$ rpki-client -vvf rpki.apnic.net/member_repository/A913E614/38E21D52C3A111F0B744C339C4F9AE02/CAFFD8E6C6D511F09C4D4F76C4F9AE02.roa File: CAFFD8E6C6D511F09C4D4F76C4F9AE02.roa (raw, json) Hash identifier: x07sy7Vu8Uw/BjZ2JSklav59awi6rK7vT+EfvI/GcH4= Subject key identifier: B7:E3:9E:9F:32:5C:C3:49:0A:57:98:93:11:DA:A3:BA:B4:D4:89:0D Certificate issuer: /CN=A913E614/serialNumber=420F831CCE9A95B4F3135B1E557783AB202C6BAF Certificate serial: 38 Authority key identifier: 42:0F:83:1C:CE:9A:95:B4:F3:13:5B:1E:55:77:83:AB:20:2C:6B:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg-DHM6albTzE1seVXeDqyAsa68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E614/38E21D52C3A111F0B744C339C4F9AE02/CAFFD8E6C6D511F09C4D4F76C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:02:10 +0000 ROA not before: Fri 21 Nov 2025 12:29:58 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 136905 IP address blocks: 2402:37e0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E614/38E21D52C3A111F0B744C339C4F9AE02/Qg-DHM6albTzE1seVXeDqyAsa68.crl rsync://rpki.apnic.net/member_repository/A913E614/38E21D52C3A111F0B744C339C4F9AE02/Qg-DHM6albTzE1seVXeDqyAsa68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg-DHM6albTzE1seVXeDqyAsa68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:56:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E614, serialNumber=420F831CCE9A95B4F3135B1E557783AB202C6BAF Validity Not Before: Nov 21 12:29:58 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d662-52f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ef:ed:23:97:37:bc:ea:68:c4:e8:7c:9b:c8: 97:d2:d1:e8:94:9c:76:36:d3:58:d4:68:db:47:41: 89:1c:cc:6d:ed:37:e1:93:7d:c6:30:a5:6d:18:af: c8:46:d7:e9:bd:7a:10:a5:66:84:05:27:e9:ca:18: 16:65:c1:04:0c:98:7c:33:01:f9:5c:8a:e4:e9:a2: 85:14:07:d5:90:75:4b:fd:39:61:d5:61:98:8a:6b: b2:2c:9e:63:83:f7:73:e5:9e:b6:00:1d:c2:42:b5: b1:23:8f:95:19:1b:1a:e2:25:dc:91:91:6f:65:90: c4:ca:0a:3a:21:38:7a:13:01:79:ed:13:ca:32:01: eb:17:00:37:b2:89:9b:ca:f0:c9:48:d6:c0:a7:4c: eb:31:95:1f:bc:a5:a6:ab:b8:e1:1b:86:1a:24:e6: 83:4e:73:00:e6:48:cb:ab:95:9f:2d:36:9f:20:4a: 3f:95:15:76:ba:1e:c8:d4:40:6f:23:4b:fe:ae:b0: a0:a0:07:ed:ee:70:50:33:a6:72:de:74:67:19:22: b2:a6:19:29:1b:de:1a:7f:54:ba:45:c2:6b:9d:1f: 94:ef:1a:79:28:48:74:87:57:b9:8a:e5:dd:45:cd: 83:3e:7f:c5:98:40:16:6e:5b:c6:db:67:ab:c5:09: 7a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E3:9E:9F:32:5C:C3:49:0A:57:98:93:11:DA:A3:BA:B4:D4:89:0D X509v3 Authority Key Identifier: