$ rpki-client -vvf rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/15E884EAF73311ED8E92F45DC4F9AE02.roa File: 15E884EAF73311ED8E92F45DC4F9AE02.roa (raw, json) Hash identifier: u+MRGHbFeFUPlLfGYwJEnpOiyClJtJ0KRuVBvJpUNDk= Subject key identifier: 85:20:B7:2A:A0:EE:02:EF:BA:22:A6:E9:BB:B6:7D:BD:61:C9:D8:10 Certificate issuer: /CN=A9112DB1/serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5 Certificate serial: 04F7 Authority key identifier: 22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/15E884EAF73311ED8E92F45DC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:07:57 +0000 ROA not before: Fri 28 Nov 2025 22:55:29 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 151338 IP address blocks: 2400:8a20:123::/48 maxlen: 48 2400:8a20:124::/48 maxlen: 48 2400:8a20:125::/48 maxlen: 48 2400:8a20:1a0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1271 (0x4f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112DB1, serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5 Validity Not Before: Nov 28 22:55:29 2025 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a4807d-3df3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2b:e9:fc:8e:57:78:16:a4:d8:f7:f1:f7:f9: b0:b5:70:42:03:af:94:52:1d:3c:f2:8b:29:fb:06: c9:91:c1:df:18:0c:fc:ce:18:8b:11:ca:c8:52:40: 71:e3:c4:1e:9e:81:a6:f4:b7:a3:2c:03:ea:44:0d: fd:22:06:ac:ef:b7:8d:43:33:a4:00:93:51:0a:b9: d3:b0:cf:72:97:72:8d:b2:74:b8:14:a3:d0:96:81: 3b:07:7a:c8:10:ed:c8:6a:d3:72:69:ef:ed:b5:dd: a7:6b:4c:09:f2:6c:dd:f0:e2:74:1f:3e:40:66:63: 40:28:74:ee:0c:de:19:f5:09:59:37:2d:76:14:70: c8:63:2f:93:b7:51:54:74:51:dc:bc:24:fa:8c:91: 9f:54:9c:cc:0a:24:45:17:54:73:32:08:b9:e0:1e: 3a:07:b9:5e:cc:0f:e0:15:83:49:1b:bd:b1:43:ce: c2:76:b3:43:a0:44:fa:09:91:09:f0:3a:14:85:e3: 62:25:f8:c5:84:5e:b8:4d:c2:04:d3:5e:9a:bd:34: e1:d8:b4:45:5a:48:3d:4a:61:7b:86:de:61:5b:48: 07:35:58:ba:76:f4:d1:7b:a8:fc:e5:d2:d6:46:ea: 86:bf:7c:6e:06:7a:46:ca:9e:95:7c:56:ec:c5:80: e6:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:20:B7:2A:A0:EE:02:EF:BA:22:A6:E9:BB:B6:7D:BD:61:C9:D8:10 X509v3 Authority Key Identifier: keyid:22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/15E884EAF73311ED8E92F45DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:8a20:123::-2400:8a20:125:ffff:ffff:ffff:ffff:ffff 2400:8a20:1a0::/44 Signature Algorithm: sha256WithRSAEncryption 41:81:dc:3e:74:af:30:25:c9:0b:7d:55:f4:aa:7f:d7:9a:21: