$ rpki-client -vvf rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/642A8EA2887911ECAFCDDE1FC4F9AE02.roa File: 642A8EA2887911ECAFCDDE1FC4F9AE02.roa (raw, json) Hash identifier: 2QtjnY/xrXLEykN5W8u+hPxfRcseLCmC+14qCL2SI+w= Subject key identifier: 8E:EA:BF:DD:91:50:F4:AF:8F:6F:61:97:DC:B3:F4:6F:6F:E0:74:DD Certificate issuer: /CN=A9112DB1/serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5 Certificate serial: 04F5 Authority key identifier: 22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/642A8EA2887911ECAFCDDE1FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:07:55 +0000 ROA not before: Fri 28 Nov 2025 22:55:27 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 147293 IP address blocks: 2001:df0:64c0::/48 maxlen: 48 2400:8a20:120::/48 maxlen: 48 2400:8a20:121::/48 maxlen: 48 2400:8a20:122::/48 maxlen: 48 2400:8a20:130::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1269 (0x4f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112DB1, serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5 Validity Not Before: Nov 28 22:55:27 2025 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a4807b-6474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:cc:f3:a6:86:a0:10:7c:34:2a:dd:1c:b5:ad: 4c:04:38:e0:2b:5a:05:c2:d5:39:66:39:a5:6f:32: d1:41:58:ea:40:2d:48:6e:58:0c:12:98:da:53:1f: 53:41:9f:49:d7:38:40:15:4c:96:ed:89:9b:e5:0e: 1b:a1:ea:f1:cb:2c:7d:f4:4a:77:a4:01:03:2c:c8: 55:8b:08:59:b7:4b:76:a1:f6:83:72:8e:08:c2:93: 46:a1:62:ce:02:72:8b:07:ef:29:41:69:f2:a9:4d: 42:b9:e9:ab:50:84:10:29:2e:86:e9:c5:32:36:41: ef:de:7b:b8:44:83:bd:ae:d8:40:ae:e5:94:f6:a5: 86:40:db:54:cc:ac:ef:90:9d:91:46:04:0d:44:eb: cd:94:d2:1d:21:16:89:82:00:27:e3:cb:03:3f:a0: 81:2e:48:b8:74:ff:07:f4:e8:44:a7:7c:43:b9:eb: 16:fe:92:bf:5d:e2:3d:5d:5f:5b:fd:ba:e5:f2:28: 02:3e:a7:3d:11:2d:f9:f9:20:b0:b2:2b:f9:d9:5a: 16:33:7f:f6:41:d5:41:a3:be:72:50:63:b5:8f:b0: 81:bc:84:14:fe:73:fb:32:03:d6:06:94:1a:3d:f1: b4:ec:f9:86:e5:d2:65:79:bd:d6:0d:ed:ea:69:b8: c9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:EA:BF:DD:91:50:F4:AF:8F:6F:61:97:DC:B3:F4:6F:6F:E0:74:DD X509v3 Authority Key Identifier: keyid:22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/642A8EA2887911ECAFCDDE1FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df0:64c0::/48 2400:8a20:120::-2400:8a20:122:ffff:ffff:ffff:ffff:ffff 2400:8a20:130::/48 Signature Algorithm: sha256WithRSAEncryption 60:8f:cb:16:fb:e0:cf:5b:fe:ce:00:93:ab:83:7c:89:bc:7c: 