$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AFC59224604711E9BB8C0349C4F9AE02.roa File: AFC59224604711E9BB8C0349C4F9AE02.roa (raw, json) Hash identifier: NDaRjX3hYbtPISnXQ3Z/JakeiAdtOK9WnvrEeYk4sq8= Subject key identifier: 2C:4A:81:1B:95:1E:31:9A:3A:90:2D:77:B4:87:4A:11:19:FD:FB:3D Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2950 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AFC59224604711E9BB8C0349C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:09:44 +0000 ROA not before: Sat 26 Jul 2025 15:53:49 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138992 IP address blocks: 2402:9e80:49::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10576 (0x2950) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D, serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 26 15:53:49 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48ef8-003d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bc:cc:5f:13:1c:b4:4c:0d:91:63:47:d2:cd: 56:e2:a6:6a:05:5a:f9:5b:a1:87:8a:35:15:86:c0: af:ea:ec:57:35:92:f7:24:cc:e3:18:c7:c2:fb:44: a8:02:a7:02:b2:e8:2d:61:c2:37:56:65:09:4d:be: 8b:35:cb:b5:ed:65:fa:47:dc:64:43:9e:c8:4a:1c: 17:b3:d1:b8:e9:65:d1:0b:67:58:12:b2:af:54:d0: 10:29:9b:53:64:de:26:e8:83:99:d9:46:bc:e8:e0: 38:82:56:7f:08:2f:3d:93:17:c4:64:5d:71:86:b2: b6:74:ab:80:06:88:18:dd:bc:36:a9:00:c8:a4:93: c1:36:61:10:a3:36:9b:77:c8:99:76:d0:d8:02:62: 38:c6:e9:5c:2b:c8:f5:08:b1:52:ea:00:51:3f:83: 7b:ea:38:2a:2e:78:f3:d5:88:e4:65:b3:0c:5a:66: 0c:a8:0c:fb:02:0d:1b:52:34:e2:70:5a:73:89:98: 12:a8:bd:dc:1d:17:8a:ec:74:47:3a:6f:f9:8b:0e: 3c:52:a4:d9:dd:28:3b:a3:46:9b:8b:01:62:5f:87: c2:be:6d:66:21:0c:0d:ef:71:5f:74:ff:d6:1d:5f: 5d:a4:f8:67:c0:83:b2:c4:dc:35:45:33:da:40:58: 3f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:4A:81:1B:95:1E:31:9A:3A:90:2D:77:B4:87:4A:11:19:FD:FB:3D X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AFC59224604711E9BB8C0349C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2402:9e80:49::/48 Signature Algorithm: sha256WithRSAEncryption 00:ba:ad:40:72:05:bc:56:69:6a:04:6e:7b:f2:9c:89:91:b5: ce:2c:ea:59:3f:bf:02:2e:48:6c:72:42:13:bc:5a:5f:21:a9: 7a:af:f1:2c:84:3e:6a:a1:a3:23:83:72:cc:e1:bf:4c:08:f3: 76:73:32:37:b5:32:ec:0f:00:3f:b9:44:49:57:f7:da:3f:1b: 65:61:29:2f:9d:96:eb:45:2f:a7:2e:31:d7:b3:f1:6b:9b:bd: 63:73:49:ba:bb:be:e0:22:f4:1d:0c:b7:23:e1:3b:05:ce:27: 44:f4:01:15:bf:7f:1b:b9:be:61:a5:44:4d:17:37:31:bf:29: 8f:89:87:ff:77:79:fc:93:15:3f:ac:66:6b:3a:db:c7:e6:8f: 3d:c0:80:21:c3:3c:7f:7b:01:e7:d8:51:cc:9b:36:eb:bc:6b: 49:47:6b:5a:16:77:6c:bd:31:0e:60:2c:e3:b6:b8:3f:39:ee: 49:26:d4:52:98:2e:5f:97:14:0e:18:e6:4b:04:7a:a7:48:c1: 94:5a:2d:fe:81:1b:d7:f4:74:8b:ef:91:45:a0:b2:23:55:ec: fd:7b:e1:83:af:14:5c:f8:4c:9b:40:c1:98:ef:a8:4a:cc:35: a1:17:93:7a:3a:48:36:35:15:c6:33:1a:12:8b:fa:b8:8a:91: 09:ed:59:32 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICKVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjUwNzI2MTU1MzQ5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGVmOC0wMDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbzMXxMctEwNkWNH0s1W4qZqBVr5W6GHijUVhsCv6uxXNZL3JMzjGMfC+0So AqcCsugtYcI3VmUJTb6LNcu17WX6R9xkQ57IShwXs9G46WXRC2dYErKvVNAQKZtT ZN4m6IOZ2Ua86OA4glZ/CC89kxfEZF1xhrK2dKuABogY3bw2qQDIpJPBNmEQozab d8iZdtDYAmI4xulcK8j1CLFS6gBRP4N76jgqLnjz1YjkZbMMWmYMqAz7Ag0bUjTi cFpziZgSqL3cHReK7HRHOm/5iw48UqTZ3Sg7o0abiwFiX4fCvm1mIQwN73FfdP/W HV9dpPhnwIOyxNw1RTPaQFg/zwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFCxKgRuV HjGaOpAtd7SHShEZ/fs9MB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvQUZDNTkyMjQ2 MDQ3MTFFOUJCOEMwMzQ5QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAKegABJMA0GCSqGSIb3DQEBCwUAA4IBAQAAuq1AcgW8VmlqBG57 8pyJkbXOLOpZP78CLkhsckITvFpfIal6r/EshD5qoaMjg3LM4b9MCPN2czI3tTLs DwA/uURJV/faPxtlYSkvnZbrRS+nLjHXs/Frm71jc0m6u77gIvQdDLcj4TsFzidE 9AEVv38bub5hpURNFzcxvymPiYf/d3n8kxU/rGZrOtvH5o89wIAhwzx/ewHn2FHM mzbrvGtJR2taFndsvTEOYCzjtrg/Oe5JJtRSmC5flxQOGOZLBHqnSMGUWi3+gRvX 9HSL75FFoLIjVez9e+GDrxRc+EybQMGY76hKzDWhF5N6Okg2NRXGMxoSi/q4ipEJ 7Vky -----END CERTIFICATE-----Generated at Mon Mar 2 18:35:24 2026 by rpki-client