$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/A6A4A20E89B911EC8FDB572DC4F9AE02.roa File: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (raw, json) Hash identifier: 9gF1aAdFHEDmuDddG9VCS6z/7V4hA5cH16J97sGtqmY= Subject key identifier: 3B:81:B9:85:88:77:94:FC:DB:8D:63:24:97:E4:B4:7D:40:17:07:92 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 146F Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/A6A4A20E89B911EC8FDB572DC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:14:11 +0000 ROA not before: Sat 20 Dec 2025 17:14:37 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 149020 IP address blocks: 2403:cfc0:1110::/44 maxlen: 48 2403:cfc0:1120::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5231 (0x146f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Dec 20 17:14:37 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a58d23-b4f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ee:0d:0a:c1:7a:ce:68:38:4a:d5:9e:aa:3d: 94:40:ff:7b:94:94:9d:bf:b4:fc:15:79:7d:78:68: e1:61:04:ad:64:21:09:31:27:73:a1:f6:24:d3:8b: 71:32:b6:d2:26:4c:34:5c:e3:8a:84:ae:f1:42:4c: 49:14:29:86:32:b1:9e:8c:af:93:cc:48:63:40:d4: eb:c7:25:b5:6d:d8:bf:8d:b4:1e:3a:17:f0:14:f5: 31:21:9d:88:88:f0:a9:b2:7c:72:13:f5:cc:a7:85: 93:c9:ca:5e:0f:db:f5:e7:c1:bb:c0:a2:17:29:e5: 13:1e:d8:f5:cb:52:c2:c3:48:04:69:39:97:1d:2b: 56:2d:7e:b8:5f:85:43:18:28:b4:6c:61:7a:fe:f3: 34:40:41:cd:26:49:a6:fa:7c:40:aa:40:1f:5e:f4: 56:5d:1b:3d:c5:2b:d0:23:7f:e6:d0:79:bc:11:ad: a7:75:5d:79:d9:c3:cc:a6:8b:35:22:32:75:ef:53: af:5b:49:08:2a:d7:eb:15:6e:3f:4c:c5:7e:d1:8c: b0:56:55:75:1c:4f:51:a0:13:9a:a6:66:49:4c:3c: 15:f9:08:60:69:01:36:33:de:df:95:f9:07:d4:dd: 12:66:bc:60:04:b4:49:7e:dd:06:31:06:68:af:0f: dd:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:81:B9:85:88:77:94:FC:DB:8D:63:24:97:E4:B4:7D:40:17:07:92 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/A6A4A20E89B911EC8FDB572DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2403:cfc0:1110::-2403:cfc0:112f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 7f:b8:ad:8d:29:e0:e4:8b:82:e4:97:58:fe:b1:78:a6:a1:5d: e1:d4:e5:34:72:f1:91:38:7a:10:89:8e:02:23:25:29:97:27: 2a:e4:14:f4:40:33:a8:96:40:c7:05:2b:33:bc:23:b4:8b:e7: 09:55:bd:42:b0:06:b4:76:cc:62:a0:e7:69:38:a4:ce:59:e0: 47:32:8d:4b:38:b7:4a:d8:57:64:da:89:cd:b3:95:24:3f:2e: 45:1c:bb:20:42:78:42:c1:01:4e:39:78:3f:e7:5f:1c:69:10: c8:a5:d4:a4:c8:b3:a0:d8:da:29:f7:44:af:70:b8:bb:da:11: e7:d0:82:c0:87:47:79:50:eb:1f:17:66:f4:98:3a:26:9b:91: 22:75:60:a7:a6:51:2e:5a:2b:e8:11:b3:6e:d1:b9:15:34:73: b5:4e:2c:59:54:55:0f:50:09:55:b9:93:e1:89:1e:36:72:0d: 00:ae:72:b8:b4:b6:db:d3:30:ad:fa:b0:47:c6:0a:57:ba:91: 81:24:be:25:03:18:03:1d:85:5a:cf:94:3b:2d:59:38:d7:d0: 30:70:e6:80:44:28:5a:69:81:b3:17:24:c4:f1:b7:bb:24:c2: 91:40:d1:b2:d3:af:d6:5c:67:ba:32:51:9d:09:0d:b2:88:d5: 19:1b:2c:c8 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICFG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUxMjIwMTcxNDM3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGQyMy1iNGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzO4NCsF6zmg4StWeqj2UQP97lJSdv7T8FXl9eGjhYQStZCEJMSdzofYk04tx MrbSJkw0XOOKhK7xQkxJFCmGMrGejK+TzEhjQNTrxyW1bdi/jbQeOhfwFPUxIZ2I iPCpsnxyE/XMp4WTycpeD9v158G7wKIXKeUTHtj1y1LCw0gEaTmXHStWLX64X4VD GCi0bGF6/vM0QEHNJkmm+nxAqkAfXvRWXRs9xSvQI3/m0Hm8Ea2ndV152cPMpos1 IjJ171OvW0kIKtfrFW4/TMV+0YywVlV1HE9RoBOapmZJTDwV+QhgaQE2M97flfkH 1N0SZrxgBLRJft0GMQZorw/dPwIDAQABo4ICbjCCAmowHQYDVR0OBBYEFDuBuYWI d5T8241jJJfktH1AFweSMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNjE2NjZDMEVENjg5MTFFOEI2ODExNDMzQzRGOUFFMDIvQTZBNEEyMEU4 OUI5MTFFQzhGREI1NzJEQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAAjAUMBIDBwQkA8/AERADBwQkA8/AESAwDQYJKoZIhvcNAQELBQADggEBAH+4 rY0p4OSLguSXWP6xeKahXeHU5TRy8ZE4ehCJjgIjJSmXJyrkFPRAM6iWQMcFKzO8 I7SL5wlVvUKwBrR2zGKg52k4pM5Z4EcyjUs4t0rYV2Taic2zlSQ/LkUcuyBCeELB AU45eD/nXxxpEMil1KTIs6DY2in3RK9wuLvaEefQgsCHR3lQ6x8XZvSYOiabkSJ1 YKemUS5aK+gRs27RuRU0c7VOLFlUVQ9QCVW5k+GJHjZyDQCucri0ttvTMK36sEfG Cle6kYEkviUDGAMdhVrPlDstWTjX0DBw5oBEKFppgbMXJMTxt7skwpFA0bLTr9Zc Z7oyUZ0JDbKI1RkbLMg= -----END CERTIFICATE-----Generated at Mon Mar 2 16:25:25 2026 by rpki-client