$ rpki-client -vvf rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/0900F7CA7AE611EF8CE1F784C4F9AE02.roa File: 0900F7CA7AE611EF8CE1F784C4F9AE02.roa (raw, json) Hash identifier: FKRHRaDjtVgPms1401rj5mnS1bHVV0dLO0nqPD9MRKU= Subject key identifier: C7:7D:C8:9C:18:67:95:F6:F9:DF:AC:BB:FA:FC:57:53:31:49:DF:77 Certificate issuer: /CN=A919BE9A/serialNumber=A79B82887031441990B18D1A05F9E271E7E7B8E6 Certificate serial: 0275 Authority key identifier: A7:9B:82:88:70:31:44:19:90:B1:8D:1A:05:F9:E2:71:E7:E7:B8:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/0900F7CA7AE611EF8CE1F784C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:52:19 +0000 ROA not before: Sun 11 May 2025 02:31:46 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 215304 IP address blocks: 2400:e3e0:aa00::/40 maxlen: 48 2400:e3e0:ab00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.crl rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 01:56:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 629 (0x275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BE9A, serialNumber=A79B82887031441990B18D1A05F9E271E7E7B8E6 Validity Not Before: May 11 02:31:46 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a47cd3-91bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:42:af:8c:61:54:4e:4f:30:3c:ad:8a:7b:3d: 8c:0f:33:9e:e3:3b:5f:12:1c:d6:ca:5d:d5:3d:9c: 9b:a6:d0:1c:3a:f8:ee:37:e1:08:aa:24:7d:55:12: 8e:24:5d:c8:d4:3f:99:53:c1:d8:0f:51:2b:76:36: 5b:74:19:a7:02:f0:f5:99:86:7c:73:dd:b6:34:ac: d3:e8:d2:71:e9:40:15:bc:52:37:a8:ab:fc:51:e5: 4b:53:b0:86:14:49:0a:14:7f:b8:54:8c:59:be:63: 64:a2:f5:2d:42:b9:d3:86:6c:30:a5:64:35:05:45: 91:47:92:f2:0d:cf:d6:50:6a:1e:27:75:0d:c7:07: 89:fa:db:cc:10:d8:2a:51:68:46:d5:5b:a5:39:b7: 57:fc:c8:e5:b5:b6:a6:a1:49:fd:d1:a2:45:95:b2: b9:e1:3e:12:f5:49:cb:20:17:f5:e9:a3:7e:f5:a2: f4:c8:c3:ad:cd:a2:6d:c4:80:61:61:bd:9d:6f:0a: 36:a2:97:22:ef:42:f3:67:0a:fe:2a:49:2c:df:17: 9b:de:35:70:a4:e3:81:a9:5d:f4:7d:01:a5:c1:55: 63:6c:90:52:33:9c:11:fb:af:5e:25:df:77:c1:dd: b4:3c:9f:57:f8:97:0c:18:ce:05:48:ae:21:a0:7b: 36:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:7D:C8:9C:18:67:95:F6:F9:DF:AC:BB:FA:FC:57:53:31:49:DF:77 X509v3 Authority Key Identifier: keyid:A7:9B:82:88:70:31:44:19:90:B1:8D:1A:05:F9:E2:71:E7:E7:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/0900F7CA7AE611EF8CE1F784C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:e3e0:aa00::/39 Signature Algorithm: sha256WithRSAEncryption 