$ rpki-client -vvf rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/D4FD2A902B8411EEBCDBEF7AC4F9AE02.roa File: D4FD2A902B8411EEBCDBEF7AC4F9AE02.roa (raw, json) Hash identifier: W6ueRJhH8jQdhiEkMLdiQl56SAAwLpTfKRe8+DuwqEM= Subject key identifier: 45:FA:F1:92:EE:85:63:F9:B2:D7:27:AE:71:3F:72:7F:5A:68:F2:55 Certificate issuer: /CN=A9149B61/serialNumber=E3E100F804013A05F922EE11CB4E0ABEA6C22B98 Certificate serial: 01F1 Authority key identifier: E3:E1:00:F8:04:01:3A:05:F9:22:EE:11:CB:4E:0A:BE:A6:C2:2B:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/D4FD2A902B8411EEBCDBEF7AC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:35:27 +0000 ROA not before: Wed 07 May 2025 03:41:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149787 IP address blocks: 2001:df0:a5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.crl rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149B61, serialNumber=E3E100F804013A05F922EE11CB4E0ABEA6C22B98 Validity Not Before: May 7 03:41:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3ec3f-39aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:43:24:a5:36:81:62:95:f9:92:d8:01:d2:f2: 64:86:9b:c5:59:88:39:4e:42:20:97:0b:b3:99:79: 58:4e:5b:de:6f:61:d1:bb:f1:f1:24:3e:0d:14:13: e1:b8:dd:2d:3d:b3:db:a1:69:76:f5:84:8c:12:a1: 1c:e8:a8:b4:d4:de:c9:5c:7c:83:4c:99:d0:6d:df: f1:33:e6:d0:da:af:45:81:f3:82:76:62:36:bd:37: 65:6d:53:15:d9:40:26:b0:e7:47:a9:c8:c3:2f:70: 06:21:ee:be:74:2b:ed:1e:8d:e0:66:65:4a:a8:42: 9b:31:d1:37:48:05:d7:af:1a:17:8d:4e:4a:d9:70: c8:b9:dc:9e:1a:29:47:60:da:72:49:71:41:f7:ec: b4:79:af:7e:57:c7:17:ba:74:60:3b:de:09:a5:70: 7c:82:18:b2:f8:15:14:7a:63:46:cf:e4:6d:49:55: 3d:08:74:79:fd:63:57:d5:5b:18:08:23:e4:e7:ae: 1e:d2:b9:a3:f4:42:88:47:f4:ec:2e:c6:13:64:a3: 95:b1:b0:08:c8:41:f1:b7:4f:48:7e:4f:38:dc:e9: 40:42:a4:7f:f2:cd:76:77:97:c6:d3:01:b2:1b:a0: c0:e8:1b:ab:ee:51:04:91:83:b0:ca:3b:e7:ce:63: db:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:FA:F1:92:EE:85:63:F9:B2:D7:27:AE:71:3F:72:7F:5A:68:F2:55 X509v3 Authority Key Identifier: keyid:E3:E1:00:F8:04:01:3A:05:F9:22:EE:11:CB:4E:0A:BE:A6:C2:2B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/D4FD2A902B8411EEBCDBEF7AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df0:a5c0::/48 Signature Algorithm: sha256WithRSAEncryption b1:0b:9a:f3:36:75:81:94:c8:fc:c8:d3:11:d3:84:71:b1:97: 