$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/4FB7C576376811E9847C6223C4F9AE02.roa File: 4FB7C576376811E9847C6223C4F9AE02.roa (raw, json) Hash identifier: /eAhCc47NbOFR/4B/74ZHS91lrjnoQ8NGiYN09h0+zM= Subject key identifier: BD:D5:70:A3:EB:AD:A1:0C:7E:74:52:7E:62:B8:B2:40:40:B5:4B:57 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 294D Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/4FB7C576376811E9847C6223C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:09:41 +0000 ROA not before: Sat 26 Jul 2025 15:53:47 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138631 IP address blocks: 2402:9e80:43::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10573 (0x294d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D, serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 26 15:53:47 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48ef5-a0e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ad:89:13:3c:43:9c:6f:f2:a2:81:da:d2:d5: 65:9b:8a:1a:d0:44:c6:81:9b:80:2a:80:40:26:3c: ae:b7:3a:0c:90:9b:1d:2d:e6:1f:8d:dd:93:73:74: d5:fa:c2:aa:a6:e0:89:a5:b3:a1:db:37:c4:f5:29: b3:02:23:69:c4:8f:7c:16:41:0e:30:bc:4f:cf:ac: bf:87:02:a6:3a:d6:e2:ab:3e:70:81:90:55:73:b7: ff:11:b4:9c:d4:f8:6b:9b:2d:04:0c:73:ce:ac:7c: 06:07:68:7a:2f:36:bf:cd:2f:e6:ee:f7:eb:f6:40: 3e:58:2a:4e:08:85:01:e8:9d:a1:a4:1f:9a:d1:ea: e0:09:9d:d3:11:8c:d9:b9:06:2b:9e:64:d0:c9:99: a0:27:d0:64:c8:ee:ce:1b:0a:4f:b1:63:8e:55:04: 98:22:54:93:43:f4:c3:07:91:dd:da:b9:b1:5c:9d: a3:e8:23:43:0c:bf:6e:a0:a6:27:b8:88:61:10:f2: f0:a2:5f:be:b4:ed:9c:f9:ab:94:5c:43:03:2a:87: 92:be:71:b3:af:b3:a1:75:2c:13:e0:51:6a:5d:0d: bd:d9:48:df:26:d1:26:69:b3:f0:0f:e7:83:50:62: 61:3f:d8:40:fd:1f:2f:ee:63:30:db:3a:2f:e7:d7: ec:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D5:70:A3:EB:AD:A1:0C:7E:74:52:7E:62:B8:B2:40:40:B5:4B:57 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/4FB7C576376811E9847C6223C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2402:9e80:43::/48 Signature Algorithm: sha256WithRSAEncryption 35:56:f5:ee:e1:1b:1d:05:ef:f6:39:81:5e:62:72:8c:b7:42: b3:97:b2:c3:8d:75:2d:6f:da:32:40:a4:70:49:71:aa:69:0b: 50:16:30:46:d2:20:6e:1e:cb:0a:98:b9:26:34:a5:5e:8f:d3: fd:73:79:4a:cb:0a:c3:7a:9a:45:7e:c5:9e:8a:95:5b:36:41: 47:20:f8:c3:2d:0a:32:60:67:d9:8a:96:25:fe:cf:56:79:7a: ab:0c:c8:09:3b:92:d4:95:77:4c:1e:dd:73:be:95:a8:d5:14: 9a:ca:bb:46:59:b7:cb:54:c4:be:41:27:ce:34:76:31:33:ff: 1d:41:63:e2:aa:a5:df:a1:9e:3c:bd:1e:1b:87:0a:4a:4f:54: 4c:b0:e7:56:ad:53:25:63:bf:3b:35:66:8c:40:7f:a4:83:3f: 18:9f:a7:64:5c:9a:cb:0c:e5:bc:a4:b8:45:0d:e8:31:ae:03: 0a:25:fe:e1:1d:c3:10:ee:23:87:f4:58:da:78:8c:4e:d6:45: 5f:a7:85:6a:9a:a7:5b:1c:6e:1d:83:75:05:af:f4:75:4c:b3: 16:ef:42:d5:31:f4:bf:26:d5:84:c2:4b:dc:96:fd:63:9f:4d: 4f:41:39:5f:bb:31:ba:dc:f4:53:f3:6e:57:7f:6f:ca:e5:2f: d1:21:54:a8 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICKU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjUwNzI2MTU1MzQ3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGVmNS1hMGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva2JEzxDnG/yooHa0tVlm4oa0ETGgZuAKoBAJjyutzoMkJsdLeYfjd2Tc3TV +sKqpuCJpbOh2zfE9SmzAiNpxI98FkEOMLxPz6y/hwKmOtbiqz5wgZBVc7f/EbSc 1Phrmy0EDHPOrHwGB2h6Lza/zS/m7vfr9kA+WCpOCIUB6J2hpB+a0ergCZ3TEYzZ uQYrnmTQyZmgJ9BkyO7OGwpPsWOOVQSYIlSTQ/TDB5Hd2rmxXJ2j6CNDDL9uoKYn uIhhEPLwol++tO2c+auUXEMDKoeSvnGzr7OhdSwT4FFqXQ292UjfJtEmabPwD+eD UGJhP9hA/R8v7mMw2zov59fsYwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFL3VcKPr raEMfnRSfmK4skBAtUtXMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvNEZCN0M1NzYz NzY4MTFFOTg0N0M2MjIzQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAKegABDMA0GCSqGSIb3DQEBCwUAA4IBAQA1VvXu4RsdBe/2OYFe YnKMt0Kzl7LDjXUtb9oyQKRwSXGqaQtQFjBG0iBuHssKmLkmNKVej9P9c3lKywrD eppFfsWeipVbNkFHIPjDLQoyYGfZipYl/s9WeXqrDMgJO5LUlXdMHt1zvpWo1RSa yrtGWbfLVMS+QSfONHYxM/8dQWPiqqXfoZ48vR4bhwpKT1RMsOdWrVMlY787NWaM QH+kgz8Yn6dkXJrLDOW8pLhFDegxrgMKJf7hHcMQ7iOH9FjaeIxO1kVfp4Vqmqdb HG4dg3UFr/R1TLMW70LVMfS/JtWEwkvclv1jn01PQTlfuzG63PRT825Xf2/K5S/R IVSo -----END CERTIFICATE-----Generated at Mon Mar 2 04:59:56 2026 by rpki-client