$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/4AFD4994CDD011EEA5534481C4F9AE02.roa File: 4AFD4994CDD011EEA5534481C4F9AE02.roa (raw, json) Hash identifier: CD36n9NIjiOL16LSi0AkJMYg3c1Bb/ojpstDyOiqn2g= Subject key identifier: 28:EA:1D:73:B6:09:CF:F9:F9:78:CE:11:D2:8D:75:08:E3:B3:10:F0 Certificate issuer: /CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Certificate serial: 018C Authority key identifier: 1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/4AFD4994CDD011EEA5534481C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:24:58 +0000 ROA not before: Mon 03 Mar 2025 07:29:11 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 10104 IP address blocks: 2001:df3:6c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 03:33:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178C1E, serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Validity Not Before: Mar 3 07:29:11 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a59dba-dcc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:33:f5:62:7b:9e:11:53:cd:9d:9e:49:e9:f0: cb:bc:2a:29:2e:6c:bd:dd:c2:ac:b8:df:e5:84:bf: b5:dc:3a:99:64:f5:53:7e:23:b8:ee:ad:68:68:15: 5d:d4:e9:21:67:85:8b:51:f5:85:35:cd:11:08:35: 38:eb:99:9e:98:af:01:c0:c0:53:4b:89:e2:a5:fd: 03:4c:72:64:08:5c:84:0b:5e:a0:e9:07:00:d0:84: 00:e7:36:0f:da:7a:3a:85:7d:0e:de:7e:5a:a3:e8: 25:37:51:5f:8d:3b:83:b8:bb:f6:29:5c:1b:fa:ab: 7b:22:b5:b5:99:0d:97:d6:01:db:93:8b:9e:6a:98: 96:7d:72:9b:95:94:85:ce:c5:1f:c5:06:5b:d9:14: c0:64:2b:92:1e:c9:8d:dc:d5:e5:25:ca:08:4c:5b: 14:6f:e4:d0:6d:6c:b6:b7:af:31:da:99:80:a6:ab: 7b:5e:ac:85:4c:1b:fa:65:da:db:14:bc:45:b9:8f: 85:ff:fa:47:f0:78:36:b8:62:08:35:d3:3a:cc:93: bb:7f:fc:78:8a:63:2b:a5:ef:57:64:09:63:5f:1e: ce:30:1d:f8:e6:0c:ed:94:95:bf:ca:b9:0e:75:2c: c6:3a:21:bd:c6:54:5a:b7:ea:0d:d8:37:2c:b6:8e: d5:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:EA:1D:73:B6:09:CF:F9:F9:78:CE:11:D2:8D:75:08:E3:B3:10:F0 X509v3 Authority Key Identifier: keyid:1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/4AFD4994CDD011EEA5534481C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:6c40::/48 Signature Algorithm: sha256WithRSAEncryption 57:2d:bc:9f:e9:a3:57:6c:e9:21:08:75:3d:c7:53:c6:74:df: 1a:f0:df:4e:54:c5:b7:03:80:b3:83:11:74:8b:f1:1f:6a:44: 25:ec:b8:fd:93:f8:9a:29:99:21:d2:27:8d:43:42:d0:ed:bd: 90:33:34:f5:d6:42:0f:b7:4a:3e:45:4f:f6:b3:05:ff:34:46: 58:70:dd:70:a3:6d:d4:73:69:1e:5f:c5:17:dc:ee:a8:a4:b9: 95:d6:37:76:d4:86:cd:c4:b0:c5:b6:a6:73:8d:d8:ab:08:d7: d3:47:d2:c0:28:31:13:2e:78:07:15:a3:2b:a9:dd:3e:ba:8b: 57:3a:31:2a:0d:66:eb:e1:38:db:87:29:85:e7:72:33:39:fa: 99:6a:c8:a3:3e:fa:4e:00:48:c8:1b:9e:e0:83:d6:fb:66:d1: e7:a4:f4:9a:d0:f0:0f:fc:e6:dc:81:d4:67:1e:93:76:d3:bc: 45:d5:8a:f5:49:3a:2f:61:19:9c:77:c7:10:7a:61:51:7a:34: 27:35:ae:28:bc:96:f4:d2:b2:0f:bf:1a:ab:69:7b:61:0e:4f: cd:8e:58:a9:07:d2:9d:cb:62:e1:56:c1:fb:e7:08:4e:63:23: 51:75:7c:b1:33:31:e8:73:12:a7:4d:e0:5a:e4:97:b9:16:75: 2c:fc:b6:3a -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhDMUUxMTAvBgNVBAUTKDFERjlDMENFRjlBNzdEQ0QxNUJCNTFGOTNGRDM0Mjk5 OUJFMTE2NTgwHhcNMjUwMzAzMDcyOTExWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWRiYS1kY2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApTP1YnueEVPNnZ5J6fDLvCopLmy93cKsuN/lhL+13DqZZPVTfiO47q1oaBVd 1OkhZ4WLUfWFNc0RCDU465memK8BwMBTS4nipf0DTHJkCFyEC16g6QcA0IQA5zYP 2no6hX0O3n5ao+glN1FfjTuDuLv2KVwb+qt7IrW1mQ2X1gHbk4ueapiWfXKblZSF zsUfxQZb2RTAZCuSHsmN3NXlJcoITFsUb+TQbWy2t68x2pmApqt7XqyFTBv6Zdrb FLxFuY+F//pH8Hg2uGIINdM6zJO7f/x4imMrpe9XZAljXx7OMB345gztlJW/yrkO dSzGOiG9xlRat+oN2Dcsto7VqQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFCjqHXO2 Cc/5+XjOEdKNdQjjsxDwMB8GA1UdIwQYMBaAFB35wM75p33NFbtR+T/TQpmb4RZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEMxRS9DMjg2MDMyRUM2 NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZjMFZ1MUg1UDlOQ21admhG bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmbkF6dm1uZmMwVnUxSDVQOU5DbVp2aEZsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhDMUUvQzI4NjAzMkVDNjQ3MTFFRTlENjhFQjdGQzRGOUFFMDIvNEFGRDQ5OTRD REQwMTFFRUE1NTM0NDgxQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN82xAMA0GCSqGSIb3DQEBCwUAA4IBAQBXLbyf6aNXbOkhCHU9 x1PGdN8a8N9OVMW3A4CzgxF0i/EfakQl7Lj9k/iaKZkh0ieNQ0LQ7b2QMzT11kIP t0o+RU/2swX/NEZYcN1wo23Uc2keX8UX3O6opLmV1jd21IbNxLDFtqZzjdirCNfT R9LAKDETLngHFaMrqd0+uotXOjEqDWbr4TjbhymF53IzOfqZasijPvpOAEjIG57g g9b7ZtHnpPSa0PAP/ObcgdRnHpN207xF1Yr1STovYRmcd8cQemFRejQnNa4ovJb0 0rIPvxqraXthDk/NjlipB9Kdy2LhVsH75whOYyNRdXyxMzHocxKnTeBa5Je5FnUs /LY6 -----END CERTIFICATE-----Generated at Fri Mar 20 16:05:29 2026 by rpki-client