86:f1:3d:ab:69:ef:4e:a0:ab:63:bf:a6:47:d4:9e:1e:02:36: 16:dc:ea:32:0f:46:80:45:c3:fc:f4:17:fe:69:b9:ea:c3:bd: 47:1b:2c:3c:c4:ea:12:e2:4c:f2:bf:ae:50:28:ee:5f:dc:56: 6e:b8:b4:8c:24:f9:ca:99:bd:aa:7b:17:48:f0:e7:b8:bb:3b: 89:7d:99:a7:84:80:5c:59:9b:7a:97:69:6c:02:6b:a6:75:04: 98:04:d8:14:1a:39:56:51:e6:ce:f0:34:78:a7:1c:bc:6b:79: 9b:b8:64:71:6a:0a:85:d0:aa:d5:98:c8:3e:ab:02:b9:e3:e8: bd:46:07:53:d9:86:4e:f8:63:0f:be:80:18:86:ee:a0:4b:3e: e5:0f:cb:4f:14:8c:01:85:a6:fb:c0:55:2c:e9:b1:65:58:66: 00:49:21:01:25:79:38:7d:fe:3e:fc:4b:9e:92:cb:70:54:60: d2:4c:a2:6b:83:c3:dd:f9:c3:8e:68:84:f0:95:53:eb:0b:3a: 8c:e4:d1:f6:ef:ad:21:34:60:1f:d2:b6:53:b5:3d:c1:99:9c: b1:82:5d:a0:87:d6:a4:6f:fa:88:11:55:5e:a6:71:42:1a:cf: 47:bc:a0:04 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlCNjExMTAvBgNVBAUTKEUzRTEwMEY4MDQwMTNBMDVGOTIyRUUxMUNCNEUwQUJF QTZDMjJCOTgwHhcNMjUwNTA3MDM0MTEyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWMzZi0zOWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4EMkpTaBYpX5ktgB0vJkhpvFWYg5TkIglwuzmXlYTlveb2HRu/HxJD4NFBPh uN0tPbPboWl29YSMEqEc6Ki01N7JXHyDTJnQbd/xM+bQ2q9FgfOCdmI2vTdlbVMV 2UAmsOdHqcjDL3AGIe6+dCvtHo3gZmVKqEKbMdE3SAXXrxoXjU5K2XDIudyeGilH YNpySXFB9+y0ea9+V8cXunRgO94JpXB8ghiy+BUUemNGz+RtSVU9CHR5/WNX1VsY CCPk564e0rmj9EKIR/TsLsYTZKOVsbAIyEHxt09Ifk843OlAQqR/8s12d5fG0wGy G6DA6Bur7lEEkYOwyjvnzmPblQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFEX68ZLu hWP5stcnrnE/cn9aaPJVMB8GA1UdIwQYMBaAFOPhAPgEAToF+SLuEctOCr6mwiuY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUI2MS83NjE2RDRGQzJB Q0QxMUVFQjcyMjJDM0NDNEY5QUUwMi80LUVBLUFRQk9nWDVJdTRSeTA0S3ZxYkNL NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQtRUEtQVFCT2dYNUl1NFJ5MDRLdnFiQ0s1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlCNjEvNzYxNkQ0RkMyQUNEMTFFRUI3MjIyQzNDQzRGOUFFMDIvRDRGRDJBOTAy Qjg0MTFFRUJDREJFRjdBQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN8KXAMA0GCSqGSIb3DQEBCwUAA4IBAQCxC5rzNnWBlMj8yNMR 04RxsZeG8T2rae9OoKtjv6ZH1J4eAjYW3OoyD0aARcP89Bf+abnqw71HGyw8xOoS 4kzyv65QKO5f3FZuuLSMJPnKmb2qexdI8Oe4uzuJfZmnhIBcWZt6l2lsAmumdQSY BNgUGjlWUebO8DR4pxy8a3mbuGRxagqF0KrVmMg+qwK54+i9RgdT2YZO+GMPvoAY hu6gSz7lD8tPFIwBhab7wFUs6bFlWGYASSEBJXk4ff4+/EuekstwVGDSTKJrg8Pd +cOOaITwlVPrCzqM5NH2760hNGAf0rZTtT3BmZyxgl2gh9akb/qIEVVepnFCGs9H vKAE -----END CERTIFICATE-----Generated at Mon Mar 2 03:31:11 2026 by rpki-client