ef:95:52:9b:a3:2c:69:b4:e7:72:d5:2a:f1:c9:45:a3:0f:e2: aa:55:e1:f1:af:fe:fa:26:20:a7:9c:da:29:d8:f7:04:b8:ae: 00:8b:88:ee:da:42:ce:69:5b:dd:06:5f:eb:00:c0:9e:68:9d: d4:f0:fd:83:2a:fb:5a:ac:80:49:94:b1:2f:0b:b4:a9:68:e3: e9:21:b5:0e:5b:c6:ff:ce:87:22:c6:b3:4f:65:8f:23:f0:ac: 81:3b:27:fa:24:63:3c:f6:84:3b:58:28:16:bf:90:eb:8a:fb: fa:74:cf:a4:4b:1a:7f:6f:54:ee:34:54:4f:7d:a0:ff:a3:f3: df:bc:ee:e4:28:bf:a4:d4:6e:0c:4e:fb:89:e9:0a:fe:f3:75: f1:b5:33:2e:1b:dc:19:6d:17:e3:4c:ab:33:42:61:e4:b3:4a: 25:82:ef:24:9b:bf:8c:cb:7e:8d:53:d1:00:0e:60:e2:3a:3b: e9:00:c2:91:2d:42:59:56:ea:17:c3:94:79:b5:4c:d7:2d:a4: a3:44:eb:3b:75:95:43:8e:b0:32:a8:be:7e:e2:f0:b1:55:b1: 25:1f:9c:80:70:32:00:69:d7:fb:4c:86:61:30:c0:cd:cc:99: b1:aa:4b:1e -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICBPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJEQjExMTAvBgNVBAUTKDIyRURGOUVCNjYwODdGRDBFOTgxN0FFNzM2QzAwMzlE MTg4MDg4RDUwHhcNMjUxMTI4MjI1NTI5WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODA3ZC0zZGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvivp/I5XeBak2Pfx9/mwtXBCA6+UUh088osp+wbJkcHfGAz8zhiLEcrIUkBx 48QenoGm9LejLAPqRA39Igas77eNQzOkAJNRCrnTsM9yl3KNsnS4FKPQloE7B3rI EO3IatNyae/ttd2na0wJ8mzd8OJ0Hz5AZmNAKHTuDN4Z9QlZNy12FHDIYy+Tt1FU dFHcvCT6jJGfVJzMCiRFF1RzMgi54B46B7lezA/gFYNJG72xQ87CdrNDoET6CZEJ 8DoUheNiJfjFhF64TcIE016avTTh2LRFWkg9SmF7ht5hW0gHNVi6dvTRe6j85dLW RuqGv3xuBnpGyp6VfFbsxYDmhwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFIUgtyqg 7gLvuiKm6bu2fb1hydgQMB8GA1UdIwQYMBaAFCLt+etmCH/Q6YF65zbAA50YgIjV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkRCMS8zRkE2OTIwMDgz QzAxMUVDQjU0QjM5N0ZDNEY5QUUwMi9JdTM1NjJZSWY5RHBnWHJuTnNBRG5SaUFp TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l1MzU2MllJZjlEcGdYcm5Oc0FEblJpQWlOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTJEQjEvM0ZBNjkyMDA4M0MwMTFFQ0I1NEIzOTdGQzRGOUFFMDIvMTVFODg0RUFG NzMzMTFFRDhFOTJGNDVEQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAj BAIAAjAdMBIDBwAkAIogASMDBwEkAIogASQDBwQkAIogAaAwDQYJKoZIhvcNAQEL BQADggEBAEGB3D50rzAlyQt9VfSqf9eaIe+VUpujLGm053LVKvHJRaMP4qpV4fGv /vomIKec2inY9wS4rgCLiO7aQs5pW90GX+sAwJ5ondTw/YMq+1qsgEmUsS8LtKlo 4+khtQ5bxv/OhyLGs09ljyPwrIE7J/okYzz2hDtYKBa/kOuK+/p0z6RLGn9vVO40 VE99oP+j89+87uQov6TUbgxO+4npCv7zdfG1My4b3BltF+NMqzNCYeSzSiWC7ySb v4zLfo1T0QAOYOI6O+kAwpEtQllW6hfDlHm1TNctpKNE6zt1lUOOsDKovn7i8LFV sSUfnIBwMgBp1/tMhmEwwM3MmbGqSx4= -----END CERTIFICATE-----Generated at Mon Mar 2 05:43:04 2026 by rpki-client