$ rpki-client -vvf rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/99AA0D12924111EFB764DA22C4F9AE02.roa File: 99AA0D12924111EFB764DA22C4F9AE02.roa (raw, json) Hash identifier: Y5+3Jd91iLmjBG91r8h3vxTrpk2HTEblEA7+u3Vl/Ck= Subject key identifier: 34:FB:70:CA:1D:C0:7B:DD:72:8D:1F:3E:7B:C8:F5:4C:D9:C9:95:E9 Certificate issuer: /CN=A9149E50/serialNumber=ECB4840056046A8A932284EA5F1E046A02331CE9 Certificate serial: 0108 Authority key identifier: EC:B4:84:00:56:04:6A:8A:93:22:84:EA:5F:1E:04:6A:02:33:1C:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/99AA0D12924111EFB764DA22C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:54:53 +0000 ROA not before: Mon 03 Mar 2025 09:20:14 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152479 IP address blocks: 2401:cfa0::/32 maxlen: 32 2401:cfa0::/40 maxlen: 40 2401:cfa0:100::/40 maxlen: 40 2401:cfa0:101::/48 maxlen: 48 2401:cfa0:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.crl rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:15:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149E50, serialNumber=ECB4840056046A8A932284EA5F1E046A02331CE9 Validity Not Before: Mar 3 09:20:14 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3e2bd-0593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7d:c1:f7:66:d3:b7:45:e5:36:b3:44:15:8d: 34:c8:c5:2e:e7:a0:97:0c:b0:5a:6b:c8:01:48:1a: b7:5a:f3:44:00:8d:db:0d:c8:d4:6f:4b:d6:72:ec: 1d:38:e8:cc:39:08:39:ef:89:2d:87:9b:7f:b1:6f: 20:6c:0e:ef:a7:40:f3:86:a3:d5:5c:e8:a8:90:0f: 87:04:8a:2e:7c:67:72:0a:e2:2d:22:55:a7:6a:7b: cc:18:c6:78:bd:6b:0e:53:a5:03:c6:cb:63:63:2a: e7:90:e9:c4:4a:68:91:a9:e4:eb:10:81:c8:3c:dc: d8:69:2e:35:11:ed:94:43:ba:e9:ba:0c:d5:e0:51: 13:1e:5f:28:db:09:b6:07:5b:06:5c:f3:79:2c:4a: ab:21:ef:ef:86:39:41:83:ca:ed:e5:66:97:c1:45: f4:1f:3e:9d:00:fd:23:9e:a9:77:7b:f2:d8:ba:80: a6:37:2a:2d:00:e8:2e:79:6a:f8:11:5b:a1:29:a3: 3a:31:9b:f0:db:0e:7f:3e:59:34:20:a4:10:3b:75: 29:86:01:b7:ca:2f:64:55:5d:b2:ef:86:63:01:d4: 24:58:14:3c:23:fc:30:8f:70:e2:ed:a8:12:0c:08: 67:2d:cf:56:08:5b:72:77:fb:49:a1:ba:d6:81:c5: ee:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:FB:70:CA:1D:C0:7B:DD:72:8D:1F:3E:7B:C8:F5:4C:D9:C9:95:E9 X509v3 Authority Key Identifier: keyid:EC:B4:84:00:56:04:6A:8A:93:22:84:EA:5F:1E:04:6A:02:33:1C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/99AA0D12924111EFB764DA22C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:cfa0::/32 Signature Algorithm: