$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/1F8378E6BCBD11EBAC9A4744C4F9AE02.roa File: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (raw, json) Hash identifier: WxVTSI5IqBCtDZMa9uJVKr0/nWjqcu853MnRjiV9FJM= Subject key identifier: 6D:5A:D4:D1:F5:D5:BB:E2:CE:6F:E2:DD:69:5F:6D:4A:47:89:FE:08 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 1470 Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/1F8378E6BCBD11EBAC9A4744C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:14:12 +0000 ROA not before: Sat 20 Dec 2025 17:14:38 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 395092 IP address blocks: 2403:cfc0:1006::/48 maxlen: 48 2403:cfc0:100c::/48 maxlen: 48 2403:cfc0:1110::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Mar 2026 16:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5232 (0x1470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Dec 20 17:14:38 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a58d24-9976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2e:82:e4:f4:63:65:3e:41:4c:fb:81:ea:97: 41:81:a0:33:9a:06:10:3e:61:1c:af:5c:2d:21:3e: 53:4d:90:9d:fb:c8:4a:a2:f2:91:aa:91:74:e2:39: 1f:e4:c3:ec:37:ac:31:75:6d:b5:96:bf:81:7f:50: 11:22:3b:92:9c:c0:e8:e6:c3:ad:1c:41:97:7b:62: 2e:10:d6:fd:c7:02:ba:69:3f:c1:02:3c:88:e6:53: fb:9e:ab:bf:28:e9:3c:6c:05:53:bf:62:ef:b7:26: 8f:ab:d7:5c:44:d3:0e:b7:15:d6:c6:1d:63:49:fa: 41:89:ed:e6:bc:05:4f:e9:f0:da:3b:64:5a:1f:3a: bb:eb:91:6e:f7:c3:59:6c:4c:d2:0d:93:71:9e:75: e7:db:e9:df:3e:a2:3d:4d:f3:e5:a5:ac:a5:6e:85: f2:4f:02:ad:bd:ee:bd:b4:5b:e3:39:12:8f:1c:e8: 3c:88:0a:e0:fe:f0:5d:31:ea:2c:de:8e:01:10:65: d1:ca:cb:4a:54:4a:d0:fa:ae:ab:c9:e6:9c:3f:f9: 34:bd:35:40:fc:68:3d:b6:7c:ff:10:86:a2:a3:06: 0e:69:e8:6b:09:22:b5:99:48:93:a4:60:84:d1:e3: d8:33:04:dc:1c:de:dd:76:b5:9a:ab:8d:47:70:fe: 74:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:5A:D4:D1:F5:D5:BB:E2:CE:6F:E2:DD:69:5F:6D:4A:47:89:FE:08 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/1F8378E6BCBD11EBAC9A4744C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2403:cfc0:1006::/48 2403:cfc0:100c::/48 2403:cfc0:1110::/44 Signature Algorithm: sha256WithRSAEncryption 72:0e:2b:3b:8c:31:96:59:85:37:da:1b:e2:e4:e7:07:cb:70: 99:49:57:f2:1b:b8:12:1e:42:2b:35:d8:e4:3c:0b:dc:20:2a: 97:5a:ba:b2:28:f0:f9:f8:20:13:1a:ee:46:0f:79:ae:00:10: 66:1b:65:61:30:7a:28:ae:65:39:ae:82:8b:95:e3:e4:fa:a6: b9:ed:2a:7a:07:2d:95:25:4e:3d:75:ee:97:43:26:9c:b8:b7: 07:93:12:6f:73:29:74:11:6e:a2:11:f2:a9:6d:15:ec:e9:e3: 71:b8:60:c7:81:c1:65:85:86:04:c3:b5:d4:53:04:c0:d6:84: 3e:0d:f7:f0:d2:5d:22:83:0a:4b:29:e1:8d:76:08:0b:fb:62: 6f:4f:53:e3:4d:6e:1d:39:8f:88:cf:66:be:8b:76:d5:70:cd: 8d:2e:ff:c6:a1:62:44:d2:de:1e:56:6d:4d:d4:c9:d7:0e:93: 14:a7:91:76:7a:2a:81:5f:33:3a:0f:a6:d8:b7:77:8f:f6:d3: 22:f2:e2:80:f6:fc:f9:0d:c2:53:70:38:bc:5e:fe:05:b7:41: e8:33:14:7f:8c:68:84:32:6c:d5:df:ea:12:9c:bc:9e:4e:d7: 3a:c8:49:d9:36:8e:52:21:c2:b6:b1:71:db:67:d2:b9:6e:a2: d7:4a:31:de -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICFHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUxMjIwMTcxNDM4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGQyNC05OTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyC6C5PRjZT5BTPuB6pdBgaAzmgYQPmEcr1wtIT5TTZCd+8hKovKRqpF04jkf 5MPsN6wxdW21lr+Bf1ARIjuSnMDo5sOtHEGXe2IuENb9xwK6aT/BAjyI5lP7nqu/ KOk8bAVTv2LvtyaPq9dcRNMOtxXWxh1jSfpBie3mvAVP6fDaO2RaHzq765Fu98NZ bEzSDZNxnnXn2+nfPqI9TfPlpaylboXyTwKtve69tFvjORKPHOg8iArg/vBdMeos 3o4BEGXRystKVErQ+q6ryeacP/k0vTVA/Gg9tnz/EIaiowYOaehrCSK1mUiTpGCE 0ePYMwTcHN7ddrWaq41HcP50mQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFG1a1NH1 1bvizm/i3WlfbUpHif4IMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNjE2NjZDMEVENjg5MTFFOEI2ODExNDMzQzRGOUFFMDIvMUY4Mzc4RTZC Q0JEMTFFQkFDOUE0NzQ0QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAh BAIAAjAbAwcAJAPPwBAGAwcAJAPPwBAMAwcEJAPPwBEQMA0GCSqGSIb3DQEBCwUA A4IBAQByDis7jDGWWYU32hvi5OcHy3CZSVfyG7gSHkIrNdjkPAvcICqXWrqyKPD5 +CATGu5GD3muABBmG2VhMHoormU5roKLlePk+qa57Sp6By2VJU49de6XQyacuLcH kxJvcyl0EW6iEfKpbRXs6eNxuGDHgcFlhYYEw7XUUwTA1oQ+Dffw0l0igwpLKeGN dggL+2JvT1PjTW4dOY+Iz2a+i3bVcM2NLv/GoWJE0t4eVm1N1MnXDpMUp5F2eiqB XzM6D6bYt3eP9tMi8uKA9vz5DcJTcDi8Xv4Ft0HoMxR/jGiEMmzV3+oSnLyeTtc6 yEnZNo5SIcK2sXHbZ9K5bqLXSjHe -----END CERTIFICATE-----Generated at Tue Mar 10 06:32:36 2026 by rpki-client