPWD6EiDeboA01rLNSYRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/A20C3500BE6811EEBFF35870C4F9AE02.roa Signing time: Fri 03 Apr 2026 04:37:23 +0000 ROA not before: Fri 03 Apr 2026 04:37:22 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 152447 IP address blocks: 2401:7ae0::/32 maxlen: 32 2401:7ae0::/36 maxlen: 36 2401:7ae0:4000::/36 maxlen: 36 2401:7ae0:4003::/48 maxlen: 48 2401:7ae0:8000::/36 maxlen: 36 2401:7ae0:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.crl rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPDbgtWPWD6EiDeboA01rLNSYRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C07A, serialNumber=30F0DB82D58F583E8488379BA00D35ACB3526110 Validity Not Before: Apr 3 04:37:22 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cf4402-9e6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0f:86:f0:16:04:7c:84:c7:66:b2:51:81:9f: 78:a7:b2:ba:03:1c:87:8b:5b:1a:ef:70:5f:75:83: e0:af:f2:1f:96:8d:75:e4:e8:72:5a:9d:87:55:ac: 57:24:1b:de:b3:cb:87:d6:03:8f:97:e3:70:4f:dc: be:84:c8:47:0c:58:b9:76:55:18:71:3c:87:ac:c5: 1b:f5:6b:45:02:24:1d:d3:bc:8f:d4:d7:70:a6:6c: 9d:88:03:b3:87:47:a5:2f:d5:df:6f:fd:fa:0a:ce: a9:fe:94:28:e4:59:3f:98:68:42:82:24:54:1e:d5: 9a:28:b2:e2:cf:fa:40:0c:51:2d:b3:96:a8:5c:9b: 76:58:bf:32:27:4f:ad:2f:23:83:f6:a4:3b:e0:8b: 10:af:c9:21:ea:e5:3f:10:33:eb:b1:42:7b:18:a6: 5f:81:c5:b8:7b:65:af:62:e8:63:c0:f1:64:b5:44: 15:d0:ed:62:35:8e:8e:91:ed:08:08:78:45:9d:ae: 99:23:c7:88:69:85:6a:37:9a:ba:cf:ee:74:e5:c9: 8d:37:c1:ee:77:6f:8d:7d:28:9e:fe:9e:d5:f6:61: d0:b4:f5:9a:8c:13:9f:c1:5c:41:fe:35:31:19:26: 78:88:9c:d2:42:bc:d0:65:6e:cd:8d:96:0a:47:50: 17:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:FB:5F:5A:3D:32:EA:01:77:55:78:0F:FE:DB:EA:7B:A5:83:5F:6D X509v3 Authority Key Identifier: keyid:30:F0:DB:82:D5:8F:58:3E:84:88:37:9B:A0:0D:35:AC:B3:52:61:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPDbgtWPWD6EiDeboA01rLNSYRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/A20C3500BE6811EEBFF35870C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:7ae0::/32 Signature Algorithm: sha256WithRSAEncryption 0e:21:cd:e4:9d:ba:73:8c:c6:c9:6d:b8:4c:82:8f:ee:02:07: 1d:1a:ee:4c:97:5a:9b:d6:a6:a5:c8:74:27:62:fd:ba:36:f3: 3e:f4:fd:ef:33:3f:ad:16:9a:cd:5b:d8:ce:81:b8:7b:67:b4: 41:c1:d1:03:2c:f4:f2:07:8e:a2:7c:14:4c:7d:12:b6:13:4e: 04:50:95:4c:e4:84:b6:ca:44:61:11:a3:af:4d:00:29:ee:59: ea:54:49:e8:23:59:3f:1c:84:16:f0:e2:e8:67:e0:1a:c8:ac: c8:d0:dc:9e:40:08:e5:0b:6b:7b:00:6f:67:cd:09:cc:8c:21: 15:ee:31:32:18:f8:a0:a7:e3:8c:02:8d:80:59:c5:13:b0:9c: 0a:07:5a:04:6d:ed:2b:fb:9b:ed:fc:f1:30:14:65:37:91:a2: 06:3d:d8:45:02:96:05:06:d4:be:bb:8c:16:1d:35:c9:01:05: c3:36:ac:55:77:af:1c:d6:52:76:54:96:c9:1b:ed:ae:8f:41: 00:48:f6:f7:fe:16:a4:f4:b8:5f:58:fd:94:7b:a1:fb:f1:b3: ac:5e:d7:bc:a3:da:81:27:f1:27:f8:5a:e7:ad:1f:61:11:3c: ae:ff:ef:06:21:40:e8:a9:a9:89:bf:75:74:20:b4:ee:19:ca: c8:82:c2:de -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0MwN0ExMTAvBgNVBAUTKDMwRjBEQjgyRDU4RjU4M0U4NDg4Mzc5QkEwMEQzNUFD QjM1MjYxMTAwHhcNMjYwNDAzMDQzNzIyWhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmNDQwMi05ZTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArw+G8BYEfITHZrJRgZ94p7K6AxyHi1sa73BfdYPgr/Iflo115OhyWp2HVaxX JBves8uH1gOPl+NwT9y+hMhHDFi5dlUYcTyHrMUb9WtFAiQd07yP1NdwpmydiAOz h0elL9Xfb/36Cs6p/pQo5Fk/mGhCgiRUHtWaKLLiz/pADFEts5aoXJt2WL8yJ0+t LyOD9qQ74IsQr8kh6uU/EDPrsUJ7GKZfgcW4e2WvYuhjwPFktUQV0O1iNY6Oke0I CHhFna6ZI8eIaYVqN5q6z+505cmNN8Hud2+NfSie/p7V9mHQtPWajBOfwVxB/jUx GSZ4iJzSQrzQZW7NjZYKR1AXsQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFDL7X1o9 MuoBd1V4D/7b6nulg19tMB8GA1UdIwQYMBaAFDDw24LVj1g+hIg3m6ANNayzUmEQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzA3QS9GQjE4Mjk5OEJF NjcxMUVFQjMzQzZENkVDNEY5QUUwMi9NUERiZ3RXUFdENkVpRGVib0EwMXJMTlNZ UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01QRGJndFdQV0Q2RWlEZWJvQTAxckxOU1lSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0MwN0EvRkIxODI5OThCRTY3MTFFRUIzM0M2RDZFQzRGOUFFMDIvQTIwQzM1MDBC RTY4MTFFRUJGRjM1ODcwQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAF64DANBgkqhkiG9w0BAQsFAAOCAQEADiHN5J26c4zGyW24TIKP 7gIHHRruTJdam9ampch0J2L9ujbzPvT97zM/rRaazVvYzoG4e2e0QcHRAyz08geO onwUTH0SthNOBFCVTOSEtspEYRGjr00AKe5Z6lRJ6CNZPxyEFvDi6GfgGsisyNDc nkAI5QtrewBvZ80JzIwhFe4xMhj4oKfjjAKNgFnFE7CcCgdaBG3tK/ub7fzxMBRl N5GiBj3YRQKWBQbUvruMFh01yQEFwzasVXevHNZSdlSWyRvtro9BAEj29/4WpPS4 X1j9lHuh+/GzrF7XvKPagSfxJ/ha560fYRE8rv/vBiFA6Kmpib91dCC07hnKyILC 3g== -----END CERTIFICATE-----Generated at Mon Apr 6 09:57:39 2026 by rpki-client