sha256WithRSAEncryption 06:38:b5:93:d2:c6:45:35:4a:50:f7:e2:e4:69:4f:19:9b:b5: c9:55:87:98:16:0f:66:52:67:a2:0d:b6:11:ef:3b:a2:e6:9e: b4:b7:5a:d0:05:7c:00:0b:9b:07:aa:68:a2:e1:25:35:93:91: 55:bd:e7:ae:84:1c:ac:2e:44:73:32:36:bf:c9:b3:07:9a:21: 68:51:4e:10:70:e1:21:53:4f:26:9d:b8:28:08:e2:26:07:fb: 15:3c:6d:62:c0:5f:07:77:5b:3c:1f:81:dc:e2:c7:8d:ca:c3: e8:b3:f7:57:5e:60:e7:dc:f8:7c:33:1a:01:2e:fb:ab:48:52: f7:21:e7:31:f7:ea:fb:19:47:d7:48:f7:4c:f2:75:b4:31:b9: 93:aa:75:8a:0e:c4:3a:70:be:a5:ac:d0:4e:91:55:d8:ab:05: 49:9b:77:a2:8a:0c:9b:57:54:21:2a:7d:fb:de:fc:10:1e:5d: c2:d5:6f:49:8d:4d:9e:c1:47:54:d6:f9:fe:57:54:40:7b:8b: 13:50:a5:ab:5f:ab:27:8e:b0:4c:d3:ea:e9:d7:2c:ef:55:2c: 18:43:fa:54:af:9f:ea:f8:22:ce:cc:77:f5:cc:37:15:b5:fc: 2b:51:2d:ca:52:7a:ae:d4:1c:62:dc:09:fd:54:f6:e0:c4:76: 13:84:f9:2c -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlFNTAxMTAvBgNVBAUTKEVDQjQ4NDAwNTYwNDZBOEE5MzIyODRFQTVGMUUwNDZB MDIzMzFDRTkwHhcNMjUwMzAzMDkyMDE0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTJiZC0wNTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtH3B92bTt0XlNrNEFY00yMUu56CXDLBaa8gBSBq3WvNEAI3bDcjUb0vWcuwd OOjMOQg574kth5t/sW8gbA7vp0DzhqPVXOiokA+HBIoufGdyCuItIlWnanvMGMZ4 vWsOU6UDxstjYyrnkOnESmiRqeTrEIHIPNzYaS41Ee2UQ7rpugzV4FETHl8o2wm2 B1sGXPN5LEqrIe/vhjlBg8rt5WaXwUX0Hz6dAP0jnql3e/LYuoCmNyotAOgueWr4 EVuhKaM6MZvw2w5/Plk0IKQQO3UphgG3yi9kVV2y74ZjAdQkWBQ8I/wwj3Di7agS DAhnLc9WCFtyd/tJobrWgcXu9QIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFDT7cMod wHvdco0fPnvI9UzZyZXpMB8GA1UdIwQYMBaAFOy0hABWBGqKkyKE6l8eBGoCMxzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUU1MC8yREQ3NjM4Qzky NDExMUVGQTU2Q0NFMjFDNEY5QUUwMi83TFNFQUZZRWFvcVRJb1RxWHg0RWFnSXpI T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdMU0VBRllFYW9xVElvVHFYeDRFYWdJekhPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlFNTAvMkRENzYzOEM5MjQxMTFFRkE1NkNDRTIxQzRGOUFFMDIvOTlBQTBEMTI5 MjQxMTFFRkI3NjREQTIyQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAHPoDANBgkqhkiG9w0BAQsFAAOCAQEABji1k9LGRTVKUPfi5GlP GZu1yVWHmBYPZlJnog22Ee87ouaetLda0AV8AAubB6poouElNZORVb3nroQcrC5E czI2v8mzB5ohaFFOEHDhIVNPJp24KAjiJgf7FTxtYsBfB3dbPB+B3OLHjcrD6LP3 V15g59z4fDMaAS77q0hS9yHnMffq+xlH10j3TPJ1tDG5k6p1ig7EOnC+pazQTpFV 2KsFSZt3oooMm1dUISp9+978EB5dwtVvSY1NnsFHVNb5/ldUQHuLE1Clq1+rJ46w TNPq6dcs71UsGEP6VK+f6vgizsx39cw3FbX8K1EtylJ6rtQcYtwJ/VT24MR2E4T5 LA== -----END CERTIFICATE-----Generated at Mon Mar 2 04:33:07 2026 by rpki-client