49:c3:4d:70:0f:d2:c3:3c:4e:b6:ee:f7:a9:15:2d:49:76:91: ee:f1:05:c9:43:0f:35:c2:99:01:31:f7:e4:0d:2f:55:9a:a1: d0:c2:5a:58:80:55:ba:b1:32:1a:cf:88:20:a0:ff:01:23:44: 84:b0:b3:27:9f:e4:33:07:ea:d2:f7:0f:70:9d:ed:a7:08:13: c3:29:aa:64:18:97:f7:1a:0d:cf:b8:dd:d0:b6:5b:c2:6d:d0: 57:34:86:03:ff:ab:ea:fe:36:f6:c3:44:75:01:55:b5:d9:19: 48:c0:8c:b0:b0:78:89:df:17:a5:45:57:d1:59:da:00:d6:f8: ab:c0:9e:c6:18:77:79:c3:45:89:5c:ed:11:d6:47:12:32:3c: 4a:2a:5a:a7:37:ea:77:96:64:3b:53:00:dc:1b:ab:d5:d4:af: e4:28:95:fb:9c:a9:38:05:ee:9e:cf:ea:ab:af:d0:06:7a:9e: 3d:77:1b:d1:56:9b:6e:65:d9:28:0a:2e:45:ca:cb:a5:af:cd: 92:74:87:0c:a7:57:af:36:01:3d:69:67:b9:5f:88:ac:f4:cc: 75:7a:76:76:65:25:73:cd:ff:29:ee:7e:bf:0b:94:f8:fe:83: 5d:50:17:8e:aa:61:e5:06:76:c9:9e:d2:30:c7:37:fb:cc:9a: c7:68:3d:95 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgICAnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFOUExMTAvBgNVBAUTKEE3OUI4Mjg4NzAzMTQ0MTk5MEIxOEQxQTA1RjlFMjcx RTdFN0I4RTYwHhcNMjUwNTExMDIzMTQ2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2NkMy05MWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1EKvjGFUTk8wPK2Kez2MDzOe4ztfEhzWyl3VPZybptAcOvjuN+EIqiR9VRKO JF3I1D+ZU8HYD1ErdjZbdBmnAvD1mYZ8c922NKzT6NJx6UAVvFI3qKv8UeVLU7CG FEkKFH+4VIxZvmNkovUtQrnThmwwpWQ1BUWRR5LyDc/WUGoeJ3UNxweJ+tvMENgq UWhG1VulObdX/MjltbamoUn90aJFlbK54T4S9UnLIBf16aN+9aL0yMOtzaJtxIBh Yb2dbwo2opci70LzZwr+Kkks3xeb3jVwpOOBqV30fQGlwVVjbJBSM5wR+69eJd93 wd20PJ9X+JcMGM4FSK4hoHs23QIDAQABo4ICYjCCAl4wHQYDVR0OBBYEFMd9yJwY Z5X2+d+su/r8V1MxSd93MB8GA1UdIwQYMBaAFKebgohwMUQZkLGNGgX54nHn57jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkU5QS84RkExRjU2RUI4 NUUxMUVEOEU2RjQyMTNDNEY5QUUwMi9wNXVDaUhBeFJCbVFzWTBhQmZuaWNlZm51 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A1dUNpSEF4UkJtUXNZMGFCZm5pY2VmbnVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJFOUEvOEZBMUY1NkVCODVFMTFFRDhFNkY0MjEzQzRGOUFFMDIvMDkwMEY3Q0E3 QUU2MTFFRjhDRTFGNzg0QzRGOUFFMDIucm9hMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYBJADj4KowDQYJKoZIhvcNAQELBQADggEBAEnDTXAP0sM8Trbu96kV LUl2ke7xBclDDzXCmQEx9+QNL1WaodDCWliAVbqxMhrPiCCg/wEjRISwsyef5DMH 6tL3D3Cd7acIE8MpqmQYl/caDc+43dC2W8Jt0Fc0hgP/q+r+NvbDRHUBVbXZGUjA jLCweInfF6VFV9FZ2gDW+KvAnsYYd3nDRYlc7RHWRxIyPEoqWqc36neWZDtTANwb q9XUr+QolfucqTgF7p7P6quv0AZ6nj13G9FWm25l2SgKLkXKy6WvzZJ0hwynV682 AT1pZ7lfiKz0zHV6dnZlJXPN/ynufr8LlPj+g11QF46qYeUGdsme0jDHN/vMmsdo PZU= -----END CERTIFICATE-----Generated at Sat Mar 7 06:41:49 2026 by rpki-client