$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/440BBCC8D50411EB8AB09711C4F9AE02.roa File: 440BBCC8D50411EB8AB09711C4F9AE02.roa (raw, json) Hash identifier: ggYLAZLBkQHkBSRUA3z1VEuHuytE5FGiVTm9TlrkgRM= Subject key identifier: 11:65:34:20:AF:98:D5:CF:87:C7:D7:33:87:69:05:53:74:B6:1B:25 Certificate issuer: /CN=A9142A1D/serialNumber=47CBEF70BD55B9533331B8BCC2E9829563A2CE94 Certificate serial: 06D0 Authority key identifier: 47:CB:EF:70:BD:55:B9:53:33:31:B8:BC:C2:E9:82:95:63:A2:CE:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R8vvcL1VuVMzMbi8wumClWOizpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/440BBCC8D50411EB8AB09711C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:36:05 +0000 ROA not before: Tue 06 Jan 2026 22:18:21 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 48024 IP address blocks: 2001:df2:5380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/R8vvcL1VuVMzMbi8wumClWOizpQ.crl rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/R8vvcL1VuVMzMbi8wumClWOizpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R8vvcL1VuVMzMbi8wumClWOizpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:05:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1744 (0x6d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A1D, serialNumber=47CBEF70BD55B9533331B8BCC2E9829563A2CE94 Validity Not Before: Jan 6 22:18:21 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a46af5-6dcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9b:56:b9:cf:af:16:0d:4f:75:b7:1a:1d:5b: c7:4f:fa:df:46:89:ec:c4:d9:af:af:33:5c:e4:eb: b3:4f:33:cb:ee:20:14:f6:18:60:4e:81:37:34:db: 55:16:9b:35:d9:77:db:1a:1c:2a:19:be:ff:b1:70: fc:b9:3d:28:ff:a8:67:98:6a:a2:fd:09:b3:af:f3: 00:88:c4:ae:ea:3a:9d:be:76:fa:e6:f7:f0:25:b9: e2:28:72:d7:73:30:50:4c:2f:b7:fb:91:98:91:6c: 22:1d:08:43:e4:9f:a8:fb:9e:0e:15:24:c3:fb:91: d7:2b:bf:f0:41:85:7c:84:f6:86:c7:4d:07:a9:53: 16:ef:41:d1:15:ed:7a:c0:2f:12:76:90:b8:7c:14: 31:9a:5d:4d:66:3a:90:9d:36:59:d9:49:c1:79:f9: f6:bd:cb:7f:8d:61:20:e7:13:43:8c:8e:91:0c:44: 03:93:df:bf:c3:eb:5f:ff:7c:af:b5:3f:f2:58:85: 94:a2:75:41:75:d8:a6:3d:9b:0c:e1:a0:07:50:0d: 78:87:db:ce:85:de:b1:b8:7e:9a:bb:19:08:12:b9: e1:7d:29:bb:2d:a0:e0:79:4c:45:fc:ab:3c:2f:44: 7e:11:0b:9c:76:2a:08:c8:e0:0f:f5:eb:79:68:7f: 3d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:65:34:20:AF:98:D5:CF:87:C7:D7:33:87:69:05:53:74:B6:1B:25 X509v3 Authority Key Identifier: keyid:47:CB:EF:70:BD:55:B9:53:33:31:B8:BC:C2:E9:82:95:63:A2:CE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/R8vvcL1VuVMzMbi8wumClWOizpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R8vvcL1VuVMzMbi8wumClWOizpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/440BBCC8D50411EB8AB09711C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df2:5380::/48 