$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/86516CF04BE911EE8640FE79C4F9AE02.roa File: 86516CF04BE911EE8640FE79C4F9AE02.roa (raw, json) Hash identifier: 2/oEhNKw4A8hCV5h32sgGlhduxEgDsT8LW5cn4d4U6o= Subject key identifier: B6:65:10:15:1B:B1:17:61:05:4B:0F:8C:D4:2E:F8:53:0F:40:0A:10 Certificate issuer: /CN=A9148D53/serialNumber=FDBD4C0D34492F5CEAE4879E4762796E527007EB Certificate serial: 026E Authority key identifier: FD:BD:4C:0D:34:49:2F:5C:EA:E4:87:9E:47:62:79:6E:52:70:07:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_b1MDTRJL1zq5IeeR2J5blJwB-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/86516CF04BE911EE8640FE79C4F9AE02.roa Signing time: Wed 11 Mar 2026 02:37:34 +0000 ROA not before: Wed 11 Mar 2026 02:37:34 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 139853 IP address blocks: 2401:fd80:ff00::/48 maxlen: 48 2401:fd80:ff01::/48 maxlen: 48 2401:fd80:ff02::/48 maxlen: 48 2401:fd80:ff03::/48 maxlen: 48 2401:fd80:ff04::/48 maxlen: 48 2401:fd80:ffb1::/48 maxlen: 48 2401:fd80:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/_b1MDTRJL1zq5IeeR2J5blJwB-s.crl rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/_b1MDTRJL1zq5IeeR2J5blJwB-s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_b1MDTRJL1zq5IeeR2J5blJwB-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:35:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 622 (0x26e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D53, serialNumber=FDBD4C0D34492F5CEAE4879E4762796E527007EB Validity Not Before: Mar 11 02:37:34 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69b0d56e-bce5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:20:3a:01:72:af:91:ca:62:df:9e:52:11:03: 33:22:bf:21:f0:7e:3c:ce:b6:3e:13:63:45:db:28: a8:14:19:54:65:64:d1:ec:9c:2f:02:3e:07:10:1e: 58:45:14:d2:9a:29:7c:99:e8:f5:8c:ab:98:ef:a0: c0:53:fc:2f:3c:51:4f:3e:16:48:4c:48:7d:10:77: cf:0c:aa:3f:57:f0:d9:a3:1a:40:a3:da:bc:2d:e8: 84:13:a7:01:60:68:08:6d:f7:b5:78:e8:b7:e4:b6: e7:e3:90:88:cd:d5:fc:89:8f:9a:db:02:bb:a3:3d: 38:cb:e6:63:ee:ec:60:74:d7:21:92:cf:fa:d9:bf: 27:1d:d5:88:78:e3:77:b3:4a:42:45:d4:c6:6d:19: 09:c3:c4:d8:8f:58:42:18:4d:f4:5f:46:37:04:2e: 80:91:36:c3:0c:04:c7:7f:31:3a:3a:49:84:01:38: 87:6a:e8:3f:69:e6:f4:62:c8:32:6e:d5:a2:27:ee: af:1d:f1:f6:10:4d:c2:fa:99:f9:5a:61:2e:78:02: b3:e1:04:43:11:f1:fc:b5:28:0e:dc:6f:1e:51:77: f8:8f:6a:d0:59:b4:25:c9:7e:aa:63:a8:e5:b5:e0: ef:16:7f:55:b0:2e:97:53:f7:82:e6:60:c7:2f:15: 39:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:65:10:15:1B:B1:17:61:05:4B:0F:8C:D4:2E:F8:53:0F:40:0A:10 X509v3 Authority Key Identifier: keyid:FD:BD:4C:0D:34:49:2F:5C:EA:E4:87:9E:47:62:79:6E:52:70:07:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/_b1MDTRJL1zq5IeeR2J5blJwB-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_b1MDTRJL1zq5IeeR2J5blJwB-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/86516CF04BE911EE8640FE79C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:fd80:ff00::-2401:fd80:ff04:ffff:ffff:ffff:ffff:ffff 2401:fd80:ffb1::/48 2401:fd80:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 06:eb:0a:6e:62:76:ed:00:09:7e:c4:9b:9e:4b:a4:41:b7:75: e3:84:52:e0:20:db:99:9c:80:a0:fe:de:cd:51:c5:6e:af:14: ec:7f:73:e0:db:e3:ca:9d:e0:a2:d5:2a:0d:e3:ad:28:28:ef: fd:6b:53:b2:76:b0:70:ab:3f:5c:12:9f:37:ab:a3:50:20:6d: 69:69:a5:7e:a7:9e:cc:57:1b:51:c6:33:40:92:b5:a3:1c:78: 9b:38:c1:5d:87:ac:e3:b6:0a:75:06:d3:96:08:8d:51:f1:59: 30:b5:65:ec:33:6c:12:93:99:c6:ef:0d:e2:cf:ed:d3:ec:ae: ea:17:aa:96:5c:62:93:8b:31:12:4e:a4:af:ad:85:5a:69:5f: 67:36:9a:8c:44:30:9c:1a:00:6e:cf:13:48:d6:0d:28:c9:f1: a4:2f:6c:ce:16:4a:81:52:7c:1d:4b:6e:83:ea:1e:08:e4:8d: 11:c8:8a:31:0c:fe:21:c8:8a:ed:d3:40:01:50:62:bc:e7:06: ef:a6:0b:94:ea:37:20:e3:1d:00:c3:06:9e:48:4f:35:c1:69: fd:48:0d:1c:8c:d3:4e:38:64:06:1b:47:ba:fb:30:67:52:e7: c2:c9:f0:d0:91:22:2f:50:97:78:32:d5:c0:db:ad:d3:98:73: 7e:ad:6e:38 -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgICAm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTMxMTAvBgNVBAUTKEZEQkQ0QzBEMzQ0OTJGNUNFQUU0ODc5RTQ3NjI3OTZF NTI3MDA3RUIwHhcNMjYwMzExMDIzNzM0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIwZDU2ZS1iY2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyA6AXKvkcpi355SEQMzIr8h8H48zrY+E2NF2yioFBlUZWTR7JwvAj4HEB5Y RRTSmil8mej1jKuY76DAU/wvPFFPPhZITEh9EHfPDKo/V/DZoxpAo9q8LeiEE6cB YGgIbfe1eOi35Lbn45CIzdX8iY+a2wK7oz04y+Zj7uxgdNchks/62b8nHdWIeON3 s0pCRdTGbRkJw8TYj1hCGE30X0Y3BC6AkTbDDATHfzE6OkmEATiHaug/aeb0Ysgy btWiJ+6vHfH2EE3C+pn5WmEueAKz4QRDEfH8tSgO3G8eUXf4j2rQWbQlyX6qY6jl teDvFn9VsC6XU/eC5mDHLxU5IwIDAQABo4ICfzCCAnswHQYDVR0OBBYEFLZlEBUb sRdhBUsPjNQu+FMPQAoQMB8GA1UdIwQYMBaAFP29TA00SS9c6uSHnkdieW5ScAfr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1My9ENTg2RjhGMDMw NzExMUVFODU0NkEzMkZDNEY5QUUwMi9fYjFNRFRSSkwxenE1SWVlUjJKNWJsSndC LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19iMU1EVFJKTDF6cTVJZWVSMko1YmxKd0Itcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhENTMvRDU4NkY4RjAzMDcxMTFFRTg1NDZBMzJGQzRGOUFFMDIvODY1MTZDRjA0 QkU5MTFFRTg2NDBGRTc5QzRGOUFFMDIucm9hMD4GCCsGAQUFBwEHAQH/BC8wLTAr BAIAAjAlMBEDBgAkAf2A/wMHACQB/YD/BAMHACQB/YD/sQMHACQB/YD//zANBgkq hkiG9w0BAQsFAAOCAQEABusKbmJ27QAJfsSbnkukQbd144RS4CDbmZyAoP7ezVHF bq8U7H9z4Nvjyp3gotUqDeOtKCjv/WtTsnawcKs/XBKfN6ujUCBtaWmlfqeezFcb UcYzQJK1oxx4mzjBXYes47YKdQbTlgiNUfFZMLVl7DNsEpOZxu8N4s/t0+yu6heq llxik4sxEk6kr62FWmlfZzaajEQwnBoAbs8TSNYNKMnxpC9szhZKgVJ8HUtug+oe COSNEciKMQz+IciK7dNAAVBivOcG76YLlOo3IOMdAMMGnkhPNcFp/UgNHIzTTjhk BhtHuvswZ1Lnwsnw0JEiL1CXeDLVwNut05hzfq1uOA== -----END CERTIFICATE-----Generated at Wed Mar 25 16:19:43 2026 by rpki-client