keyid:42:0F:83:1C:CE:9A:95:B4:F3:13:5B:1E:55:77:83:AB:20:2C:6B:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E614/38E21D52C3A111F0B744C339C4F9AE02/Qg-DHM6albTzE1seVXeDqyAsa68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg-DHM6albTzE1seVXeDqyAsa68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E614/38E21D52C3A111F0B744C339C4F9AE02/CAFFD8E6C6D511F09C4D4F76C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2402:37e0::/32 Signature Algorithm: sha256WithRSAEncryption 23:11:46:56:13:f7:04:4c:09:8c:70:8f:de:91:88:86:ad:4b: 00:fb:e9:3c:1d:b4:00:f3:05:22:d8:c3:b2:8b:b6:de:af:1a: 2e:dc:bf:3b:c0:b1:8d:c0:bb:12:04:cf:2a:2b:56:7e:9e:67: ae:db:81:c5:8e:62:e7:48:81:e4:5f:06:89:54:38:ea:5a:e6: 26:35:5f:cb:90:55:8e:26:f9:a7:92:4f:7e:07:33:1e:21:72: 72:ac:ba:ec:24:55:8e:aa:c7:a5:50:31:4c:2a:50:0f:b6:2e: ef:c6:53:a9:e3:8c:56:e0:8b:54:06:5d:ec:ae:4a:92:ba:bd: ef:62:05:47:b6:8a:fe:8f:28:ee:ab:26:f8:77:27:22:15:bf: 8f:84:29:05:ce:b2:c7:5e:dd:77:51:05:12:5c:92:b5:5f:94: 3b:ea:f6:57:b8:88:ba:d3:dd:0f:6f:36:0e:af:f1:a0:26:c2: cb:e3:e9:54:3e:0b:19:d7:82:98:2c:cb:0f:6c:13:1f:91:77: cf:42:de:75:f8:a9:84:cb:5d:02:3d:43:cd:2a:24:57:4f:6c: 43:4b:1a:13:07:ef:36:d2:b8:21:45:db:cb:c8:39:11:47:0e: 93:84:ae:e7:c0:ac:00:0c:3f:55:dd:4a:ab:a8:f6:ff:f5:93: 0b:4a:50:09 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RTYxNDExMC8GA1UEBRMoNDIwRjgzMUNDRTlBOTVCNEYzMTM1QjFFNTU3NzgzQUIy MDJDNkJBRjAeFw0yNTExMjExMjI5NThaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNjYyLTUyZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDw7+0jlze86mjE6HybyJfS0eiUnHY201jUaNtHQYkczG3tN+GTfcYwpW0Yr8hG 1+m9ehClZoQFJ+nKGBZlwQQMmHwzAflciuTpooUUB9WQdUv9OWHVYZiKa7IsnmOD 93PlnrYAHcJCtbEjj5UZGxriJdyRkW9lkMTKCjohOHoTAXntE8oyAesXADeyiZvK 8MlI1sCnTOsxlR+8paaruOEbhhok5oNOcwDmSMurlZ8tNp8gSj+VFXa6HsjUQG8j S/6usKCgB+3ucFAzpnLedGcZIrKmGSkb3hp/VLpFwmudH5TvGnkoSHSHV7mK5d1F zYM+f8WYQBZuW8bbZ6vFCXpnAgMBAAGjggJhMIICXTAdBgNVHQ4EFgQUt+OenzJc w0kKV5iTEdqjurTUiQ0wHwYDVR0jBBgwFoAUQg+DHM6albTzE1seVXeDqyAsa68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNFNjE0LzM4RTIxRDUyQzNB MTExRjBCNzQ0QzMzOUM0RjlBRTAyL1FnLURITTZhbGJUekUxc2VWWGVEcXlBc2E2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUWctREhNNmFsYlR6RTFzZVZYZURxeUFzYTY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTYxNC8zOEUyMUQ1MkMzQTExMUYwQjc0NEMzMzlDNEY5QUUwMi9DQUZGRDhFNkM2 RDUxMUYwOUM0RDRGNzZDNEY5QUUwMi5yb2EwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAjfgMA0GCSqGSIb3DQEBCwUAA4IBAQAjEUZWE/cETAmMcI/ekYiG rUsA++k8HbQA8wUi2MOyi7berxou3L87wLGNwLsSBM8qK1Z+nmeu24HFjmLnSIHk XwaJVDjqWuYmNV/LkFWOJvmnkk9+BzMeIXJyrLrsJFWOqselUDFMKlAPti7vxlOp 44xW4ItUBl3srkqSur3vYgVHtor+jyjuqyb4dyciFb+PhCkFzrLHXt13UQUSXJK1 X5Q76vZXuIi6090PbzYOr/GgJsLL4+lUPgsZ14KYLMsPbBMfkXfPQt51+KmEy10C PUPNKiRXT2xDSxoTB+820rghRdvLyDkRRw6ThK7nwKwADD9V3UqrqPb/9ZMLSlAJ -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:16 2026 by rpki-client