Signature Algorithm: sha256WithRSAEncryption 31:f5:e9:5a:34:c1:61:fc:19:13:af:f2:73:ed:91:94:e9:da: b0:97:9a:61:2b:81:d4:c1:7a:34:f3:2c:14:55:34:a3:d2:cc: 9c:79:95:2e:35:52:60:94:c6:da:97:05:d8:8f:cc:d3:6e:15: e0:a3:bf:d8:f8:df:f7:33:a8:05:e3:d3:84:d5:4c:2e:da:a8: d3:ab:b3:0e:b9:a4:7b:8c:2a:81:11:2b:9f:65:48:46:cc:28: e5:dc:a3:87:a3:89:84:e3:cb:47:e9:a4:97:42:af:3d:3f:ef: af:4a:2c:60:10:16:23:bb:13:a7:d6:6d:aa:ee:c7:7c:cb:57: 90:97:51:50:bc:05:e3:0d:96:02:d2:57:9d:70:a9:4f:c6:09: 00:eb:12:9d:fe:14:5e:fe:79:26:05:ed:51:d5:c7:97:e5:6d: 2f:1d:f6:6e:48:79:a9:80:de:08:3b:ec:8e:14:bb:94:44:f2: 13:b5:45:c1:44:49:ac:a3:12:48:d6:c0:6e:97:ab:25:66:db: cf:d1:8b:b8:7b:09:04:05:d5:00:35:d1:12:0d:02:9d:3d:dd: b5:dc:ee:c2:2d:7b:f6:57:2f:9e:bc:57:e1:82:37:63:4e:e1: 0d:44:46:29:16:39:5f:bc:32:b7:ff:33:b0:d6:fe:56:4e:1e: 0d:a1:0c:3b -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICBtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBMUQxMTAvBgNVBAUTKDQ3Q0JFRjcwQkQ1NUI5NTMzMzMxQjhCQ0MyRTk4Mjk1 NjNBMkNFOTQwHhcNMjYwMTA2MjIxODIxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmFmNS02ZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15tWuc+vFg1PdbcaHVvHT/rfRonsxNmvrzNc5OuzTzPL7iAU9hhgToE3NNtV Fps12XfbGhwqGb7/sXD8uT0o/6hnmGqi/Qmzr/MAiMSu6jqdvnb65vfwJbniKHLX czBQTC+3+5GYkWwiHQhD5J+o+54OFSTD+5HXK7/wQYV8hPaGx00HqVMW70HRFe16 wC8SdpC4fBQxml1NZjqQnTZZ2UnBefn2vct/jWEg5xNDjI6RDEQDk9+/w+tf/3yv tT/yWIWUonVBddimPZsM4aAHUA14h9vOhd6xuH6auxkIErnhfSm7LaDgeUxF/Ks8 L0R+EQucdioIyOAP9et5aH890QIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFBFlNCCv mNXPh8fXM4dpBVN0thslMB8GA1UdIwQYMBaAFEfL73C9VblTMzG4vMLpgpVjos6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkExRC80NTRCQ0RBNDlF OTQxMUVCQkM4MERGMjBDNEY5QUUwMi9SOHZ2Y0wxVnVWTXpNYmk4d3VtQ2xXT2l6 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I4dnZjTDFWdVZNek1iaTh3dW1DbFdPaXpwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDJBMUQvNDU0QkNEQTQ5RTk0MTFFQkJDODBERjIwQzRGOUFFMDIvNDQwQkJDQzhE NTA0MTFFQjhBQjA5NzExQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN8lOAMA0GCSqGSIb3DQEBCwUAA4IBAQAx9elaNMFh/BkTr/Jz 7ZGU6dqwl5phK4HUwXo08ywUVTSj0syceZUuNVJglMbalwXYj8zTbhXgo7/Y+N/3 M6gF49OE1Uwu2qjTq7MOuaR7jCqBESufZUhGzCjl3KOHo4mE48tH6aSXQq89P++v SixgEBYjuxOn1m2q7sd8y1eQl1FQvAXjDZYC0ledcKlPxgkA6xKd/hRe/nkmBe1R 1ceX5W0vHfZuSHmpgN4IO+yOFLuURPITtUXBREmsoxJI1sBul6slZtvP0Yu4ewkE BdUANdESDQKdPd213O7CLXv2Vy+evFfhgjdjTuENREYpFjlfvDK3/zOw1v5WTh4N oQw7 -----END CERTIFICATE-----Generated at Mon Mar 2 08:02:47 2026 by rpki-client