$ rpki-client -vvf rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/486F76B812BF11F0BA15A929C4F9AE02.roa File: 486F76B812BF11F0BA15A929C4F9AE02.roa (raw, json) Hash identifier: kM2cJaIWJ1SJ2snoMrEPbXdyA2MtgccfypyZG+KTLG4= Subject key identifier: 25:D4:3B:E9:58:30:63:F4:74:78:EE:9D:4B:F5:31:1D:C3:A1:CB:AA Certificate issuer: /CN=A9190D72/serialNumber=1EB9AE8BF5959FE8BF2EB82B923B717EFF3106C5 Certificate serial: 01A8 Authority key identifier: 1E:B9:AE:8B:F5:95:9F:E8:BF:2E:B8:2B:92:3B:71:7E:FF:31:06:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/486F76B812BF11F0BA15A929C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:40:14 +0000 ROA not before: Mon 05 Jan 2026 09:10:52 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 203363 IP address blocks: 2401:8360:3::/48 maxlen: 48 2401:8360:4::/48 maxlen: 48 2401:8360:7::/48 maxlen: 48 2401:8360:8::/48 maxlen: 48 2401:8360:9::/48 maxlen: 48 2401:8360:a::/48 maxlen: 48 2401:8360:a2::/48 maxlen: 48 2401:8360:a3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.crl rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Mar 2026 03:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190D72, serialNumber=1EB9AE8BF5959FE8BF2EB82B923B717EFF3106C5 Validity Not Before: Jan 5 09:10:52 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a5933e-65ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:03:64:00:5c:68:99:7b:fe:61:df:02:d3:27: d7:97:5c:a4:bd:b6:52:b8:4b:56:21:36:46:54:db: 8b:1d:73:c9:64:42:d9:1a:14:86:88:33:cc:e0:bc: d3:de:bf:c5:9f:cf:f2:23:c7:07:d6:f6:f9:84:f6: 38:21:90:90:91:e8:67:4a:b3:28:3d:77:b7:11:3f: 3e:f1:40:6c:f7:a2:84:64:76:5f:d0:64:88:b4:b7: c1:c7:48:1f:e1:ba:2a:09:42:af:de:8b:e0:ea:b6: 83:a3:0f:18:a0:3f:02:71:10:cd:86:0c:9f:78:eb: 5f:59:05:67:39:08:82:3d:29:ca:a4:91:1a:3c:f4: 28:82:4e:17:f2:d4:fb:b8:93:61:27:07:cf:ed:95: f3:24:e4:ef:bb:45:7a:bd:bb:06:8d:06:4f:d1:45: 4c:fa:78:b4:43:4d:ab:cb:91:25:6c:4b:4b:37:ba: ca:dc:2f:a0:4e:dc:73:04:d0:07:da:8c:98:37:54: 95:9a:3f:41:1c:a1:94:1d:fa:f4:b5:73:6d:86:51: 31:3a:0f:bf:87:5c:26:28:0f:7f:91:c1:d9:c8:64: 86:18:03:04:c5:2d:67:04:0f:8e:0a:e9:0f:0d:fa: c8:db:91:60:f7:5b:4b:26:56:45:98:4f:42:d8:a0: 7b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D4:3B:E9:58:30:63:F4:74:78:EE:9D:4B:F5:31:1D:C3:A1:CB:AA X509v3 Authority Key Identifier: keyid:1E:B9:AE:8B:F5:95:9F:E8:BF:2E:B8:2B:92:3B:71:7E:FF:31:06:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/486F76B812BF11F0BA15A929C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:8360:3::-2401:8360:4:ffff:ffff:ffff:ffff:ffff 