$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/86516CF04BE911EE8640FE79C4F9AE02.roa File: 86516CF04BE911EE8640FE79C4F9AE02.roa (raw, json) Hash identifier: Gq1giwEFmvclzAMpkvbXyel2CbPwJXkIXAu4n5mgVng= Subject key identifier: 18:F9:AA:15:B4:C3:E6:31:C7:F6:EC:50:71:20:DD:09:B1:57:FA:A7 Certificate issuer: /CN=A9148D53/serialNumber=FDBD4C0D34492F5CEAE4879E4762796E527007EB Certificate serial: 0263 Authority key identifier: FD:BD:4C:0D:34:49:2F:5C:EA:E4:87:9E:47:62:79:6E:52:70:07:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_b1MDTRJL1zq5IeeR2J5blJwB-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/86516CF04BE911EE8640FE79C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:17:43 +0000 ROA not before: Wed 05 Mar 2025 05:20:18 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 139853 IP address blocks: 2401:fd80:ff00::/48 maxlen: 48 2401:fd80:ff01::/48 maxlen: 48 2401:fd80:ff02::/48 maxlen: 48 2401:fd80:ff03::/48 maxlen: 48 2401:fd80:ff04::/48 maxlen: 48 2401:fd80:ffb1::/48 maxlen: 48 2401:fd80:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/_b1MDTRJL1zq5IeeR2J5blJwB-s.crl rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/_b1MDTRJL1zq5IeeR2J5blJwB-s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_b1MDTRJL1zq5IeeR2J5blJwB-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D53, serialNumber=FDBD4C0D34492F5CEAE4879E4762796E527007EB Validity Not Before: Mar 5 05:20:18 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3f627-b60b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:93:28:72:9b:ed:a8:fc:df:08:4f:1b:d8:1e: 3e:f4:7d:48:19:ae:b3:e2:05:5e:12:81:0c:e3:79: 3f:2a:ff:63:d3:0b:d8:4a:5f:f3:81:96:3f:07:52: e5:ab:56:8b:53:fc:f2:d6:de:9a:3d:51:46:f0:73: bf:97:be:67:12:c3:5a:51:15:4e:dc:95:90:08:a5: 6d:e2:89:65:9a:23:dc:2d:2e:e9:f2:05:3b:90:33: 93:3b:9f:a6:f4:62:00:f0:22:86:2d:46:78:b7:d7: d5:6c:f1:b3:7e:03:cb:21:25:65:d4:a1:cd:b6:ef: da:e8:c8:b7:82:8d:34:88:56:b4:ba:99:d0:0b:cd: c1:68:93:d7:27:f7:50:50:52:cb:87:a3:3e:ec:d6: e0:e8:d6:da:c5:be:25:1b:34:ce:26:fb:9f:f2:af: 09:77:a8:15:bd:cf:a5:36:3a:e2:83:6a:fc:6d:b0: 51:04:e2:b1:b0:aa:a5:ef:85:5c:d4:ba:78:23:7c: 4b:83:d6:6d:c3:0e:26:51:73:55:21:17:c4:a6:e7: 42:7d:95:ab:d1:f1:03:57:4c:f9:89:95:5c:33:d2: a9:ba:57:b4:07:7e:6b:a2:95:76:a9:15:80:26:7f: 35:e4:1c:2b:93:7c:e2:50:12:92:00:82:44:80:4d: c5:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:F9:AA:15:B4:C3:E6:31:C7:F6:EC:50:71:20:DD:09:B1:57:FA:A7 X509v3 Authority Key Identifier: keyid:FD:BD:4C:0D:34:49:2F:5C:EA:E4:87:9E:47:62:79:6E:52:70:07:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/_b1MDTRJL1zq5IeeR2J5blJwB-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_b1MDTRJL1zq5IeeR2J5blJwB-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/86516CF04BE911EE8640FE79C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:fd80:ff00::-2401:fd80:ff04:ffff:ffff:ffff:ffff:ffff 