95:5d:6a:7c:7a:63:fb:dc:ba:f5:44:6d:95:c8:39:07:ba:70: 96:6a:f0:b7:17:dd:ae:9c:9d:04:80:01:ae:60:f3:2f:90:2a: c6:3d:56:eb:53:b2:bf:8d:b5:7a:99:4f:2c:46:08:fe:7c:09: 97:0f:9f:ad:49:d8:36:84:5d:37:c4:f2:0b:1b:30:47:ca:d5: af:99:9a:20:36:10:ad:5e:19:ca:f7:05:e1:a0:f1:c7:0c:5b: 97:a6:00:b6:22:dc:4f:0b:3f:7f:71:40:df:f1:32:d1:54:07: 94:5f:a0:ff:15:1c:e8:13:9c:d6:06:81:ed:99:d9:df:51:1b: 01:10:ab:1f:32:2f:9d:d4:9b:cd:3e:bc:f5:72:1b:e9:f3:94: fc:cb:05:1b:3b:34:8e:3d:34:3a:71:37:61:79:bf:48:74:1d: 86:e2:95:b4:f0:71:3f:cb:77:ca:4b:04:36:e9:0c:8d:13:42: bf:c7:ea:f6:c3:df:95:bf:bf:42:29:ba:54:5b:63:82:e0:85: 43:11:b2:eb:e1:0a:1d:59:3c:d1:c5:3e:4a:01:0d:5d:3e:8a: 2f:1b:58:46:e6:51:40:1a:13:3c:89:ad:dc:fb:db:8c:7f:df: 3d:f9:e8:77 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICBPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJEQjExMTAvBgNVBAUTKDIyRURGOUVCNjYwODdGRDBFOTgxN0FFNzM2QzAwMzlE MTg4MDg4RDUwHhcNMjUxMTI4MjI1NTI3WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODA3Yi02NDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhMzzpoagEHw0Kt0cta1MBDjgK1oFwtU5ZjmlbzLRQVjqQC1IblgMEpjaUx9T QZ9J1zhAFUyW7Ymb5Q4boerxyyx99Ep3pAEDLMhViwhZt0t2ofaDco4IwpNGoWLO AnKLB+8pQWnyqU1CuemrUIQQKS6G6cUyNkHv3nu4RIO9rthAruWU9qWGQNtUzKzv kJ2RRgQNROvNlNIdIRaJggAn48sDP6CBLki4dP8H9OhEp3xDuesW/pK/XeI9XV9b /brl8igCPqc9ES35+SCwsiv52VoWM3/2QdVBo75yUGO1j7CBvIQU/nP7MgPWBpQa PfG07PmG5dJleb3WDe3qabjJowIDAQABo4ICgDCCAnwwHQYDVR0OBBYEFI7qv92R UPSvj29hl9yz9G9v4HTdMB8GA1UdIwQYMBaAFCLt+etmCH/Q6YF65zbAA50YgIjV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkRCMS8zRkE2OTIwMDgz QzAxMUVDQjU0QjM5N0ZDNEY5QUUwMi9JdTM1NjJZSWY5RHBnWHJuTnNBRG5SaUFp TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l1MzU2MllJZjlEcGdYcm5Oc0FEblJpQWlOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTJEQjEvM0ZBNjkyMDA4M0MwMTFFQ0I1NEIzOTdGQzRGOUFFMDIvNjQyQThFQTI4 ODc5MTFFQ0FGQ0RERTFGQzRGOUFFMDIucm9hMD8GCCsGAQUFBwEHAQH/BDAwLjAs BAIAAjAmAwcAIAEN8GTAMBIDBwUkAIogASADBwAkAIogASIDBwAkAIogATAwDQYJ KoZIhvcNAQELBQADggEBAGCPyxb74M9b/s4Ak6uDfIm8fJVdanx6Y/vcuvVEbZXI OQe6cJZq8LcX3a6cnQSAAa5g8y+QKsY9VutTsr+NtXqZTyxGCP58CZcPn61J2DaE XTfE8gsbMEfK1a+ZmiA2EK1eGcr3BeGg8ccMW5emALYi3E8LP39xQN/xMtFUB5Rf oP8VHOgTnNYGge2Z2d9RGwEQqx8yL53Um80+vPVyG+nzlPzLBRs7NI49NDpxN2F5 v0h0HYbilbTwcT/Ld8pLBDbpDI0TQr/H6vbD35W/v0IpulRbY4LghUMRsuvhCh1Z PNHFPkoBDV0+ii8bWEbmUUAaEzyJrdz724x/3z356Hc= -----END CERTIFICATE-----Generated at Mon Mar 2 04:06:23 2026 by rpki-client