$ rpki-client -vvf rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/CDD6FA7CAD8511F08C759F59C4F9AE02.roa File: CDD6FA7CAD8511F08C759F59C4F9AE02.roa (raw, json) Hash identifier: ULqljmKP1BWooJSvotaZqa/yGOV5svmm48Hfjv80d1c= Subject key identifier: 4C:27:7A:CA:CD:07:A3:F4:9E:83:2F:A5:DA:E8:2C:A4:6B:59:AE:B9 Certificate issuer: /CN=A919AB96/serialNumber=C9C7FB3155EE5EB4541A7637998970806A46F3BF Certificate serial: 6C Authority key identifier: C9:C7:FB:31:55:EE:5E:B4:54:1A:76:37:99:89:70:80:6A:46:F3:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycf7MVXuXrRUGnY3mYlwgGpG878.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/CDD6FA7CAD8511F08C759F59C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:38:33 +0000 ROA not before: Mon 20 Oct 2025 07:24:25 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55201 IP address blocks: 2404:c640::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/ycf7MVXuXrRUGnY3mYlwgGpG878.crl rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/ycf7MVXuXrRUGnY3mYlwgGpG878.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycf7MVXuXrRUGnY3mYlwgGpG878.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 07:12:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AB96, serialNumber=C9C7FB3155EE5EB4541A7637998970806A46F3BF Validity Not Before: Oct 20 07:24:25 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a5a0e9-a927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d8:79:94:5b:0a:9c:e8:e7:56:c7:15:b3:cc: ff:a8:db:97:a1:b0:37:b0:2a:62:64:f4:65:b3:16: 10:71:c2:84:6d:d0:c1:21:fd:e9:50:33:1d:a2:fa: 67:31:d2:6f:31:10:d2:42:8a:96:62:e4:2a:e4:5d: 1d:61:9b:f0:73:d1:2a:a7:c5:61:7e:4b:2a:28:91: 1e:52:82:53:61:1a:89:87:3b:9c:2a:f6:2d:1a:b8: 8b:c9:06:3e:95:06:53:e0:fb:08:b6:9c:b9:8f:dd: 50:bc:df:80:ae:73:a7:91:94:79:e3:6d:62:6f:88: 90:ae:6b:dd:c7:97:27:8e:96:2d:83:08:84:73:35: e6:9b:5b:83:82:5a:42:02:19:4d:bf:bd:dd:3f:4b: 1e:1d:96:0d:67:16:5d:f1:1b:f5:3f:f0:f3:b2:46: fd:a2:89:6b:cc:50:68:d2:b4:bd:3e:d0:d9:6c:4e: 7e:54:db:3f:b2:44:55:cf:e3:ba:2c:93:bf:dc:5e: 37:f8:96:f8:d7:d7:b3:59:8a:05:48:f5:2c:c0:53: dc:3e:dd:e8:91:a5:9a:69:59:e1:10:98:89:fb:11: dc:d8:d0:22:ed:bc:44:02:92:62:68:af:9e:88:3b: 2e:ec:f9:2c:d9:fe:05:98:ff:1a:22:6f:8d:d4:26: 6e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:27:7A:CA:CD:07:A3:F4:9E:83:2F:A5:DA:E8:2C:A4:6B:59:AE:B9 X509v3 Authority Key Identifier: keyid:C9:C7:FB:31:55:EE:5E:B4:54:1A:76:37:99:89:70:80:6A:46:F3:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/ycf7MVXuXrRUGnY3mYlwgGpG878.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycf7MVXuXrRUGnY3mYlwgGpG878.