2401:fd80:ffb1::/48 2401:fd80:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 03:21:e7:8c:bb:fb:87:80:56:ef:d8:42:b4:c9:20:2e:22:3c: c5:36:3b:c3:4a:99:0f:88:c5:55:3c:84:c0:98:2c:9d:4c:60: 14:b4:ed:1a:78:9a:f4:6c:c0:d3:89:af:d3:bd:94:5f:74:de: b6:57:07:c5:95:08:9f:4e:8e:7b:ac:a4:32:2a:18:c3:05:3e: 4b:b3:d9:87:f1:c7:1a:f1:2e:0f:9b:8f:da:07:32:ad:26:68: a3:48:f5:bd:b2:a1:80:16:8e:a0:2a:45:49:f0:c5:33:f3:f3: d5:0b:98:b5:7d:90:07:b0:c6:c4:78:32:67:88:0c:1b:ba:4b: a5:1a:89:86:46:63:a9:99:91:53:98:0d:c3:33:60:b4:1c:47: 0b:ba:bd:b1:f0:c0:6e:19:2c:38:3b:55:88:a0:40:62:b9:5f: 16:3f:3c:49:8e:2e:de:92:50:10:fa:ef:6b:80:09:3a:bc:43: fa:94:46:f4:33:5d:5d:97:44:0c:b8:9d:77:97:b4:a1:f8:ae: 8f:f3:f8:cd:d2:2f:13:e9:51:84:c7:d5:17:f3:ed:30:30:b3: 88:41:0b:a0:8d:d6:7c:85:88:c7:26:53:6f:7f:76:65:09:15: 8f:c9:f1:4a:d6:38:97:c4:c9:f3:d8:51:99:66:5c:02:6c:0e: 38:a4:00:13 -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTMxMTAvBgNVBAUTKEZEQkQ0QzBEMzQ0OTJGNUNFQUU0ODc5RTQ3NjI3OTZF NTI3MDA3RUIwHhcNMjUwMzA1MDUyMDE4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjYyNy1iNjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJMocpvtqPzfCE8b2B4+9H1IGa6z4gVeEoEM43k/Kv9j0wvYSl/zgZY/B1Ll q1aLU/zy1t6aPVFG8HO/l75nEsNaURVO3JWQCKVt4ollmiPcLS7p8gU7kDOTO5+m 9GIA8CKGLUZ4t9fVbPGzfgPLISVl1KHNtu/a6Mi3go00iFa0upnQC83BaJPXJ/dQ UFLLh6M+7Nbg6Nbaxb4lGzTOJvuf8q8Jd6gVvc+lNjrig2r8bbBRBOKxsKql74Vc 1Lp4I3xLg9Ztww4mUXNVIRfEpudCfZWr0fEDV0z5iZVcM9Kpule0B35ropV2qRWA Jn815Bwrk3ziUBKSAIJEgE3FjwIDAQABo4ICfzCCAnswHQYDVR0OBBYEFBj5qhW0 w+Yxx/bsUHEg3QmxV/qnMB8GA1UdIwQYMBaAFP29TA00SS9c6uSHnkdieW5ScAfr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1My9ENTg2RjhGMDMw NzExMUVFODU0NkEzMkZDNEY5QUUwMi9fYjFNRFRSSkwxenE1SWVlUjJKNWJsSndC LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19iMU1EVFJKTDF6cTVJZWVSMko1YmxKd0Itcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhENTMvRDU4NkY4RjAzMDcxMTFFRTg1NDZBMzJGQzRGOUFFMDIvODY1MTZDRjA0 QkU5MTFFRTg2NDBGRTc5QzRGOUFFMDIucm9hMD4GCCsGAQUFBwEHAQH/BC8wLTAr BAIAAjAlMBEDBgAkAf2A/wMHACQB/YD/BAMHACQB/YD/sQMHACQB/YD//zANBgkq hkiG9w0BAQsFAAOCAQEAAyHnjLv7h4BW79hCtMkgLiI8xTY7w0qZD4jFVTyEwJgs nUxgFLTtGnia9GzA04mv072UX3TetlcHxZUIn06Oe6ykMioYwwU+S7PZh/HHGvEu D5uP2gcyrSZoo0j1vbKhgBaOoCpFSfDFM/Pz1QuYtX2QB7DGxHgyZ4gMG7pLpRqJ hkZjqZmRU5gNwzNgtBxHC7q9sfDAbhksODtViKBAYrlfFj88SY4u3pJQEPrva4AJ OrxD+pRG9DNdXZdEDLidd5e0ofiuj/P4zdIvE+lRhMfVF/PtMDCziEELoI3WfIWI xyZTb392ZQkVj8nxStY4l8TJ89hRmWZcAmwOOKQAEw== -----END CERTIFICATE-----Generated at Mon Mar 2 09:04:15 2026 by rpki-client