2401:8360:7::-2401:8360:a:ffff:ffff:ffff:ffff:ffff 2401:8360:a2::/47 Signature Algorithm: sha256WithRSAEncryption 03:e0:14:ac:41:fa:ef:42:f0:01:c1:76:83:18:c5:1b:a7:4a: de:d8:a7:03:a7:0f:aa:8f:66:aa:2d:21:f6:1f:69:d8:7e:9f: 4a:09:fc:30:ff:e6:af:1c:80:7e:28:02:91:0f:72:58:1e:ef: 0a:44:e4:d7:6c:fe:38:9c:43:31:ba:f9:d6:1e:96:19:90:79: 8a:77:c1:68:c7:98:9a:bf:f8:11:c2:02:ce:19:5b:38:b0:f0: 69:a4:ac:d6:0b:5c:cb:e4:08:c0:f3:8b:13:83:d0:da:7e:24: 55:a0:d0:12:ce:50:a9:98:d1:9e:39:58:44:49:9e:85:e2:a4: 0e:ac:a1:be:53:6a:64:aa:a9:64:ee:c4:2e:a3:02:49:76:7f: ed:59:d3:b3:ee:cf:ae:f8:11:65:d1:37:62:e1:4d:21:36:1c: a4:93:c5:3b:7c:a8:93:8d:26:85:82:c3:1d:99:87:aa:07:b0: 0d:4e:ac:e8:7e:e5:86:c6:a5:69:fb:56:0c:8b:9a:a3:26:f9: ce:4e:aa:57:aa:43:a6:af:9e:a2:d0:1d:68:4b:fa:9b:64:df: c9:67:50:aa:a4:35:58:74:df:05:b7:ef:7f:90:f6:ca:14:2d: 09:f8:af:6c:ee:c9:a4:87:6a:ab:e6:56:a3:53:16:a8:1c:f5: f1:4c:8f:6f -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBENzIxMTAvBgNVBAUTKDFFQjlBRThCRjU5NTlGRThCRjJFQjgyQjkyM0I3MTdF RkYzMTA2QzUwHhcNMjYwMTA1MDkxMDUyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTMzZS02NWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5wNkAFxomXv+Yd8C0yfXl1ykvbZSuEtWITZGVNuLHXPJZELZGhSGiDPM4LzT 3r/Fn8/yI8cH1vb5hPY4IZCQkehnSrMoPXe3ET8+8UBs96KEZHZf0GSItLfBx0gf 4boqCUKv3ovg6raDow8YoD8CcRDNhgyfeOtfWQVnOQiCPSnKpJEaPPQogk4X8tT7 uJNhJwfP7ZXzJOTvu0V6vbsGjQZP0UVM+ni0Q02ry5ElbEtLN7rK3C+gTtxzBNAH 2oyYN1SVmj9BHKGUHfr0tXNthlExOg+/h1wmKA9/kcHZyGSGGAMExS1nBA+OCukP DfrI25Fg91tLJlZFmE9C2KB7+QIDAQABo4ICizCCAocwHQYDVR0OBBYEFCXUO+lY MGP0dHjunUv1MR3DocuqMB8GA1UdIwQYMBaAFB65rov1lZ/ovy64K5I7cX7/MQbF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEQ3Mi84QjI1QUQwNEQy MkIxMUVFQkMxNDUzNDNDNEY5QUUwMi9Icm11aV9XVm4taV9Mcmdya2p0eGZ2OHhC c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hybXVpX1dWbi1pX0xyZ3JranR4ZnY4eEJzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTBENzIvOEIyNUFEMDREMjJCMTFFRUJDMTQ1MzQzQzRGOUFFMDIvNDg2Rjc2Qjgx MkJGMTFGMEJBMTVBOTI5QzRGOUFFMDIucm9hMEoGCCsGAQUFBwEHAQH/BDswOTA3 BAIAAjAxMBIDBwAkAYNgAAMDBwAkAYNgAAQwEgMHACQBg2AABwMHACQBg2AACgMH ASQBg2AAojANBgkqhkiG9w0BAQsFAAOCAQEAA+AUrEH670LwAcF2gxjFG6dK3tin A6cPqo9mqi0h9h9p2H6fSgn8MP/mrxyAfigCkQ9yWB7vCkTk12z+OJxDMbr51h6W GZB5infBaMeYmr/4EcICzhlbOLDwaaSs1gtcy+QIwPOLE4PQ2n4kVaDQEs5QqZjR njlYREmeheKkDqyhvlNqZKqpZO7ELqMCSXZ/7VnTs+7PrvgRZdE3YuFNITYcpJPF O3yok40mhYLDHZmHqgewDU6s6H7lhsalaftWDIuaoyb5zk6qV6pDpq+eotAdaEv6 m2TfyWdQqqQ1WHTfBbfvf5D2yhQtCfivbO7JpIdqq+ZWo1MWqBz18UyPbw== -----END CERTIFICATE-----Generated at Thu Mar 5 20:30:08 2026 by rpki-client