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/CDD6FA7CAD8511F08C759F59C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2404:c640::/32 Signature Algorithm: sha256WithRSAEncryption 64:2b:31:27:fb:1d:2a:c2:36:d9:4d:2b:c2:1a:77:42:6e:47: 5a:b0:74:90:2f:40:a8:e2:a2:58:14:98:03:5d:11:f3:5b:9d: 77:31:4f:b4:e9:ca:ec:14:1b:7c:5b:f0:79:9f:89:09:82:71: 09:8b:1f:3a:87:87:1f:c8:f3:b5:01:54:7d:06:b9:63:25:b7: 94:6e:64:c7:33:66:20:14:81:17:38:0c:7e:34:5a:e4:82:a1: 76:b2:08:e6:50:cb:30:b9:35:56:a5:24:b1:b4:1e:04:cf:6f: d0:90:15:90:97:68:8f:90:0a:d6:46:5f:08:f0:80:7b:01:e1: d6:0a:0c:ba:19:84:13:15:8f:21:93:db:8d:75:9e:e9:fa:c4: 56:dc:a9:af:3f:c2:c5:15:b4:c9:9a:14:37:fd:ec:44:61:76: e7:16:8e:a3:d6:ad:7e:87:27:ae:cb:8a:6a:b9:39:86:e0:b2: b6:a9:b5:a8:6a:1f:be:9b:5c:35:9b:a3:dc:e1:9c:55:53:ec: 95:03:db:af:b5:19:03:61:f8:93:5c:ce:1e:4a:9d:75:20:17: d7:d7:83:ff:d9:a7:eb:61:a3:16:3c:43:2f:9e:59:33:88:13: 27:d9:81:e9:43:ae:96:1a:2a:e0:99:b9:95:e0:64:8f:b9:15: d9:5d:b4:d7 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QUI5NjExMC8GA1UEBRMoQzlDN0ZCMzE1NUVFNUVCNDU0MUE3NjM3OTk4OTcwODA2 QTQ2RjNCRjAeFw0yNTEwMjAwNzI0MjVaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTVhMGU5LWE5MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCy2HmUWwqc6OdWxxWzzP+o25ehsDewKmJk9GWzFhBxwoRt0MEh/elQMx2i+mcx 0m8xENJCipZi5CrkXR1hm/Bz0SqnxWF+SyookR5SglNhGomHO5wq9i0auIvJBj6V BlPg+wi2nLmP3VC834Cuc6eRlHnjbWJviJCua93HlyeOli2DCIRzNeabW4OCWkIC GU2/vd0/Sx4dlg1nFl3xG/U/8POyRv2iiWvMUGjStL0+0NlsTn5U2z+yRFXP47os k7/cXjf4lvjX17NZigVI9SzAU9w+3eiRpZppWeEQmIn7EdzY0CLtvEQCkmJor56I Oy7s+SzZ/gWY/xoib43UJm7XAgMBAAGjggJhMIICXTAdBgNVHQ4EFgQUTCd6ys0H o/Segy+l2ugspGtZrrkwHwYDVR0jBBgwFoAUycf7MVXuXrRUGnY3mYlwgGpG878w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBQjk2LzExNjU2MTMyN0Y3 RjExRjA4NDE3NTkzRkM0RjlBRTAyL3ljZjdNVlh1WHJSVUduWTNtWWx3Z0dwRzg3 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveWNmN01WWHVYclJVR25ZM21ZbHdnR3BHODc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUI5Ni8xMTY1NjEzMjdGN0YxMUYwODQxNzU5M0ZDNEY5QUUwMi9DREQ2RkE3Q0FE ODUxMUYwOEM3NTlGNTlDNEY5QUUwMi5yb2EwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkBMZAMA0GCSqGSIb3DQEBCwUAA4IBAQBkKzEn+x0qwjbZTSvCGndC bkdasHSQL0Co4qJYFJgDXRHzW513MU+06crsFBt8W/B5n4kJgnEJix86h4cfyPO1 AVR9BrljJbeUbmTHM2YgFIEXOAx+NFrkgqF2sgjmUMswuTVWpSSxtB4Ez2/QkBWQ l2iPkArWRl8I8IB7AeHWCgy6GYQTFY8hk9uNdZ7p+sRW3KmvP8LFFbTJmhQ3/exE YXbnFo6j1q1+hyeuy4pquTmG4LK2qbWoah++m1w1m6Pc4ZxVU+yVA9uvtRkDYfiT XM4eSp11IBfX14P/2afrYaMWPEMvnlkziBMn2YHpQ66WGirgmbmV4GSPuRXZXbTX -----END CERTIFICATE-----Generated at Sat Mar 7 17:25:25 2026 by rpki-client