$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/1F8378E6BCBD11EBAC9A4744C4F9AE02.roa File: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (raw, json) Hash identifier: tcmbNfNt+yTW+70PSw09YjZ7I+nUUhisWPrNGzk3aO0= Subject key identifier: CB:A8:F3:47:93:0E:1A:C7:6C:F0:61:4E:14:C7:3D:41:6F:36:80:2E Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 13D0 Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/1F8378E6BCBD11EBAC9A4744C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:33:16 +0000 ROA not before: Sat 20 Dec 2025 17:14:38 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 395092 IP address blocks: 2403:cfc0:1006::/48 maxlen: 48 2403:cfc0:100c::/48 maxlen: 48 2403:cfc0:1110::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:04:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5072 (0x13d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Dec 20 17:14:38 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4866c-ffe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:85:d1:35:11:32:c1:0a:6d:39:fd:77:c0:67: 36:07:92:0b:6d:4d:45:44:b2:10:73:44:f6:f1:88: d8:42:ea:2a:ab:74:98:00:bb:0d:cb:99:a5:13:9e: a9:6f:11:be:72:50:31:5c:29:e6:45:6c:dd:cb:47: 14:d3:9e:4a:d8:82:1b:92:bf:bb:c2:c6:bb:af:4e: 0f:10:bd:d6:2c:88:5c:6c:19:fc:bc:cb:fd:5f:47: 04:89:32:d3:2c:de:11:15:82:50:e9:08:4d:a4:fa: 07:41:b6:8a:f2:54:bc:cd:0e:f5:f0:94:f3:1f:9f: 92:5e:49:88:ef:c9:72:e8:3c:c1:43:3b:e0:4e:6a: af:f8:37:11:72:e4:b3:60:d7:e4:80:29:34:8f:a6: 6f:67:8a:4e:1e:5b:5d:b1:f6:07:17:de:1e:99:63: 3d:78:35:14:71:38:2d:94:bb:80:49:b4:0a:f1:f4: 8b:e9:80:c3:72:4d:13:af:5d:73:da:6a:e4:e9:7d: 6c:c0:99:6c:8c:7d:28:d9:ec:50:b6:d1:89:22:06: 95:92:aa:fe:ba:75:11:a1:ac:04:76:d2:fe:a5:fa: 74:af:a5:31:77:6f:e4:2c:65:f2:9d:f0:88:98:a9: 17:8e:dc:40:b9:38:44:18:06:2b:32:b1:24:24:f4: 3a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:A8:F3:47:93:0E:1A:C7:6C:F0:61:4E:14:C7:3D:41:6F:36:80:2E X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/1F8378E6BCBD11EBAC9A4744C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2403:cfc0:1006::/48 2403:cfc0:100c::/48 2403:cfc0:1110::/44 Signature Algorithm: sha256WithRSAEncryption 24:f0:d3:b9:29:27:6e:72:c6:da:11:9b:db:ac:ad:01:a4:84: f8:0f:1b:6b:d6:0a:57:ea:fc:fb:f7:29:9e:81:29:72:47:a4: cd:94:cb:af:5a:48:d0:7b:07:73:d1:1e:1b:3d:d3:6f:0a:8c: 64:81:7c:b8:6d:b5:40:5c:52:a0:db:a6:88:50:c6:59:b0:fe: d1:6d:a6:b7:df:33:25:72:64:62:03:c6:49:16:2f:a1:a9:14: 9d:97:1b:f8:f6:3b:16:7c:5e:3e:3a:4a:9a:71:77:48:78:d1: 39:78:41:4e:fa:ab:a1:19:8c:8e:ef:82:e5:01:14:12:63:43: 41:dd:c0:b2:6c:ba:5b:3b:4d:3a:9c:d4:4a:13:4d:bd:f0:68: 48:3e:cd:eb:0c:60:68:c3:8f:0e:5e:e3:57:88:58:c1:b8:61: 25:e8:10:bf:1e:a4:20:87:81:78:3d:d1:09:f9:33:d1:04:a6: df:72:d6:47:e4:5b:1a:0d:06:76:d1:05:de:09:4c:3a:c7:83: 3b:e9:41:13:44:86:cb:db:ba:90:5b:ac:6e:81:5e:df:c8:44: 54:c5:1f:4c:93:67:f5:bc:58:a5:3a:fc:23:94:a0:04:d1:ea: 9d:ac:8e:0d:89:5e:7e:4b:e0:11:e3:e2:4d:3c:a0:f8:e0:02: f6:a8:94:c9 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICE9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUxMjIwMTcxNDM4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODY2Yy1mZmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApIXRNREywQptOf13wGc2B5ILbU1FRLIQc0T28YjYQuoqq3SYALsNy5mlE56p bxG+clAxXCnmRWzdy0cU055K2IIbkr+7wsa7r04PEL3WLIhcbBn8vMv9X0cEiTLT LN4RFYJQ6QhNpPoHQbaK8lS8zQ718JTzH5+SXkmI78ly6DzBQzvgTmqv+DcRcuSz YNfkgCk0j6ZvZ4pOHltdsfYHF94emWM9eDUUcTgtlLuASbQK8fSL6YDDck0Tr11z 2mrk6X1swJlsjH0o2exQttGJIgaVkqr+unURoawEdtL+pfp0r6Uxd2/kLGXynfCI mKkXjtxAuThEGAYrMrEkJPQ6LQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFMuo80eT DhrHbPBhThTHPUFvNoAuMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNjE2NjZDMEVENjg5MTFFOEI2ODExNDMzQzRGOUFFMDIvMUY4Mzc4RTZC Q0JEMTFFQkFDOUE0NzQ0QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAh BAIAAjAbAwcAJAPPwBAGAwcAJAPPwBAMAwcEJAPPwBEQMA0GCSqGSIb3DQEBCwUA A4IBAQAk8NO5KSducsbaEZvbrK0BpIT4Dxtr1gpX6vz79ymegSlyR6TNlMuvWkjQ ewdz0R4bPdNvCoxkgXy4bbVAXFKg26aIUMZZsP7Rbaa33zMlcmRiA8ZJFi+hqRSd lxv49jsWfF4+OkqacXdIeNE5eEFO+quhGYyO74LlARQSY0NB3cCybLpbO006nNRK E0298GhIPs3rDGBow48OXuNXiFjBuGEl6BC/HqQgh4F4PdEJ+TPRBKbfctZH5Fsa DQZ20QXeCUw6x4M76UETRIbL27qQW6xugV7fyERUxR9Mk2f1vFilOvwjlKAE0eqd rI4NiV5+S+AR4+JNPKD44AL2qJTJ -----END CERTIFICATE-----Generated at Mon Mar 2 11:59:05 2026 by rpki-client